Event banner
Event details
- Joe_Lurie
Microsoft
Welcome to the February edition of Windows Office Hours. Let's get started! This is a chat-based event, so please introduce yourself and post your questions in the chat. We’ll be here until 9:00 a.m. US Pacific Time!
- Harjit_DhaliwalWelcome everyone to Windows Office Hours. Let's chat. Bring on your questions.
- Hi, how can we have bug fixes fixed for MS Connected cache? We have worked with support that confirmed the bug, but no ETA on resolution and this is preventing us from using the feature on 30% of our DPs. We have applied the latest MCC hotfixes but we still have the Finished waiting for DoincInstall. InvocationState: InstallCompleted. InvocationExitCode: 13631517. InvocationMessage: Failed to find downloaded content in the primary disk caches. Minutes elapsed: 39 error. Thks in advance and don't hesitate if you have any questions
- Aaron CzechowskiHi Stéphane, I did ask an MCC PM about this bug, I'll let you know if there's any info to share.
- Hi, any news on when can we expect battery health and Scoping with scope tags (so that team only see the devices they manage) in Endpoint analytics? Thks
- Joe_LurieHi Stephane - We haven't publicly announced a release date on this. Stay tuned!
- hi, We have 14K users, ~50 offices and low bandwidth. would like to move away from SCCM ADR and Full File windows update packages and maybe move to WUfB with content cache on those DPs. concerned about disk space requirements and maybe testing this with a single site. are there any guides/docs on setting up a test plan for trying this out? any gotchas or other lessons learned docs that would help?
- Aaron CzechowskiHi Mike, there are a couple of doc resources to get started: - https://learn.microsoft.com/windows/deployment/do/mcc-enterprise-prerequisites - using MCC standalone, that article has some more information about size requirements (note the standalone use is currently preview) - https://learn.microsoft.com/mem/configmgr/core/plan-design/hierarchy/microsoft-connected-cache - GA feature integrated with ConfigMgr. There are some settings you can use to control which disk the cache uses. And when the cache fills, ARR clears space by removing content based on its built-in heuristics. We don't have any other content on testing or lessons learned or such, but I can share this feedback with the PMs. Also, look at delivery optimization as a way to help this scenario. Although I'll suggest you wait to check out that documentation until after about 1030 Pacific time, there's an update to the DO content that should publish around then. 😉 https://learn.microsoft.com/windows/deployment/do/waas-delivery-optimization
- Hi, what would be the best way to troubleshoot WUFB managed devices that aren't getting patched (cumulative updates) even when the device is Online for months. We looked at the new WUFB reports, but the errors that we sometime get we don't know what they mean or where to look to see why they have such errors. Thks
David_GuyerHi Stephane, Alerts in WUfB Reports and also the Devices->Monitor failures reports in Intune, include a description of the problem, and a recommended remediation. That's a great place to start to understand the issues affecting updates. If that's not providing enough information, you can try this site for the most common successful troubleshooting steps: https://support.microsoft.com/en-us/windows/troubleshoot-problems-updating-windows-188c2b0f-10a7-d72f-65b8-32d177eb136c -David- Completely missed the remediation part. Thks for enlightening me.
- Hi, I was wondering if Always On VPN can be started before user logon to be sure user logon script will be deployed? Thank you!
- Sean_McLarenHi Alex, I'm curious what you are trying to accomplish in your logon script given your user is remote? Feel free to DM me with more details if you'd rather not put them here as well.
- Hi, if a WUFB managed device doesn't have user logged in for weeks/months, will the device still be updated with cumulative updates? Asking because we are noticing some of them not getting updated. Thks
- David_Guyer
Hi Stephane, Yes, and the good news is that they will only need to get 1 Windows update to get current since the Quality Updates are cumulative, and the latest includes all previous month's fixes.
- Is Azure within the scope of this discussion? We want to set up some Azure Windows 11 VMs for employees to access anywhere in the world, but we don't want to have them open to the Internet. What are the best practices for setting up Azure Win 11 VMs in a secure way - is there a way to broker them after the user logs into Azure?
- Christian_Montoya
Not specifically, but we do have knowledge on this!
There's actually a few different ways you can do this, depending on use case:
- Azure Virtual Desktop or Windows 365 - If you're wanting to have admins (centrally) provide desktops to users.
- Azure Bastion - If you centrally manage a network and your users can create their own machines on that network.
- Azure ExpressRoute (or other Site-to-Site VPN) - If you centrally manage a network and your users can create their own machines on that network, PLUS if your users are coming from a centarlized corporate network.
Many options! If you have a Microsoft rep, would suggest talking to them to narrow it down.
- Hi everyone, we manage Windows 11 clients in Intune and wait for an update of the Security Baselines. Is there already a timetable for when a new version of the Security Baseline will be added?
- Roy Barton
Thanks for the question joerngadeottogroup, we are checking with the team that handles Security Baselines and when they will next be released. As a note, security baseline templates will be available via this Tech Community site Windows 11 Security baseline - Microsoft Community Hub, before they will be in the Intune console.
- Roy Barton
I wanted to follow up here. I did some research and there are changes coming to Security Baselines and their update cadences. I cannot give timelines, but please be on the lookout for new features/updates in your Microsoft Admin Portal.
- Hi, for UUP/sccm support, we understand the one time 10gigs download, but for now are you really sure that we won't get another high payload in the next months? Thks
- Jason_Sandys
Hi Stéphane. We don't have any way to tell what's coming in the future for sure, however, we don't anticipate anything of this size specific to UUP. Note though that for UUP on-prem that the current one-time 10GB update is specific to Win 11 22H2 as it exists today and future feature updates will also have an additional "one-time" download.
- David_GuyerAs a result, monthly cumulative udpates take advantage of the optimization in UUP so that in most cases the client downloads for quality updates will be smaller than before.
From the UUP preview: Monthly Quality Update UUP Deployment Package size for W11 + W11 22H2 for x64 and arm64 platform English only is 34 GB
