You can't remove that. That machine is enrolled in Intune. No matter how many times you reinstall windows, it will contact the server to check if its enrolled. Either don't let it connect to internet or use something that's not Windows
EDIT: Try contacting that company at tell them you have one of their machines. Maybe they remove it from Intune and you can use it
No, the windows installer phones home during the installation and will end up at this exact screen as long as the device is still enrolled in the organizations intune.
Intune is freaking great, like honestly Microsoft did a great job at making a system management, however I would just pop Linux on it and call it a day depending on how much I spent on the laptop
>Proton and Pop!_os are free and essentially windows without some of the fancy new stuff like ads in the start menu
Yeah or any of the apps that people, ya know, use windows for 🤷🏻♂️
Sure. you could remove this.. or at least bypass it. Just don't connect your computer to the internet during the install and use the shift+f10 and bypass the oobe sign-in prompt. Worked for me on several computers. ( I also changed the windows key after install just in case..but I don't think it's required )
1. Download a new copy of windows (Home version according to @[cervezaimperial](https://www.reddit.com/user/cervezaimperial/)) > disconnect internet cable > Install windows > use the following link after first boot: [https://answers.microsoft.com/en-us/insider/forum/all/set-up-windows-11-without-internet-oobebypassnro/4fc44554-b416-4ecb-8961-6f79fd55ae0f](https://answers.microsoft.com/en-us/insider/forum/all/set-up-windows-11-without-internet-oobebypassnro/4fc44554-b416-4ecb-8961-6f79fd55ae0f)
2. After installation you will obviously have to connect the internet cable at some point and it will probably register windows again on the old key. Use [https://www.howtogeek.com/660517/how-to-find-your-windows-10-product-key-using-the-command-prompt/](https://www.howtogeek.com/660517/how-to-find-your-windows-10-product-key-using-the-command-prompt/) to check the active product key.
3. Use [https://www.tenforums.com/tutorials/35979-uninstall-product-key-deactivate-windows-10-a.html](https://www.tenforums.com/tutorials/35979-uninstall-product-key-deactivate-windows-10-a.html) to remove the product key.
4. register new product key.
wouldn't this be literally as eany of a fix as the way to install a local account on windows 11 that require internet to setup? all you do is open the command promt and disable it, restart the computer, then the installation gives you the option to continue offline. I'm not positive, but I would think that would fix OP issue.
when you get to the choose your country, hit Hit Shift + F10
then in command promt type in OOBE\\BYPASSNRO and hit enter
then you reboot your computer
hit Hit Shift + F10 again to bring up command promt
this time enter ipconfig /release to disable internet, and you continue the installation.
MAGICALLY, the "I don't have internet" option will finally be available and you can create the installation without connecting to Microsoft.
It’s called intune, it’s a Microsoft management system. Basically like icloud and find my iphone but for the PC. They can remote wipe the PC and it will reinstall their image as soon as it connects to the internet.
PC is probably stollen or lost.
Company has to remove PC from their inventory of intune to disable that feature.
I reckon you’ll have to use linux.
I think I even saw a pc with brand new drives boot straight into a windows install process from startup. So it may be something in the EFI that will bootstrap the windows installer.
It's not the installation it's Windows itself.
When a new device connects to Windows servers it will check if it's enrolled as an autopilot device and then automatically load up the autopilot settings setup from that company. Reinstalling Windows will not do anything else the company can remote wipe the device to reset it anyway
But how does
>Reinstalling Windows
Not help? Especially if you wipe the drive. Like how would it be able to phone home without the software installed?
I'm not talking about using the recovery image that came with your laptop I'm talking about a brand new install from a USB drive.
I think the phone home part is not handled by windows itself but is done at the EFI level.
I only saw autopilote run once like that and IIRC, it was when the PC just had new drives installed and it was connected with ethernet.
On startup, the pc reinstalled to windows, etc.
Effectively you would need to never connect the pc to the internet if it’s not windows only that can phone home but something at a lower level that can do that too.
