This post has been republished via RSS; it originally appeared at: Intune Customer Success articles.
Some customers run into issues during the out-of-box experience (OOBE) when enrolling Windows devices, specifically when the device is recognized as a personal device and the tenant does not allow for this device type. This scenario can occur during device setup when the user chooses Set up for work or school and then signs in with an organization-linked Azure Active Directory (Azure AD) account.
If you have personal device enrollment blocked for your tenant, this enrollment method will result in a failure. The associated error code you might see is 80180014.
To fix this, you can allow personal enrollment of Windows devices either for all users or for a subset of users you want to be allowed to enroll personal devices. We recommend limiting the number of users you allow to enroll personal windows devices to only the users who will need this capability. This will ensure that other users in your organization do not accidentally enroll their personal devices.
To allow personal device enrollment, sign-in to the Microsoft Endpoint Manager admin center and select Devices > Enroll devices > Enrollment device platform restrictions.
Select Windows restrictions > Create restriction and give the restriction an informative name. On the Platform settings page, make sure to set Personally owned devices to Allow.
Assign the restriction to the group(s) you want to let enroll personal devices.
Review and create the restriction.
If you have any questions or comments, reply to this post or reach out to @IntuneSuppTeam on Twitter.