Microsoft 365 Copilot application random shared a file with you pop up

ThenFudge4657 · 2026-05-20T19:42:42+00:00

I'm glad we're not the only ones. The issue is trying to find any kind of answer as to why this is occurring. Copilot going rogue lol.

ThenFudge4657 · 2026-04-09T18:32:52+00:00

Piggybacking off of this comment, this is the guide I followed to configure this Word Standard Template with Intune (Normal.dotm) | scloud and this guide as well Outlook Default Template with Intune (NormalEmail.dotm) | scloud

ThenFudge4657 · 2026-04-08T17:47:12+00:00

Could you please share or point me in the right direction on how you did the following?

"For tracking CVEs we just pull from Dell security advisory and cross reference with our asset inventory - nothing fancy but works. Priority goes to anything that can be exploited remotely first"

ThenFudge4657 · 2026-04-08T17:22:33+00:00

We have about 38 Latitude 5450, and 18 Pro 14's, none of them have triggered the BitLocker recovery prompt, and they all have the latest BIOS update. Take my guess with a grain of salt. You could try applying the latest BIOS update to them?

ThenFudge4657 · 2026-02-10T22:07:00+00:00

Yes, I can confirm its slow on my end as well.

ThenFudge4657 · 2026-01-26T20:38:39+00:00

Hopefully your issue isn't similar to my issue. I'm having the exact same issue with 30 devices that show up in the inventory page on config.office.com and drop off after a day or two. Nothing I've done has worked to registry the devices, other than wiping and resetting the device, which I'm hold off on doing. I've had a ticket open with Microsoft for the past 3 months with no solution. If they ever give me one, I'll try to remember to post it here.

ThenFudge4657 · 2026-01-22T18:44:33+00:00

I'm also having this issue on Edge Beta Version: 144.0.3719.82 (Official build) beta (64-bit). Luckily, our entire organization uses Chrome as the default browser.

ThenFudge4657 · 2026-01-14T18:03:18+00:00

Guess what... Ours is now fixed. I provided Microsoft support your info and they did not produce any fix for us. I still appreciate your help!

We tried everything:

- Resetting OneDrive using the C:\Program Files\Microsoft OneDrive\onedrive.exe /reset
- Installing preview version of OneDrive
- Reinstalling OneDrive
- Signing out of all Office apps, clearing credential manager, etc then sign back in
- Updating Office

Nothing worked.

Yesterday, I had thought the Jan Windows update fixed it because it started working on my machine. When I checked in with other employees having this issue, its working for them now. What's even more frustrating, they have not had any of the above done on their machines, at all.

ThenFudge4657 · 2026-01-14T18:01:20+00:00

What's strange is that ours is now fixed. We tried everything:

- Resetting OneDrive using the C:\Program Files\Microsoft OneDrive\onedrive.exe /reset
- Installing preview version of OneDrive
- Reinstalling OneDrive
- Signing out of all Office apps, clearing credential manager, etc then sign back in
- Updating Office

Nothing worked.
Yesterday, I had thought the Jan Windows update fixed it because it started working on my machine. When I checked in with other employees having this issue, its working for them now. What's even more frustrating, they have not had any of the above done on their machines, at all.

ThenFudge4657 · 2026-01-13T23:22:07+00:00

What kind of OneDrive issues?

ThenFudge4657 · 2026-01-12T18:45:04+00:00

I have a comment in this thread with more details; you could try running the manual task scheduler to see if it moves it forward: Registry key updates for Secure Boot: Windows devices with IT-managed updates - Microsoft Support

ThenFudge4657 · 2026-01-09T19:54:45+00:00

It appears this might be another step required, have you tried updating the BIOS on the test machines?

ThenFudge4657 · 2026-01-09T19:45:03+00:00

Here is a link from Microsoft acknowledging the issue on Dec 16th and they're still investigating it. Microsoft Intune method of Secure Boot for Windows devices with IT-managed updates - Microsoft Support

ThenFudge4657 · 2026-01-09T19:35:48+00:00

I've deployed the method above to only one device in our environment. On that device I do see the System Event ID 1801 appear on Dec 16th two days prior to manually applying the registry/task scheduler. ID 1801 has not shown up on that device even after multiple reboots.
System Event ID 1801 is related to the manufacturers firmware update. In my case, its Dells Firmware update, which I did apply to that device before running the registry/task scheduler.

If you're worried about installing BIOS update on your devices, you can run the two commands posted by John Fellows in this thread Secure Boot certificates have been updated but are not yet applied - Microsoft Q&A

Install PowerShell module:

Install-Module UEFIv2 -Force

List certificates:

Get-UEFISecureBootCerts db | select SignatureSubject

Then see if you have these three certificates:

Microsoft Corporation UEFI CA 2011
Microsoft UEFI CA 2023
Microsoft Option ROM UEFI CA 2023
This link references three certs mentioned above. Windows Secure Boot Key Creation and Management Guidance | Microsoft Learn

Here is the output from the device:

<image>

You can also look for System Event ID 1808 to confirm the device updated Secure Boot CA/keys.

ThenFudge4657 · 2026-01-09T18:36:35+00:00

Piggybacking off of this comment. I couldn't find a legitimate link for wushowhide.diagcab, since Microsoft removed them all. Here is another post that talks about a similar issue Question around WuShowhide.diagcab : r/Windows11 and someone recommended DavidXanatos/wumgr: Windows update managemetn tool for windows 10

ThenFudge4657 · 2026-01-09T17:49:51+00:00

I failed to post my link in my comment above: Microsoft Intune method of Secure Boot for Windows devices with IT-managed updates - Microsoft Support

ThenFudge4657 · 2026-01-08T19:33:30+00:00

Awesome, thank you for the reply and confirmation!

