Alex asked me for logos yesterday. I'm going to start off today just by getting a bunch of logos prepared. Different sizes, different layouts, different colors. I'm going to put them on magentaconstruction.com slash brand so that everybody has access to them.

Alright, most of the morning I was working on getting logos and everything compiled and organized. Alex asked me again, even though last week, or two weeks ago, I got it for him, or I told him where they were. Anyways, I made a page, magentaconstruction.com slash brand, I made a quick website, uploaded all the logos over there. I'm probably going to change it later, but at least there's something on there now with different variations of the logo. And anyways, I'm done that, I'm just getting Caroline's computer prepared right now before I go back into setting up the other tablet.

Alright, I've set up everything on Caroline's computer to do the backup, I'm going to let it do it in the background here, while I continue the Intune setup. And then I can get this tablet done, and I'll go drop it off tonight.

All right, just going to be going into Intune here, and I'm sure I originally set up Action One to be installed as a line of business item, or a line of business application, which is a way that it used to be the only option, actually, that you could do for installing applications, but in recent years I guess they changed that, and now there's also Win32 applications. And apparently they're better, and I had a quick look at them, and it, you know, does have some advantages for sure. The issue is that you can't use line of business and Win32 apps together for some reason, because I think there is something, when you provision, they'll try to, like, they're both actually using a separate system to do the installation, well, separate, consider it like a separate scheduler process, but they're using the same installer. So the LOB has its own process spooler, that, you know, scheduler kind of thing, and it's like, gets a list of LOB items to be installed, and it's like, yeah, I'm going to install this one, I'm installing this one right now, I can't install anything else, because installations can only be done one at a time on a Windows system. Well depending on what installation method they're using, here we're assuming that they're using install shield, Windows MSIs, but what ends up happening is that in the line of business and Win32 apps, what ends up happening is, yeah, they both hold their own separate list of applications to install, and then they're like, hey, MSI installer, install this for me, because this is a line of business item I need. And then the Win32 app may be like, hey, I want you to install this, and what's going to happen is the Win32 will actually end up getting an error, because the installer is already going to be installing something else, and then the whole Win32 process may end up getting aborted. Either that one app, or all of them may end up getting aborted. So I have to convert the line of business to Win32 right now, and then I can provision this computer.

Yeah, and this is stupid now as well, because, fuck man, why does everything have to be so complicated? Because Action 1 obviously wanted to change shit around as well, so originally they were installed in program files, and then program file x86, under a folder called Action 1, and all their stuff was in there, and I just checked Caroline's computer, it's installed in Windows, and apparently, yes, some do get installed in Windows, Action 1. So when I'm creating this in Intune, because Intune is fucking stupid, obviously fucking retarded, I have to check whether or not the application was installed before, otherwise Intune will just keep trying to install over and over and over and over again this file, even though it exists. And that's going to cause system errors, and if it does install, then it's going to cause a big complication, it's going to cause a huge thing, it might uninstall the good program and then leave it as a failed, bad installation. And then if it updates itself, and the GUID, the product code of it changes, then it's going to try to keep redoing it, it's going to be this fucking endless circle over and over. If Microsoft didn't think about this good enough, pretty fucking stupid for a big company like that, and it's pissing me off, and Action 1 for changing their folders around, like find one folder and keep it in there, one or the other, or provide documentation to let people know which ones to update into the Intune, but instead they have an old line of business install, which relies on Microsoft to detect whether it's been, like Microsoft's online database, to detect whether it's been installed or not. So once it's been installed, it gets flagged as installed in Azure, and it won't try to reinstall it again. Whereas this Win32 app, it physically checks the computer to see if it's installed or not. So this is absolutely fucking stupid, and it's pissing me off.

So now I got to find a detection rule or figure something out make a big host of them to potentially find in different spots I just I don't know Now an in tune for the detection if it has to match all or one or the other So I might have to write a detection script in PowerShell for this

And I'm sure, I'm guessing, but I'm sure that if I want to write a detection script, that's probably a premium feature from Microsoft, so they're going to want extra licensing because they're fucking greedy capitalist pigs.

fucking AI is being stupid right now I asked it because I didn't want to look up where the app was installed where it was installed and it's giving me some bullshit answer that it made up just guessing that it's installed in program files when it's installed in Windows files now and it's not even fucking searching the web to find that out sure somewhere on the web it would have the answer and then I asked it about detection rules and manually configuring detection rules and I asked it curiosity I know it's possible but in the path if I can use system variables and if it'll expand it and then I asked what the win 32 context or win 32 associations context association on 64-bit clients is just to see if it knew what it was talking about and so it answered in number one that it in tune does not support system variable path expansion and then in number two it answered that the context is asking and I knew this was what it was for but I see here in the tooltip what it was doing it explained that the 32-bit context is that so in in 32-bit applications are usually installed in program files and 64-bit they're installed in program files x86 so what sorry other way around what did I say here x86 is 32-bit anyways so 32-bit applications would usually be installed in program files x86 and 64 would just be installed in program files and what it's asking is associate 32-bit apps on 64-bit clients so if I'm running a 64-bit client and it's a 64-bit application then it should be installed in program files if it's a 64-bit client and a 32-bit application should technically be installed in program files x86 so when I use a system path variable system root for example then it needs to know how to associate it whether it's going to be a 32 or 64-bit and then it'll check the correct the the correct the it'll expand it from system root to program files or whatever it is anyways absolutely fucking stupid it doesn't do anything and it just gave me the answer right now I'm wasting more time with AI it's fucking killing me...

