On the users mac follow the below:
1. Grant user admin rights within Self Service
2. Install Jamf Connect via Self Service
3. Open Terminal and run the below command, entering user password after
sudo /usr/local/bin/authchanger -reset -JamfConnect
4. log out and you'll be prompted with the Azure login window
5. Log in and follow on screen instructions to sync local password with cloud identity
6. Once logged in, open terminal and run the following command to deactivate the Azure login window:
sudo /usr/local/bin/authchanger -reset
6. Check the user account is no longer 'mobile' but 'local'
7. Please check the user is NOT local admin as some of them still are
For Macs purchased via Apple Business Manager DEP enabled, nothing needs to be done. Azure login window will appear after a full wipe.
For non-DEP macs, you will need to manually enroll via link below:
https://wearebw.jamfcloud.com/enroll