Patch My PC Blog
Get expert insights, how-to guides, product updates, and best practices for streamlining patch management, improving endpoint security, and optimizing IT operations.
This blog explains why Remote Sync is not an instant action, but a push signal that Windows records through WNF before deviceenroller decides when the real OMA DM policy sync starts revealing why delays occur even when the process is working exactly as designed.
LocalNetworkAccessAllowedForUrls suddenly appeared as a managed policy. This explains what triggered it and what OneDrive was protecting.
Intune Sync: Win32Apps vs Policies. This blog explains how IME handles Win32 Apps and PowerShell, while OMA-DM delivers policies.
PowerShell Script Installers for Intune Win32 Apps allow you to update the installer script without reuploading the .intunewin package. The installer logic is handled separately from the app content and executed by the Intune Management Extension.
Windows now lets admins disable MDM enrollment during account setup, removing the confusing “Allow my organization to manage my device” prompt and preventing accidental enrollments.
Intune Policies were unassigned and deleted, but the devices kept enforcing the old settings. SyncML only showed Add and Replace. Delete never arrived, and nothing was cleaned up.
Microsoft is adding Windows Quality Update Management Policies to Intune, introducing manual approvals and new update cadences.
While exploring the Intune portal code, a new entry appeared — Windows Recovery and Remediation. No docs, no rollout, no explanation. It looks like the missing link between Intune and the Quick Machine Recovery feature in Windows 11, designed to manage recovery and remediation when everything else fails.