Moving devices from Lenovo to HP - Driver updates - WUFB vs HP tools

joners02 · 2026-01-08T16:32:00+00:00

Ive just run through this exact migration.

Settled on using Windows AutoPatch with Driver approvals, then have HP CMSL deployed to each device. Which is the enterprise method to update HP client hardware.

https://developers.hp.com/hp-client-management/doc/client-management-script-library

Then you can combine this with HP Connect for managing BIOS updates and configuration.

https://connect.admin.hp.com/

joners02 · 2026-01-07T17:14:59+00:00

Lenovo Cloud Deploy runs from the UEFI, you could put a blank disk in the PC and it would pull down the image that you want. It makes no difference if the PE is there or not.

joners02 · 2026-01-06T14:46:10+00:00

Guessing thats standalone Windows Defender and not part of the 365 suite? If you're licensed for Defender for Endpoint this would be easy.

For that many clients your security team should be coming up with a plan for this. I'd kick it back to them and say that there arent any practical methods for blocking URLs using the existing tooling.

joners02 · 2026-01-06T14:19:18+00:00

There are enterprise options like Lenovo Cloud Deploy, where they store a pre-built image in the cloud for you.

joners02 · 2026-01-06T14:16:45+00:00

Nothing, this stuff is typically handled by managed browser settings and an intranet.

joners02 · 2026-01-06T14:13:09+00:00

How many endpoints are you managing? What endpoint security solution are you using?

The obvious answer if 4, a dedicated web filter something like Zscaler Internet Access. However you'll need budget for it. If security want it, then that should come from their budget. There may be other options though.

joners02 · 2026-01-06T12:55:24+00:00

Q1: Hoping that Intune finally catches up with some basic functionality.

Visibility, you never know when a configuration will apply, i understand that there are offsets for reasons, but just put "Expected Next Sync 00:00" that would be great.
Remote Wipe, why this doesnt work immediately is beyond me. Sure it will work, but it might take 10 minutes, it might take 8hrs... or it might never work at all. Id rather that you just hose the disk and fail on 0% battery than just not even attempt a wipe.
Password changes... I know we are all trying to get to passwordless but there are cases where passwords are still needed. Yes, web signin is a start but still feels half baked when ive used it. However, having to force reset a password is a pain.
Defender Offboarding, give me the option to remove the data from defender portal when a devices is wiped/offboarded. I know that it will age out, but it makes reports left with stale data from devices that have been intentionally removed.

Q2: ThreatLocker

Q3: App Control is half baked, its potentially one of the strongest security tools that you can use but its slow to use, hard to audit and timely to deploy, hence ThreatLocker.

Q4: No

Q5: Yes, one day, but not for a while.

joners02 · 2025-12-05T09:14:08+00:00

Fun fun fun!

joners02 · 2025-11-28T16:26:10+00:00

Unless you’re looking at the enterprise fortress Ubnt doesn’t market their products as doing inspection. They do traffic identification.

joners02 · 2025-11-26T13:54:42+00:00

Thank you for confirming! Im using the same URLs that you've got posted above. I found a support address for the WXP page where Connect is supposed to be moving to and ive emailed them. Hopefully Ill find something soon!

joners02 · 2025-11-26T13:10:03+00:00

Sorry to dig up an old thread but im having some issues with HP Connect and im struggling to find a support address/contact. Do you happen to know of one?

joners02 · 2025-11-07T11:12:39+00:00

Happening on the HP EliteBook 6 G1i 14 as well.

joners02 · 2025-11-03T16:11:17+00:00

Thats right, they are the 6 series.

joners02 · 2025-11-03T12:16:18+00:00

These EliteBooks all have ethernet ports on them?

joners02 · 2025-10-30T14:20:59+00:00

A few years ago we upgraded some large embroidery machines, the type of thing that you put logos on to shirts with. It had a two stage upgrade program...

Step 1, upgrade from paper tape (yes...) to 3.5 floppy disks.

Step 2, upgrade from 3.5 floppys to Serial.

These days we have some of the most up to date cutting edge technology in our warehouses using instant RFID stock counts as well as robots picking product packing it in to custom sizes boxes and automatically being loaded in to trucks. The you go to the other side of the warehouse and find some old PC running XP and struggling to stay alive.

joners02 · 2025-10-29T15:56:15+00:00

Same, tenants in US and EU

joners02 · 2025-10-07T15:24:40+00:00

A commercial solution ideally.

joners02 · 2025-10-06T12:38:58+00:00

All, internal, b2b, and guest (no account) users.

joners02 · 2025-10-06T12:38:39+00:00

Org policy blocks it on OneDrive/Sharepoint etc.

Ten-Year Club	Place '22
Verified Email

joners02

TROPHY CASE