You are evaluating moving your ITMS implementation to a cloud environment with Azure Active Directory.

You would like to know:

How these associations work when devices are Azure Active Directory joined and not joined in on-prem Active Directory.

With the move to Azure AD join on the horizon, you are not importing computer resources from on-prem Active Directory, only user resources (as these are still created in on-prem Active Directory). 

You have noticed that any user who is using an Azure Active Directory joined device is not being imported during the Active Directory import or is possibly being removed after import. Is this by design?

ITMS 8.6, 8.7

ITMS doesn't support Azure Active Directory prior to ITMS 8.7.2 Release. See ITMS 8.7.2 Release Notes

 
Refer to our current documentation, How to use ITMS with Microsoft Entra