Azure VMSS Creation
We presently have a classic Azure service CMG set up for our SCCM infrastructure. We are looking to migrate to a VM scale set as the classic service will no longer be supported by Microsoft . The inbuilt CMG creation wizard within SCCM does not allow…
Edge 124 - Cannot access to website due to ERR_SSL_PROTOCOL_ERROR or ERR_CONNECTION_CLOSED
Hi Team, Since the release of Edge 124, our users have been unable to access the website due to ERR_CONNECTION_CLOSED or ERR_SSL_PROTOCOL_ERROR. After searching, we knew it could be figured out by disabling the TLS 1.3 hybridized Kyber support setting…
Allow opening links, but prohibit copying data to the browser.
Hello, using application policy, you can allow data to be transferred within a work profile or for MAM devices only between secure applications. However, you only need to allow opening links in a secure application such as Edge (if it web link) or Zoom…
register FIDO2 security key as sign in method without the need to install Microsoft Authenticator app
Hello, Here's briefly about policies across the tenant: Enabled FIDO2 security key as sign - in method for the user under. FIDO2 is the only enabled sign-in method for this user. Disabled Windows Hello for Business using Intune configuration…
Mobile device behavior after Intune license expires
Dear team, We have Android and iOS mobile devices enrolled to Intune MDM tenant, using the Corporate Android Fully Managed profile and the iOS user enrollment profile. I would like to know, what would be the behavior of the enrolled mobile devices, if…
Intune Devices showing as 'not active' in compliance settings regardless of clicking 'sync'
We have a hybrid set up, with Intune MDM. I just pulled a report for all non-compliant devices and wanted to make sure that they were set to compliant. We have a user with a non-hybrid device, but intune enrolled. Intune is saying it is 'inactive' even…
installation program
Hi All i want to deploy an application through configuration manager on Windows Servers, i have the msi file. When i test manually i get the prompt for serveraddress and cust id. During Application deployment which of the below switch is…
Change default wallpaper
Hi family, I'm asked to replace the default wallpaper with our customized company picture to our Win 10 and 11 computers. How can I do it through Microsoft Endpoint Management? Appreciate your help!
devices not onboarded to Microsoft Defender for Endpoint
Hi, Trying to make sense from what is presented in Defender 365. It is reporting over 200 devices not onboarded to Microsoft Defender for Endpoint. Now here’s the confusing part. If I search for the device in https://endpoint.microsoft.com/ it…
I can't configure a personal profile and a Work profile on COPE
Hello, everyone I have a question regarding the registration of corporate-owned devices with work profiles. I created a record, took a factory reset phone, and read the token. The device goes through the entire setup process, but it doesn't create two…
When will SCCM / Configuration Manager v2403 be release? It's already April 19th!
When will SCCM / Configuration Manager v2403 be release? It's already April 19th!
sccm pxe booting not working directly from NICs but works from an anker dock
Hi! One of my clints is unable to pxe boot directly from computers, however, can pxe boot those same computers when attached to an anker dock. SMSpxe.log presents the boot image and TS deployment, finds the MP, however, on the computer to be imaged…
Intune baseline policies -Screen capture is block
We have started the deployment of Microsoft 365 in our organization as well as the registration of computers in Intune. We have currently deployed the "Security baseline" for Windows 10, Microsoft Defender, Microsoft 365. We have noticed that…
Edge 124 will not open external sites and will not complete SSO login due to Soverign Cloud error
Since the release of Edge 124 stable channel on 4/19/2024, any external website resolves but will not open, getting error ERR_TIMED_OUT. Another browser (Firefox) works to access external sites with no issues. Also, when logging in to Edge using SSO we…
Issues enrolling multiple devices with the same account
We created an account to enroll a few computers that are out in the shop that don't have E3 licenses since they don't use office products except for the OS. We just want to make sure these devices stay up to date. Anyway, I get computer A enrolled in…
security. microsoft.com portal shows my Defender Full Scan as "No Scan Performed"
Hi, when I look at https://security.microsoft.com/ devices, my system shows "Last Full Scan" status is "No Scan Performed", I am seeing this on most of my systems. Why are no Full Scans being performed automatically or am I missing…
SCCM software updates install behavior
What could be causing some computers to install SCCM software updates before the deadline is reached? For example, if updates are configured to be available on April 15 with a deadline of April 21, some computers may start installing updates on April 20.
Local Admin account forced to change password, after joined to Azure AD
After joining a device to Azure AD for the first time through a work or school account. Ive noticed that the local user account (who is an admin) is forced to restart their password at next sign in. I cant find anywhere in azure or intune that would be…
Windows Hello for Business in Hybrid Environment - 'Not Applicable' Error
I am trying to deploy WHfB in a hybrid environment where devices are being managed by both SCCM and Intune. After I created Identity Protection Configuration on Intune that requires WHfB, I got an error that says "Not Applicable". Note: Since…
Windows 10/11 - Langauge Settings issue - During Device Enrollment
Hello Experts, Infra : Microsoft Entra Joined Device with E3/E5 License. Device Vendor : Lenovo, Microsoft Surface Image : OEM Preinstalled Copy We Experience issue, with Selecing language or Key Board Lay out, and Would like to ask if any known scenario…