The future of autopilot and motherboards

%3CLINGO-SUB%20id%3D%22lingo-sub-2921644%22%20slang%3D%22en-US%22%3EThe%20future%20of%20autopilot%20and%20motherboards%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2921644%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3EWould%20like%20to%20start%20a%20discussion%20regarding%20the%20autopilot%20cycle.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EScenario%201%3A%3C%2FP%3E%3CP%3EImagine%20your%20device%20which%20is%20autopiloted%20and%20has%20the%20hardware%20hash%20uploaded%20to%20your%20tenant%20(tenant%201)%2C%20suddenly%20breaks%20and%20you%20need%20to%20replace%20the%20motherboard.%20Your%20computer%20has%20warranty%20left%2C%20so%20the%20manufacturer%20replaces%20the%20motherboard.%20It%20now%20works.%3C%2FP%3E%3CP%3EYou%20don't%20delete%20the%20computer%20from%20your%20(tenant%201).%3C%2FP%3E%3CP%3EYou%20upload%20the%20new%20hardware%20hash%20from%20the%20new%20motherboard%2C%20and%20install%20the%20computer.%20Happy%20days%2C%20everything%20works%20again.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CEM%3ESince%20there%20is%20a%20shortage%20of%20components%2C%20almost%20all%20manufacturers%20repairs%20the%20motherboards%20right%20now%20and%20perform%20some%20test%20before%20they%20say%20the%20motherboard%20is%20OK%20to%20be%20used%20again.%20They%20then%20use%20these%20repaired%20motherboards%20and%20replaces%20other%20computers%20which%20these%20one.%3C%2FEM%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EScenario%202%3A%3C%2FP%3E%3CP%3EA%20customer%20(tenant%202)%20has%20recently%20got%20the%20computer%20repaired%20by%20replacing%20it%20motherboard.%3C%2FP%3E%3CP%3EWhen%20the%20IT%20tech%20tries%20to%20upload%20the%20hardware%20hash%20to%20their%20tenant%20(tenant%202)%20it%20doesn't%20work%20because%20it%20is%20already%20used%20somewhere%20in%20the%20world%20it%20says.%20(this%20hardware%20hash%20is%20still%20in%20tenant%201%2C%20if%20you%20remember%20from%20scenario%201%2C%20they%20didn't%20delete%20it)%3C%2FP%3E%3CP%3EMeanwhile%20the%20IT%20tech%20is%20trying%20to%20upload%20the%20hardware%20hash%2C%20the%20user%20has%20already%20began%20autopilotin%2Fwhiteglove%20it%2C%20and%20it%20says%20it%20is%20connected%20to%20a%20user%20in%20the%20tenant%201%20and%20ready%20to%20be%20installed%20to%20their%20environment).%20How%20will%20they%20proceed%20now%3F%20Is%20reporting%20the%20issue%20to%20the%20manufacturers%20to%20replace%20the%20motherboard%20with%20a%20BRAND%20NEW%20ONE%20the%20only%20option%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESince%20Intune%20is%20growing%20so%20fast%20at%20the%20moment%2C%20and%20I%20have%20already%20come%20across%20this%20issue%20on%202%20different%20companies%2C%20in%20both%20cases%20it%20was%20solved%20by%20replacing%20both%20motherboards%20with%20brand%20new%20ones.%20How%20will%20this%20work%20in%20the%20future%20when%20everyone%20are%20starting%20to%20use%20it%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20hope%20I%20was%20clear%20enough%2C%20hence%20just%20reply%20and%20I%20will%20try%20to%20explain%20it%20better%20%3A)%3C%2Fimg%3E%3C%2FP%3E%3CP%3EThanks%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2921644%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2921810%22%20slang%3D%22en-US%22%3ERe%3A%20The%20future%20of%20autopilot%20and%20motherboards%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2921810%22%20slang%3D%22en-US%22%3EJust%20wondering...%20but%20didnt%20you%20get%20tpm%20errors%20%2Fdevice%20id%20etc%20or%20ad%20account%20password%20errors%20when%20the%20motherboard%20was%20replaced%3F%20So%20wouldn't%20be%20better%20to%20remove%20the%20old%20device%20object%20(and%20intune%2Fautopilot%20objects)%20at%20that%20time%20and%20reinstall%20the%20device%3F%20So%20the%20hash%20is%20also%20deleted%20when%20you%20remove%20all%20the%20object%3F%3CBR%20%2F%3E%3CBR%20%2F%3EBut%20again%20that's%20is%20how%20we%20normally%20do%20it%20%3A)%3C%2Fimg%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2925780%22%20slang%3D%22en-US%22%3ERe%3A%20The%20future%20of%20autopilot%20and%20motherboards%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2925780%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F620702%22%20target%3D%22_blank%22%3E%40Rudy_Ooms%3C%2FA%3E%26nbsp%3BHi%2C%20of%20course%20I%20did.%20The%20thing%20is%2C%20the%20replaced%20motherboard%20hash%20is%20in%20someone%20else%20tenant%20which%20I%20don't%20have%20any%20control%20of.%26nbsp%3B%20Since%20this%20replaced%20motherboard%20hardware%20hash%20is%20already%20in%20someone%20else%20tenant%20somewhere%20in%20the%20country%20I%20can't%20even%20upload%20it%20and%20re-install%20it.%20In%20these%20two%20cases%20I%20have%20had%20to%20inform%20the%20manufacturer%20about%20it%20and%20they%20made%20sure%20I%20received%202%20brand%20new%20motherboards%20%5E%5E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESo%20basically%20this%20issue%20might%20get%20a%20lot%20bigger%20in%20the%20future%20since%20more%20and%20more%20people%20are%20starting%20to%20use%20Intune%2C%20and%20they%20don't%20remove%20it%20from%20their%20own%20tenant.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Contributor