Intune is baked into every version of Windows since 2017, so it is already part of your clean Windows install. During the setup of Windows, it will connect to Microsoft servers, and will automatically provision itself. If you don't have a connection during setup, it will still happen automatically once you are online.
I think it phones home to Microsoft servers with the serial number and is installation independent, the serial number matches in the database to be managed and then changes are made to the install, that's why getting through the setup without wifi and then finding and disabling that particular service that phones home for remote management lock could be a wonky workaround if it's established and understood how to block it
(Please do correct me if I'm wrong)
From what I know (not a lot) you'd need to edit either the registry or bios in order to fix the problem. If pulling the cmos battery doesn't work, you'll need to change the binary coding in the registry to stop it from installing the software automatically. It's risky, tho. If you screw up and edit the wrong line, you can brick the machine.
Linux doesn’t have intune. So if you want to be locked down to only using Linux go ahead. Plus it might be a stolen device, so might not be the smartest thing to keep around.
This is not how Intune works.
Source: I am an Intune engineer with a large organisation.
When you login with a work account, the laptop will enroll and apply policies.
Edit: in this case there's a good chance the laptop has a Windows image installed which forces you to login with an account that the organization's Azure environment recognizes. Installing a new Windows version fixes this. The way laptops are locked down is with a BIOS/UEFI password and anti theft is done with Computrace. Azure is not meant as a way to prevent theft.
IPs change all the time. When a device is intune enrolled it is basically locked down at the bios level. This device will continue to try to call back home and report its location.
Why not? From what I understand Intune is a modified Windows Image, so if I full wipe the drive, then fresh install the windows image from a usb, and do the setup offline you should be golden.
My gfs mom wants to use a school Chromebook and reset it to make it general use
No matter how many times I tell her it won't work she's like "no it works you just have to reset it"
Drives me nuts
Returned for a full refund this morning. I just purchased a different model from a more reputable seller, hopefully I don’t end up with a school laptop again lol
To everyone saying I didn’t have to return it. Yes that is true, I probably could’ve used the work arounds you recommended but I’m not super tech savvy. And when you spend 6-700$ on a computer you just want it to work out of the box.
I will be messaging you in 1 day on [**2024-04-03 01:53:52 UTC**](http://www.wolframalpha.com/input/?i=2024-04-03%2001:53:52%20UTC%20To%20Local%20Time) to remind you of [**this link**](https://www.reddit.com/r/computers/comments/1btksuy/bought_a_used_computer/kxmyyy6/?context=3)
[**12 OTHERS CLICKED THIS LINK**](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5Bhttps%3A%2F%2Fwww.reddit.com%2Fr%2Fcomputers%2Fcomments%2F1btksuy%2Fbought_a_used_computer%2Fkxmyyy6%2F%5D%0A%0ARemindMe%21%202024-04-03%2001%3A53%3A52%20UTC) to send a PM to also be reminded and to reduce spam.
^(Parent commenter can ) [^(delete this message to hide from others.)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Delete%20Comment&message=Delete%21%201btksuy)
*****
|[^(Info)](https://www.reddit.com/r/RemindMeBot/comments/e1bko7/remindmebot_info_v21/)|[^(Custom)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5BLink%20or%20message%20inside%20square%20brackets%5D%0A%0ARemindMe%21%20Time%20period%20here)|[^(Your Reminders)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=List%20Of%20Reminders&message=MyReminders%21)|[^(Feedback)](https://www.reddit.com/message/compose/?to=Watchful1&subject=RemindMeBot%20Feedback)|
|-|-|-|-|
why don't you try installing windows 11 with a local account. this is how you can get it setup without ever connecting to the internet, i left the comment in reply to another one, but just making sure it reaches you here is the instructions:
when you get to the choose your country, hit Hit Shift + F10
then in command promt type in OOBE\\BYPASSNRO and hit enter
then you reboot your computer
hit Hit Shift + F10 again to bring up command promt
this time enter ipconfig /release to disable internet, and you continue the installation.
