This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 30%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHB%3C/text%3E%3C/svg%3E)
Hello there!
We're trying to onboard Windows 11 devices to Hybrid Azure AD joined and Intune, making them Co-managed...
We've already allowed several URLs but the endpoints are still not getting onboarded to the Intune portal. They get onboarded successfully once we disable the proxy on them. Once the device is shown as Co-Managed in the Intune portal, we enable again the proxy, and communication remains okay, like policy changes, applying new baseline policies, etc.
The problem seems to be at the end of Proxy and we believe there are some additional URLs required for the initial onboarding communication, which need to be whitelisted on the proxy.
Could anyone please share the list of all the required URLs and ports to make a device Hybrid Azure AD joined and to onboard it to the Intune portal to enable Co-management?
Thanks a lot in anticipation!
~ Hasan
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Hasan Bin Hasib, Hope things are going well. I am writing to see if we have tried to add the URls and ports in the links Marshaljs provided? Was the issue resolved? If there's any update, feel free to let us know.
Hope you got a chance to review the action plan suggested below. Please do let me know if you have any queries in the comments section. If you don't have any further queries and the suggestion works as per your business need. Please "Accept the answer" and "share you feedback (Yes/No)". This will help us and others in the community as well.
Thanks,
Akshay Kaushik
Hi Hasan,
There are multiple Urls in action in this process and I will ask you to investigate the proxy logs to see the blocks, however here are list of URLs that will assist you:
https://video2.skills-academy.com/en-us/mem/autopilot/networking-requirements
For Intune - https://video2.skills-academy.com/en-us/mem/intune/fundamentals/intune-endpoints
Also read through the Network requirements for Office365 - https://video2.skills-academy.com/en-us/microsoft-365/enterprise/managing-office-365-endpoints?view=o365-worldwide
Also to note - If using Proxy, WPAD Proxy settings option must be enabled and configured. To deploy check this page with some steps - https://video2.skills-academy.com/en-us/azure/active-directory/app-proxy/application-proxy-configure-connectors-with-proxy-servers
Hope this helps.
JS
==
Please accept as answer and do a Thumbs-up to upvote this response if you are satisfied with the community help. Your upvote will be beneficial for the community users facing similar issues.