Patch My PC Blog
Get expert insights, how-to guides, product updates, and best practices for streamlining patch management, improving endpoint security, and optimizing IT operations.
Windows 11 hotpatch updates can reduce reboots, but they do not move every part of Windows forward at the same pace. Microsoft has now confirmed the reset issue, while Secure Boot still depends on the baseline path.
In 1.101.103.0, Microsoft changed the IME config into a companion file, and that first transition appears to be where the file disappeared during upgrade. In 1.101.105.0, the same model remained, but the missing config could finally be recreated, which explains why the issue looked so different across both versions.
Many assume an Intune hourly remediation runs within the first hour after assignment. In reality, the first execution depends on when the device retrieves the policy.
A new Sidecar notification in the IME called WindowsRemoteHelpUnattended was enough to raise a bigger question: is Microsoft building unattended Remote Help for Windows behind the scenes? After tracing the IME, the Intune portal, and the Graph calls, the answer started to take shape
IC3 introduces a real-time communication path in Intune, reducing reliance on WNS and timers and allowing apps, scripts, and device actions to execute immediately.
Maintenance Window Settings for OS, Drivers and Updates is finally appearing in Intune. Here is what they do, why they matter, and how Windows uses them to control update timing.
Policies, scripts, and Win32 apps do not follow the same path in Windows. Understanding those paths explains Intune timing.
The Defender CSP setting IntelTDTEnabled suddenly started failing with error 0x86000002. A closer look shows the setting is now marked as deprecated and defaults to False, suggesting the policy control for Intel TDT may have quietly disappeared.