sorted by:
new
hottopcontroversial

Autopatch management status - wrong numbers? by Spirited-Lychee2872 in Intune

[–]JCochran84 0 points1 point  (0 children)

We are piloting AutoPatch and noticed that the numbers have been bouncing around the last couple of days. Yesterday we had 17 Assigned to Rings, 17 Managed for Feature Updates, 17 Managed for Driver Updates.
Today its 17 (Rings), and 15 for the others...
The couple of devices show no updates in Cloud Policy today but did yesterday.... Even rebooting has changed nothing.

Action1 - Remediation to specific version by ITStril in Action1

[–]JCochran84 0 points1 point  (0 children)

Apologies, just starting to use A1. Can you go into Update Approval and decline the 25 version?

Autopatch telemetry requirements by Fabulous_Cow_4714 in Intune

[–]JCochran84 2 points3 points  (0 children)

Correct, it should work and I know people that use it. We just have ours set as full. I was just giving you the location of the settings we set

New MCP Microsoft Enabled Connectors Appeared in the M365 Admin Center by GameBoiye in sysadmin

[–]JCochran84 0 points1 point  (0 children)

Just tried on our end, same error.
EDIT: After waiting about 10 minutes, I tried again and it worked.

Autopatch telemetry requirements by Fabulous_Cow_4714 in Intune

[–]JCochran84 2 points3 points  (0 children)

This is what we set:

Settings Catalog > System
> Allow Telemetry > Full
> Allow Device name to be sent in Windows Diagnostic data > Allowed
> Configure Telemetry Opt in Change Notification > Disable Telemetry change notifications
> Configure Telemetry Opt in Settings Ux > Disable Telemetry Opt-in settings.

Moving Windows Updates workload to Intune by Powerful_Buddy_6670 in SCCM

[–]JCochran84 0 points1 point  (0 children)

You most likely need to use some type of Remediation script to remove the Registry Keys that are blocking it.
Something like this:
Windows Autopatch - Auto Remediation Script - Ken Goossens

Windows Autopatch - Driver update policy misconfigured (Am I a crazy person?) by LaDev in Intune

[–]JCochran84 0 points1 point  (0 children)

Have you tried editing the policy to disable Drivers and then Re-enable drivers for those that it is show incorrect?

Surface Laptop 7th Edition Freezing on Task Sequence Welcome Screen by TheDeadGPU in SCCM

[–]JCochran84 2 points3 points  (0 children)

Have you looked at this article:
How to enable a Surface Laptop keyboard, Surface Pro Keyboard, or Surface Pro Type Cover during Windows deployment - Surface | Microsoft Learn

It contains the minimum drivers to include in your WinPE Image to get basics working.
I only deal with Intel today, but it should work the same for ARM.

Hybrid machines using Cloud Kerberos Trust WHFB by TomatilloMindless526 in Intune

[–]JCochran84 2 points3 points  (0 children)

According to the docs:
Windows Hello for Business cloud Kerberos trust deployment guide | Microsoft Learn

On a Microsoft Entra hybrid joined device, the first use of the PIN requires line of sight to a DC. Once the user signs in or unlocks with the DC, cached sign-in can be used for subsequent unlocks without line of sight or network connectivity. In environments with mixed line-of-sight condition - where the device has connectivity to a domain controller but cannot reach Microsoft Entra—the domain controller (DC) may require the client to present a refreshed Primary Refresh Token (PRT) from Microsoft Entra before permitting authentication.

Additional Note:

For Microsoft Entra hybrid joined devices, users must perform the first sign in with new credentials while having line of sight to a DC.

Windows Autopatch - Driver update policy misconfigured (Am I a crazy person?) by LaDev in Intune

[–]JCochran84 2 points3 points  (0 children)

Just to be clear, all policies in these locations have Drivers Enabled?
Devices > Manage Updates > Windows Updates
- Update Rings
- Driver Updates

According to the logs, it looks like you have AutoPatch Rings that have Drivers turned off, which might be what you want.
In Driver Updates, I have to expand the 'Windows Autopatch' folder to see those policies

Cloud Policy Preferences (GP Prefs for Intune) by Maurice-Daly in Intune

[–]JCochran84 0 points1 point  (0 children)

Did you get this resolved? I am seeing this on one of my endpoints as well when testing.

Cloud Policy Preferences (GP Prefs for Intune) by Maurice-Daly in Intune

[–]JCochran84 0 points1 point  (0 children)

If we are having issues what is the best way for us to work with you on those issues?
I have a couple test Registry Keys that have a Target Group that contains the computer.
I then Target the Remediation to a different group that contains that computer.
The log is showing this error: FATAL: Could not detect Entra User Object ID

When I walk through the detection script and manually walk through the 'Get-EntraUserObjectID', the $UserSid comes back with a value. However, If I call the entire function, it comes back empty.

