Since Yesterday I got this channel, I watched 11 videos its really straight to point , English is very understandable for those non-native speaker. Thank you so much Jonathan.
Bravo John, you went the distance on this one, a lot of ground was covered. Particularly the Sharepoint automount! I just got off a month long investigation with Intune and OneDrive support for these automounts not appearing and it turned out to be the machine wide install of Onedrive needed to be installed so I set up an Intune package similar to what you covered here but a Win32 based on a blog post I found that was very specific. Also there is a registry setting to eliminate the eight hour delay with automount that can be pushed out as a Platform script. Spectacular video John, I look forward to the course videos. You must be protected at all costs.
When creating the dynamic group use the following expression as it includes Autopilot devices created by a hardware hash upload which the one in the video doesn't: (device.devicePhysicalIDs -any (_ -startsWith "[ZTDid]"))
From one long bearded IT guy to another your videos are always a huge help navigating Microsoft products! Thank you for the time and effort you put it!
Another great video! You explain everything in ways that make sense to me. My one hangup with Autopilot is when the laptop is setting itself up, I wish it would stay on the getting things ready screen until everything is installed. Even though I tell a person they need to be patient and wait for 1/2 hour before using it, they never listen.
@18:29 - Love this video :) I did not know about the SharePoint & OneDrive stuff. how did you not see the device setup screen after the factory reset ????, how did you bypass it? that screen is a pain, it sometimes takes ~2hrs: - device setup - user setup - i forgot the other one.
Hello Jonathan, is there way to prevent or block screen lock on MDM machine, i am looking to block auto screen lock on some critical machine, by default it locking screen after 15 min.
@17:40 - Intune does not provide a list of popular apps to add ??? - do we have to come back into this config to re-upload the new version when it's available ?
I truly appreciate your kindness and continuous dedication sharing these amazing videos, Jonathan. I can simply watch your videos anytime and learn useful stuffs! ❤
Can you talk more about group tag in intune? I want to know how to configure that so it can just assign what's needed for specific applications or policies.
@23:11 - you did the reset April 20, 2024 at 2:04pm it finishes factory reset and finish setup with Intune at 06:45 (army time) on 20th of April 2024 then it fully setup at 15:26 (army time) or 3:26pm on 20th of April 2024. - what this a double take, or time just messed up.
Followed your guide step by step but during the device being built, the device preparation screen is not displaying and apps are not installing. Have you got any hints/tips?
are there backend setting to automatically connect with intune aswell once user signs in? from my research it should install company portal and enroll into intune
@1:35 - please show how this can auto configure apps??? I still do it the old fashion way. even if I use autopilot, I am the one to setup the laptop for the users. The only slowdown is that the users have to login and MFA, because we don't keep/know their password.
Hi Professionals, I’m currently preparing PCs for teachers to use in the classroom at school, and I’m deciding between deployment methods in Autopilot. Specifically, I’m debating whether to avoid the User-Driven method and instead go for Self-Deploying. One advantage of Self-Deploying that I’ve noticed is that users can log in using just their first and last name, without requiring the domain. This seems like it could simplify things for teachers. What are your thoughts or recommendations? Is there a clear benefit to one method over the other for this scenario? I’d really appreciate your insights-thank you in advance for your guidance!
Hey Jonathan! Thank you for this video. I am doing AP at the moment and I'm getting an error on the device " TPM is still not suited for Autopilot Pre-Provisioning". I see that Attestation is off, and I cleared the TPM, and did windows update and that wasn't working. Do you thinking flashing the BIOS would fix this?
Hello Jonathan, this is a very helpful video. At the stage where you validated the rules (added the devices-6:05), shouldn't the devices be brand new. I see the devices you added are already on azure. Or was it done to just verify that those devices actually use windows 11?
first, i want to thank you for this video. i have a question regarding policy. can you provide the link of that common policy you create for your clients I want to know more about POLICY like you did in SHAREPOINT that you sample in the video
Wow, your content is truly exceptional! The level of detail and the spot-on case scenarios you provide leave me speechless. I genuinely admire it. If you ever consider a career as a college professor, count me in as your first student! This is just next-level stuff. Wow, just wow.
Great video as always. It makes sense to set the end user as a Standard User, but wouldn't I also need/want to have a local administrator account? Is there a way to deploy using Autopilot, set the Primary assigned user to the person you are assigning the laptop to, but also auto create a local Admin account?
