# Preparing a Microsoft Intune Package for Enrolling Virtual Machines in Azure Active Directory

Enrolling Windows virtual machines in Azure Active Directory with Microsoft Intune enables managing and securing your virtual machine environment. Once Windows is enrolled in Intune, you can deploy applications, enforce policies, and configure security settings using existing device management workflows.

{% hint style="success" %}
**Note**: The best and easiest way to deploy virtual machines while ensuring they enroll in Microsoft Intune is to create the provisioning package as outlined below, then use it in the [**Declarative Deployment**](/landing/pd-ag/preparing-virtual-machines-for-deployment-and-securing-them/golden-images.md#declarative-deployment-windows-vms) procedure, saving time, effort, and network storage space. 
{% endhint %}

To achieve this goal, you will have to create a provisioning package and deliver it to your end users. To learn more about provisioning packages for Windows, follow [this link](https://learn.microsoft.com/en-us/windows/configuration/provisioning-packages/provisioning-packages).

{% hint style="danger" %}
**Warning**: You will only be able to successfully enroll the machines deployed from an Autodeploy Package that includes a Windows virtual machine prepared for deployment, and with the **vm\_reset\_hwid** parameter in the **deploy.cfg** file set to "yes". For more information on configuring the Autodeploy Package, please refer to the respective [section](/landing/pd-ag/provisioning-and-activation-of-parallels-desktop/alternative-deployment-methods/alternative-mass-deployment-via-deployment-package/preparing-the-autodeploy-package/configuring-deployment-options.md) of this guide.

Be advised that setting this parameter to "yes" may affect active software licenses on the deploying machines; however, without this step, your Azure infrastructure will not be able to detect all the VMs as separate entities.
{% endhint %}

{% @arcade/embed flowId="d7NTe6ncPZCcFl1KaHG4" url="<https://app.arcade.software/share/d7NTe6ncPZCcFl1KaHG4>" %}

Follow these steps:

1\. Install Windows Configuration Designer from the Microsoft Store or download it directly from the Microsoft website.

2\. Once installed, launch it and create a new project following the **Provision desktop devices** template.

<figure><img src="/files/EVZbepCBktbqA5QES3Qx" alt="" width="563"><figcaption></figcaption></figure>

3\. Once the project is created, you will see the following page:

<figure><img src="/files/qbkUDsQ2QgvHJg57nDK1" alt=""><figcaption></figcaption></figure>

At this point, you need to choose a name convention. Once done, click **Next** and switch to the **Set up network** tab. There, you need to switch off the setup network toggle and click **Next**, proceeding to the **Account Management** page.

{% hint style="info" %}
**Note**: In Parallels Desktop for Mac, a virtual machine uses the host Mac's internet connection in a way specified by its settings. From Windows' point of view, the virtual network adapter is a standard Ethernet connection. Therefore, there is no need to separately connect the virtual machine to your company's corporate network.
{% endhint %}

<figure><img src="/files/yv2evh5JMzpSU1RaUkyS" alt="" width="563"><figcaption></figcaption></figure>

4\. The following step is important: You need to select the **Enroll in Azure AD** option and obtain a bulk token.

<figure><img src="/files/ECcdVdilOVmi4CrUDZ2N" alt=""><figcaption></figcaption></figure>

Here, you need to sign in with your Microsoft Azure credentials. Once you’ve successfully signed in, you’ll see the message confirming the successful receipt of the token.

<figure><img src="/files/qSHsfDni3CxuKWiyKa48" alt="" width="563"><figcaption></figcaption></figure>

5\. Click **Next**. Feel free to skip the remaining steps by clicking **Next** on each one of them.

6\. Finally, you need to double-check your configuration summary and ensure everything is correct.

<figure><img src="/files/TmlvPUwPEb1pb2rkXI6A" alt=""><figcaption></figcaption></figure>

Click **Create** and memorize the path to the package file.

From this point, you have several possible ways to proceed:

1. \[**RECOMMENDED**] Use the resulting package file in the [**Declarative Deployment**](/landing/pd-ag/preparing-virtual-machines-for-deployment-and-securing-them/golden-images.md#declarative-deployment-windows-vms) procedure, saving time, effort, and network storage space.
2. Share the package with users who will need to launch it to enroll their virtual machines in Azure.
3. Install the package manually on every machine.
4. Add the package to the installation process as part of the SetupComplete.cmd script, as described in section 5 of [this KB article](https://kb.parallels.com/en/129529).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.parallels.com/landing/pd-ag/preparing-virtual-machines-for-deployment-and-securing-them/enrolling-virtual-machines-in-azure-active-directory.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.