All right, I need to look up how to write a custom detection script in Intune because Intune sucks.

Man, AI is fucking stupid. It's literally taking me longer to try to get an answer with AI instead of just doing this myself, so I'm just gonna write it myself. I think this is why I'm so depressed lately, is because it's fucking... it's like talking to stupid fucking people.

I tried typing in ntunewin32 custom detection script example, for the amount of time that this shit has been around, you'd expect it to be like littered, like github would have tons of examples, but you can't even find a simple fucking example of somebody, somebody like creating a one, a detection, custom detection script, like fuck man.

Makes me feel like I like makes me feel like the world just started today like nobody else has fucking done this Nobody else has had any fucking similar situation either that or Nobody fucking I Don't know nobody knows how to do it

Alright, fuck it. I'm gonna write my own fucking detection script. I fucking hate PowerShell. I really fucking hate PowerShell. I really fucking hate PowerShell.

all right I wrote the detection script and even more reasons Microsoft is stupid they're specifically asking that files be saved in UTF-8 without BOM BOM is byte order mark they could just allow you to type it online instead of saving a file and uploading the file or they could just take the file and they could remove it for you that would be too smart that'd be too smart to just have a simple script that checks hey does it have BOM yes let me remove it does it not have BOM good is it in UTF-8 no let me convert it and let me store it as UTF-8 or binary or whatever format I want to but no they instead of making it easy they make it more complicated more possible places to have a problem anyways detection script is done I've updated that I won't know until next time it does its check all of Caroline stuff is done backed up and I'm just gonna do just gonna check a couple other things so I did that I have to remove the line of business and then after I do that I'm just gonna install this and I'm gonna go drop this computer off so it's ready to go in the rest I can configure

I wish I could print this conversation out with AI to show how stupid it actually is. Anyways, I'm not going to waste my time with that, I've wasted enough time. This is the newest and best model, apparently.

Looks like I already removed it before, so I'm just going to confirm that it's added into the autopilot here.

Set to 23 degrees. All right, the device is starting to provision now. I set up a OneDrive configuration profile and I have action one. So we're gonna see how device preparation works. And if everything that I did seems to work, I will also volunteer doing this. There are some other computers, one of which was from Ryan. I think we're gonna give to Alejandro so we could swap Caroline's computer. And it'll prepare that one as well. So let's give it a try. There's Tin's old computer as well. I gotta find out which one is better. And actually I lost. Where the hell did the other laptop go? Okay, I gotta go hunt for Ryan's old laptop.

All right, I found it. Now to find out which one has the better specs. I assume Tins actually does. HP 15-FD 003C versus HP... I'm going to give this one probably a 17. A bigger monitor for doing accounting is probably better to have. Okay, it won't be that easy. Maybe AI can help with this one. I doubt it. Let's see if it'll do it. Looks good. This one's AMD. For real? No. It's not an AMD, you fucking idiot. It's an i5. Is this one an AMD though? Nope, that one's an i5 as well. So they're both the 15's newer gen i5. That's only got 8 gigs of RAM? Really? They're both Iris Xe I guess. Nope, this one's Xe. And this one... has an Xe as well. Okay, he gets the better one. Alright, so... Kind of hoping that wasn't the case. Because I want to copy all of Tin's files over just in case. Let me get started on doing that now I guess.

Great, registering your device for mobile management, there was an error with Windows. And a quick Google search apparently shows that this has been going on for the last three years. Thank you Microsoft for making a quality product and making my life easier because I don't need any more stress. Thank you.

Fuck, I really don't want to deal with this shit in the middle of the night. I'm gonna, I guess, get started on this computer. If it doesn't resolve. And, uh, I don't know. I don't really feel like doing this into the night, so... I don't know. And, if I do... Like... I want to be able to document everything, but... I don't know if it's network error, or what's causing it, but... And to find that out... It'll be half an hour, 45 minutes. Just to figure out what's going on. Maybe even an hour, actually. Wouldn't be surprised. I'm gonna have to go in... And check Active Directory logs. I'm gonna have to check Intune logs. If that doesn't work, I'm gonna have to see if I can pull up... The setup logs on this computer. If that doesn't work... Then I'm gonna have to get Wireshark, and listen with Wireshark to see what's going on.

