Forum Widgets
Latest Discussions
Deleted Device from Intune - Lost recovery key
Hi everyone, Apologies if this has been answered before. Yesterday, I accidentally deleted a laptop from Intune. The result is that it is no longer possible to log into the device, the device record is completely gone from Intune and Entra so I am not even able to find the BitLocker recovery key. Without the BitLocker key, I can't even do a factory reset. Is the device toast? Thank you, Luuk_P
Android 15 - CredentialProviderPolicy not surfaced by Intune
I have been having an issue with Android 15 devices. We use Authenticator as our password autofill provider. As soon as a device is updated from Android 14 to Android 15, the password autofill provider is no longer set and the setting to change it is 'blocked by work policy.' I have already tried removing all policies that apply to the devices (device config and device compliance policies) and factory resetting them. Simply having them enrolled as corporate owned fully managed devices causes this to happen. I raised the issue in the Android Enterprise community blog. A link to that is included below. Someone on that thread found that there is a policy in Android 14/15 called the credentialproviderpolicy. When that policy is blocked or unconfigured, this behavior happens. I cannot find anywhere in Intune where I can set this policy. It seems that it is allowed by default when managing Android 14 with Intune, but not set or blocked when the device switches to Android 15. Is there any way to specifically set a policy that is not reflected in the Intune UI? This is a blocker for being able to move more phones to Android 15. Link to Android Enterprise thread: Re: Android 15 - Cannot set default password app - Android Enterprise Customer Community - 8708 Thanks, TomBlue screen crashes caused by April updates KB5055523
Hy, I have some test devices afected from installing KB5055523, the update will not install with an error code 0x800f081f. I have just stopped/uninstall this deployment under updates ring for QU and am wondering if I resume it will probably go to the latest quality update with this issue 2025.04 B one or will just go to the 2025.4 OOB... W11 release and KB issue: https://learn.microsoft.com/en-us/windows/release-health/windows11-release-information https://www.windowslatest.com/2025/04/11/windows-11-microsoft-warns-do-not-delete-inetpub-folder-after-causing-confusion/ Regards, BogdanRestrict Web Access for Interview Group
Hi All I hope you are well. Anyway, I have been tasked with creating a couple of "interview" accounts which have then been placed into their own group. Potential clients can then log on to one of our Entra ID joined devices and perform interview tests such as Word, Email etc. Is there any way that I can restrict internet access via Intune? Any other ideas on how to lock down certain accounts would be fab too! StuartConnected experiences M365 Apps
Hy, Have you had any experience with this policy regarding the connected experience? I have concerns that this will affect the end user experience, it would be nice to get some feedback from you. Informations about new Policys and Connected experiences: Starting with Version 1904 of Microsoft 365 Apps for enterprise, there are new policy settings that will allow you to control settings related to the following: Diagnostic data that is collected and sent to Microsoft about Office client software being used Connected experiences that use cloud-based functionality to provide enhanced Office features to you and your users. The following are the five new policy settings: Configure the level of client software diagnostic data sent by Office to Microsoft Allow the use of connected experiences in Office that analyze content Allow the use of connected experiences in Office that download online content Allow the use of additional optional connected experiences in Office Allow the use of connected experiences in Office https://learn.microsoft.com/en-us/microsoft-365-apps/privacy/manage-privacy-controls Regards, Bogdan
Detecting and removing devices from Intune
I am the head of Research and Development at an ITAD company. If you don't know what an ITAD is, we process retired IT equipment (PC, laptops, phones, servers, networking, etc) for resale, reuse, or recycle. The issue we have been encountering are systems that are still registered to the client Intune tenant. Normally we would just require the client to remove them but that doesn't always work. We are a licensed Microsoft refurbisher and we can run some systems through that process and that does deregister the devices. The issue is that we don't sell all our systems in retail. For wholesale systems, we do not install an operating system and we don't have any other way to detect or remove the tenant registration. So I have 2 questions. Is there a way to detect these systems without having to install an operating system and how can we have these devices deregistered without having to go through our refurbishment process? Thanks.
iPhone setup issue - company portal issue
Hi I have a user who cannot set their phone up. It's all been provisioned ok, but the user cannot set their iPhone up. When they sign into the company portal on the iPhone, it says their credentials are incorrect. She is using her company e-mail address and password, and we know her credentials are ok, as we've tested them signing into her Microsoft account. But company portal on her iphone keeps saying her credentials are incorrect. Can anyone offer any advice? Many thanks AndyKiosk mode
I'm loving the Kiosk mode template in Intune and works great for browser only kiosks. However I do have some COTS apps that I also want to run in a multiapp kiosk mode. I go to add them using the Add Win32 app but it asks for a AUMID but the application is very bespoke and many don't have a unique AUMID or at least not one that look like I run Get-StartApps in powershell and they come up but the apps in question have what looks like a random GUID Example below Notepad++ has a guid but PowerPoint is very "human readable" . Even though its a GUID will this still work? Notepad++ {6D809377-6AF0-444B-8957-A3773F02200E}\Notepad++\notepad++.exe PowerPoint Microsoft.Office.POWERPNT.EXE.15Web-based device enrollment vs Company Portal
Hi everyone, Microsoft recommended the web based device registration for IOS, especially bring your own device. I went through the whole process. The main difference is that the user doesn't need to install the company portal and you need to configure the JIT (Just in time registration). The enterprise portal should be delivered as a web application. The user experience: The user goes to the URL https://portal.manage.microsoft.com/enrollment/webenrollment/ios. The profile is loaded, then the user has to go to the settings application and install the profile. The user has access to the company portal with the web application. Microsoft recommends JIT (just in time registration) for web-based device registration. I see the advantage of less logins for the user (thanks to JIT) and no Company Portal app on the device. What is the advantage of web-based device enrolment? Why did Microsoft recommend this method of registration?
Syncing Outlook contacts on Android to native Contacts app
What process are you guys using to sync your Outlook contacts from the Work side to the native Contacts app on the personal side? We are basically personal phone enrolled with Work Profile (even though we own the phones). I tried to create an App Config but not doing as I expect. Feel free to show screenshots or instructions on how you handled it. Thanks in advanced.
