ADMT Computer Migration fails on Windows 11 24H2 with error “NTLM authentication has been disabled” during domain change (Win10 or Win7 works)
Hello everyone,I am currently performing a cross-domain migration using ADMT (Active Directory Migration Tool) from domain A.com to B.com.The migration works correctly for Windows 7 and Windows 10 machines, but fails consistently on Windows…
Windows for business | Windows Client for IT Pros | Directory services | User logon and profiles
Automating disk cleanup via Intune using the StartComponentCleanup task on a weekly basis
Requirements: Automate disk cleanup across the entire device fleet Avoid any custom scripting or code development Use the built-in Windows scheduled task StartComponentCleanup Purpose of the task: reduce WinSxS folder size by removing superseded…
Windows for business | Windows 365 Business
Windows Server 202X - Unable to update Windows Boot Manager with the Windows UEFI CA 2023 Certificate
Hello, I am trying to update Windows Server 2022/2025 Boot Manager files, with the newer Windows UEFI CA 2023 Certificates. Issue Despite the Secure Boot servicing state machine reporting completion... The system Boot Manager (bootmgfw.efi) remains…
Windows for business | Windows Server | Devices and deployment | Install Windows updates, features, or roles
RRAS SSTP VPN disconnects unexpectedly during active sessions - Event shows "user request" but users are not disconnecting
We are experiencing intermittent VPN disconnections on our Windows RRAS SSTP VPN server. Environment: Windows RRAS VPN Server 2012 Issue: Users are able to establish the VPN connection successfully and work normally on internal applications. However,…
Windows for business | Windows Server | User experience | Other
Root and intermediate CA requirements for Intune Wi-Fi Authentication
Why must the Root CA and Intermediate CA certificate profiles be explicitly assigned to an Intune Wi-Fi profile for certificate-based authentication to succeed? Our corporate Wi-Fi profile has already been deployed through Intune, but laptops still fail…
Windows for business | Windows 365 Enterprise
Cần tìm lại thông tin license đã mua
Mình cần hướng dẫn để lấy license cài lại server Congratulations on your newly accepted Open Licensewith Microsoft, ending in 53787. You have been assigned Administrator permissions on the Microsoft Volume Licensing Service Center (VLSC) site. To assist…
Windows for business | Windows Server | Devices and deployment | Licensing and activation
Customizing Windows IoT Enterprise LTSC boot and login branding for hotel Kiosks
Our objective is to create a fully branded kiosk experience on Windows IoT Enterprise LTSC. To achieve this, we need to: Hide all default Windows startup branding. Display the hotel's own branding during boot. Replace the standard loading animation. …
Windows for business | Windows 365 Business
Managing Delivery Optimization Cache with Intune and PowerShell
In our lab environment, a group of test laptops has completely run out of storage because the Delivery Optimization (DO) cache has expanded to more than 40GB. Could you advise on the proper Intune administrative configuration to set a maximum file age…
Windows for business | Windows 365 Business
How to revert downgraded RDS license from Windows 2019 to Windows 2022
how to install Microsoft Remote Desktop license? background: we have old RDS licensing installed on Windows 2019, purchased RDS license was in Windows 2022 but downgraded to Windows 2019. Now we have built new RDS licensing in Windows 2022 I got the…
Windows for business | Windows Server | Devices and deployment | Licensing and activation
Delivery Optimization Cache Server
We have an office with 300 Windows laptops on a metered internet connection. Even with peer-to-peer Delivery Optimization turned on, our internet line gets saturated during patch Tuesday. Can we set up a dedicated Microsoft Connected Cache (MCC) server…
Windows for business | Windows 365 Business
RDWeb with Webclient disconnect when it tries to RDP
I have a RDWeb with Webclient installed, it works fine when there is one single session host but when I try to add another one, I was able to RDP to the session host but when the session host tries to RDP to another server (in the collections), it logoff…
Windows for business | Windows Server | User experience | Remote desktop services and terminal services
We need to configure Tenant Lock Perimeter Headers at the network edge
We’re looking to strengthen our Tenant Restrictions v2 policy by enforcing it twice. Besides configuring it at the Windows OS level, we also want our corporate firewall at the network perimeter to inject our tenant directory headers into all outbound…
Windows for business | Windows 365 Enterprise
Access Share with PIN
Some users when accessing SMBby typing \smbserver then the client asked using PIN and there no option to use password. My question is why in the endpoint there is no option to use password and PIN can be used to authenticate to the smb?
Windows for business | Windows Client for IT Pros | Networking | Network connectivity and file sharing
Recovering from HVCI Boot Loop After Enabling Memory Integrity
Hello, after forcing Memory Integrity (HVCI) across our engineering fleet, two older laptops hit a continuous blue screen loop (BSOD) due to a core virtualization conflict with an old debugger driver. What is the safe mode command line or registry…
Windows for business | Windows Client for IT Pros | Devices and deployment | Other
Endpoint Analytics Reliability Metrics
Hi everyone, A recent update to our core CRM tool is causing it to crash constantly for our sales team, but no one is filing support tickets. Where inside the Intune Endpoint Analytics 'Application reliability' tab do we go to pinpoint the exact crash…
Windows for business | Windows 365 Business
WinSxS LCU Purge Constraints
Hi team. Every month, Windows installs a new Latest Cumulative Update (LCU), leaving the old update files behind in the component store. If an IT technician runs the DISM /Online /Cleanup-Image /StartComponentCleanup command, can the user still…
Windows for business | Windows 365 Business
Delivery Optimization Port Configurations
We turned on peer-to-peer Delivery Optimization, but our local network devices are still downloading updates directly from the internet instead of sharing them locally. What specific inbound and outbound UDP/TCP ports must be whitelisted on our local…
Windows for business | Windows 365 Enterprise
WinPE Driver Injection Errors
I injected a storage driver into our custom WinPE image using DISM, but when booting, the system crashes with a 'Digital Signature Verification Failure' error (0xc0000428). Why does WinPE reject unsigned third-party storage drivers, and how do we enforce…
Windows for business | Windows 365 Business
App Control Smartlnstaller
We want to use App Control for Business to lock down our systems, but we don't want to manually whitelist every single business application update. How does the 'SmartInstaller' feature leverage cloud telemetry and Microsoft intelligence to automatically…
Windows for business | Windows 365 Enterprise
Remote Help Session Clipboard Blocks
Hi team To comply with HIPAA data privacy laws, our helpdesk technicians must be blocked from copying text or pulling sensitive patient records off a remote doctor's screen onto their own local IT machines during a support session. How do we configure…