Error 0x87d1fde8: What Is It & How to Effectively Fix It

Turn off restrictions on conditional access to apply policies

by Claire Moraa
Claire Moraa
Claire Moraa
Author
Claire likes to think she's got a knack for solving problems and improving the quality of life for those around her. Driven by the forces of rationality, curiosity,... read more
Updated on
Reviewed by Alex Serban
Alex Serban
Alex Serban
Windows Server & Networking Expert
After moving away from the corporate work-style, Alex has found rewards in a lifestyle of constant analysis, team coordination and pestering his colleagues. Holding an MCSA Windows Server... read more
Affiliate Disclosure
  • You can use Intune to help ensure compliance with corporate security policies, provide full control over applications, and ensure your data is secure.
  • When a policy fails to apply, it could be because of your settings, and you need to disable some of these restrictions first.
XINSTALL BY CLICKING THE DOWNLOAD FILE
To fix various PC problems, we recommend Restoro PC Repair Tool: This software will repair common computer errors, protect you from file loss, malware, hardware failure and optimize your PC for maximum performance. Fix PC issues and remove viruses now in 3 easy steps:
  1. Download Restoro PC Repair Tool that comes with Patented Technologies (patent available here).
  2. Click Start Scan to find Windows issues that could be causing PC problems.
  3. Click Repair All to fix issues affecting your computer's security and performance
  • Restoro has been downloaded by 0 readers this month.

Microsoft collects some data from your organization’s users when they connect to Windows Intune or Azure Active Directory (Azure AD) through app deployment or enrollment.

This data is instrumental in device protection, asset inventory, and compliance reporting. You can create your policy to collect data in Intune. This includes data about the apps you run, the mobile devices enrolled in Intune, and more.

However, users have since complained of their policies not applying and getting an error code 0x87d1fde8. In this article, we get to the root of the problem and recommend top-upvoted solutions by other users.

What is error code 0x87d1fde8 (2016281112)?

Error code 0x87d1fde8 happens when you try to apply a policy in Intune but instead get this error. There are a lot of reasons why a policy may not be applied. Here are some common reasons:

  • Device enrollment – You may have not enrolled your device in Intune. This means the policy cannot be applied.
  • Wrong configuration – If the policy is not configured correctly, you’ll have difficulty getting it to apply.
  • Server issue – The Intune service might be temporarily unavailable or offline due to maintenance or network issues. 
  • Network issues – You may also be experiencing problems with your Internet connection, which may prevent you from using the service.
  • Non-compliance –  If your device does not meet the compliance requirements specified in your policy, it will not be able to receive software updates and configuration changes from Intune.
  • You have enabled conditional access – Conditional access is a Microsoft Azure security feature that allows you to control access to your organization’s applications and data. When enabled, it restricts non-compliant devices.

How can I fix error 0x87d1fde8?

Check off the following first before any advanced troubleshooting:

  • Make sure that the user or device is enrolled in Intune.
  • Check that your iOS or Android device is connected to Wi-Fi or Ethernet.
  • Ensure that the device you are trying to manage is compatible with your policies. 
  • Review your policies and check for any errors.
  • Ensure your Windows version is up-to-date and compatible with the latest version of Intune.

1. Disable conditional access

  1. Sign in to your Azure account.
  2. Click on the Menu at the top left corner and select Azure Active Directory.
  3. Select Protect & secure on the left pane, then click on Conditional Access.
  4. Under the Access policy option, toggle it Off.

Conditional access is a security feature that you can use with Intune to help keep corporate data protected. If you are worried about disabling this feature, you can create a custom policy for unsupported devices.

2. Re-sync the policy

  1. Hit the Windows key and click on Settings.
  2. Click on Accounts on the left pane, then Access work or school on the right pane.
  3. Locate your account connected to your AD account and click on Info.
  4. Select Sync under Device sync status.

Resyncing will reset the policy settings and allow all Intune policies to apply any missing or pending updates.

How do I know if my device is enrolled in Intune?

Expert tip:

SPONSORED

Some PC issues are hard to tackle, especially when it comes to missing or corrupted system files and repositories of your Windows.
Be sure to use a dedicated tool, such as Fortect, which will scan and replace your broken files with their fresh versions from its repository.

There are plenty of ways to verify whether your device is enrolled in Intune. Of course, the most obvious tell-tale sign should be that your device is Intune-compliant. Otherwise, there’s no need to check if it doesn’t meet the system requirements.

One easy method is to check with your administrator. Administrators have all the records of the connected devices, so if you’re unsure, get in touch with them.

Another way is through Windows settings. To do so, follow the steps below:

  1. Hit the Windows key and click on Settings.
  2. Click on Accounts on the left pane, then Access work or school on the right pane.
  3. Locate your account connected to your AD account.
  4. Check whether the Info option is available. This is the confirmation that assures you that you have enrolled your device in Intune.

Alternatively, you can sign in to the AD portal and view your devices using the Intune device status page. 

If this doesn’t work, check and disable your VPN if it is active. Elsewhere, you may come across the error 0x87d101f4, an Intune compliance error. Find out how to bypass it easily in our expert article.

We also share a step-by-step process on how to sync your devices with Intune, so be sure to check out our article on the same.

Drop us a comment below if we missed a solution that helped you in a similar situation.

Still experiencing issues?

SPONSORED

If the above suggestions have not solved your problem, your computer may experience more severe Windows troubles. We suggest choosing an all-in-one solution like Fortect to fix problems efficiently. After installation, just click the View&Fix button and then press Start Repair.