Thanks for the video. I want to create a single security group that includes devices running Windows 11, Windows 10, and on-premises hybrid devices. I've attempted to use expressions within a single dynamic security group to achieve this, but it's not working as expected. Only Windows 11 worked. Do you have any suggestions? Thanks in advance.
Another great video. You're practically the only person who deals with M365 admin for small business users. I've been caught so many times trying to follow advice for M365 Enterprise admin for them to not be appropriate on M365 Business licences. It's so good to have a resource dedicated to the little guys. Autopilot will possibly sort out about 40% of my installation chores. Can it help with the remaining chores which are mostly about deleting bloat? Can AutoPilot help me with... * Removing McAfee and other 3rd party bloatware. * Removing Microsoft bloatware (games, etc) * Setting Up Edge 'New Tab' without all the MSN garbage and setting the default Search Engine to Google * Configuring the Start menu, Taskbar and making sure file suffixes are switched on in File Explorer. * Help with installing manufacturer's specific updates (BIOS, device drivers, etc) * What's it like with Macs? I think some of these q's are more Intune q's and if so, a tutorial on Intune 'cleanup' would be amazing.
I will be adding more videos on Intune stuff. At first glance, I think yes. Will you be using Autopilot for brand new devices direct from manufacturer or rebuilding existing devices?
@@bearded365guy A bit of both really. We usually get laptops sent from the manufacturer but also do the odd special request for specific use cases. In some really horrible cases, we buy consumer laptops and have to upgrade to Windows Pro over the top of Windows Home.
This video is awesome super simplified for us IT guys thank you so much. Question I have is when you setup the Dynamic Group to add anything Win 11. Does this affect remaining devices already added to In Tune? Just want to ensure it doesn't add laptops previously setup to wipe and redeploy again, Silly question I know but just wanted to check.
Thank you, Jonathan. I honestly appreciate your dedication sharing these amazing videos. By the way have you done any videos with Windows Autopilot Hybrid environment. Thnaks again :)
In case this helps anyone else (19:46). You can retrieve the Sharepoint Library ID as a Sharepoint Admin, the Copy Library ID doesn't appear to a Standard user.
Great video as usual. I've been stymied by Autopilot for over a year. One thing I did not catch: You did a manual install of one machine. Can I preset this entire configuration up in advance and then use it by assigning the machine ID when I get a new one? I assume so.
This was great. Couple of points. You had to be joking when you said you don’t need IT. How do you get the hardware hash on a Dell drop-shipped computer? How do you join a computer to an on-premises Active Directory? How do you remove bloatware from a Dell drop-shipped computer?
Yes, I was joking 🙃 You can contact the hardware manufacturer or your hardware supplier and they’ll send you the hashes. Devices need to be hybrid or Entra ID joined for Autopilot. You can run a script to remove bloatware and run via Intune. I might make a video on this… or you can do a quick Google search and there are plenty out there.
Awesome video! Cleanest setup video ive seen yet. does autopilot reset, reset the enrolled GUID? In the past, that was an issue when changing the enrollment user.
Just bought a batch of laptops from auction from a company that’s gone under. They’re all enrolled in autopilot through intune. Without admin control access. Any way to bypass or remove them from it?
@@hypotheticallywhatiskylewhat do you mean as soon as it sees Wi-Fi? I don’t understand how changing the boot order to, boot off the usb and installing a fresh windows install wouldn’t work….. you login to a new Microsoft account if needed as well….
@@dawidekosrs896 because it’s enrolled in a company policy, through Microsoft service. I could change every component, other then the main board of the laptop and install a fresh copy of windows - and it’ll phone home and reset to its past state.
Great video. Just at this stage of setting up InTune. Maybe do an advance version of how to use compliance and configuration for stuff like bit locker and OneDrive, etc. With WFH, there is a need to push out only the devices you want and users log into only those devices. Nothing else and/or web.
so following this, intune started to deploy office again to all my registered PCs that already had office already installed on it. I was hoping that this would only apply during computer setup/initial enrollment.
Really glad to have discovered your channel recently, learning a lot. This is off-topic but can you create a video on configuring a Device Tunnel to P2S Azure VPN?
