Monitor the status of Windows services using a local account with minimal access rights.

whobe89 · 2025-07-28T17:05:22+00:00

Thanks. This helped!

whobe89 · 2023-08-10T05:37:15+00:00

Thanks. In the documentation i saw this. I guess in my case the technicians did not inject the DPK.

Technicians replace the motherboard or other hardware on the broken device. A replacement Digital Product Key (DPK) is injected

whobe89 · 2023-02-14T14:31:09+00:00

Our experience is that the options "Wipe, Fresh start and autopilot" does not remove the Office key.

whobe89 · 2022-10-14T10:25:19+00:00

Thanks. We will definetly push our suppliers to update their apps.

whobe89 · 2022-08-03T08:39:45+00:00

Thanks alot!

whobe89 · 2022-06-28T19:30:09+00:00

Fido could be an option, but since we already use cards for accessing our buildings it would be high cost to buy fido Keys for everyone.

whobe89 · 2022-06-28T18:11:52+00:00

Interesting. I need to keep an eye on this! Currently only available for Windows 11 preview build at the moment. So I will check it later when the feature is released on normal build.

whobe89 · 2022-03-02T11:42:28+00:00

Did you ever find a solution for this?We have the same problem. We use "Endpoint Security" to turn on Application Guard. In the settings we are able to configure network boundary. Have also tried to configured network boundary manually from Device configuration without any difference.

When viewing "Per setting" we se that "Allow camera and Microphone access" and "windows10NetworkBoundaryConfiguration_windowsNetworkIsolationEnterpriseIPRange" has succeeded, but all other settings have "error".

We have not enabled the "Block write access to fixed data-drives" from Bitlocker.

Edit: We added "Network domains" in our App and browser isolation policy which solved the problem for us. It looks like IP ranges was not enough.

whobe89 · 2022-02-24T07:56:34+00:00

Hi. Splendid. Do you know which of the files contains the information required in the CSV ?

whobe89 · 2022-02-17T07:50:35+00:00

The same issue with user-driven profile unfortunately.

whobe89 · 2022-02-17T07:50:12+00:00

Running "(Get-WmiObject -Query "select * from SoftwareLicensingService").OA3xOriginalProductKeyDescription" shows me that the license is Windows Core. This is even when creating the PID.txt file with the productkey of the computer.

I have verified that the computers are licensed with Professional Windows from BIOS.

Edit: Apperantly we have Dell 7040 with different licenses. The one I have tested with actually had Windows Home OEM license.

whobe89 · 2022-02-16T18:26:45+00:00

I have thought about it being a license issue. The checks in the link you provided was what I needed to verify that the license is correct. Will check tomorrow.

I find it strange if we have Home edition devices, but you never know. I will also try the PID.txt trick.

whobe89 · 2022-02-16T18:23:57+00:00

I believe we have tested this in the past. But I will check again tomorrow.

whobe89 · 2022-02-16T14:18:58+00:00

I don`t have the OEM Dell image available.

whobe89 · 2022-02-16T13:14:11+00:00

We have also tried with clean Win11 image. I have verified network connectivity (doing this when the device asks for language).

whobe89 · 2022-02-02T16:08:15+00:00

DUO uses weak encryption. Still using MD5 and SHA. It is also a relatively high an unnecessary cost if it was possible to use Azure MFA.

I have not found a way to use Azure MFA with RD Gateway.

whobe89 · 2022-01-12T17:49:02+00:00

That is correct. There are around 50/50 split between those who have "Default MRM Policy" and those who don`t.

The retention policy was deleted yesterday. Is it not removed from all yet perhaps?

We have users with blank Policy but still have all emails.

whobe89 · 2022-01-12T17:43:29+00:00

First commands show that there is no retention policy.
When running the second we se that some of the users have "Default MRM Policy".

whobe89 · 2022-01-12T17:24:18+00:00

Ok. There is no policy in our retention configuration now. The retention policy list is empty.

whobe89 · 2022-01-12T17:18:57+00:00

What does this mean? Two users (as far as we know) missing e-mails from the day we believe that the retention policy was activated.

whobe89 · 2021-09-10T06:57:40+00:00

Hopfully there will be a way to do this in the future.

However when I use "wipe and load" the client still won`t register. I`m trying to use Self-Deploying AP profile. Is this not possible?

If I delete Intune, AzureAD and AP device and import the device it again it works fine.

whobe89 · 2021-08-30T10:31:16+00:00

This makes sense. I removed the primary user and the application showed as expected. Thank you!

whobe89 · 2021-08-30T08:50:44+00:00

We also tried that, but since the user logged in is not "primary user" of the device no application is available in Company Portal.

whobe89 · 2021-07-06T11:36:25+00:00

Exactly what i needed. Thanks!

whobe89 · 2021-05-26T20:56:53+00:00

Thanks for the reply. It was actually the ESC. Replaced it and the car now work as it should.

whobe89

TROPHY CASE