Well I don't know. I see the device here. It says device action status, no data. Device name, pick that up. Management name is bullshit. No primary user, which is good. Enrolled by is empty. Ownership is corporate, serial number, everything is good. Compliance is not evaluated. It picked up all the information. It's got TPM. Default device compliance policy system account. There's an error. Has a compliance policy. Signed. Enrolled user exists, is active, those are both compliant. Has a compliance policy assigned. Account protection was set up. On-drive configuration was set up. It's part of the group. Apparently. I see why it timed out. Because there's 365 apps. Waiting for the install status for Microsoft 365 apps. Which may take a while. And that's why there might have been an error. Enrollment status page. That's been skipped because of that. Because I'm doing it a different way. But it looks like it's being added in. I think we just have to potentially wait and see. If I don't understand how it could have already applied device configuration for OneDrive when OneDrive hasn't been because OneDrive comes with the system. It's not part of the Microsoft 365 apps. Gotcha. All right. Well, we'll see, I guess. We'll see when this installs. I think the Microsoft 365 apps may have been a bad idea to require an install. So I got to find out how to undo that.

More stupidity, trying to make a compliance policy, and I've gone pretty much all the way through, and now I have to have a notification policy for a noncompliant device, and it says select a template to use. Guess what? I can't make a template here. I've got to close all this shit down, create a template, and then come back in and restart this compliance policy, and then select the template. Because again, it would be so hard for them just to have a button that says create a new template. Alright, here we go. We'll go do that and start over because it's not showing up in the list here.

Alright, I'm going to go on to Tim's computer here because this office install may end up taking quite a while. Holy fuck, he has a lot of files on here. Let's hope I have a USB.

apparently Intune management extension has failed. I won't be able to check the logs until after it's actually completed the error. Anyways, I'm starting to back up all of Tim's stuff into our SharePoint.

All right, I'm going to check out, well, I'm uploading all of Tin's stuff right now. I don't know why. Hold on, I don't want users, I want devices in Active Directory. No, I don't want it. It's making me go to Intune. Maybe make, ah, enter ID, okay, devices. Total number of devices. What's this one? Is this the computer right now? No, 12, 23, 22, 23. Which one is the newest one? Three, two, four. What? How am I the owner? How did it automatically assign me as the owner? Who the fuck is three, two, four? That's this computer. Yeah, that's this computer. Oh, apparently, Windows 10, or apps for Windows 10 has now installed. This is a really weird ass fucking system, to be honest. And three, two, four is showing here. So Microsoft Intune is M to the M. And security setting management is by MDM. And it's showing that it's a compliant device, which means that it re-evaluated and it registered. Somehow automatically registered me as the owner, which is not correct. But I guess it's doing some shit in the background and it figured something out. And I'm waiting for, I have no idea what I'm waiting for. Well, oh, because now I added another compliance policy. What's this compliance policy? Where is this compliance policy assigned? Enrollment, no, it's gonna be compliance. Enrollment, no, it's gonna be compliance. Default compliance policy for Android. So, default compliance policy. Okay, so it's gonna wait now until default compliance policy, but that doesn't even exist. Okay, anyways, I guess we'll wait and see because it looks like there's some progress being done. Tin's desktop is backed up. Oh no, it's still uploading. Son of a bitch, that's gonna take a long time. We did my little update here, but it just disappeared, uploading 4,615 items. Okay, I guess in the meantime, I'm gonna tidy up my documentation and discover the other files on his computer.

Nope, it's still counting the files. It's gone up to 6700 files. I don't know what the hell he has on here. 6800 files, but this will probably be uploading for a while, considering that it's tethering off of 4G.

ご視聴いただきありがとうございます。

Alright, well, yeah, I'm going to finish for today. This computer, I don't know why I think it fucking restarted. Yeah, I don't know.

so everyone is still waiting I'm gonna try to restart it I guess I don't know what else to do man I don't know I think it fucking crashed and no way to find out oh so I got fucking stuck all I oh weird it like timed out in device prep but I just rebooted it and it said completed now it's working on device setups identifying security policy certificates network connections apps an account set I'm gonna have to check in TINs and SharePoint doesn't really count total number of files that's uh oh Because Discarded Okay, I don't think that it will give me Yeah, it's not going to tell me oh Maybe details No It's not going to tell me how many fucking files are in here Yeah Great All right I don't know how to fucking Maybe Add column No, so hide columns Item child count and a folder count I Thanks Thanks Any seven items I I want the total

Alright, this is taking forever, I don't know, I'm going to have to shut this down because I haven't eaten today, so I kind of want to eat and go to bed. Fuck, I don't really want to make food right now, I'm so fucking tired. Check for your Windows MDM diagnostic log. Fuck, everything should be online, not fucking... Sigh. Reports. Log, analytics. I'm sure a subscription is required to use this capability. Everything fucking needs an additional license, right? Right. Alright. These are uploaded from Tim. I'll upload one more file. Just to have it out of the way. Okay. And I've got a bunch of files left for tomorrow to do. Because everything fucking works at a turtle base with anything like this. I don't know why it's so complicated for a company to build a good product that actually works. Because it's not hard. You just have to test. Make sure that everything works. Try to break it. Try to break it. And if it breaks, then fix it. Oh, fuck. Fuck. Fuck. Okay. Right. All these guys. We'll have to do them tomorrow. Okay. These guys are fucking simple. I love this. Can the storage sit in there on their desktop? Or in the pictures? Oops. And that's it. Nobody's actually... Nobody's actually storing stuff hidden in folders.