Did you know: there will be a change in experience when enrolling Android Enterprise dedicated devices in Intune. This is in addition to MC193745 that with the November release Microsoft were adding support for SCEP certificate deployment to Android Enterprise dedicated devices, to enable certificate-based access to Wi-Fi profiles. This change involved some minor enrollment flow changes for Android Enterprise dedicated devices.
How does this affect me?
If you manage Android Enterprise dedicated devices in your environment, you will start to see some changes roll out in March.
– For existing Android dedicated devices enrolled prior to the November 22, 2019 or the 1911 service update: These devices have the Microsoft Intune app installed on them. After backend changes roll out in the Intune service in March, SCEP certificates deployed to devices and associated with Wi-Fi profiles will start to apply.
– For devices that were enrolled after November 22, 2019 and before this change rolls out in March: These devices have the Microsoft Intune app installed on them. SCEP certificates deployed to devices and associated with Wi-Fi profiles will continue to apply.
– For new Android Enterprise dedicated device enrollments after the change rolls out in March: End users will see a different set of steps on devices during enrollment. Enrollment will still start the way it does today (with QR, NFC, Zero-touch, or device identifier) but there will be no mandatory app install step. Instead, the Microsoft Intune app will automatically install on devices. Additionally, end users will not need to tap “Enable Intune Agent” during the flow. SCEP Certificates associated with WiFi profiles can be deployed to these devices.
