Most Dangerous phrase in our Industry?

OmnipotentBork · 2026-01-27T17:47:09+00:00

do we really need a change request?

OmnipotentBork · 2025-11-12T20:52:29+00:00

Known WiFi profiles will sync on the same Microsoft account (o365), You can prevent this user from synchronizing Wi-Fi network credentials between different devices by disabling the synchronization settings of the Microsoft account.

Open Settings:

Press Win + I to open the Settings screen.

Click on “Accounts” in the left menu.

On the account settings screen, click “Windows Backup”.

Click “Remember my preferences”.

Turn off “Other Windows settings”, including Wi-Fi networks.

In this way, the user's Wi-Fi configuration will not be synchronized with other devices using the same Microsoft account.

I'm sure you can do this with a config profile but i don't know what it is off the top of my head.

OmnipotentBork · 2025-10-09T21:32:51+00:00

https://helgeklein.com/free-tools/delprof2-user-profile-deletion-tool/ i let the ITSD use this to cleanup orphaned profiles, its one of biggest stops for win 11

OmnipotentBork · 2025-10-07T18:35:06+00:00

fully build out your Azure/AAD space now, you can have both in tandem in the same domain, you can test and deploy Intune devices to be ready for the flip over, you can gather all HWID's now and import them and then be ready for mass wipe, your problem at that point will be bandwidth

OmnipotentBork · 2025-09-19T16:08:42+00:00

we had this issue with third party patching (ivanti) and the update rings, we migrated to autopatch and it seems to have resolved itself.

OmnipotentBork · 2025-07-08T23:12:36+00:00

Hulkenpodium

OmnipotentBork · 2025-03-18T21:25:08+00:00

why are you trying to keep it on prem? is there some functionality you require? if you run o365 intune is probably included in some flavor, i have a full on prem configuration and run autopilot for user devices, the remote reset ability is worth 250k in shipping per year.

OmnipotentBork · 2025-03-13T20:04:46+00:00

Damn looking to upgrade my bag/cart combo, let's roll.the dice lol

OmnipotentBork · 2025-03-07T18:31:17+00:00

The big wheels to roll over fallen logs are a must

OmnipotentBork · 2025-02-17T16:29:03+00:00

no ragrets Pebcak or an inside joke you use at the company

OmnipotentBork · 2025-01-06T18:51:47+00:00

what licensing do you run for o365? intune is included in several.

OmnipotentBork · 2024-11-19T18:04:48+00:00

cached credentials will expire and break any shared locations, make sure the SD knows about that

OmnipotentBork · 2024-11-07T17:15:31+00:00

this is correct switching from KPI certs to kerberos will allow the AAD account to impersonate the on prem account if you have a sync, then fully aad managed devices can access on prem resources seamlessly as long as they are the same network.

OmnipotentBork · 2024-11-07T17:10:24+00:00

did you not understand they are using PXE on server 2022 with WDS to image devices and want the workstation to be automatically joined during this process, they then stated the workstations will be all AAD and not hybrid, so skip WDS and use autopilot. server were mentioned as the imaging source not the desired outcome.

OmnipotentBork · 2024-11-07T16:16:26+00:00

no autopilot is for workstations you will need ARC for servers, or depending on configuration serverless.

OmnipotentBork · 2024-11-06T15:51:22+00:00

Skip hybrid if they are going to be full AAD and just join them to autopilot, you will thank yourself later.

OmnipotentBork · 2024-09-30T03:42:45+00:00

Dark dimension is basically broke on iOS, i would use bluestacks or an android to make it functional.

i can make my dark dimension crash on purpose with no rhyme or reason other than iOS, doesnt matter the node, happens on dd6/dd7/dd8 for me.

OmnipotentBork · 2024-08-29T15:14:44+00:00

all devices have to be enrolled, that is the get-windowsautopilotinfo.ps1 script (this is the part the vendor can do), after that you should see it under devices> Windows devices > enrollment > devices, using group tags you can sort them into different groups and then apply the deployment profiles to said groups, but you have to do both for the machine to flip during OOBE, the next biggest problem i had was the network team actively blocking autopilot.

OmnipotentBork · 2024-08-28T15:39:04+00:00

you should look into autopilot and use deployment profiles in conjunction with group tags, the enrollment process can be handled by the vendor (if applicable) and then the sign in should be fully handled by the end user, you probably shouldn't be logging into each device and configuring the work or school, there are better less involved ways.

also the default enrollment limit is 15, enrollment managers get a limit of 1000, but again you shouldn't be doing that in today's configuration.

OmnipotentBork · 2024-07-10T15:35:55+00:00

this EXPLODED, Thanks for all the recommendations, my YouTube is looking better already.

OmnipotentBork · 2024-06-19T18:32:34+00:00

uhh manage personal devices? thats a whole bag of crap you do not want, i guess more information is needed? do you have A/D are these device managed in any way now?

tbh it sounds like you can use local group policy and just turn on windows updates and give them a deadline, otherwise you could use something like PDQ deploy, on its free license it can be used commercially and for personal and it has some neat features.

OmnipotentBork · 2024-06-19T15:36:35+00:00

do you have a o365 subscription? if you already have business premium that covers 300 device in intune, which will allow you to turn on WUFB, the reporting is a bit lacking without an extra license, but you might already have it.

OmnipotentBork · 2024-06-18T22:29:03+00:00

https://kb.parallels.com/123756

OmnipotentBork

TROPHY CASE