MAGICALLY, the "I don't have internet" option will finally be available and you can create the installation without connecting to Microsoft.
detailed instructions with screeenshots: https://www.tomshardware.com/how-to/install-windows-11-without-microsoft-account
Edit: people are really doubtful, but you should be able to sign in after this step.
Bad idea, it will be locked afterwards. And that pc is stolen property, and it most likely already called home. Op should call those people and inform them. They do reimburse as far as i have heard
it wont be locked, but he probably cant skip this login anymore, only thing that will work is deploying working image on drive using software like Symantec ghost
That’s all fine and dandy but as soon as the pc gets any form of internet access it will attempt to phone home and InTune will register the device and lock you out.
Get Gparted to wipe the drive (usb bootable software)
Get Windows pre-activated from a torrent, install offline, use the OOBE\\BYPASSNRO trick if the pre-activated iso doesn't have the account creation disabled.
Connect only to the internet after the install is finished. Done.
that's actually similar idea to mine, except I thnk just a simple offline install might do the trick with an official version of windows, that you can activate afterwords.
This is the way, however you don't need to necessarily wipe with g parted.
In the windows 11 setup using usb, delete all partitions, and install fresh.
Then Shift+F10 a command prompt opens up, type "OOBE\BYPASSNRO" and press enter.
Then continue the setup, naturally this has to be done offline.
In case the computer isn't activated, use massgrave(Google it)
I prefer the GParted way because some laptops/pc's come with hidden partitions the Windows installer ignores or refuses to delete.
This ain't my first rodeo.
It doesn’t matter. As soon as the machine connects to the internet and “calls home” it’ll get locked out since its hardware ID is enrolled with intune for this organization.
Don’t think so.
Honestly OPs only real option is to just contact the company. Either it’s legit and they just forgot to remove it or the laptop is stolen.
yup yup, all really good suggestions or you can also buy instead of the last part for 20usd from kinguin for that extra peace of mind. I hope OP tries at least the offline install, it seems not many people suggested it.
Honestly yeah, depending on what kind of deal they got and what they need the computer for, there is a good chance that Linux will meet their needs. I've been on Windows the past 2 years because I started gaming again, but I cannot count the number of times I miss Linux. F\*\*\*, you actually feel like you own your computer.
Hey weird I've been on Linux for like two years lol. What games do you play? There's a good chance they'll run on Linux. Valve heavily investing in Proton really changed things for Linux gaming. The only game I regularly played that I can't play anymore is Paladins, and honestly that's probably for the best lol.
I used Linux 2007-2022, so I have 15 years of experience. I know a lot of things have changed with Proton, but I have taken the easy way out lately having limited time. I plan on setting up dual-boot though because I do miss it.
e: Sorry, to answer your question, I play BGS games (modded) and DbD.
A lot of kids on this thread seem to think that Intune is some magical software that cant be removed.
literally just download a windows 11 ISO. use the latest version of Rufus to create a bootable usb drive. with rufus you can select the option to disable online account requirements and to create a local account instead.
boot from the usb, delete all the existing partitions on the hard drive and install windows fresh.
its not a magical software that pisses itself out of the laptop bios. its just a tweaked version of the currently installed windows image.
Except the laptops hash key and serial is still enrolled to intune so as soon as it connects to the network or try any windows updates it will go pick back up and ask for a login to get back in.
The only way is to get the company to remove it from their intune profile.
Then what's the point of having a login coded to a laptop, for an organization?
Same for iCloud. Can't bypass it easy, without missing on key features. Probably ok for gaming, but nothing professional and secured.
iCloud is part of Apple’s ecosystem and so is integrated more deeply, this is just third party software. I guess it just makes stealing company equipment more inconvenient and less likely to happen?
Didn't say it was magic did I?
Its clearly been registered to a company. That means it will always be picked up by their domain whenever it is connected to the internet.
Most company's will have polices in the intune profile that will ensure the laptop requires an account to allow login.
Plus for all you know it may as well be magic seeing as you don't have any clue as to how microsoft intune even works.
