Login

u/Any-Victory-1906

▲ 1 r/SCCM

Autopilot device hash

Hi,

I saw in web report autopilot is available but I can't find it in the admin console. Is it a way bringing it in a wql query?

Thanks,

reddit.com
u/Any-Victory-1906 — 16 hours ago
▲ 1 r/Intune

Intune App Deployment Strategy – Win32 vs Store vs Enterprise App Management

Hi all,

I’m trying to get a sense of how organizations are currently handling application deployment strategies in Intune.

In your environment, roughly what proportion of your applications fall into each category?

Win32 apps (custom packaged)

Microsoft Store apps (Store new / legacy)

Microsoft Intune Enterprise App Management (Microsoft-managed apps)

We currently manage a large number of applications (400+) with varying levels of complexity, and we’re evaluating how far we can realistically leverage Store or Microsoft-managed apps versus maintaining Win32 packaging.

How many applications do you manage in your environment?

I’m particularly interested in real-world ratios and lessons learned.

Thanks!

reddit.com
u/Any-Victory-1906 — 22 hours ago
▲ 4 r/PowerShell

WINRM on Entra Device

Hi,

I'm trying to use WinRM (HTTPS) from a domain-joined machine to an Entra-joined device (which appears as a workgroup machine).

Current setup:

- Source machine: domain-joined

- Target machine: Entra-joined (not in AD)

- HTTPS (5986) is open

- A certificate is deployed on the remote device

- WinRM listener is configured for HTTPS

However, WinRM does not work.

When I run:

Test-WSMan -ComputerName "xxx" -UseSSL -ErrorAction Stop

I get:

"The WinRM client cannot complete the operation. Verify that the specified computer name is valid, that the computer is accessible over the network, and that a firewall exception for the WinRM service is enabled..."

Important observations:

- This works fine with domain-joined machines using Kerberos

- The Entra device is NOT registered in our DNS (which seems expected)

- Name resolution fails unless using IP

Questions:

  1. Is there any limitation when using WinRM from a domain device to an Entra-joined (workgroup) device?

  2. What is the recommended authentication method in this scenario? (NTLM? Basic over HTTPS? Certificate?)

  3. Is DNS registration required or should I rely on IP / hosts file?

  4. Are there specific WinRM configurations required for Entra-only devices?

I feel like I'm missing something fundamental in how WinRM authentication works outside of AD/Kerberos.

Thanks!

reddit.com
u/Any-Victory-1906 — 7 days ago