Home Blog

Patch My PC Blog

Get expert insights, how-to guides, product updates, and best practices for streamlining patch management, improving endpoint security, and optimizing IT operations.

blog category feature image
How the Intune Device Certificate renewal was stopped by a wrong
Blog
Intune MDM Certificate Renewal Failure: The Hidden UPN Issue
In this blog, we take a closer look at what really happens when the Intune MDM device certificate fails to renew. While investigating a strange certificate renewal issue, we uncovered an...
Rudy Ooms
Intune Device Certificate Renewal Flow Has Shifted from Pull to Push
Blog
Intune Device Certificate Renewal Flow Has Shifted from Pull to Push
This blog will show you how the Intune Device Certificate Renewal Flow Has Shifted from Pull (Scheduled Task) to Push (ErollmentService) Please note: This blog is based on my own testing and...
Rudy Ooms
PowerShell script is failed to execute The -file parameter does not exist
Blog
PowerShell script is failed to execute: The -file parameter does not exist

This blog demonstrates how our excellent support at Patch My PC resolved the “file parameter does not exist” error, despite the root cause being caused by how EPM elevates a process in the user context.

Rudy Ooms
The Secure Boot Report Where the Secure Boot Info comes from
Blog
Secure Boot Status Report Explained: Where the Data Is Sent From
The new Secure Boot Status report in Intune finally provides visibility into Secure Boot state across all of your devices. This new Secure Boot Status Report will become the first place to look once...
Rudy Ooms
Autopilot Hybrid Join Failure 80004005 and a Malformed id_token
Blog
Autopilot Hybrid Join Failure: 80004005 and a Malformed ID Token

this blog shows why Autopilot Hybrid can fail right after sign-in with 80004005, even when everything looks healthy in Intune, and we traced it back to the id_token OtaDJ receives during OOBE, which turns out to be malformed and breaks the MDM enrollment URL handoff.

Rudy Ooms
The Secure Boot Status Report Coming soon to Intune
Blog
Secure Boot Status Report: The Report Behind Secure Boot Readiness
Most admins already found the Secure Boot policy in Intune. That’s not the problem. The problem is what happens after you assign it… and Intune tells you nothing useful. No progress view. No...
Rudy Ooms
Local Autopilot Reset blocked by “Deny network logon”
Blog
Local Autopilot Reset blocked by “Deny network logon”

Local Autopilot Reset looks simple until a baseline blocks it. The credential provider validates admin creds using LsaLogonUser with LogonType 3, so “Deny network logon” stops the reset before it starts.

Rudy Ooms
Policy is rejected by licensing Error Code 0x82B00006
Blog
Policy is rejected by licensing: Error Code 0x82B00006

This article explains where that policy is rejected by licensing is made and why documentation is not always the final authority

Rudy Ooms
Entra Join Shows No Password Prompt The User Realm Issue
Blog
Entra Join Shows No Password Prompt: The User Realm Issue

A device kept failing Entra Join in the strangest way: type UPN, press Enter, brief loading animation, and suddenly back to the username box with zero errors. No logs. No password page. The fix came from the last place anyone would look, the User Realm response.

Rudy Ooms
Intune Firewall Rules Breaking After Changes IT1214934
Blog
Intune Firewall Rules Breaking After Changes: IT1214934
If you recently changed or added firewall rules in Intune and the outcome felt unpredictable, you are not imagining things. Microsoft has published a service health message (IT1214934)...
Rudy Ooms
View More
Getting Started
Products
Company
Resources
Additional resources