Hi Jonathan, another great video, thank you! Our environment is a hybrid AD joined configuration. I see from Microsoft's own recommendation to not configure hybrid joined as part of Autopilot. I'm assuming this is because for remote workers, you're unlikely to have access to the on-prem DC at the time of the Autopilot process running. So if we forego doing hybrid join as part of Autopilot, can hybrid join be performed easily after Autopilot?
Great video as always, best explained demo with real life experience for Autopilot. One question I have is when you setup deployment profile you set users correctly to be standard users, but is there a away you can set a particular user to be in the local admin user group of the device?
Users only become Administrators through their membership of the local Administrators group so by selecting 'Administrator' that user would by default be added (this is the same even for the local 'Administrator' account). You would then have to carefully target the deployment profile.
Great video and super helpful. We rolled out a couple hundred laptops about a year ago before knowing about autopilot. is there a way to capture the hardware hash without going to each device and running PS?
That's basically what IT admins _used_ to do. With this, it's a 'set-and-forget' system, just ship out the new laptop and the computer auto configures itself. I used to deploy images via a network PXE-boot but I actually do prefer this method because all the user has to do is turn it on and login, no faffing around with BIOS.
@@davidadams421 thanks , but it is not "ready". the process begins when the user is logged... so..there is 1hour or 2 two until laptop is fully ready to work and that is not "acceptable". thats what im looking for a generic user to log, install all, and send the laptop this time fully configured
@@hoskyseriousinvestor I see your point, open up the lid ... and you're productive. Imaging and then deploying those images is likely you're best bet, then. Instead of 'a guy' installing everything needed on each machine, 'the guy' does it once, creates an image of that machine and then 'the system' deploys that image. I used to do this via a network PXE-boot back in the day. If you google 'windows imaging and deployment' you'll find the right docs.
@@hoskyseriousinvestorwe've currently looked into the same but the only option is to have a 3rd party do that step for you. Whether it's they log in with that user or deploy an image with a base set of apps installed. Anything other than autopilot is either going to come at a time or cost.
You also need to be full Azure and not hybrid like we are. If you're hybrid as we are, you can only to part of the autopilot setup at home, the rest you have to go back into the office to do. So at home, its still just quicker to use djoin and do it from a USB stick.
I think that just the license: Entra ID P1 is not sufficient. If I follow your video exactly, I keep getting errors like these: -Fetch enablement failed -Unable to fetch per platform device counts -Insufficient or lack of permissions is causing access restriction And also i cannot import a csv file at Autopilot devices. Button is greyed out and error: "No permission to view this list"
Great video, thanks for this. A question: how could I practice this? What do I need to be able to test this? I'd like to play with this, testing ideas, setups and whatnot. Cheers
Great video. You have saves me from three days mental breakdown.. Thank you very much.. Do you have any other video on Linux or Mac os enrollment.. Thank you very much.
MR Bearded Edwards another clear as honey INTUNE video and you seem to excel more after every video you publish. I think, you as a business and technical man, you could produce complete training Video courses (Such as INTUNE, Sharepoint, M365..etc) that will be best for learners to understand, as you could include alot of your busines cases to show how these technologies work in business. I for one would really like some intermediate and advanced course to learn from. Best wishes
I was looking for something like this for ages. there are so many videos but no body has done as good as this one. I will go through this over the weekend. Microsoft should use this as there videos /tutorials are useless
@@bearded365guy I am doing some testing for my company to introduce intunes. Is it possible if you can do a tutorial to setup selected devices to add to intunes and manage?Thanks
@@TateSpirit No, but windows can be deployed over a network PXE-boot. It's a faff to setup but the machine basically boots to the network, a windows image is then deployed, on reboot you have a Windows login prompt. Google 'windows pxe'
@@TateSpirit autopilot isn’t a OS image deployment tool, more of a configuration tool. You’ll need the base image of Windows installed first i.e. can get to the OOBE screen. Autopilot takes over from there. We use a PXE boot image to get Windows across to the device but a USB ISO image is just has good.
