Intune Archives

Winsage

November 24, 2025

How to get free Windows 10 security patches on your PC – from now to October 2026

Windows updates will roll out automatically on November 11. Official support for Windows 10 has ended, meaning PCs with default settings will no longer receive monthly security updates. Microsoft has introduced Extended Security Updates (ESU) for Windows 10, allowing users to receive security updates until October 2026. Any personal Windows 10 PC running version 22H2 can access free ESU subscriptions, excluding Enterprise and Education editions. Enrollment requires a Microsoft account and is available for up to 10 PCs. In Europe, customers in the EEA qualify for free ESU subscriptions without needing a Microsoft account. Enterprise customers will incur higher costs for commercial ESU subscriptions. Users must ensure they meet eligibility requirements to see the ESU offer.

Winsage

November 23, 2025

Microsoft prevents crash screens from staying visible on signage

Microsoft has introduced a Digital Signage mode in Windows 11 that automatically suppresses system error screens, including the Blue Screen of Death (BSOD), after a fifteen-second display period. This feature aims to enhance user experience on public displays and is particularly useful for IT managers using Intune for device management. Additionally, Microsoft is previewing advanced text-generation tools for applications, including automated email summarization in Outlook and alternative text generation for images in Word, to improve productivity and accessibility.

Winsage

November 20, 2025

Evicting Copilot: The Insider’s Guide to Purging AI from Windows 11

Microsoft's Windows 11 has introduced Copilot, an AI assistant aimed at enhancing productivity, but it has faced criticism from users concerned about privacy and resource usage. Copilot offers features like document summarization and image generation, but some users have labeled it an unwelcome presence. During the March 2025 Patch Tuesday, some users experienced Copilot being inadvertently uninstalled. Privacy concerns and performance issues have led many to seek ways to disable or remove Copilot, with methods including hiding the Copilot button, using Group Policy Editor, editing the Windows Registry, and uninstalling the app through Settings or PowerShell commands. In corporate environments, IT administrators can disable Copilot using Intune or Group Policy. Users have reported that Windows updates can reinstall Copilot, prompting them to disable automatic updates or block related domains. Recent user sentiment indicates growing fatigue with AI features, and there is potential for Microsoft to introduce easier opt-out options in future updates.

Winsage

November 19, 2025

Microsoft’s new recovery tools rebuild Windows when it glitches

Microsoft has announced two new tools for enhancing Windows PC recovery capabilities within organizations: point-in-time restore and cloud rebuild. Point-in-time restore allows users to revert their system to a previous state by taking snapshots of the Windows environment at various intervals, facilitating recovery from issues like update failures and driver conflicts. This feature will be available for testing by Windows insiders in an upcoming build. Cloud rebuild enables IT administrators to restore the operating system directly from the cloud, similar to the existing Reset feature. Administrators can select the Windows version and language through the Microsoft Intune portal, prompting the PC to download the necessary installation media. This tool resets Windows while allowing for the restoration of personal files, applications, and settings using OneDrive and Windows Backup for Organizations. Both tools are designed for businesses using Microsoft Intune and are expected to be integrated into Intune in the first half of 2026 as part of Microsoft's Windows Resiliency Initiative. Additionally, Microsoft is introducing Quick Machine Recovery (QMR) to address boot-up problems and enhance Windows driver resilience.

Winsage

November 19, 2025

Microsoft unveils two new Windows 11 recovery tools: Cloud Rebuild and Point-in-Time Restore

Microsoft is introducing new recovery options for Windows 11 at its Ignite developer conference, focusing on Intune remote recovery via WinRE. Two new recovery actions are being unveiled: 1. Point-in-time restore: This feature allows a PC to revert to a previous state to resolve issues like update failures and driver conflicts. It will be available in preview form within the Windows Insider build of Windows 11 this week. 2. Cloud rebuild: This option enables a fresh start for devices with persistent issues without the need for hardware shipping or service desk visits. Admins can select the Windows release and language through the Intune portal, prompting the PC to download installation media and self-rebuild. This process uses Autopilot for zero-touch provisioning and allows for the restoration of user data and settings via OneDrive and Windows Backup for Organizations. Microsoft plans to roll out these features in the first half of the upcoming year.

Winsage

November 19, 2025

Windows 11 Introduces Point-in-Time Restore & More for Faster, Safer PC Recovery

Microsoft is enhancing the recovery capabilities of Windows 11 with a suite of tools aimed at simplifying device restoration for IT administrators. The Point-in-Time Restore feature allows administrators to revert a device to a previous state, currently available in preview mode in Windows Insider builds. The Quick Machine Recovery (QMR) system, refined since its August launch, helps restore functionality to multiple devices experiencing boot failures and will soon include direct networking support and Autopatch QMR management for automatic update handling. The Intune remote recovery feature provides insights into when a managed PC enters recovery mode, allowing for remote script deployment and fixes, and has been expanded to include Windows Server virtual machines via the Azure Portal. The Cloud Rebuild function enables administrators to rebuild devices that cannot be repaired conventionally by downloading fresh installation media and restoring settings and data using OneDrive and Windows Backup for Organizations, with Autopilot applying necessary enrollment and policies.

