This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 93%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EUA%3C/text%3E%3C/svg%3E)
In an environment where an EDR Policy is configured to onboard devices, the policy reports success in Intune for all scoped devices. However, some devices have been successfully onboarded to MDE, while others continue to show an onboarding status of 'can be onboarded' in MDE. This status has persisted for an extended period.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 35%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZM%3C/text%3E%3C/svg%3E)
@Usman Abdullahi, Thanks for posting in Q&A.
From your description, I know you have configured an EDR policy to onboard devices but some of devices not onboard to MDE and show an onboarding status of 'can be onboarded' in MDE
Here is a link you can refer to troubleshoot onboarding issues.
Also, there are some pre-requirements you need to check if you meet and this issue can be related to License, please also check if the necessary licenses were assigned to the device.
https://learn.microsoft.com/en-us/defender-endpoint/minimum-requirements#licensing-requirements
If there is any update, feel free to let me know.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Thank you for your response, we have the required Defender for endpoint Plan 2 licenses, we were able to onboard 5k plus devices out of the 6k plus using the EDR policy via intune, but others have not been onboarded, and the EDR policy report in intune is success, while on MDE, we still have can be onboarded.
@Usman Abdullahi, Thanks for your quick reply.
Since all the status are good in Intune, please check if there exist error logs on targeted devices follow the link.
Ok, Thank you.. This has been one of our challenges so far, getting access to the devices. But will try to do that and give you a feedback.
Thank you, once again.
I have a follow up question as regards Intune, do you mind if I ask here or create a separate conversation for that
@Usman Abdullahi, Thanks for your reply.
In order to follow the one-question-one-answer principle and help people with related questions find relevant answers quickly, it is recommended that you open a new case.
Thanks for your understanding.