Are you looking to create an Intune Group with a dynamic rule to populate all Azure AD Joined devices or Hybrid AD Joined devices and then you notice that you do not have a filter for Join Type?
We all reach this point and get stuck, don’t we? Its true that we have no easy method like a filter available based on ‘Join Type’ in the dynamic membership rules so that the devices can be populated into the group based on Azure AD joined or Hybrid AD joined. But, you still have an option to do this via Device Categories.
Go to Intune > Devices > Device Categories (https://endpoint.microsoft.com/#blade/Microsoft_Intune_DeviceSettings/DevicesMenu/deviceCategories) Create a category named “Hybrid AD Joined Devices” or “AAD Joined Devices” (decide if you want to set category for Hybrid AD joined devices or AAD joined. Here, I have created a category for Hybrid AD Joined Devices.
Now navigate to Intune > Groups (https://endpoint.microsoft.com/#blade/Microsoft_AAD_IAM/GroupsManagementMenuBlade/AllGroups) Create a DYNAMIC group called “Hybrid AD Joined Devices” and for the dynamic membership rule – add an expression where “Device Category” equals a value of “Hybrid AD Joined Devices“.
Thats it! To validate, add a hybrid AD joined machine and you will see green check on the status indicating that the rule works.
NOTE: Devices will need to have their Device Category changed to ” Hybrid AD Joined Devices ” manually.
You may try to do a bulk update of device category using Powershell or MS Graph as mentioned in – (https://www.reddit.com/r/Intune/comments/g2bk2z/changing_device_category_with_powershell/)
Hope this helps, do comment. Thanks!