This are some amazing tutorials, so easy to follow, just the right amount of info to get me started. I just have one query that I really hope you can help me with though... I've created a virtual machine on Windows 11. I just wanted to get onto it so that I can get the hardware hash so I signed in with a local account and followed the process to get the hardware hash. I've imported this hardware hash into Intune Autopilot devices, and I've created a deployment profile that is scoped to all windows 11 devices by a dynamic computer group. My query is that this is a brand new windows 11 device that has never been seen by entra or the domain before. I noticed that when you were setting this up, you created your dynamic group and your windows 11 device was already on your list, I assume because it has already been previously Entra joined? Since this is a totally new device for me, it'll never show in the dynamic group, so I'm just wondering how I can trigger this device so that it applies to a deployment profile. My assumption is that since I've added the hardware hash, during startup, it would connect to the internet and query for that hardware harshes existence in someone's Azure/Intune tenant and just sorta... add itself in?
Hello, i thing you should have put Default file format : Office Open XML Format because otherwise office will save documents in .odt/.ods/etc formats! EDIT : I dont have Copy Library ID Button there, just a row above and below it :(, and if i google how to find it, result gives me something in format xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxx, not as near close as what you copied, can you help again?
@bearded365guy If I currently have a client, and need some help setting these policy's up is this something you can assist with ? Obviously happy to pay for the time ?
I followed this video step by step, and now I am managing 250 devices within the company I work for. I can't thank you enough.
Love this!
Since Yesterday I got this channel, I watched 11 videos its really straight to point , English is very understandable for those non-native speaker. Thank you so much Jonathan.
Bravo John, you went the distance on this one, a lot of ground was covered. Particularly the Sharepoint automount! I just got off a month long investigation with Intune and OneDrive support for these automounts not appearing and it turned out to be the machine wide install of Onedrive needed to be installed so I set up an Intune package similar to what you covered here but a Win32 based on a blog post I found that was very specific. Also there is a registry setting to eliminate the eight hour delay with automount that can be pushed out as a Platform script. Spectacular video John, I look forward to the course videos. You must be protected at all costs.
Thank you. Yes, the SharePoint/OneDrive is a bit ‘fiddly’!
When creating the dynamic group use the following expression as it includes Autopilot devices created by a hardware hash upload which the one in the video doesn't:
(device.devicePhysicalIDs -any (_ -startsWith "[ZTDid]"))
Thanks for mopping up Lee.
From one long bearded IT guy to another your videos are always a huge help navigating Microsoft products! Thank you for the time and effort you put it!
Thanks James.
Another great video! You explain everything in ways that make sense to me. My one hangup with Autopilot is when the laptop is setting itself up, I wish it would stay on the getting things ready screen until everything is installed. Even though I tell a person they need to be patient and wait for 1/2 hour before using it, they never listen.
Users…. Wouldn’t life be great without them? 😂
@@bearded365guyspoken like a true geek. Thanks for he video and clear explanation 😂
Have you seen the 'Block device use until all apps and profiles are installed' settings Devices > Enrollment > Enrollment Status Page? Cheers
@@TechFromYorkshire I have not, but I'll give it a try. Thanks for the tip!
Jonathan you save my day, nice video again!!!
Which would you recommend to use pre-provision or user sign in method?
Yeah... this is a belter 👍 I've looked into Autopilot previously and found nothing as clear and well explained as this.
Thanks Adam, go and get it setup in your tenant!
@@bearded365guy Did exactly that this morning... worked like a charm. Much appreciated 👍
That was beautifully presented. Watching the video three times
@18:29 - Love this video :)
I did not know about the SharePoint & OneDrive stuff.
how did you not see the device setup screen after the factory reset ????, how did you bypass it?
that screen is a pain, it sometimes takes ~2hrs:
- device setup
- user setup
- i forgot the other one.
I cut that bit out to speed the video up a bit 😀
Jonathan the details you put into your videos are outstanding and a huge help in getting to know the Microsoft 365 products. Thank you so much!
@23:24 - we wanted to see the auto pilot device enrollment stage, just before it asks you to sign-in?
Hello Jonathan, is there way to prevent or block screen lock on MDM machine, i am looking to block auto screen lock on some critical machine, by default it locking screen after 15 min.
@17:40 - Intune does not provide a list of popular apps to add ???
- do we have to come back into this config to re-upload the new version when it's available ?
I truly appreciate your kindness and continuous dedication sharing these amazing videos, Jonathan.
I can simply watch your videos anytime and learn useful stuffs! ❤
Sonny!!
🌋BOOM!!!!!!! That's Super!! you have got a new follower !!
