Create a way to block automatically Azure join only some of domain join computers (servers).
Create a way to block automatically Azure join only of some domain join computers (servers). Even if you set the GPO "Software\Policies\Microsoft\Windows\WorkplaceJoin\”autoWorkplaceJoin” to disable computers with Windows 10 or Windows Server 2016 are still joined automatically at user login.
We understand the need to do a controlled validation, but can you elaborate on the need to block it only for some computers indefinitely?
Once you've validated hybrid Azure AD join, there's no problem in enabling hybrid Azure AD join across computers. In fact, it helps with using that state as a Conditional Access policy.