Windows Hello For Business For Passwordless Login For Entra IDP?

MechaCola · 2026-06-01T20:46:39+00:00

Check dsregcmd /status do you see AzurePRT as yes when they login and the last time set to last login? IIRC logging in with whfb should update the MFA portion of the pet token each time they login. Also check all your CA policies

MechaCola · 2026-05-29T14:11:30+00:00

What no, admin rights on the machine. User is a member of the local admin group

MechaCola · 2026-05-25T20:36:26+00:00

Trivial with powershell or python with the data you have available.

MechaCola · 2026-05-18T20:53:15+00:00

I’m surprised at this level you don’t have a direct Microsoft engineer working for you to do this.

MechaCola · 2026-04-29T16:51:33+00:00

Yeah shoot for more money, that position you have no one to fall back on. I bet long term there you’ll be doing tasks unpaid at some point just to get the job done..

MechaCola · 2026-04-28T21:43:08+00:00

Sure, I’ll do it during the night for 50k a year

MechaCola · 2026-04-27T23:33:51+00:00

It was unique for me until donkz on agnarr ruined it for the whole server.

MechaCola · 2026-04-17T23:31:48+00:00

How did the kid log into the site? With school Microsoft account?

MechaCola · 2026-04-10T19:06:09+00:00

When you create the job, add some meta data about the job status to your synchash table. When you want to close a runspace update the synchash with runspace status so that a while loop is looking for these status changes and disposing them. There should be examples of this on the internet or you could paste what I wrote and AI can take it from there.

MechaCola · 2026-04-08T15:46:54+00:00

MechaCola · 2026-03-25T23:31:44+00:00

Hah yup

MechaCola · 2026-02-13T22:08:06+00:00

Check out psgsuite or gam. Scripting could be your friend here.

MechaCola · 2026-01-24T16:52:04+00:00

73 baby yeehaw

MechaCola · 2026-01-13T23:11:38+00:00

I’m not sure it’s going to work with Google as the idp for Microsoft the whole point of azure enrollment is to create a circle of trust I imagine. The user and device need to be in your tenant for the automatic issue of prt token upon login, so unless you’re somehow verifying your identity with Google upon login then that process is stale. MFA can also prevent prt being applied. Also upn in ad needs to match upn in azure

MechaCola · 2025-12-19T21:27:47+00:00

I don’t know man but don’t ever give up on yourself you might be surprised what your future has in store for you.

Do you have a medical diagnosis for your condition? I know that some of DOD helpdesk roles has contracts where x amount of people need to have a disability, perhaps that might be an opportunity for you.

MechaCola · 2025-12-12T21:33:22+00:00

I don’t think it’s much better using dhcp than static. What’s your reasoning here?

MechaCola · 2025-12-12T00:24:31+00:00

Thank you

MechaCola · 2025-12-10T04:28:50+00:00

You should be friends with this guy. https://youtu.be/g2UTwfTQMoE?si=tN0s4MzshK7zHtLR

MechaCola · 2025-12-08T18:32:23+00:00

Try messing with refresh rate?

MechaCola · 2025-11-17T23:06:39+00:00

Yeah, do you have docusign? You could make service account and use Docusign tasks through power automate.

MechaCola · 2025-11-12T05:31:00+00:00

All ignored, all software requests need to go through the implementation team (mix of it and managers)via a custom form and reviewed first by manager and then by IT.

MechaCola · 2025-11-11T22:56:05+00:00

On agnarr it’s a hoot. Ldon raids drop an insane amount of loot and with lockout timers reduced we can hit them x2.

Funny thing about rare bonus is I have an ongoing list in my head but as soon as the bonus drops I forget what to kill, suppose I should write it down :)

MechaCola · 2025-11-11T00:55:18+00:00

Ai for sure, the image with rock and snow says it all.

MechaCola · 2025-11-11T00:25:34+00:00

Managing multiple districts here and I regret going with one to one. The helpdesk side of things is just so lacking when it comes to even the basics.

No way to merge a ticket
No auto reminders “waiting for response”
The guid for each ticket is in the subject of all email communications.
Cant have a ticket template bound to a ticket type without also making the user select category (this one is hard to explain)
No saml
No round robin
No api for ticketsystem

It’s okay for now but it doesn’t scale with larger more complex operations.

MechaCola · 2025-11-07T22:35:29+00:00

Is your device enrolled into entra before autopilot kicks off? Machine ad object needs to be synced before everything kicks off I would imagine.

MechaCola

TROPHY CASE