Error 0x8007064c: Device Already Enrolled
The machine is already enrolled.
Error Details
| Property | Value |
|---|---|
| Error Code (Hex) | 0x8007064c |
| Error Code (Dec) | -2147024308 |
Description
This error occurs during Windows device enrollment when the system detects existing enrollment state information. This can happen with previously enrolled devices, cloned images containing enrollment data, or when remnants of previous enrollments remain on the system. Resolution typically requires removal of existing enrollment artifacts.
Common Causes
🔄 Previous Enrollment State
Enrollment conflicts often stem from previous device management states. Device might have been previously enrolled in Intune. Cloned images may contain enrollment data from source device. Account certificates from previous enrollments could remain on system. Understanding enrollment state management is crucial for resolution.
📱 System Artifacts
System-level remnants can prevent new enrollments. Certificates from previous enrollments might persist in system store. Registry keys containing enrollment data could remain after unenrollment. Management agent configurations might retain previous state information. These artifacts require systematic cleanup for successful enrollment.
Resolution Steps
1️⃣ Certificate Cleanup
Begin with removal of existing enrollment certificates:
- Open MMC (Run -> MMC)
- Add Certificates snap-in for Computer account
- Navigate to Personal > Certificates
- Locate and delete Intune cert issued by Sc_Online_Issuing
2️⃣ Registry Cleanup
Remove enrollment-related registry keys:
- Delete if exists:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\OnlineManagement - Delete if exists:
KEY_CLASSES_ROOT\Installer\Products\6985F0077D3EEB44AB6849B5D7913E95
Back up the registry before making any changes. Incorrect registry modifications can cause serious system issues.
3️⃣ Enrollment Retry
After cleanup, attempt device enrollment:
- Verify all cleanup steps completed
- Initiate new enrollment process
- Monitor for successful completion
- Document any new error messages
Best Practices
👨💻 For IT Administrators
Effective enrollment management requires attention to system state and cleanup procedures. Implement comprehensive enrollment state verification. Maintain documentation of cleanup procedures. Develop clear processes for handling enrollment conflicts. Create systematic approaches to artifact removal. Consider implementing automated cleanup tools.
🔄 For Enrollment Management
Successful enrollment requires thorough system preparation. Develop clear processes for enrollment state verification. Maintain accurate documentation of cleanup requirements. Implement thorough testing procedures for enrollments. Create comprehensive documentation of resolution steps.
Troubleshooting Tips
When addressing enrollment conflicts, follow systematic cleanup procedures. Verify complete removal of certificates. Check all registry locations thoroughly. Document cleanup steps performed. Test enrollment after each major change.
System modifications require careful attention. Back up registry before changes. Document all removed items. Consider system restore point creation. Verify system stability after changes.
Additional Notes
💡 Complete cleanup required
🔄 Registry backup important
⚠️ Certificate removal necessary
📱 Document all changes
Related Links
Cleanup Process Guide
-
Certificate Management
- Open certificate manager
- Locate Intune certificates
- Remove enrollment certs
- Document removals
-
Registry Cleanup
- Backup registry first
- Remove enrollment keys
- Verify key removal
- Test system stability
-
Enrollment Process
- Verify cleanup complete
- Attempt enrollment
- Monitor progress
- Document results
Always create system backups and document all changes when performing enrollment cleanup procedures to ensure safe and successful resolution.