cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Autopilot Windows 11 (Host Process for Windows Services) constantly notification

JimmyWork
Iron Contributor

‎Aug 10 2022 03:27 AM

‎Aug 10 2022 03:27 AM

Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Started having this issue on newly enrolled Windows 11 devices in Autopilot.

No changes have been made and never had this issue before.

 

Devices enrolled before does not have this issue, wiping a device or running fresh start same issue

 

UAC shows up constantly.

2022-08-10 12_17_00-Windows 11 Autopilot on DESKTOP-VCQ6Q31 - Virtual Machine Connection.png2022-08-10 12_17_16-Windows 11 Autopilot on DESKTOP-VCQ6Q31 - Virtual Machine Connection.png

Labels:
6,081 Views
0 Likes
16 Replies
Reply
16 Replies
JimmyWork

‎Aug 23 2022 07:46 AM

‎Aug 23 2022 07:46 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

No one?

I seem to get this issue when I run a Autopilot Reset
0 Likes
Reply
JimmyWork

‎Aug 23 2022 08:31 AM

‎Aug 23 2022 08:31 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Seems that the Security Baseline setting Local Policies Security Options > Administrator elevation prompt behavior might have been the issue, my last setting was "Prompt for credentials on secure desktop"

Setting it to Prompt for consent on non-Windows binaries seems to have solve it, at least on my current tests
1 Like
Reply
Rudy_Ooms_MVP

‎Aug 23 2022 09:58 AM

‎Aug 23 2022 09:58 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

I assume you are deploying some drivers to the device when its enrolled into Autopilot? care to show us how you are doing this? as normally that uac prompt shouldn't be shown (depends of course on the config... but... )
1 Like
Reply
JimmyWork

‎Aug 23 2022 10:20 AM

‎Aug 23 2022 10:20 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Thank you for answering but I'm not deploying any drivers.
I never had this issue before, just started showing on my test device, did no changes to my configs. Windows 11.

But never had the issue before did multiple re-deploys of test machine no issues then it just started to happen, not sure if it's an update in Windows 11 that is causing it or why really. Still testing now multiple scenarios after I changed my security baseline to see if I can replicate it, currently it seems to have gone away.
0 Likes
Reply
Rudy_Ooms_MVP

‎Aug 23 2022 10:28 AM

‎Aug 23 2022 10:28 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Was deviceguard enabled in the baseline? As the screenshot mentions the driver purpose…. Also no wufb with drivers enabled? (Just checking)
0 Likes
Reply
JimmyWork

‎Aug 23 2022 10:55 AM

‎Aug 23 2022 10:55 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

@Rudy_Ooms_MVP 

 

The issue just showed up again.

I have had over 25 devices no issues, now it just started happening on new devices, no changes have been done.

 

JimmyWork_0-1661277193412.png

JimmyWork_1-1661277228431.png

 

On my test device I did run a Wipe. Everything went fine no prompt during OOBE.

Then when I tested to make the logged in user an admin using PIM the issue showed up twice again.

 

Is there any logs I can check why its prompting me, like event viewer or something?

 

0 Likes
Reply
JimmyWork

‎Sep 08 2022 04:49 AM

‎Sep 08 2022 04:49 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

New information.
Most likely some kind of police that creates this issue.

New test device, user is Admin.
Co-Managed, when move into Intune and applied the Intune policies the user got.

UAC prompt: Host Process for Windows Services.
Any input on how I can track down whats triggering the UAC, what logs to check etc?
0 Likes
Reply
JimmyWork

‎Sep 08 2022 04:56 AM

‎Sep 08 2022 04:56 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

We are installing the Quick Assist tool, but I need to confirm that this is the reason why they are getting the prompt. So any details on how I can check the logs, locally or using Advanced Hunting would be much appreciated.

https://call4cloud.nl/2022/05/the-100-year-old-quick-assist-tool-who-climbed-out-the-window-and-disa...
0 Likes
Reply
NielsScheffers

‎Sep 08 2022 05:12 AM

‎Sep 08 2022 05:12 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Maybe you can use "ProcessTokenElevation" in the "DeviceProcessEvents" table to find processes with elevation, but I doubt that'll give you an answer. Isn't it easier to just exclude the device/user from the app and test if the UAC-prompt disappears?
1 Like
Reply
Rudy_Ooms_MVP

‎Sep 08 2022 05:30 AM

‎Sep 08 2022 05:30 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

That would indeed be an easy test :).. just exclude the app from 1 test user and enroll a device :)
1 Like
Reply
JimmyWork

‎Sep 08 2022 05:48 AM

‎Sep 08 2022 05:48 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Will try this on next batch of users and report it back. Right now they only need to click it once so I mean it is OK but not good.
0 Likes
Reply
ksobier

‎Jan 12 2023 06:14 AM

‎Jan 12 2023 06:14 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

@JimmyWork 

I seem to have the same issue. I now removed Quick Assist (Online) from 'required' applications and it does not prompt for admin rights. Seems that Microsoft make it as hard as possible to install Quick Assist. 

0 Likes
Reply
JMG4217

‎Feb 09 2023 06:48 AM

‎Feb 09 2023 06:48 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Any updates on this? I'm having this same issue and it's a total nusiance. It looks like it pops up for any Microsoft product that is installed once the laptop boots into the Autopilot settings.  @JimmyWork 

0 Likes
Reply
JimmyWork

‎Feb 09 2023 07:12 AM

‎Feb 09 2023 07:12 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

I actually excluded it from installation due to a recent license changed where Remote Help was included in our licensing, and that can be installed without an issue. So I did not look more into the issuse, but Quick Assistent is the issue, should be a MS ticket maybe.
0 Likes
Reply
ksobier

‎Feb 09 2023 07:29 AM

‎Feb 09 2023 07:29 AM

Re: Autopilot Windows 11 (Host Process for Windows Services) constantly notification

Yes. It's Quick Assist. I went through all apps and removed every app, after app one by one from require and it only prompts on Quick Asist at the end. I had some apps that had to install using computer account rather than user but at the end the only one that left not installing without prompt was Quick Assist.
0 Likes
Reply