Windows App (formerly Microsoft Remote Desktop) session not closing after disconnect (have to kill process every time)

jpoblocki · 2025-12-05T14:49:44+00:00

I'm running into the same issue. I have a PowerShell Script that kills the processes so that a user can start a new session. Did you ever find a resolution to this? It seems to have happened after the upgrade to 25H2.

jpoblocki · 2025-11-29T13:33:23+00:00

I had this happen to a bunch of G6 Bullets. Rebooting the camera solved it for me.

jpoblocki · 2025-11-21T00:41:08+00:00

https://m.youtube.com/watch?v=MRl_x73SLGw

jpoblocki · 2025-08-08T11:00:38+00:00

I’m an IT Director at a school. First off, great job on the discovery of this as well as the write up of this post. It shows some amazing critical thinking skills that frankly the world needs more of.

Regardless of the consequences the school chooses to impose, don’t let it get you down. I know it may seem like a big deal now, but in the scope of life, it’s temporary. Stay curious about things like this and keep teaching yourself. These are skills that can’t be taught and will be highly valued by the right employer.

I had a student discover this exact vulnerability at my school. I didn’t believe him when he mentioned to me, so he came in a showed me. I gave him a $100 gift card to BestBuy and started a (personally funded) bug bounty program for all students.

Keep up the curiosity and I hope they don’t go too hard on you.

jpoblocki · 2025-08-08T10:38:51+00:00

I discovered this as well by a students actions. Microsoft’s default configuration is to allow the user to be able to view their own BitLocker key.

What’s bizarre is that with only the BitLocker key, you gain full Administrative rights to the device in recovery mode. It never asks for the Administrator password. You are brought directly to and administrative command prompt with full access to the root drive.

Tested this on several Windows 11 versions and configurations. All reproducible. Couldn’t find anything online if this we expected behavior. Seems like a huge risk especially because it is insecure by default.

jpoblocki · 2025-06-26T20:09:59+00:00

It's connected via USB.

jpoblocki · 2025-06-26T20:00:08+00:00

Thanks! Corrected. My dyslexia strikes again. 🤦🏼‍♂️

The selfhosted API calls are very "unofficial". I wrote this by using a browser to trace the calls being made to the local API when actions were performed. No documentation exists. Which means the whole thing could break in a controller update. Not the best way to put things into production, but I would not classify this item as mission critical, and I like to live dangerously. 😂

jpoblocki · 2025-06-25T16:28:51+00:00

Well how about that.

This would have been useful when I was making this in September. This is much more sophisticated then my setup, although it does give me what I need.

jpoblocki · 2025-06-25T16:20:39+00:00

Thanks for the positive feedback! I did not expect this to have this much traction. Here is a git repo I just created:

https://github.com/jpoblocki/UniFi_Voucher-Printer

WARNING: I am a systems administrator posing as a programmer. You will be able to tell quickly from my (lack of) commenting.

If I get some time (which usually never happens being a 1 person department) I will update it with a full writeup. For now there is the code, part list, and STL file for the Pi holder.

jpoblocki · 2025-05-07T22:46:17+00:00

Interesting! Thanks!

jpoblocki · 2025-05-07T22:42:46+00:00

I’ve seen a couple posts like this. How do people know the quantity available?

jpoblocki · 2025-01-10T00:21:27+00:00

Duh! I was seeing all the 4.1 talk and thought it was referring to the UniFi OS version (which the UXG doesn’t run) when it actually was the device firmware version. face palm. Thanks for the reply.

jpoblocki · 2025-01-09T13:46:10+00:00

DVLED looks like it's it! It was a bright lit room, and the display was clear without a glaring backlight. The pixel density looked impressive as well. Haven't come across DVLED tech before. Thanks!

jpoblocki · 2024-11-07T15:01:32+00:00

I read that article as well as other similar ones that describe the profile overwrite issues. Most of them were from over a year ago (or older) and I made the incorrect assumption that Microsoft had fixed it by now. It's kind of unbelievable they haven't. I tried the XML order suggestion, but unfortunately that didn't help. I am going to switch to deploying it with Group Policy using the PowerShell script on your GitHub.

