![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(3.2, 61%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMF%3C/text%3E%3C/svg%3E)
Microsoft 365 and Office | Install, redeem, activate | For business | Windows
Processes in Microsoft 365 for setting up Office apps, redeeming product keys, and activating licenses.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(249.60000000000002, 17%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECD%3C/text%3E%3C/svg%3E)
Hi @Morten Fly,
Welcome to the Microsoft Q&A forum.
Thank you for contacting us regarding the sign-in issue you are experiencing on new devices and the error message “Device management could not be enabled.” I appreciate the detailed screenshots and description you provided. After reviewing the information, here is an explanation of the root cause and recommended steps to resolve the problem:
The behavior you are experiencing is that Windows/Office now requires devices to be enrolled in MDM/Intune for Single Sign-On (SSO), and the error “Device management could not be enabled” (0x80192EE7) occurs when device registration fails due to issues such as enrollment configuration, licensing, policy scope, or network restrictions.
Here are my recommendations, which I hope will be helpful to you. If you don’t have admin permissions, please contact your IT administrator:
1/ Confirm if device management is required:
- If your organization does not require device management, when prompted:
- Select “No, this app only” instead of “Yes”.
- This allows sign-in for the app without attempting device enrollment, avoiding the error.
- If your organization uses Intune, proceed with the steps below.
2/ Check MDM/Intune configuration:
In Microsoft Intune admin center:
- Navigate to: Devices → Windows → Windows enrollment → Automatic enrollment
- Configure:
- MDM user scope → Set to All or Some (include affected users).
- MAM user scope → Configure if applicable.
- Windows Information Protection (WIP) user scope → Set to None temporarily to rule out conflicts. (Note: WIP is deprecated; consider migrating to Microsoft Purview Information Protection.)
- If incorrect or blank, click Restore default MDM URLs.
-
- Confirm the user has a valid Microsoft 365/Intune license assigned.
3/ Verify network connectivity:
- The device must resolve and access: "https://enrollment.manage.microsoft.com/enrollmentserver/discovery.svc"
- Test with nslookup enrollment.manage.microsoft.com and verify no firewall or proxy blocks.
- If using VPN or corporate proxy, ensure Microsoft endpoints are whitelisted.
4/ Clear sign-in cache on the device:
- Close all Office apps, Teams, and OneDrive.
- Delete these folders:
C:\Users<username>\AppData\Local\Microsoft\IdentityCache
C:\Users<username>\AppData\Local\Microsoft\OneAuth
- Restart the device and sign in again.
For more details, you can refer to these Microsoft's article:
- Troubleshoot device enrollment in Intune - Intune | Microsoft Learn
- Set up automatic enrollment in Intune - Microsoft Intune | Microsoft Learn
- Enable MDM automatic enrollment for Windows - Microsoft Intune | Microsoft Learn
- Disabling ADAL or WAM to Fix Microsoft 365 Sign-in or Activation Issues Not Supported - Microsoft 3…
5/ Contact Microsoft Support
If this issue is urgent and directly impacting your team’s productivity, I strongly recommend reaching out to your IT department and asking them to open a support ticket with Microsoft Technical Support through the Microsoft 365 Admin Center. They have access to system-level diagnostics and can investigate the problem more thoroughly. At the very least, they can provide the most effective workaround to ensure your experience remains smooth and secure.
We kindly ask for your understanding that, as moderators, we do not have access to the administrative tools or permissions required to investigate or modify these configurations. We also do not have the capability to initiate remote sessions for direct assistance. Our role is to guide users to the appropriate resources and support channels.
I hope this information is helpful. Please follow these steps and let me know if it works for you. If not, feel free to share them in the comments on this post so I can continue to assist you.
I look forward to hearing your thoughts on this.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have any extra questions about this answer, please click "Comment".
Note: Follow the steps in our documentation to enable email notifications if you want to receive email notifications related to this topic.