Can you talk more about group tag in intune? I want to know how to configure that so it can just assign what's needed for specific applications or policies.
@23:11 - you did the reset April 20, 2024 at 2:04pm
it finishes factory reset and finish setup with Intune at 06:45 (army time) on 20th of April 2024
then it fully setup at 15:26 (army time) or 3:26pm on 20th of April 2024.
- what this a double take, or time just messed up.
Time messed up. I hadn’t noticed but must of been the time zone settings
Followed your guide step by step but during the device being built, the device preparation screen is not displaying and apps are not installing. Have you got any hints/tips?
@@JamieRichards-z8n Difficult to support over comments. Have you got the hardware hash’s in Intune?
Hey there. great video. Running into an issue importing a device for autopilot. Error message 806 ztddevicealready assigned.
Any tips?
are there backend setting to automatically connect with intune aswell once user signs in? from my research it should install company portal and enroll into intune
What a convoluted way to pre-configure a device. Leave it to Microsoft! Well, you certainly did an excellent job of detangling the basics. 🐐😎🎉
@1:35 - please show how this can auto configure apps???
I still do it the old fashion way.
even if I use autopilot, I am the one to setup the laptop for the users. The only slowdown is that the users have to login and MFA, because we don't keep/know their password.
Hi Professionals,
I’m currently preparing PCs for teachers to use in the classroom at school, and I’m deciding between deployment methods in Autopilot. Specifically, I’m debating whether to avoid the User-Driven method and instead go for Self-Deploying.
One advantage of Self-Deploying that I’ve noticed is that users can log in using just their first and last name, without requiring the domain. This seems like it could simplify things for teachers.
What are your thoughts or recommendations? Is there a clear benefit to one method over the other for this scenario?
I’d really appreciate your insights-thank you in advance for your guidance!
Hey Jonathan! Thank you for this video. I am doing AP at the moment and I'm getting an error on the device " TPM is still not suited for Autopilot Pre-Provisioning". I see that Attestation is off, and I cleared the TPM, and did windows update and that wasn't working. Do you thinking flashing the BIOS would fix this?
Hello Jonathan, this is a very helpful video. At the stage where you validated the rules (added the devices-6:05), shouldn't the devices be brand new. I see the devices you added are already on azure. Or was it done to just verify that those devices actually use windows 11?
somehow, profile status still showing as Not assigned. Do I need to connect the vm into entra ID? I'm currently have the vm join on proemise domain.
first, i want to thank you for this video. i have a question regarding policy. can you provide the link of that common policy you create for your clients I want to know more about POLICY like you did in SHAREPOINT that you sample in the video
As a huge fan of your videos, every video you produce is right on target!!!
Thanks mate
Wow, your content is truly exceptional! The level of detail and the spot-on case scenarios you provide leave me speechless. I genuinely admire it. If you ever consider a career as a college professor, count me in as your first student! This is just next-level stuff. Wow, just wow.
Thank you!
Great video as always. It makes sense to set the end user as a Standard User, but wouldn't I also need/want to have a local administrator account? Is there a way to deploy using Autopilot, set the Primary assigned user to the person you are assigning the laptop to, but also auto create a local Admin account?
We like LAPs for this. Video to follow…
Thanks for the video.
I want to create a single security group that includes devices running Windows 11, Windows 10, and on-premises hybrid devices. I've attempted to use expressions within a single dynamic security group to achieve this, but it's not working as expected. Only Windows 11 worked.
Do you have any suggestions? Thanks in advance.
Another great video. You're practically the only person who deals with M365 admin for small business users. I've been caught so many times trying to follow advice for M365 Enterprise admin for them to not be appropriate on M365 Business licences. It's so good to have a resource dedicated to the little guys.
Autopilot will possibly sort out about 40% of my installation chores. Can it help with the remaining chores which are mostly about deleting bloat?
Can AutoPilot help me with...
* Removing McAfee and other 3rd party bloatware.
* Removing Microsoft bloatware (games, etc)
* Setting Up Edge 'New Tab' without all the MSN garbage and setting the default Search Engine to Google
* Configuring the Start menu, Taskbar and making sure file suffixes are switched on in File Explorer.
* Help with installing manufacturer's specific updates (BIOS, device drivers, etc)
* What's it like with Macs?
I think some of these q's are more Intune q's and if so, a tutorial on Intune 'cleanup' would be amazing.
