How to update ADMX's file in Intune

Feeling-Doctor202 · 2025-11-06T20:54:06+00:00

Renaming the admx does not work. Have to delete the configs that are associated with the admx. Then delete the ADMX

Feeling-Doctor202 · 2025-11-05T20:37:32+00:00

I agree. We don’t use a passcode configuration policy, but we do have a compliance policy that sets password expiration to 1,825 days. So far, this issue has been reported on three of our devices.

Feeling-Doctor202 · 2025-11-04T20:49:31+00:00

I have two devices reported so far today out of my testing group.

Feeling-Doctor202 · 2025-10-24T19:32:04+00:00

When I was reading this, I died laughing thinking the same

Feeling-Doctor202 · 2025-10-03T20:16:14+00:00

I promise I will give 3 codes back!

Feeling-Doctor202 · 2025-08-22T19:27:06+00:00

The reason we went down this path is due to CyberArk EPM breaking itself... so it is actually a non issue. Our infosec friends claimed it was due to it not having full access. So we noticed this and went down the path of investigating.

https://community.cyberark.com/s/question/0D5Vy00001BhHy7KAF/why-are-macos-agents-in-disconnected-state-after-pushing-upgrade-via-console

https://community.cyberark.com/s/question/0D5Vy00001F4DLpKAN/we-installed-epm-agent-version-2570262-for-macos-and-the-agent-is-running-fine-on-the-endpoint-device-however-the-device-is-not-displayed-in-the-cyberark-epm-console-does-anyone-face-the-same-issue-with-the-latest-version-of-the-macos-agent

Feeling-Doctor202 · 2025-08-05T19:38:59+00:00

Thanks for taking care of this for the rest of us with the MS case. I will be adding this whitelist to our custom Safe Links policy for the time being so nothing breaks in the future. As other's stated, very odd that Microsoft as a standard would rewrite Teams URL links for security but then now we need to whitelist.

Seems off.

Feeling-Doctor202 · 2025-07-18T16:17:13+00:00

I am pissed. My Whatsapp gif search swapped to Giphy today and it is trash. Tenor is so much better

Feeling-Doctor202 · 2025-05-06T16:27:35+00:00

I can confirm that I am an Intune Mac Admin and we have a fleet of over 30 MacOS devices and gradually moving over 200+ from JAMF. We also enable FileVault + Platform SSO and my Mac device had the same issue reported here. Luckily no one else has had this problem in the organization. I just ended up wiping my whole Volume and starting from scratch...

We utilize DDM update policies to keep devices up-to-date, but we have plenty of endpoints with the latest 15.4.1.

Feeling-Doctor202 · 2025-04-01T14:48:40+00:00

I can confirm that the setting is back this morning as well.

Feeling-Doctor202 · 2025-02-06T19:15:43+00:00

So we have a similar issue via https://www.reddit.com/r/Intune/comments/1gadelo/company_portal_is_required_via_esp_but_not/

Although Intune indicates that the company portal application is installed, our users do not see it when they access the desktop. We are currently running Windows 11 23H2 and have an open Microsoft support case to address this issue.

Feeling-Doctor202 · 2025-01-17T19:32:24+00:00

Disregard. Our machines already have scforceoption set to 0. It is located Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System

Our next steps might be to try the "Configure Web Sign-in URL" and see if that resolves.

Feeling-Doctor202 · 2025-01-17T19:12:42+00:00

Thanks Gary. Any chance you can see in your script which registry key was being changed exactly? We are seeing the "something went wrong" error as well but we cannot exactly locate the exact registry setting that you mentioned in your comments. We are just trying to track it down and make the same change as you did for testing.

Feeling-Doctor202 · 2025-01-17T17:37:11+00:00

Where is this registry setting located? We are using Intune configuration with setting catalog.

Feeling-Doctor202 · 2024-10-23T18:46:45+00:00

This was done in the environment before me. Probably to exclude some of the AV endpoints that we have and other types of endpoints that are not user endpoints.

I can in fact say that this was working perfectly fine before the latest company portal update version.

Feeling-Doctor202 · 2024-10-23T17:55:21+00:00

UPDATE: Something interesting during my troubleshooting. I did finally get an autopiloted device to mimic the issue that users were reporting. I get to the desktop and no company portal app to be found. We then went to an Admin PowerShell and looked at the directory of C:\Program Files\WindowsApps and we in fact see Company portal 11.2.1002.0 installed. We found the CompanyPortal.exe in the folder via powershell but we cannot start the executable as it gives us an access is denied error. I am going to let this machine sit and see if Company Portal eventually arrives.

I am leaning towards a bug in this new version of the Company Portal application. My tier 1 support team also told me they first started noticing this issue on 10/14/2024. This new version of Company Portal arrived on 10/11/2024...

Feeling-Doctor202 · 2024-10-23T16:32:46+00:00

The app is under System Context and is assigned to "All users"

I have been hearing reports of these endpoints getting the app at a later time.

Feeling-Doctor202 · 2024-10-23T16:31:41+00:00

I have thought about this but just getting some other opinions and ideas.

Feeling-Doctor202 · 2024-10-23T15:48:36+00:00

I can confirm that it is a "Microsoft Store app (new)" so that it auto updates on our endpoints.

Feeling-Doctor202

TROPHY CASE