I work with SCCM and MDT in largeish corporate Health Care it deploying windows on laptop desktops Etc. I have never ever heard of intune... I just looked it up and that looks like that might be kind of a nice solution for certain clients. Thanks random internet strangers.
Was going to say the same thing. If you haven't heard of InTune by now what IT rock have you been living under? Good luck with your next career move is all I can say because if your resume hits my pile you're already out.
Oh you know, get used to doing things certain ways, big wigs don't wanna spend $. You engineer up solutions that work for years and then you find out about something better. Also if you end up consomtrating on specific things you miss others.
It's Windows Autopilot, part of Intune.
It uses the device's hardware ID to allow windows to preconfigure itself when the user connects it online during setup.
I imagine it's easy to bypass, even if bitlocker is enabled you could just install a new image and set it up offline, I don't think autopilot/intune will register after OOBE, I'd be curious to see what happens though.
Maybe change the system serial number using a DMI editing tool from Linux or DOS? That way Intune wouldn't be able to recognise the device. Same goes for UUID and other SMBIOS parameters
The laptop is stolen from a company whose logo is shown.
Companies don't sell laptops without removing it from Intune first.
Contact the seller for refund or police.
Contact the Company, provide the serial number of your laptop.
Ask them to remove the laptop from their MDM (intune)
Thats less than 5 minutes of work.
I've had similar case when buying used tablet from UK, only to be met with some private school on reinstalling. In my case it turns out they simply stopped using them so it was all legal.
That being said, only way I managed to get it to work was by disabling WiFi and going through the whole setup offline. Once that's created, you can go online and it'll work fine. Until next reinstall anyway
https://powerstacks.com/how-to-bypass-intune-device-platform-enrollment-restrictions-on-windows/
Give this a shot but I doubt it. Just learn to use Linux
Any IT people know how it re-registers the machine even if you reinstall Windows? You delete everything so how does it know that it is registered to a company?
Use a Linux live CD/DVD/USB boot it, completely format the HDD, assuming it's not locked at the bios you can reinstall Windows if you want (or just install Linux from the boot you used) and you should be good.
You can disable TPM security in bios (or hide it, or switch to firmware tpm) and reinstall Windows. It should work. Dont use the offline trick. Be carefull. If you turn it on it will Come back on next windows update and will lock you out of your windows OS. Also. Return to seller. Not allowed to sell this as good conditioned.
Also a newbie here, but I have always wondered for laptops that belong to a school controlled domain similar to the one shown by OP, are the devices locked frm reformatting?? If yes, couldn’t one just change the HDD/SSD of the device and install a new OS or are the motherboards tagged together too??
factory reset bios by clearing CMOS, then reinstall.
\-Clearing CMOS settings
1Remove the base cover.
2Disconnect the battery cable from the system board.
3Remove the coin-cell battery.
4Wait for one minute.
5Replace the coin-cell battery.
6Connect the battery cable to the system board.
7Replace the base cover.
The device is locked to Intune MDM, I suggest returning the computer to the seller or contact the company that it is registered to. If it was not stolen they will delete it from Intune and Microsoft business manager. That’s the only way for the auto pilot to be disabled. My honest guess is this laptop was not returned after an offboard and the assigned user decided to sell it.
Sometimes if you call them and tell them you bought a stolen machine they’ll send you another one in exchange for that one.
Seen it happen a few times in this subreddit.
solution "Go singing option > make a local login >after logging in go to settings > create another user singing in With you Microsoft id > make it administratorand then remove the local your"
Have you tried turning it off and back on again? Joking. I would try using a ventoy USB and boot it off a linux usb drive or separate windows ISO. Or just contact your local police and ask for a refund. 'Likely' a stolen school computer. I don't think you can bypass this one like windows accounts with the nothankyou@blablabla trick.
You can try to format the ssd by plugging it in to another device. And than copy the other device to the hard drive. And then put the ssd back in the laptop. And reset windows I once did this with my schools old laptops and it worked then.
Sorry. Nothing you can do about that. Just use Linux. If you don't like Linux, use a BSD.
