The Patch Lands

Two weeks ago, I wrote that the White Glove Autopilot process failed on HP laptops. Some strange behaviour was encountered around ‘TPM Attestation’. According to Microsoft: “Trusted Platform Module (TPM) key attestation is the ability of the entity requesting a certificate to cryptographically prove to a Certificate Authority (CA) that the RSA key in the certificate request is protected by either "a" or "the" TPM that the CA trusts.”

I predicted that Microsoft would release a patch with the appropriate fix in and thankfully, they have!

Introducing KB4522355: https://support.microsoft.com/en-us/help/4522355/windows-10-update-kb4522355, otherwise known as the October 24 2019 cumulative update!

There is a single entry on the list of fixes for Autopilot: “Addresses issue with Autopilot self-deploying mode and White glove deployments”.

In this case, I applied the patch to the Windows Image File (WIM) before testing using the DISM command line tool. This saves around twenty minutes per deployment rather than patching before beginning the White Glove process each time.

The results are positive; all HP laptops so far have run through the White Glove process successfully.

Some other points to bear in mind for a successful White Glove experience:

  • Make sure the time on the laptop is set correctly. Anecdotally, this needs to be within five minutes of the correct time for Autopilot to work
  • Whitelist the URL’s stipulated by Microsoft on your corporate network
  • If you are deleting computer registrations from Intune, Autopilot and Azure Active Directory (AAD), give it at least ten minutes before trying to generate a new hash for White Glove. Although the portal will tell you that the object was deleted, there seems to be a delay before the registration is fully cleared

Good luck!

Join the Insentra Community with the Insentragram Newsletter

Hungry for more?

[Modern Workplace]

Deploying VDAs in a Multi-Forest Environment

By [Nick Pylarinos]

I was recently brought onto a project to consolidate two aging Citrix farms into a single 7.15 farm.

[Modern Workplace]

Identity and Authentication - The Boss of All Bosses

By [Hambik Matvosian]

Hi folks! Pure Awesomeness back again! Yes, I know it’s been a stupid amount of time since my last blog post but I’m back…back again to pump as much knowledge and wisdom into your cerebrums as one individual with the title of Pure Awesomeness can!

[Modern Workplace]

Project Management and Change Management – How Insentra ensures projects run smoothly

By [Marni Noble]

I am going to say something that will really blow your mind… are you ready? It seems in business today that change is the only constant in this crazy fast-paced world of variables.