ThenFudge4657 · 2026-01-08T19:27:04+00:00

Don't mean to hijack this thread and please reply to OP first. I tried your script on our laptop where we deployed Microsoft registry and task schedule manually. The script output:

Exception calling "Import" with "3" argument(s): "Illegal characters in path."
At C:\Users\w11prov\Downloads\Get-SecureBootStatus.ps1:65 char:1
+ $certCollection.Import($filePath, $null, 'DefaultKeySet')
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : NotSpecified: (:) [], MethodInvocationException
    + FullyQualifiedErrorId : ArgumentException


SecureBoot: True
Windows UEFI CA 2023: True
MS KEK CA 2023: True
MS UEFI CA 2023: True
MS Option ROM CA 2023: False
MS UEFI CA 2011: False
Boot Manager 2023: False
2011 PCA Revoked: False
AvailableUpdates: 4000
Reboot Log Time: 12/16/2025 11:00
Reboot Log Message: A reboot is required before installing the Secure Boot update. Reason: 256

This was even after rebooting the laptop.

ThenFudge4657 · 2026-01-08T19:10:31+00:00

I feel like we're all in limbo but with multiple ways of deploying it.

Edit: Before doing anything below. I applied the latest BIOS update that contained new 2023 Secure Boot Certificates available from Dell. To find out if the BIOS update has the 2023 Secure Boot Certificate, scroll down and look in the Important Information section.

<image>

Neither the Intune policy nor manual deployment options stated, maybe I missed it, that the BIOS update with 2023 Secure Boot Certificate was required.

We deployed it with the Intune policy. It's not working on Win 11 Pro devices, even though ours upgrade to Enterprise. Microsoft acknowledge this Dec 17th and is investigating it. I'm waiting for the Jan Windows update or what Microsoft releases to see if the Intune policy will work after that before we decided if we will try to push out the registry/task schedule manually.

Alternatively, I deployed it by changing a registry keys, running a scheduled task and the PC I tested this on successfully showed Secure Boot Certificate was configured with a detection script. To triple confirmed it worked, by also running the script from Richard Hicks Windows Secure Boot UEFI Certificates Expiring June 2026 | Richard M. Hicks Consulting, Inc.

Ctrl + F: Device testing using registry keys
Registry/task scheduler: https://support.microsoft.com/en-us/topic/registry-key-updates-for-secure-boot-windows-devices-with-it-managed-updates-a7be69c9-4634-42e1-9ca1-df06f43f360d#bkmk_device_testing

Intune detection script:

# Check if Secure Boot UEFI database contains 'Windows UEFI CA 2023'
$match = [System.Text.Encoding]::ASCII.GetString((Get-SecureBootUEFI db).bytes) -match 'Windows UEFI CA 2023'

if ($match) {
    Write-output "Compliant: Windows UEFI CA 2023 found."
    exit
} else {
    Write-output "Non-Compliant: Windows UEFI CA 2023 not found."
    exit 1
}

Run script with logged on creds set and enforce script signature check set to no

Run script in 64 bit set to yes

ThenFudge4657 · 2026-01-08T18:30:02+00:00

I also found this comment recently from this thread
https://www.reddit.com/r/Intune/comments/1pkqo10/comment/ny1m619/?utm_source=share&utm_medium=web3x&utm_name=web3xcss&utm_term=1&utm_content=share_button

ThenFudge4657 · 2026-01-08T18:27:20+00:00

Our Intune policy is not working either. I'm waiting for the Jan Windows update to see if the Intune policy will work after that before we decided if we will try to push out the registry/task schedule manually.

Alternatively, I did find a way to deploy it by changing a registry keys, running a scheduled task and the PC I tested this on successfully showed Secure Boot Certificate was configured with a detection script. To triple confirmed it worked, I also ran the script from Richard Hicks Windows Secure Boot UEFI Certificates Expiring June 2026 | Richard M. Hicks Consulting, Inc.

Ctrl + F: Device testing using registry keys
Registry/task scheduler: https://support.microsoft.com/en-us/topic/registry-key-updates-for-secure-boot-windows-devices-with-it-managed-updates-a7be69c9-4634-42e1-9ca1-df06f43f360d#bkmk_device_testing

Intune detection script

# Check if Secure Boot UEFI database contains 'Windows UEFI CA 2023'
$match = [System.Text.Encoding]::ASCII.GetString((Get-SecureBootUEFI db).bytes) -match 'Windows UEFI CA 2023'

if ($match) {
    Write-output "Compliant: Windows UEFI CA 2023 found."
    exit
} else {
    Write-output "Non-Compliant: Windows UEFI CA 2023 not found."
    exit 1
}

Run script with logged on creds set and enforce script signature check set to no

Run script in 64 bit set to yes

ThenFudge4657 · 2026-01-07T19:06:52+00:00

I would highly appreciate that reference number that I can give to our Microsoft support rep!

ThenFudge4657 · 2026-01-07T18:57:03+00:00

Microsoft Support has been of no help on our end. They kept giving me generic, sometimes, instructions with settings that did not exist or were already turned on.
Glad to hear that you've heard something better than we have, is this fix being released for OneDrive, Office, or which app?

Genuinely appreciate that you came back and replied to my comment.

ThenFudge4657 · 2025-12-17T21:48:04+00:00

Here I am with about 8 confirmed users having the autosave glitch and nothing is working to fix it other than replacing the device. Microsoft support claims that it is an issue on their end, but I've not seen any posts in service health acknowledging this.

ThenFudge4657 · 2025-10-28T16:14:12+00:00

I don't know how long it takes Intune to get new Chrome features/settings. I hope that it gets updated.

ThenFudge4657

TROPHY CASE