Forum Discussion

martin_macf's avatar
martin_macf
Copper Contributor
Apr 30, 2021

Windows Autopilot Error Code 0x800705b4 Preparing device for mobile management

We are implementing a number of Windows Autopilot via Lenovo Thinkbook 15-ITL. These are being deployed to authorised users whether they are at home connected to their home broadband or in the office connect to the Wide Area Network.  Despite lots of testing, we randomly see the the error (see attached).  If we wipe the device a couple of times, it seems to remedy the issue.  I've tried to look online about this about various posts talk about the TPM, which it is not. I've tried to look through the logs from the device - what a minefield of information that means something to someone.

 

Has anyone any ideas?

 

Thanks

Martin 

  • martin_macf 

     

    Hi,

     

    This error could mean a Time Out error ... 

     

    The error itself is normally due to a tpm error: 

     

    Are you using Autopilot or Autopilot white glove?. If using white glove, make sure you have checked if the tpm also support attestation: Tpmtool getdeviceinformation

    But just like you told us, after a few reinstalls it works.... Did you also tried to clear the tpm before a reinstall?

     

     

     

    • martin_macf's avatar
      martin_macf
      Copper Contributor
      We are using Autopilot OOBE. The TPM is an odd thing because we have 100+ Lenovo laptops. Eventually it does go through but if it is connected to our Wide Area Network if tends to fail at this stage and there are no ports being blocked that we can see. When you say clear the TPM before a reinstall what do you mean by that?

      Thanks
      Martin
      • Rudy_Ooms_MVP's avatar
        Rudy_Ooms_MVP
        MVP
        Hi,

        I will place my money on the timeout problem... for now..
        You could open tpm.msc and clear the tpm on the right side.. maybe it would trigger something
        But if you are installing the same device multiple times and af the 4th time, its working... it looks like timeout/firewall settings
  • martin_macf's avatar
    martin_macf
    Copper Contributor
    Just to add if I look in Endpoint Manager against the device, it has been assigned the same machine name for associated Intune device and Azure AD device and the enrollement state is Enrolled.
  • derekuoft's avatar
    derekuoft
    Copper Contributor

    martin_macf This has been happening to us and I've basically narrowed it down to our task sequence which installs the sccm client during the "existing autopilot devices" flow. When I disable "Setup windows and config manager" step, provisioning doesn't get hung up at "preparing your device for mobile management". When "setup windows and configmgr" is enabled in the task sequence, autopilot invariably gets stuck, even though I have implemented steps later to remove the client. In terms of the removal, I've tried both ccmsetup.exe /uninstall as well as the task sequence step "prepare configmgr client for capture" - neither seems to work. The "ccmsetup.exe /uninstall" was working just fine for us before, and it all of a sudden stopped working, so I can only imagine it's a code-change on the Intune side. 

    • martin_macf's avatar
      martin_macf
      Copper Contributor
      derekuoft we do not use SCCM for this setup. Does anyone really understand why it times out? This area of Autopilot does seem to be a bit hit and miss, which, when you are using this solution to rollout laptops to our user community, is not really what I expect. When the laptops have been sent out to the users, it is very difficult to break into the process as an administrator and clear the TPM that Rudy_Ooms_MVP suggests. The only outcome seems to be keeping trying - wipe and start again and repeat until it completes it process.
    • i_ARQ's avatar
      i_ARQ
      Copper Contributor

      derekuoft I am also experiencing this. I use the SCCM (MECM) "Deploy autopilot to existing devices" template and it seems to be broken (I'm deploying a 20H2 version of the image).  Same results here. When I disable the steps related to Setup windows and config manager, prepare Config Mgr client and prepare windows for Capture it seems to be fine (because the wim never boots into the OS phase and just remains in the WINPE applying wim stage of OSD).
      But if you want to keep all the steps from that template, it seems those steps create something on the image that Intune doesn't agree with and then generates the Error Code 0x800705b4 during the Preparing device for mobile management autopilot step.
      Maybe the ccm client isn't removed properly, maybe it isn't sysprepped cleanly. But I've tried letting it boot into the OS and then manually running steps to remove the ccm client and then runnning sysprep /generalize /oobe (various combinations). And yet it still gets the same error in intune.

      Maybe a registry key is flagging something that Intune errors out on?



      • derekuoft's avatar
        derekuoft
        Copper Contributor

        i_ARQ Yes this is 100% what I'm seeing. I had a ticket open with Microsoft and they said they would reflect this to the technical team. I tried to make it as clear as possible to my support technician and summarized the problem in one sentence. "Prepare Windows and Configmgr" step in the SCCM task sequence breaks autopilot provisioning, no matter what method is used to remove the client.

         

        I've had to move our autopilot for existing devices task sequence to the "faster" V2 method which doesn't install the SCCM client or sysprep the machine, and this involved basically rejigging the entire onboarding infrastructure, which we haven't touched in about two years. Having to cast my mind back and re-implement critical infrastructure from years ago was extremely annoying. I really hope Microsoft will acknowledge that this issue exists and provide some form of response. As it stands, their official docs for existing device flow for autopilot is broken. 

Resources