Aug 30 2022 11:42 PM - edited Aug 30 2022 11:42 PM
Hi all,
With Intune we push an Always on VPN profile to our Windows 10 clients. One of the settings in that profile have to do with NRPT (name resolution) in where the client is told to use public DNS servers for a couple of URL's. Recently i removed some of the URL's.
What i notice is that some clients use the internal DNS to resolve the URL's (they have the change applied/synced) and others still use the external DNS.
Is there a guideline in order to get changes synced on all devices?
Sep 01 2022 09:17 AM
Assuming the devices are connected and configured and properly checking in with Intune, in general they should pick up policy changes within a few hours at best, or a few days at worst.
One trick that sometimes helps is to prod at the policy again to save a change which will cause the devices to detect there's a new version they need to download. For example, add another URL into the NRPT, or change some other non-critical setting just to create some entropy.
Otherwise, you might want to check Event Viewer DeviceManagement-Enterprise-Diagnostics-Provider logs on some machines which aren't getting the policy change and see if there's an issue.
Please like or mark this thread as answered if it's helpful, thanks!
Sep 01 2022 11:05 PM