I will be adding more videos on Intune stuff.
At first glance, I think yes.
Will you be using Autopilot for brand new devices direct from manufacturer or rebuilding existing devices?
@@bearded365guy A bit of both really. We usually get laptops sent from the manufacturer but also do the odd special request for specific use cases. In some really horrible cases, we buy consumer laptops and have to upgrade to Windows Pro over the top of Windows Home.
@@daelra Urgh, I've had so many problems doing this. I feel your pain.
@@daelra I've demanded that my clients only buy Windows Pro machines
Thanks Jonathan for this video. Great job👍
This video is awesome super simplified for us IT guys thank you so much. Question I have is when you setup the Dynamic Group to add anything Win 11. Does this affect remaining devices already added to In Tune? Just want to ensure it doesn't add laptops previously setup to wipe and redeploy again, Silly question I know but just wanted to check.
Yes it would add all devices into the dynamic group.
Can you talk about adjusting conditional access for autopilot devices and steps to take before sending a device for repair?
Thank you, Jonathan. I honestly appreciate your dedication sharing these amazing videos. By the way have you done any videos with Windows Autopilot Hybrid environment. Thnaks again :)
I haven’t…. Yet.
Nicely done video! Need to ask you if there is a way to get the hardware hash when there is no OS installed. Thank you
I don’t think so, unless it’s direct from device manufacturer (Dell etc).
In case this helps anyone else (19:46). You can retrieve the Sharepoint Library ID as a Sharepoint Admin, the Copy Library ID doesn't appear to a Standard user.
Great video as usual. I've been stymied by Autopilot for over a year. One thing I did not catch: You did a manual install of one machine. Can I preset this entire configuration up in advance and then use it by assigning the machine ID when I get a new one? I assume so.
Yes, you can!
I have got to watch this later I am excited, your teaching style is unique and easy followed. Your team is very lucky to work with you.
to auto login to SharePoint. you use a PowerShell command. what is that command?
I didn’t use a command for that?
Can you also cover the ESP configuration part and its best practices? Thanks
If you add programs to the profile after it’s been deployed to a computer, will they get installed?
This was great. Couple of points.
You had to be joking when you said you don’t need IT.
How do you get the hardware hash on a Dell drop-shipped computer?
How do you join a computer to an on-premises Active Directory?
How do you remove bloatware from a Dell drop-shipped computer?
Yes, I was joking 🙃
You can contact the hardware manufacturer or your hardware supplier and they’ll send you the hashes.
Devices need to be hybrid or Entra ID joined for Autopilot.
You can run a script to remove bloatware and run via Intune. I might make a video on this… or you can do a quick Google search and there are plenty out there.
You're truly a master! What a seamless wonderful Autopilot journey it was. Brilliant!
Thank you 🙏
Awesome video! Cleanest setup video ive seen yet. does autopilot reset, reset the enrolled GUID? In the past, that was an issue when changing the enrollment user.
The GUID will stay the same.
Just bought a batch of laptops from auction from a company that’s gone under. They’re all enrolled in autopilot through intune. Without admin control access. Any way to bypass or remove them from it?
Download Windows 11 onto a USB key and wipe them?
@@bearded365guy no, as soon as the device sees wifi, regardless of fresh install and new windows license it reverts back to an autopilot enviornment
Hi @hypotheticallywhatiskyle I have the same situation please share the resolution for this if you have resolve the İSsue
@@hypotheticallywhatiskylewhat do you mean as soon as it sees Wi-Fi? I don’t understand how changing the boot order to, boot off the usb and installing a fresh windows install wouldn’t work….. you login to a new Microsoft account if needed as well….
@@dawidekosrs896 because it’s enrolled in a company policy, through Microsoft service. I could change every component, other then the main board of the laptop and install a fresh copy of windows - and it’ll phone home and reset to its past state.
Great video. Just at this stage of setting up InTune. Maybe do an advance version of how to use compliance and configuration for stuff like bit locker and OneDrive, etc. With WFH, there is a need to push out only the devices you want and users log into only those devices. Nothing else and/or web.
Will the Apps configured with this policy be pushed out to existing machines, or will they only install during the first boot (OOBE)?
so following this, intune started to deploy office again to all my registered PCs that already had office already installed on it. I was hoping that this would only apply during computer setup/initial enrollment.