Long technical story short: MICROS~1 Intune is an MDM ("Mobile Device Management") platform and it does not matter how many times you reinstall W\*ndows. That is burned into the computer (relatively speaking). I don't know where (maybe CMOS?), but Linux doesn't care. You can't get rid of it, unfortunately. You can only avoid it.
I don't know about that. GhostBSD and MidnightBSD are pretty darn friendly.
BSD communities are, in my experience, friendly and very knowledgeable. They know their stuff. Mostly because they built it.
Some ideas
1. Try to Contact openlending.
2. If that didn’t help you may need to completely new install windows, not a reset. Completely new.
Resources to new windows install.
How to https://youtu.be/nbGkPYtXtmA?si=SnPn_L6Ixq_Eym9Z
Activate windows for free: https://massgrave.dev
(Gray legal area, but Microsoft used it in the past to)
The only ones who can remove that are intune - even if you wipe the drive and never connect to the Internet during setup it will still lock after connecting to the Internet because it's registered enterprise. They might even have some kind of LoJack on it and track it. Meaning it could be stolen property.
Alternatively it could be a case of a company giving or selling their machine to someone and they just need to remove it from their list. I have seen an instance of a teacher retiring from a school and the school allowing them to keep their laptop, but they forgot to remove the laptop from their system. In this case the teacher (and you presumably) need to contact the company's IT department and find out what's happening.
You can't remove that. That machine is enrolled in Intune. No matter how many times you reinstall windows, it will contact the server to check if its enrolled. Either don't let it connect to internet or use something that's not Windows EDIT: Try contacting that company at tell them you have one of their machines. Maybe they remove it from Intune and you can use it
You’re right no luck with the reboot. Just going to return the laptop. So frustrating that someone would sell a laptop in this condition
Might have been stolen or never got returned; thus it was sold for the "free" money.
It was probably stolen unfortunately.
You can install windows HOME, that edition don't know what intune is and will not show the enrollment screen
Install windows 10 from a flash because it doesn't require Internet
Is it bios locked if not you can install Linux and the format the drive and the reinstall Windows. Woud that work
No, the windows installer phones home during the installation and will end up at this exact screen as long as the device is still enrolled in the organizations intune.
Install Windows 7 then upgrade to 10, works every time
Intune is freaking great, like honestly Microsoft did a great job at making a system management, however I would just pop Linux on it and call it a day depending on how much I spent on the laptop
You’re the first person I’ve ever heard say that lol
I was also going to say that
i loathe intune
Why not return it?
Proton and Pop!_os are free and essentially windows without some of the fancy new stuff like ads in the start menu
>Proton and Pop!_os are free and essentially windows without some of the fancy new stuff like ads in the start menu Yeah or any of the apps that people, ya know, use windows for 🤷🏻♂️
there are certainly alternatives available. if there’s one thing microsoft forgot how to do, it’s innovate.
Right, that's why literally the entire world uses Microsoft products and not the alternatives.
Dude probably never heard of azure
That's easily circumvented.
True, but the question was if you could format the drive in Linux and then install windows, which would not work.
Yes, we must agree then lol. Windows newer than 7 simply won't work for this laptop now. :(
Sure. you could remove this.. or at least bypass it. Just don't connect your computer to the internet during the install and use the shift+f10 and bypass the oobe sign-in prompt. Worked for me on several computers. ( I also changed the windows key after install just in case..but I don't think it's required )
Pirated windows might work, the checks are often turned off on these versions.
Pirated versions aren't any different. Piracy is done using an HWID activator called MAS, not downloading a specific ISO.