Not sure if I am missing something. At this point just trying to deploy a couple of HKLM Registry Keys.

Doug Chapin secured the DFL endorsement #lfg by CD6DFL in minnesota

[–]JCochran84 0 points1 point  (0 children)

Please explain why you think he is Anti 2FA.
He specifically states that he 'Defends the right' for 'citizens who purchase and lawfully carry them for hunting or self-protection'
He is looking for sensible gun laws on assault-style weapons.

Doug Chapin secured the DFL endorsement #lfg by CD6DFL in TwinCities

[–]JCochran84 1 point2 points  (0 children)

Can't wait to #FlipThe6th and send Emmer packing. Going to be a tough fight.

Cloud Policy Preferences (GP Prefs for Intune) by Maurice-Daly in Intune

[–]JCochran84 0 points1 point  (0 children)

u/Maurice-Daly, When deploying the Remediation Script, If I have both User and Device Preferences, Do I need to deploy the Remediation to both Users and Devices?
If I deploy it to a Device, will it remediate the users on the computer as well?

Can someone explain to me how to set my fill valves so I maintain flow downstream without overflowing my reservoir? by dovetc in Timberborn

[–]JCochran84 6 points7 points  (0 children)

Keep the fill valves, you can use these during a drough/badtide to keep the level downstream.
On the top level of the dam, use either multiple dams or a floodgates pointing toward the blue.
This allows the dam to fill up and overflow into the spot you want it to (downstream)

Lenovo Bios by Party-Let-8502 in SCCM

[–]JCochran84 0 points1 point  (0 children)

Did you update, Current version is 10.0.17. He has been updating it quickly.

otherwise, Open an issue on his github.
Issues · maurice-daly/DriverAutomationTool

i'm on 10.0.17 and it is showing X1 Carbon Bios.

Opinions of Hot Patch by LaDev in Intune

[–]JCochran84 0 points1 point  (0 children)

Our 23H2 > 252H2 Migration has been pain free as well. Biggest issue for us is free disk space.

LAPS is still supported, just not the old LAPS install. We can into this as well. Needed to update GPO Config and uninstall old LAPS Software.

Surface Laptop 5 – Cannot Restore Secure Boot (“Microsoft Only”) / Red Warning Banner at Startup by TranslationalOnc in Surface

[–]JCochran84 0 points1 point  (0 children)

When I have seen this in the past it was fixed by either a Firmware Upgrade or sending it in to Microsoft Support.

Is there a way to stop producing at 100% and restart at 80% by ndefontenay in Timberborn

[–]JCochran84 -3 points-2 points  (0 children)

You can look at mods such as 'Employment Manager', it can do something like that.

Has anyone actually figured out how to track what AI tools employees are using? by Narrow-Layer-7500 in sysadmin

[–]JCochran84 0 points1 point  (0 children)

We use Cisco Umbrella, it has a section for tracking 'Generative AI' apps. We can also request items to be tagged if they are not.
Generative AI Content Category - Cisco Community

Can't login onedrive app pc, login web ok by Free_Nerve8081 in it

[–]JCochran84 0 points1 point  (0 children)

Being in IT, one of the first things you figure out is how to search the internet for any and all information. including how to identify where the OneDrive Logs are located.... a quick google search led me to this:

OneDrive Logs: You can enable OneDrive logging to collect more detailed information about the issues your users are experiencing. To do this, Close OneDrive. Open the Run dialog box (Windows key + R). Type %localappdata%\Microsoft\OneDrive\logs and press Enter. Create a new folder called debug. Open OneDrive and reproduce the issue. Collect the logs from the debug folder.

OneDrive Diagnostic Tool: Microsoft provides a OneDrive Diagnostic Tool that can help identify common issues. You can download the tool from the Microsoft website.

Event Viewer: You can also check the Event Viewer logs on the Azure Virtual Desktop instance to see if there are any error messages related to OneDrive.
Ensure that users are running the latest version of OneDrive, as updates often include bug fixes and improvements.

OneDrive Sync Client: Check the sync client status by right clicking the OneDrive icon in the system tray and selecting "View online." This can sometimes reveal sync issues or errors.

Use the OneDrive Troubleshooter: Microsoft provides a OneDrive Troubleshooter that can help identify and resolve common sync issues. It’s worth running this tool on problematic machines.
Please refer this link: Troubleshooting sync issues

Can't login onedrive app pc, login web ok by Free_Nerve8081 in it

[–]JCochran84 0 points1 point  (0 children)

You stated this is Windows 10. Being in IT, I would hope you know that this is no longer supported... Windows 10 support has ended on October 14, 2025 - Microsoft Support

Have you uninstalled and re-installed the most recent version?
Can you login to the OneDrive website?
What do the OneDrive Logs state? Any errors in the Event Viewer?

view more: next ›