How to solve: AADSTS50107 : Requested federation realm object

Screenshot of Microsoft error

You might encounter this error while deploy an Windows Autopilot Deployment for Hybrid Domain Join. Before that, make sure the pre-requisite for Autopilot Deployment is configured successfully. Here I share the main thing to check before deploy.


1)Windows 10 1809 version
2)Have an internet access connection
3)Have an access to local AD.


1)Device registered and grouped
2)Assigned deployment profile to the group of autopilot.
3)Assigned Domain Join Profile
4)Add Intune Connector and make sure to stay active

Azure AD 

1)Assigned EMS license to the user

Azure AD Connect

1)Successfully synced
2)1.1.89 version or later and configured as Hybrid Domain Join.

Intune Connector

1)Installed to Windows Server 2016
2)Have an access to internet and local AD.
3)Have a right to local AD to add computer object to local AD.

For this error, after checked on pre-requisite for Windows Autopilot deployment on AD environment. My situation is, currently I set  StaffID as UPN Principal Name. For Intune requirement might need email address for login credential. So, AD must change the UPN  to email address instead of StaffID. After change it, user can login to and register the device to Intune Company Portal. 

Note: This post is written by Atikah Zainuldin , a senior technical engineer from Enfrasys. You may visit her blog at

Want to stay in the know?

Sign up to our newsletter to receive the latest news, events, webinars, and thought leadership.
Subscription Form (#6)