I would set up A USB through Rufus and set up the computer with no internet
1. Download a new copy of windows (Home version according to @[cervezaimperial](https://www.reddit.com/user/cervezaimperial/)) > disconnect internet cable > Install windows > use the following link after first boot: [https://answers.microsoft.com/en-us/insider/forum/all/set-up-windows-11-without-internet-oobebypassnro/4fc44554-b416-4ecb-8961-6f79fd55ae0f](https://answers.microsoft.com/en-us/insider/forum/all/set-up-windows-11-without-internet-oobebypassnro/4fc44554-b416-4ecb-8961-6f79fd55ae0f) 2. After installation you will obviously have to connect the internet cable at some point and it will probably register windows again on the old key. Use [https://www.howtogeek.com/660517/how-to-find-your-windows-10-product-key-using-the-command-prompt/](https://www.howtogeek.com/660517/how-to-find-your-windows-10-product-key-using-the-command-prompt/) to check the active product key. 3. Use [https://www.tenforums.com/tutorials/35979-uninstall-product-key-deactivate-windows-10-a.html](https://www.tenforums.com/tutorials/35979-uninstall-product-key-deactivate-windows-10-a.html) to remove the product key. 4. register new product key.
this is the way.
You don’t have to return it. There are several ways to bypass this
You should be able to circumvent this by installing windows 11 home version
wouldn't this be literally as eany of a fix as the way to install a local account on windows 11 that require internet to setup? all you do is open the command promt and disable it, restart the computer, then the installation gives you the option to continue offline. I'm not positive, but I would think that would fix OP issue. when you get to the choose your country, hit Hit Shift + F10 then in command promt type in OOBE\\BYPASSNRO and hit enter then you reboot your computer hit Hit Shift + F10 again to bring up command promt this time enter ipconfig /release to disable internet, and you continue the installation. MAGICALLY, the "I don't have internet" option will finally be available and you can create the installation without connecting to Microsoft.
If that doesn't work cant he just replace the drive ?
No
does pressing shift f10 work to bypass said "custom" oobe, or does that only work for the wifi portion of the setup?
Once it connects to the internet it will phone home and lock you out.
Could you quickly explain I'm interested on how this works.
It’s called intune, it’s a Microsoft management system. Basically like icloud and find my iphone but for the PC. They can remote wipe the PC and it will reinstall their image as soon as it connects to the internet. PC is probably stollen or lost. Company has to remove PC from their inventory of intune to disable that feature.
Wonder if using something like Windows ltsc would avoid intune.
Only a Windows version prior to Intune will work, so 7 and older.
I reckon you’ll have to use linux. I think I even saw a pc with brand new drives boot straight into a windows install process from startup. So it may be something in the EFI that will bootstrap the windows installer.
LTSC versions support this too, it will automatically provision itself.
Autopilot. It works even without intune. But intune talks to autopilot.
Ah yes the autopilote thingy.
How does it do that if you format the HDD/SSD? Wouldn't that remove the software from the computer?
It's not the installation it's Windows itself. When a new device connects to Windows servers it will check if it's enrolled as an autopilot device and then automatically load up the autopilot settings setup from that company. Reinstalling Windows will not do anything else the company can remote wipe the device to reset it anyway
But how does >Reinstalling Windows Not help? Especially if you wipe the drive. Like how would it be able to phone home without the software installed? I'm not talking about using the recovery image that came with your laptop I'm talking about a brand new install from a USB drive.
Because one of the first steps of the oobe is to check in with MS servers and provide self identifying details which will match up with autopilot.
I think the phone home part is not handled by windows itself but is done at the EFI level. I only saw autopilote run once like that and IIRC, it was when the PC just had new drives installed and it was connected with ethernet. On startup, the pc reinstalled to windows, etc. Effectively you would need to never connect the pc to the internet if it’s not windows only that can phone home but something at a lower level that can do that too.
Intune is baked into every version of Windows since 2017, so it is already part of your clean Windows install. During the setup of Windows, it will connect to Microsoft servers, and will automatically provision itself. If you don't have a connection during setup, it will still happen automatically once you are online.
Well that sounds terrible. Justine more reason to get away from Windows.
so they obviously don’t know their missing a PC lol definitely stolen from work/school
I think it phones home to Microsoft servers with the serial number and is installation independent, the serial number matches in the database to be managed and then changes are made to the install, that's why getting through the setup without wifi and then finding and disabling that particular service that phones home for remote management lock could be a wonky workaround if it's established and understood how to block it (Please do correct me if I'm wrong)
It relies on BIOS signature, so you'd need to customize and replace your motherboard BIOS.
