This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 83%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
I am using intune and Azure AD connect to manage a IOS( iPhone) device, I have configured everything on the intune, and now I am planning give a fully managed device to a user but my question is when you make this phone fully managed, do you first sign in with Admin account or user account to make this fully managed? Because this phone will be given to the user and if I sign in with admin log in, doesn't it mean its for the Admin? Or in order to make this phone fully managed you always have to frist sign in with admin account then when you hand over the phone to a user, they have to sign in bsck with there account?
Note; Its corporate fully managed IOS/iPhone that I am talking about.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 28.999999999999996%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
Hi @TechQ
Thank you for posting your query on Microsoft Q&A.
To answer your question, you should always let the user sign-in with their own account. And have the InTune / Endpoint management policies applied to the user or device.
If you log into the users device with admin credentials then it will potentially persist this login token, and allow the user to select the admin account when signing into applications.
We have a guide here on the various options for iOS device enrollment - https://video2.skills-academy.com/en-us/mem/intune/fundamentals/deployment-guide-enrollment-ios-ipados
Do let me know if you have any further questions, I would be happy to help!
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@TechQ, Thanks for posting in Q&A. Before going on, I would explain some information for you:
For Azure AD connect, now it changes name to Microsoft Entra Connect.
Microsoft Entra Connect is an on-premises Microsoft application that's designed to meet and accomplish your hybrid identity goals. So it is not used for iPhone.
For iPhone, to enroll the user associated device as corporate device, you can choose to enroll with ADE or Apple Configurator (Setup Assistant enrollment).
https://video2.skills-academy.com/en-us/mem/intune/enrollment/corporate-identifiers-add
For ADE enrollment, it is mainly used for the device purchased via Apple Business Manager. And you have Apple Business Manager access. To do the enrollment, you can refer to the following link:
https://video2.skills-academy.com/en-us/mem/intune/enrollment/device-enrollment-program-enroll-ios
If it is not purchased via Apple Business Manager, you can consider Apple Configurator Setup Assistant enrollment. Here is a link with the steps to do the enrollment.
https://video2.skills-academy.com/en-us/mem/intune/enrollment/apple-configurator-enroll-ios
For the above enrollment methods, you need to sign in the user's Azure AD user account instead of admin account. And also please ensure the user has Microsoft Intune Plan 1 license assigned before we enroll device.
https://video2.skills-academy.com/en-us/mem/intune/fundamentals/licenses
Hope the above information can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@TechQ, Hope the above information can help. If there's anything else we can help, feel free to let us know.