Integrating UEM with Azure Active Directory join Skip Navigation

Integrating
UEM
with
Azure
Active Directory
join

You can integrate
BlackBerry UEM
with
Azure
Active Directory
join for a simplified enrollment process for
Windows 10
devices. When it’s configured, users can enroll their devices with
UEM
using their
Azure
Active Directory
username and password.
Azure
Active Directory
join is also required to support
Windows Autopilot
, which allows
Windows 10
devices to be automatically activated with
UEM
during the
Windows 10
out-of-the-box setup experience.
To integrate
Azure
Active Directory
join with
UEM
, you do the following:
Step
Description
Step 1
Use the value of the %ClientlessActivationURL% default variable in
UEM
to determine the following URLs so that you can integrate
UEM
with
Azure
Active Directory
join. For example, in the user details screen of a user that uses the default activation email template, you can click
View activation email
to find the value of %ClientlessActivationURL% in the
Windows 10
server name field.
  1. Determine the MDM terms of use URL. The URL uses the following structure:
    %ClientlessActivationURL%
    /azure/termsofuse
    For example, if the %ClientlessActivationURL% variable resolves to
    https://enrol.example.net/S123456789/win/mdm
    , then use
    https://enrol.example.net/S123456789/win/mdm/azure/termsofuse
    .
  2. Determine the MDM discovery URL. The URL uses the following structure:
    %ClientlessActivationURL%
    /azure/discovery
    For example, if the %ClientlessActivationURL% variable resolves to
    https://enrol.example.net/S123456789/win/mdm
    , then use
    https://enrol.example.net/S123456789/win/mdm/azure/discovery
    .
  3. Determine the App ID URI using only the host name of the %ClientlessActivationURL% default variable.
    For example, if the %ClientlessActivationURL% variable resolves to
    https://enrol.example.net/S123456789/win/mdm
    , then use
    https://enrol.example.net
    .
Step 2