@@whoanelly- How did you setup the groups? If you did all Win10 and all Win11, then it would do.
Really glad to have discovered your channel recently, learning a lot. This is off-topic but can you create a video on configuring a Device Tunnel to P2S Azure VPN?
Maybe one day….
Another great video, thanks Jonathan 🤓🤓
Hi Jonathan, another great video, thank you! Our environment is a hybrid AD joined configuration. I see from Microsoft's own recommendation to not configure hybrid joined as part of Autopilot. I'm assuming this is because for remote workers, you're unlikely to have access to the on-prem DC at the time of the Autopilot process running. So if we forego doing hybrid join as part of Autopilot, can hybrid join be performed easily after Autopilot?
Thank You So Much Sir, Jonathan. It's very helpful in mid of my Job Hunt as System administrator.
It's a great presentation. I saved it and I will look when I need. Thank you again.
I am a huge fan of your videos, every video you produce is right on target.
Great video as always, best explained demo with real life experience for Autopilot. One question I have is when you setup deployment profile you set users correctly to be standard users, but is there a away you can set a particular user to be in the local admin user group of the device?
Users only become Administrators through their membership of the local Administrators group so by selecting 'Administrator' that user would by default be added (this is the same even for the local 'Administrator' account). You would then have to carefully target the deployment profile.
We’re big fans of LAPS. Video to follow in a couple of weeks
Oh brother, this is exactly what I needed today! Automation is King!
Great video and super helpful. We rolled out a couple hundred laptops about a year ago before knowing about autopilot. is there a way to capture the hardware hash without going to each device and running PS?
Do you have any kind of management software or RMM?
the sharePoint and oneDrive stuff is for users, so why did you add it to devices under Assignments?
can i run autopilot reset without removing ond drive mount and sharepoint map?
@@xkorbekx It will set back up after reset
is there a way to have jnstalled everything before to send the lapto to the user? or a generic user to leave installing the apps in background?
Yes, you could do that.
That's basically what IT admins _used_ to do. With this, it's a 'set-and-forget' system, just ship out the new laptop and the computer auto configures itself. I used to deploy images via a network PXE-boot but I actually do prefer this method because all the user has to do is turn it on and login, no faffing around with BIOS.
@@davidadams421 thanks , but it is not "ready". the process begins when the user is logged... so..there is 1hour or 2 two until laptop is fully ready to work and that is not "acceptable". thats what im looking for a generic user to log, install all, and send the laptop this time fully configured
@@hoskyseriousinvestor I see your point, open up the lid ... and you're productive. Imaging and then deploying those images is likely you're best bet, then. Instead of 'a guy' installing everything needed on each machine, 'the guy' does it once, creates an image of that machine and then 'the system' deploys that image. I used to do this via a network PXE-boot back in the day. If you google 'windows imaging and deployment' you'll find the right docs.
@@hoskyseriousinvestorwe've currently looked into the same but the only option is to have a 3rd party do that step for you. Whether it's they log in with that user or deploy an image with a base set of apps installed. Anything other than autopilot is either going to come at a time or cost.
You also need to be full Azure and not hybrid like we are. If you're hybrid as we are, you can only to part of the autopilot setup at home, the rest you have to go back into the office to do. So at home, its still just quicker to use djoin and do it from a USB stick.
I think that just the license: Entra ID P1 is not sufficient.
If I follow your video exactly, I keep getting errors like these:
-Fetch enablement failed
-Unable to fetch per platform device counts
-Insufficient or lack of permissions is causing access restriction
And also i cannot import a csv file at Autopilot devices.
Button is greyed out and error: "No permission to view this list"
Great video, thanks for this. A question: how could I practice this? What do I need to be able to test this? I'd like to play with this, testing ideas, setups and whatnot. Cheers
As I’ve done…. A tenant with a business premium license and then build a virtual Windows 11 PC on your PC.
Another great film, especially with your sharp editing, head movements, and the onliner: 'without further ado'. Keep on the good work!
Great video. You have saves me from three days mental breakdown.. Thank you very much.. Do you have any other video on Linux or Mac os enrollment.. Thank you very much.
MR Bearded Edwards another clear as honey INTUNE video and you seem to excel more after every video you publish.