Winsage

November 19, 2025

Windows 11 Adds New Recovery Tools to Minimize Downtime

Microsoft unveiled new Windows Recovery tools during the Ignite 2025 keynote to help IT teams reduce downtime and streamline remediation processes. Enhancements to Quick Machine Recovery (QMR) include WinRE networking support, which will initially support Ethernet and later add Enterprise Wi-Fi capabilities. Autopatch can now manage and approve QMR updates, currently in public preview. Microsoft Intune's remote recovery via WinRE allows IT administrators to monitor devices in recovery mode and deploy scripts directly from the console, extending to Windows Server VMs through the Azure Portal. New recovery options for Windows PCs include a point-in-time restore feature for reverting to previous states and a Cloud rebuild feature for remotely reinstalling Windows 11 on malfunctioning devices. These updates are expected to be generally available to commercial customers in the first half of 2026. Microsoft has also introduced Autopatch update readiness in preview, providing real-time insights into device update readiness through a unified Intune dashboard. Additionally, new tools for incident management include Mission Critical Services for Microsoft 365, allowing collaboration with Windows engineers, and Windows 365 Reserve, which offers secure temporary Cloud PCs. Microsoft Intune will issue alerts when devices enter WinRE to prioritize recovery efforts, and a Digital Signage mode will prevent error messages on non-interactive public displays.

Winsage

November 19, 2025

Windows 11 gets new Cloud Rebuild, Point-in-Time Restore tools

Microsoft introduced two recovery features for Windows 11 at the Ignite developer conference: Cloud Rebuild and Point-in-Time Restore (PITR). PITR allows users to revert a Windows 11 system to a previous stable state in minutes by capturing comprehensive snapshots of the system, restoring the operating system, settings, and files. This feature will enter preview with an upcoming Windows 11 Insider preview build. Cloud Rebuild enables complete reinstallation of Windows 11 from the cloud for devices with persistent issues, using the Intune portal for selection of the Windows release and language. It employs Autopilot for zero-touch provisioning and streamlines user data restoration through OneDrive and Windows Backup for Organizations, reducing downtime significantly. Both features will be integrated into Microsoft Intune in the first half of 2026, allowing remote recovery actions and management of Windows Recovery Environment functionalities. Additionally, Microsoft is testing an updated version of Quick Machine Recovery (QMR), which helps resolve Windows boot failures without physical access. QMR engages the Windows Recovery Environment during boot failures, analyzes crash data, and allows Microsoft to implement remote fixes. The latest version improves the boot-repair process by conducting a single scan to resolve issues.

Winsage

November 18, 2025

Microsoft Unveils Windows 11 Security, Resilience Features

Microsoft is enhancing the security framework of Windows through the Secure Future Initiative, focusing on trust, privacy, and enterprise controls. Key features include the introduction of Post-Quantum Cryptography (PQC) APIs for quantum-safe encryption, and an upgrade to BitLocker with hardware-accelerated support for improved disk encryption, set to roll out on new Windows 11 devices in Spring 2026. Microsoft is also integrating passkey manager support with Windows Hello, allowing users to choose from various passkey managers. Windows 11 employs App Control for Business to ensure only trusted applications run, while Microsoft Intune’s Managed Installer helps IT teams manage business applications. Additionally, Sysmon functionality will be integrated into Windows 11 and Windows Server 2025 for better threat detection. Microsoft is implementing Zero Trust DNS for encrypted name resolution and supporting Wi-Fi 7 for Enterprise with WPA3-Enterprise authentication. The Windows Resiliency Initiative (WRI) includes stricter driver standards, a shift in antivirus enforcement from kernel to user mode, and new safeguards like driver isolation and DMA remapping to enhance system stability.

Winsage

November 17, 2025

Microsoft: Windows bug blocks Microsoft 365 desktop app installs

Microsoft is addressing an issue preventing users from installing Microsoft 365 desktop applications on Windows devices due to misconfigured authentication components. The affected versions are Microsoft 365 desktop apps version 2508 (Build 19127.20358) and version 2507 (Build 19029.20294). Microsoft is working on reconfiguring the authentication components, with a resolution expected to be deployed soon. The issue has been classified as incident OP1186186, indicating a critical service disruption. Additionally, another problem, tracked as MO1176905, is affecting some admins and users by restricting access to various Microsoft 365 services due to a misconfiguration related to Microsoft 365 Group SecurityEnabled settings. Recently, Microsoft resolved a bug related to Microsoft Intune and mitigated a DNS outage that affected global customers.