KB5065083: New Method for Enrolling Older Windows 11 PCs to Prevent Failures

KB5065083: New Method for Enrolling Older Windows 11 PCs to Prevent Failures

Microsoft’s Latest Dynamic Updates: Insights and Changes

Recently, Microsoft rolled out its monthly dynamic updates, focusing exclusively on Windows 10 this time. The updates are cataloged under KB5065918, KB5065307, and KB5065845. Notably, the most recent dynamic updates for Windows 11 were made available in the previous month, along with Out-Of-Box Experience (OOBE) updates marked as KB5065848 and KB5065847.

Understanding OOBE and MDM Issues

In conjunction with the OOBE updates, Microsoft also published a crucial support document addressing issues related to Mobile Device Management (MDM) on older Windows 11-compatible devices. The term “older devices” generally refers to PCs running earlier iterations of Windows 11.

Impact of OOBE Updates on Enrollment Requests

Microsoft elaborated in its guidance article how the application version linked to the device’s enrollment request is modified after applying these OOBE updates. Specifically, if a device is operating on Windows version 26100.4770, the enrollment build version reflects that until the OOBE update is executed, resulting in the application version updating to 26100.4771. This increment is significant for the enrollment process.

Workarounds and Known Issues

Microsoft further clarified why these modifications are necessary, shedding light on a known issue concerning the OOBE updates KB5065848 and KB5065813. The failure to properly install these updates leads to the absence of vital Configuration Service Provider (CSP) policies, which may result in complications such as policy enforcement failures and users becoming trapped on the OOBE screen or during the initial setup.

MDM Enrollment Implications

Currently, MDM controllers, such as third-party MDM providers, do not have a way to determine if a device is capable (has the restore policy code present) of showing the restore experience during OOBE. Devices that can have restore enabled through OOBE packages are not supported to show the restore experience.

To enable the restore experience for older devices during device enrollment, the enrollment request now increments the application version by 1. This indicates that the older device is restore-capable, and the MDM providers should use this as a detection mechanism to send the restore CSP.

Find More Information

For additional details, you can visit the support article available here under KB5065083, which is hosted on the Microsoft official website.

For further insights, you may also check out this source.

Related Articles:

Download UniGetUI Version 3.3.5 – Latest Features and Updates
Microsoft Shifts Additional Control Panel Features to Windows 11’s Settings Application

Leave a Reply

Your email address will not be published. Required fields are marked *