| **Field** | **Details** |
| Document Type | How-To Guide - Create a Dynamic Group Runbook |
| Applies To | Microsoft Entra ID & Microsoft Intune |
| Audience | 2nd Line, Entra ID & Intune Admin |
| Author | AK. Udofeh |
| Last Updated | Nov 2025 |
***Limitation: Some co-managed or misreported devices may still appear; manual validation may be required.***
##### **Validate and Save** - Click **Validate Rules** to confirm matching devices. - Save and create the group. ##### **Common Device Attributes & Values**| **Property** | **Value** | **Meaning** |
| device.trustType | AzureAD | Microsoft Entra joined (cloud-only) |
| ServerAD | Hybrid joined (on-prem AD + Entra) | |
| Workplace | Registered only (personal/BYOD) | |
| device.deviceOwnership | Company | Corporate-owned device |
| Personal | User-owned device | |
| device.deviceOSType | Windows | Windows OS devices only |
| managementType | MDM MDM/AD Unknown | Managed via Intune or another MDM Hybrid-managed Not managed |
| device.deviceCategory | Type in your device category name | This depends on the category name that has been provisioned already |
Dynamic groups are evaluated automatically whenever device properties change.
Ensure devices are marked as Company-owned during or after enrollment.
Combine a broad dynamic device group with compliance/enrollment policies and manual validation to ensure only Intune-managed devices receive policies.
# HOW TO: Join a Windows Computer to Microsoft Intune| **Field** | **Details** |
| Document Type | How-To Guide - Join a Windows Computer to MS Intune Runbook |
| Applies To | Microsoft Entra ID & Microsoft Intune |
| Audience | 2nd Line, Entra ID & Intune Admin |
| Author | AK. Udofeh |
| Last Updated | Nov 2025 |
The device must be Windows 10 or 11 Pro, Enterprise or Education. The device must have internet access to reach Microsoft Entra services during the join process. User must sign in with the Organisation's account, and the account must have permissions to join devices.
If another MDM agent (or on-prem AD join with GPO) is active, joining may fail or cause conflicts.
Your old workgroup profile will be separate from the new Entra ID profile, and some personalisation may be lost. As such, you may want to move your data in the Downloads, Documents, and Desktop folders and export your Internet browser bookmarks, saved passwords and store the backup files in OneDrive or Box Cloud Storage before starting the device join process.
You may have to install Company Portal from Microsoft Store if it is not already installed on your device.
**Bonus:** You may want to follow these links for a guide on how to export and restore your browser bookmarks and saved passwords.
[HOW TO: Export & Import Microsoft Edge Browser Password](https://docs.aktechnoservices.com/books/web-browser-tasks/page/how-to-export-import-microsoft-edge-browser-password)
[HOW TO: Export & Import Microsoft Edge Browser Bookmarks](https://docs.aktechnoservices.com/books/web-browser-tasks/page/how-to-export-import-microsoft-edge-browser-bookmarks)
[HOW TO: Export & Import Chrome Browser Passwords](https://docs.aktechnoservices.com/books/web-browser-tasks/page/how-to-export-import-chrome-browser-passwords)
[HOW TO: Export & Import Chrome Browser Bookmarks](https://docs.aktechnoservices.com/books/web-browser-tasks/page/how-to-export-import-chrome-browser-bookmarks)
**Step 1:** Click the Start menu on the Taskbar > type “Company Portal” in the search bar and click on the Company Portal App to open. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/CAFimage.png) **Step 2:** Click “Sign in”. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/mwtimage.png) **Step 3:** Type in your username and click Next. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/b42image.png) **Step 4:** Type in your password and click Sign in. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/3Orimage.png) **Step 5:** Type in the number shown into your Authenticator App to verify your log in. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/pBJimage.png) **Step 6:** Click “Yes” to register your device with Entra ID. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/dtyimage.png) **Step 7:** Click “Yes” to enrol your device for management in Intune. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/8zWimage.png) **Step 8:** Allow the registration process to complete [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/Aidimage.png) [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/MAKimage.png) **Step 9:** Select the category for this device (if unsure, please reach out to Helpdesk) [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/VQmimage.png) **Step 10:** Device enrolment successfully completed. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/EGgimage.png) **Step 11:** You will need to "switch users" to log in to your new Organisation's account on your device. Click “Start” Menu > click your current user account > click three-dot menu > click “Switch user”. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/Vbyimage.png) **Step 12:** Click “Other user” to sign in with your Organisation's domain account. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/xs3image.png) **Step 13:** Type in your Organisation's domain account and password. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/Ov7image.png) **Step 14:** Viola, you’re now in. [](https://docs.aktechnoservices.com/uploads/images/gallery/2026-03/iJcimage.png)