Hi,

Would like to start a discussion regarding the autopilot cycle.

 

Scenario 1:

Imagine your device which is autopiloted and has the hardware hash uploaded to your tenant (tenant 1), suddenly breaks and you need to replace the motherboard. Your computer has warranty left, so the manufacturer replaces the motherboard. It now works.

You don't delete the computer from your (tenant 1).

You upload the new hardware hash from the new motherboard, and install the computer. Happy days, everything works again.

 

Since there is a shortage of components, almost all manufacturers repairs the motherboards right now and perform some test before they say the motherboard is OK to be used again. They then use these repaired motherboards and replaces other computers which these one.

 

Scenario 2:

A customer (tenant 2) has recently got the computer repaired by replacing it motherboard.

When the IT tech tries to upload the hardware hash to their tenant (tenant 2) it doesn't work because it is already used somewhere in the world it says. (this hardware hash is still in tenant 1, if you remember from scenario 1, they didn't delete it)

Meanwhile the IT tech is trying to upload the hardware hash, the user has already began autopilotin/whiteglove it, and it says it is connected to a user in the tenant 1 and ready to be installed to their environment). How will they proceed now? Is reporting the issue to the manufacturers to replace the motherboard with a BRAND NEW ONE the only option?

 

Since Intune is growing so fast at the moment, and I have already come across this issue on 2 different companies, in both cases it was solved by replacing both motherboards with brand new ones. How will this work in the future when everyone are starting to use it?

 

I hope I was clear enough, hence just reply and I will try to explain it better :)

Thanks

 

 

4 Replies
Just wondering... but didnt you get tpm errors /device id etc or ad account password errors when the motherboard was replaced? So wouldn't be better to remove the old device object (and intune/autopilot objects) at that time and reinstall the device? So the hash is also deleted when you remove all the object?

But again that's is how we normally do it :)

@Rudy_Ooms Hi, of course I did. The thing is, the replaced motherboard hash is in someone else tenant which I don't have any control of.  Since this replaced motherboard hardware hash is already in someone else tenant somewhere in the country I can't even upload it and re-install it. In these two cases I have had to inform the manufacturer about it and they made sure I received 2 brand new motherboards ^^

 

So basically this issue might get a lot bigger in the future since more and more people are starting to use Intune, and they don't remove it from their own tenant.

 

 

Hi,

I know... normally every customer needs to have policies set to make sure devices are removed properly.. but I know... a lot of companies don't bother with it and just leave it in the tenant..
When a device is removed or something is replaced... you need to trash the old device id from your tenant..

Maybe in the near future a new option will appear to make sure when there is no azure id device attached to the hash for let's say 1 month it will be removed (or something like that)
ANd not to forget, I guess thats why Microsoft put this doc online

https://docs.microsoft.com/en-us/mem/autopilot/autopilot-mbr