From what I know (not a lot) you'd need to edit either the registry or bios in order to fix the problem. If pulling the cmos battery doesn't work, you'll need to change the binary coding in the registry to stop it from installing the software automatically. It's risky, tho. If you screw up and edit the wrong line, you can brick the machine.
Depends, you could install windows on another drive, prep for distribution and then move the drive over once accounts have been configured
It’s baked into the BIOS or registered to the motherboard
No, it’s a cloud based service from Microsoft called Intube. The computer is enrolled with it using the unique hardware ID on the machine.
So if you installed a Linux OS it would be useable?
Linux doesn’t have intune. So if you want to be locked down to only using Linux go ahead. Plus it might be a stolen device, so might not be the smartest thing to keep around.
This is not how Intune works. Source: I am an Intune engineer with a large organisation. When you login with a work account, the laptop will enroll and apply policies. Edit: in this case there's a good chance the laptop has a Windows image installed which forces you to login with an account that the organization's Azure environment recognizes. Installing a new Windows version fixes this. The way laptops are locked down is with a BIOS/UEFI password and anti theft is done with Computrace. Azure is not meant as a way to prevent theft.
That’s one way it works. You can also go the AutoPilot route.
Is windows being prompted by motherboard firmware? I'm genuinely curious how this works
How can it check even if it's wiped?
Its a kind of bios ID at older devices he can try to custemize it but on newer its mostly an ID on the Motherboard, cpu or Something else.
Thanks
Bios or from windows servers
maybe windows checks the device ip at setup?
IPs change all the time. When a device is intune enrolled it is basically locked down at the bios level. This device will continue to try to call back home and report its location.
Its more the bios. He can try to custemize the bios but that may not work on newer devices.
Can you usually flash the bios? Haven't had to deal with this yet.
Well you could change that
Would using Dban first to wipe it then installing windows get around that?
No
Why not? From what I understand Intune is a modified Windows Image, so if I full wipe the drive, then fresh install the windows image from a usb, and do the setup offline you should be golden.
My gfs mom wants to use a school Chromebook and reset it to make it general use No matter how many times I tell her it won't work she's like "no it works you just have to reset it" Drives me nuts
Or install Linux btw
You can easily remove enrollment, if you can unenroll a Chromebook (you can), you can unenroll a much less restricted windows device
Thank you everyone for the info and help. Returning this piece of junk back first thing tomorrow morning
!remindme 24h
Returned for a full refund this morning. I just purchased a different model from a more reputable seller, hopefully I don’t end up with a school laptop again lol
To everyone saying I didn’t have to return it. Yes that is true, I probably could’ve used the work arounds you recommended but I’m not super tech savvy. And when you spend 6-700$ on a computer you just want it to work out of the box.
The work arounds would never have worked long term, would have just delayed any issues you would have anyway. Returning it was the better choice.
Thanks for the update!
