Intune Autopilot enrollment fails with an “invalid_client” error after the user enters their credentials with the following error message:
Error invalid_client failed%20to%20authenticate%20user
Something went wrong
Additional problem information:
Cause of error invalid_client failed%20to%20authenticate%20user
Verify from Microsoft Endpoint Manager Admin Center that the user who is registering for Intune is licensed:
- Go to the Microsoft Endpoint Manager Admin Center > Users | All users> Search for user > Licenses > Assignments.
- Verify that the user has an Enterprise Mobility + Security E3 or higher license and check the option of Microsoft Intune. In the image below, the license is granted with an Azure Active Directory group named “INTUNE_ENROLL”:
- Go to the Microsoft Endpoint Manager Admin Center > Enroll devices | Windows enrollment > Configure.
- Verify that the user is in both user scopes (MDM and MAM). In the image below, the user will be in the MDM scope with option “All” and in the scope of MAM with the group “INTUNE_ENROLL”: