Jun 03 2022 03:36 AM
Dear All,
Because of the vulnerability mentioned in the below link, I am trying to delete the relevant registry key on all clients via Intune:
I have tried to do this via a powershell script as suggested in the below link, but tests failed:
https://cloudbyte.nl/change-or-edit-registry-on-windows-10-device-from-intune-endpoint-manger/
The script looks like this:
I am not very much experienced with Intune, so I am not able to troubleshoot this.
Would anyone have some advice?
Many thanks in advance.
Gülen
Jun 08 2022 03:20 AM
@GuelenToker We have the same issue i tried something if it works i'll leet u know ;)
Jun 08 2022 05:07 AM
Hi @GuelenToker i can confirm to you that the script works through Intune
the only thing you need to set in de script is:
reg delete "HKEY_CLASSES_ROOT\ms-msdt" /f
Intune runs thorugh system account in de computers and it also gonna take care of the powershell execution policy so that is not needed.
putting the commanbd abouve on a ps script worked just fine in our Intune.
side note:
you wont see that it worked until the computers in the group you deploy to are restarted.
good luck.
Jun 08 2022 05:47 AM
Jun 08 2022 12:13 PM
@GuelenToker this is also a good read and it worked for me
https://cloudinfra.net/how-to-fix-cve-2022-30190-using-microsoft-intune/
Jun 08 2022 10:55 PM - edited Jun 08 2022 10:58 PM
I modified the script and did the reboot. Although I still receive error in Intune, the key is deleted. @DiazAlain .
We tested similar steps as in the link you provided and now it is ok @DineshCR
Thanks both for the help:)
Jun 08 2022 11:30 PM
Jun 08 2022 11:37 PM
Jun 08 2022 11:43 PM
Jun 09 2022 05:14 AM
Jun 09 2022 05:17 AM
Jun 09 2022 05:42 AM