You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/device-management-introduction.md
+5-2Lines changed: 5 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -71,20 +71,23 @@ The goal of Azure AD joined devices is to simplify:
71
71
72
72
73
73
These goals are accomplished by providing your users with a self-service experience for getting work-owned devices under the control of Azure AD.
74
-
**Azure AD Join** is intended for organizations that are cloud-first / cloud-only. These are typically small- and medium-sized businesses that do not have an on-premises Windows Server Active Directory infrastructure.
74
+
**Azure AD Join** is intended for organizations that desire to be cloud-first or cloud-only. There is no restriction on the size or type of organizations that can deploy Azure AD Join. Azure AD Join works well even in an hybrid environment and can enable access to on-premise apps and resources.
75
75
76
76
Implementing Azure AD joined devices provides you with the following benefits:
77
77
78
78
-**Single-Sign-On (SSO)** to your Azure managed SaaS apps and services. Your users don’t see additional authentication prompts when accessing work resources. The SSO functionality is even when they are not connected to the domain network available.
79
79
80
80
-**Enterprise compliant roaming** of user settings across joined devices. Users don’t need to connect a Microsoft account (for example, Hotmail) to see settings across devices.
81
81
82
-
-**Access to Windows Store for Business** using AD account. Your users can choose from an inventory of applications pre-selected by the organization.
82
+
-**Access to Windows Store for Business** using an Azure AD account. Your users can choose from an inventory of applications pre-selected by the organization.
83
83
84
84
-**Windows Hello** support for secure and convenient access to work resources.
85
85
86
86
-**Restriction of access** to apps from only devices that meet compliance policy.
87
87
88
+
-**Seamless access to on-premise resources** when the device has line of sight to the on-premises domain controller.
89
+
90
+
88
91
While Azure AD join is primarily intended for organizations that do not have an on-premises Windows Server Active Directory infrastructure, you can certainly also use it in scenarios where:
89
92
90
93
- You can’t use an on-premises domain join, for example, if you need to get mobile devices such as tablets and phones under control.
0 commit comments