locked
How to Workplace Join & Autoworkplace.exe giving "Unknown Error" when trying to join PC to Azure AD RRS feed

  • General discussion

  • If your organization uses ADFS or Azure Active Directory Conditional Access policies which require a PC to be registered with ADFS/Azure AD, or for whatever other reason, you may need to register a Windows 7, 8, or 8.1 PC with ADFS/Azure AD.  You can use the Microsoft Workplace Join for non-Windows 10 PCs utility: https://www.microsoft.com/en-us/download/details.aspx?id=53554 - select either 32-bit or 64-bit depending on your OS.  This installs a small program call Autoworkplace.exe in "C:\Program Files\Microsoft Workplace Join".

    Normally, this utility automatically runs when a user logs in and ensures that they have the necessary client certificate and that the device is registered to them in ADFS/Azure AD.  However, it may be necessary to run the utility manually for troubleshooting purposes.  You can open a command prompt to its folder in Program Files and start the utility by typing "Autoworkplace /i" and hitting enter.  Click Join if it states that the device has not been joined.

    If the device fails to join and you then see an error that states "Unknown Error" the problem may be that you or the user you're working with has exceeded their device limit in ADFS/Azure AD.  For Azure AD this limit can be increased by an Azure global admin in the Azure Portal by going to Azure AD settings.  This error may occur even though a user has "deleted" their unused devices on their own.  This is because Azure AD only disables the devices and they still count against the maximum number.  Only a global admin can permanently delete a user's devices in Azure AD.  Either have a global admin (do so yourself if you are one) increase the device limit OR remove the unused devices from the user.  The devices can be removed by following these steps:
    1. Go to the Azure AD section of the Azure Portal, click "Users & Groups" and search for the user.
    2. Select them, click Devices on the left.
    3. Delete the unused devices.

    This will allow the user to go ahead and join their device to Azure AD.

    For organizations using ADFS device registration, not Azure AD:
    The maximum number of devices in ADFS is 10 by default.  It can be changed by following these instructions: https://technet.microsoft.com/en-us/library/dn614658(v=ws.11).aspx#Anchor_2 .




    Thursday, June 22, 2017 10:55 PM