Delivery Optimization breaking Windows 11 update downloads?
We started seeing Delivery Optimization–related issues with Windows updates after upgrading devices to Windows 11 24H2. In our SCCM environment, Windows updates begin downloading but consistently fail or stall partway through the download. In many cases, the download restarts multiple times and eventually errors out. This behavior is consistent across multiple devices and different boundaries. These same devices were patching normally prior to the 24H2 upgrade. Since moving to 24H2, patching has become unreliable, especially for larger updates. From what we’re seeing, this doesn’t look like a traditional content or boundary issue. It feels like Delivery Optimization is failing mid-transfer or not resuming downloads correctly after the OS upgrade. So far we’ve checked the following: - Boundaries and boundary groups are unchanged - Content is available and distributed correctly on DPs - No recent SCCM site or infrastructure changes - Network connectivity looks normal On the client side, we’ve been reviewing: - DataTransferService.log (downloads start but fail or restart mid-way) - DeliveryOptimization logs (showing repeated retries / stalled transfers) - CAS.log and LocationServices.log (content location looks normal) - WUAHandler.log (update detection looks fine) Overall, detection and policy seem healthy — the issue appears during the actual download phase. Has anyone else seen Delivery Optimization downloads stall or fail during Windows patching after upgrading to Windows 11 24H2? If so, did you find a specific DO setting, policy change, or workaround that stabilized patching?
Make Required applications visible in Intune Company Portal on iOS
Hi everyone, I'm new to Intune and have a question. Is it possible to make required applications visible in the Intune Company Portal on iOS (supervised devices)? Currently, only "available" apps are shown. This would be really helpful because if a user deletes a required app, the automatic re-installation can sometimes take a long time. Thanks!Required and Available Apps visibility in ICP
Hi everyone, I'm new to Intune and have a question. Is it possible to make required applications visible in the Intune Company Portal on iOS (supervised devices)? Currently, only "available" apps are shown. This would be really helpful because if a user deletes a required app, the automatic re-installation can sometimes take a long time. Thanks!
EPM Service Account Breaks User Context In Apps
Hi, I am working with a customer who is wanting to make use of EPM for their developer team to run some applications with elevated permissions. They have noticed that when elevating certain applications with EPM that a service account is used (see MEM\AzureAD_AdeleVance_$ below), which therefore runs the app with a new user profile, removing things like user preferences, context and also breaks some apps that rely on domain permissions/credentials. From my testing, this service account only seems to be used by EPM when elevating already installed applications, not application installers. Is this by design and is there a possible workaround that avoids EPM using this service account?
Restrict Outlook ClientApp with Single Tenant or Specific Domain
Dear All, We have Corporate Windows devices which is managed by Intune MDM and want to block outlook client to configure only specific domain id or tenant. means other than specific domain or tenant user not able to configure or add additional account in outlook.
GIA - 2.0 - Get Intune Assignments
GIA - Get Intune Assignments Hello everyone I just released a new version from my App. https://github.com/sibranda/GetIntuneAssignments/releases/tag/v2.0 It's a C#.NET application developed for Intune to query MS Graph Information from Intune Assignments who target the Azure Ad Groups. You can export the data to CSV file if you wish. In this new version you can get information from the following types of assignments: Adm Templates; Applications; App Config Policies; Autopilot Configurations (new on 2.0); App Protection; Conditional Access; Compliance Policies; Configuration Profiles; Settings Catalog; Endpoint Security Policies; Enrollment Restrictions (new on 2.0); iOS App Provisioning (new on 2.0); Policy Sets; PowerShell Scripts; Proactive Remediations (new on 2.0). All this from a Graphic Interface with just a few clicks. https://github.com/sibranda/GetIntuneAssignments/releases/tag/v2.0 Please send me any feedback you want. This can help me to fix bugs and make better solutions to help everyone.Microsoft Endpoint - Windows Selfdeploy / Autodeploy devices questions
Hi guys, I hope someone can help me with some questions about Microsoft endpoint/intune. I have some questions about Windows Autodeploy/selfdeploy devices 1. Can I install MS Office on such devices so that different users can work with that? (or is there a restriction from microsoft that such devices are not allowed to run office on?) 2. How do you guys keep track on the licensing of such devices when you have multiple on different locations? After the docs that I read, you just have to keep an intune license for every selfdeploy windows device, but you dont assign that license to the device, correct? Thank you very muchMobile Device Management With InTune Questions
The company I work for have in the last month, migrated their on-premise email to 365 email services. Relatively small company with just over 100 employees. For desktop and laptops, we have an internal domain, which is used for device authentication and vpn. Every 90 days our AD policy requires users to reset their password. For pc and laptop users, both local and remote, because their kit has been added to our domain, the password change isn't too much of a problem. However for mobile users, on android and iOS devices, using a mix of outlook app and built in email app, changing password becomes quite a manual fair, especially since some have multiple mobile devices (iPad, iPhone etc) The password change date causes frequent account lockouts because the 365 domain controller also replicates with our internal domain controller, and when users for example change their password on their desktop pc, account locks quickly happened when they haven't manually changed their mobile device password! One caveat is that we dont currently have the option / service to allow users to reset their password via the web / 365 Our circumstances covered, would InTune be the logical solution. Prices? Presume there our options for both managed devices and byod ? Posting here, as had been waiting in the telephone queue for some time!
Two MDM Solutions with One Office 365 Tenant
We have a requirement to use two different MDM solution with one Office 365 tenant because of user experience issues. Can we use two MDM solution e.g. MobileIron and Intune with one tenant? If yes, what are the gotchas we should be aware of? Any pointers will be appreciated. Thanks!