I think, you as a business and technical man, you could produce complete training Video courses (Such as INTUNE, Sharepoint, M365..etc) that will be best for learners to understand, as you could include alot of your busines cases to show how these technologies work in business.
I for one would really like some intermediate and advanced course to learn from. Best wishes
Watch this space! Thanks for the comment.
@@bearded365guy Ha! I was totally expecting you to just send a link to your training offers!
I was looking for something like this for ages. there are so many videos but no body has done as good as this one. I will go through this over the weekend. Microsoft should use this as there videos /tutorials are useless
Thanks! Let me know how you get on.
@@bearded365guy I am doing some testing for my company to introduce intunes. Is it possible if you can do a tutorial to setup selected devices to add to intunes and manage?Thanks
Awesome video like always. Are you going to have a video on Microsoft private access profile soon?
Hopefully
Superb video, thank you for sharing this informative lesson. 👍👏
Great video, thank you.
I mean, I am hooked to your videos, explained like a pro, great videos Jonathan, create a udemy course, I will be the first one to buy.
Watch this space! Courses coming in summer
@@bearded365guy Was just thinking, what if the end point is bare metal? No pre-installed OS, will Autopilot work?
@@TateSpirit No, but windows can be deployed over a network PXE-boot. It's a faff to setup but the machine basically boots to the network, a windows image is then deployed, on reboot you have a Windows login prompt. Google 'windows pxe'
@@TateSpirit autopilot isn’t a OS image deployment tool, more of a configuration tool. You’ll need the base image of Windows installed first i.e. can get to the OOBE screen. Autopilot takes over from there. We use a PXE boot image to get Windows across to the device but a USB ISO image is just has good.
Great video! Subscribed ✔
Are you from Mars...And you got me to subscribe...
12:19 why you press no?
This are some amazing tutorials, so easy to follow, just the right amount of info to get me started. I just have one query that I really hope you can help me with though...
I've created a virtual machine on Windows 11. I just wanted to get onto it so that I can get the hardware hash so I signed in with a local account and followed the process to get the hardware hash. I've imported this hardware hash into Intune Autopilot devices, and I've created a deployment profile that is scoped to all windows 11 devices by a dynamic computer group.
My query is that this is a brand new windows 11 device that has never been seen by entra or the domain before. I noticed that when you were setting this up, you created your dynamic group and your windows 11 device was already on your list, I assume because it has already been previously Entra joined? Since this is a totally new device for me, it'll never show in the dynamic group, so I'm just wondering how I can trigger this device so that it applies to a deployment profile.
My assumption is that since I've added the hardware hash, during startup, it would connect to the internet and query for that hardware harshes existence in someone's Azure/Intune tenant and just sorta... add itself in?
I figured this out. The profile Autopilot policy applies to even new devices if the policy is set to include "All devices". :)
valuable video thank you sir
Extraordinario, te ganaste un subscriptor. Extraordinary, you have just won a new subscriber. .
Thanks!
great video!! directly to the point! thanks for sharing this
Great explanation. Thanks for your time :)
Great stuff!
Great stuff mates, I will revisit this again
Great! i've got to work on it this week; thks
Apps config needed:
- OneDrive = auto sign-in, enable backup, etc...
- Outlook = auto sign-in, enable new & reply email signature, disable reading pane, remove mention & ...
- Teams = auto sign-in
- Edge = auto sign-in & sync everything
Excellent explanation
Really great video would be good if you could show me a video on customisation
Nice training video, thank you so much!
So solid content, you gain my subscribe :)
Hello,
i thing you should have put Default file format : Office Open XML Format because otherwise office will save documents in .odt/.ods/etc formats!
EDIT : I dont have Copy Library ID Button there, just a row above and below it :(, and if i google how to find it, result gives me something in format xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxx, not as near close as what you copied, can you help again?
Great video! All that body movement it's really annoying but really good teaching skills, thanks!😁
Next time, I’ll be really still.
Good job 👍
Fantastic! Thank you.
Bravo good sir!
loving it, just found you.
Hey, Just found your channel, Just wondering if you assistance for other small I.T companies? Cheers
Stay tuned - later this year, I’ll be building some coaching/courses out.
@bearded365guy If I currently have a client, and need some help setting these policy's up is this something you can assist with ? Obviously happy to pay for the time ?
@@remstar123321 Yes, sure
that was actually very useful! Thanks!
Thank you.