You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: windows-365/enterprise/known-issues-enterprise.md
+20-2Lines changed: 20 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -40,7 +40,7 @@ A [resize](resize-cloud-pc.md) of a Cloud PC eliminates all existing [restore](r
40
40
41
41
## Windows doesn’t scan for software updates until the first time a user signs in<!--38212344-->
42
42
43
-
While a Windows PC (physical or Cloud PC) sits idle before the first user signs in, Windows Update doesn’t scan for or install monthly quality patches. This means that the PC might miss important security updates. Without the latest security updates, the device is exposed to security vulnerabilities.
43
+
While a Windows PC (physical or Cloud PC) sits idle before the first user signs in, Windows Update doesn’t scan for or install monthly quality patches. This means that the PC might miss important security updates. Without the latest security updates, the device is exposed to security vulnerabilities.
44
44
45
45
**Troubleshooting steps**: Make sure that a user signs in to new Cloud PCs as soon as possible.
46
46
@@ -51,7 +51,7 @@ Windows 365 provisioning failures may occur because both:
51
51
- the Desired State Configuration (DSC) extension isn't signed and
52
52
- the PowerShell Execution policy is set to Allsigned in the Group Policy Object (GPO)
53
53
54
-
**Troubleshooting steps**: Follow these steps:
54
+
**Troubleshooting steps**:
55
55
56
56
1. Did the on-premises network connection (OPNC) fail with the following error: `"An internal error occurred. The virtual machine deployment timed out."`?
57
57
2. If yes, review the related GPO. Is PowerShell Execution set to AllSigned?
@@ -64,6 +64,24 @@ Only the default Enrollment Status Page (ESP) profile is supported for Windows 3
64
64
65
65
For default ESP profiles, when using hybrid Azure Active Directory (Azure AD) Join, you must set the **Only show page to devices provisioned by out-of-box experience (OOBE)** setting to **No**.
66
66
67
+
## Cloud PC reports as not compliant for compliance policy
68
+
69
+
The following device compliance settings report as **Not applicable** when being evaluated for a Cloud PC:
70
+
71
+
-**Trusted Platform Module (TPM)**
72
+
-**Require encryption of data storage on device.**
73
+
74
+
The following device compliance settings report as **Not Compliant** when being evaluated for a Cloud PC:
75
+
76
+
-**Require BitLocker**
77
+
-**Require Secure Boot to be enabled on the device.**
78
+
79
+
**Troubleshooting steps**:
80
+
81
+
1.[Create a filter for all Cloud PCs](create-filter.md#create-a-filter-for-all-cloud-pcs).
82
+
2. For any existing device compliance policies that both evaluate to a Cloud PC and contain either of the **Not Compliant** settings, use this new filter to exclude Cloud PCs from the policy assignment.
83
+
3. Create a new device compliance policy without either of the **Not Compliant** settings and use this new filter to include Cloud PCs for the policy assignment.
84
+
67
85
## Next steps
68
86
69
87
[Troubleshoot Windows 365 Enterprise Cloud PC](troubleshooting.md)
0 commit comments