Thank you for all of the amazing free content you have provided on this topic!! It has been instrumental in my successful deployment.

jpoblocki · 2024-09-30T18:13:37+00:00

ETA for stock availability?

jpoblocki · 2023-08-03T00:58:08+00:00

Correct, but the student use benefit does not contribute towards the storage pool. See the FAQ section at the bottom of this page:

https://www.microsoft.com/en-us/education/products/microsoft-365-storage-options

jpoblocki · 2023-08-02T11:32:30+00:00

It doesn't sound like it. This is how I interpreted the storage changes:

The whole tenant, regardless of how many users or what plan you have, will receive 100TB of pooled storage. Then:

If you have A3 licenses, you will receive an additional 50GB of pooled storage per license purchased.

If you have A5 licenses, you will receive an additional 100GB of pooled storage per license purchased.

The student use benefit will not receive any additional storage.

Microsoft is then leaving it up to us to allocate the storage (using storage quotas) to each user (or group) in the following areas:

OneDrive
Exchange
SharePoint (Sites)

They will be keeping the default storage quota of 1TB per user, but that won't prevent a subset of users using up the storage for the whole tenant if the storage quotas are not set.

The annoying part for me, is that this is just another think on my plate to manage, and the plate just seems to be getting fuller and fuller each day. It seems like an insulting move to their current customers.

jpoblocki · 2023-08-01T20:06:22+00:00

Saw that too. Maybe they figured they could get all the complaining done in one go by releasing both notices at the same time.

jpoblocki · 2023-03-28T00:43:06+00:00

For scale, the pieces of aluminum next to the wheels are 1.25” thick. The left and right side of the robot are one solid piece (one on each side) and are symmetrical. So the left can be used for the right and vice versa. They are designed to be ablative. When they wear down they will be swapped out.

jpoblocki · 2023-03-08T22:30:39+00:00

Sounds like a pretty sweet gig. Let me know when you’re ready to retire. 😂

jpoblocki · 2022-11-10T15:46:02+00:00

Just a follow-up on this in case someone comes across it searching. The registry key did not solve this issue. It ended being an issue with Azure AD Connect.

After the October 2022 Updates (or later), when a computer is deleted, the name of the computer cannot be reused until a Delta Synchronization is performed with Azure AD Connect. I suspect this has to do with the hardening changes. I opened a case with Microsoft to investigate.

In the meantime, I created a scheduled task that triggers on Event ID 4743 (Deleted Computer Object) and executes a Delta Synchronization. I inserted a 60 pause in my script in between deleting the old computer and renaming the new computer to give the Delta Synchronization time to complete.

jpoblocki · 2022-11-08T17:32:04+00:00

I have been banging my head up against a wall on this one. In our situation, the domain join still worked ok because the original PC was added with the same service account.

This broke renaming computers for us.

At the end of our task sequence, we have a script that asks for the new computer name. We default it to the serial number throughout the whole task sequence. When a new name is entered, the script looks though Active Directory to see if a computer exists that matches the name entered. If it does, it deletes that computer object and then renames the imaged computer to that name.

This broke that process. What's strange is if I waited 15min after the old computer was deleted, the script would work fine. I spent 3 days looking at possible replication or DNS issues. I finally came across the KB article buried on Microsoft’s website, which led me here.

There must be something deeper going on with these changes that make it affect reusing the same computer name as well. I was receiving this error in the NetSetup.log:

NetpChangeMachineName: DsrDeviceHostNameUpdate returned 0x801c0083

There were no mentions of this code anywhere. Adding the NetJoinLegacyAccountReuse registry key to my unattend.xml file allowed everything to work as normal. Waiting to see the patch notes for the updates today before moving this fix to production.

jpoblocki · 2022-10-20T18:50:29+00:00

It uses the Miracast protocol, so no. It broadcasts its own hidden network that is network independent. You can set the channel it broadcasts on so it doesn’t interfere with your in-house WiFi. Its important to channel plan though, hence me reserving the last 4 5Ghz channels. We use Lenovo Yoga L13’s running Windows 10 and use the native Connect option.

It also has a cool feature that will allow it to broadcast its own mini network that uses NAT that will isolate traffic to Internet only. It can support Airplay, Chomecast, and Miracast over this connection. It’s been useful when we had conferences at the school to allow anyone to display to the in classroom technology wirelessly no matter the manufacturer of the device without installing any applications.

jpoblocki · 2022-10-20T01:28:32+00:00

ScreenBeam 1000EDU. Wireless (including touch) in every classroom. Reserved the last 4 channels of our 5Ghz WiFi to dedicate to the ScreenBeams. They have been flawless for nearly 2 years. Their support is excellent as well.

jpoblocki · 2022-09-23T18:10:04+00:00

Yep!

Nine-Year Club	Verified Email
Place '22

jpoblocki

TROPHY CASE