In Azure Active Directory (Azure AD), device identity types refer to the different ways that devices can be registered and managed in the directory.
There are three main types of device identities:
Azure AD Joined
This type of device is registered directly with Azure AD and is managed by an organization’s IT department. These devices are typically used by corporate users and are often associated with a specific user.
Hybrid Azure AD Joined
This type of device is registered with both Azure AD and an on-premises Active Directory, and is managed by both the organization’s IT department and on-premises AD. These devices are typically used by corporate users and are often associated with a specific user.
Azure AD Registered Devices (Personal devices)
This type of device is not registered with Azure AD or an on-premises AD, and is typically owned and managed by an individual user. Personal devices can be granted access to some corporate resources, but are generally less secure than corporate-owned devices.
It’s important to understand the different device identity types in Azure AD because they determine how devices can be managed and secured, and how they can access corporate resources.