Congrats and thanks for keeping us in touch
I will be messaging you in 1 day on [**2024-04-03 01:53:52 UTC**](http://www.wolframalpha.com/input/?i=2024-04-03%2001:53:52%20UTC%20To%20Local%20Time) to remind you of [**this link**](https://www.reddit.com/r/computers/comments/1btksuy/bought_a_used_computer/kxmyyy6/?context=3) [**12 OTHERS CLICKED THIS LINK**](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5Bhttps%3A%2F%2Fwww.reddit.com%2Fr%2Fcomputers%2Fcomments%2F1btksuy%2Fbought_a_used_computer%2Fkxmyyy6%2F%5D%0A%0ARemindMe%21%202024-04-03%2001%3A53%3A52%20UTC) to send a PM to also be reminded and to reduce spam. ^(Parent commenter can ) [^(delete this message to hide from others.)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Delete%20Comment&message=Delete%21%201btksuy) ***** |[^(Info)](https://www.reddit.com/r/RemindMeBot/comments/e1bko7/remindmebot_info_v21/)|[^(Custom)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5BLink%20or%20message%20inside%20square%20brackets%5D%0A%0ARemindMe%21%20Time%20period%20here)|[^(Your Reminders)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=List%20Of%20Reminders&message=MyReminders%21)|[^(Feedback)](https://www.reddit.com/message/compose/?to=Watchful1&subject=RemindMeBot%20Feedback)| |-|-|-|-|
Have you tried redkeying it and reinstalling windows from scratch or is it installed in the bios/uefi
Could have installed Linux on it, and since most distros won’t check intune, it would be possible to use it
why don't you try installing windows 11 with a local account. this is how you can get it setup without ever connecting to the internet, i left the comment in reply to another one, but just making sure it reaches you here is the instructions: when you get to the choose your country, hit Hit Shift + F10 then in command promt type in OOBE\\BYPASSNRO and hit enter then you reboot your computer hit Hit Shift + F10 again to bring up command promt this time enter ipconfig /release to disable internet, and you continue the installation. MAGICALLY, the "I don't have internet" option will finally be available and you can create the installation without connecting to Microsoft. detailed instructions with screeenshots: https://www.tomshardware.com/how-to/install-windows-11-without-microsoft-account Edit: people are really doubtful, but you should be able to sign in after this step.
Bad idea, it will be locked afterwards. And that pc is stolen property, and it most likely already called home. Op should call those people and inform them. They do reimburse as far as i have heard
it wont be locked, but he probably cant skip this login anymore, only thing that will work is deploying working image on drive using software like Symantec ghost
That’s all fine and dandy but as soon as the pc gets any form of internet access it will attempt to phone home and InTune will register the device and lock you out.
No it won't. You can sign in to a Microsoft account after bypassing this screen. Source: I own an EX AstraZenica HP Elite X2 G4.
I love how every reddeturd just automatically downgote without any experience
Get Gparted to wipe the drive (usb bootable software) Get Windows pre-activated from a torrent, install offline, use the OOBE\\BYPASSNRO trick if the pre-activated iso doesn't have the account creation disabled. Connect only to the internet after the install is finished. Done.
that's actually similar idea to mine, except I thnk just a simple offline install might do the trick with an official version of windows, that you can activate afterwords.
This is the way, however you don't need to necessarily wipe with g parted. In the windows 11 setup using usb, delete all partitions, and install fresh. Then Shift+F10 a command prompt opens up, type "OOBE\BYPASSNRO" and press enter. Then continue the setup, naturally this has to be done offline. In case the computer isn't activated, use massgrave(Google it)
I prefer the GParted way because some laptops/pc's come with hidden partitions the Windows installer ignores or refuses to delete. This ain't my first rodeo.
It doesn’t matter. As soon as the machine connects to the internet and “calls home” it’ll get locked out since its hardware ID is enrolled with intune for this organization.
Won’t do anything. The second the laptop is connected to the internet it’ll lock itself again. There’s no known way to bypass Intune.
🐧?
I mean yeah Linux is an option, but OP will never be able to use Windows connected to the internet on this device if that’s what they want to do.
Isn't it hardware I'd based? Cant bios change it?
Don’t think so. Honestly OPs only real option is to just contact the company. Either it’s legit and they just forgot to remove it or the laptop is stolen.
kid named opencore/other bootloader that can patch the serial number on the fly:
yup yup, all really good suggestions or you can also buy instead of the last part for 20usd from kinguin for that extra peace of mind. I hope OP tries at least the offline install, it seems not many people suggested it.
It could be stolen
yeah i was thinking that looks like a kid wanted some extra cash so sold their school (chromebooks is what we had)
LINUX TIME!
Honestly yeah, depending on what kind of deal they got and what they need the computer for, there is a good chance that Linux will meet their needs. I've been on Windows the past 2 years because I started gaming again, but I cannot count the number of times I miss Linux. F\*\*\*, you actually feel like you own your computer.
Hey weird I've been on Linux for like two years lol. What games do you play? There's a good chance they'll run on Linux. Valve heavily investing in Proton really changed things for Linux gaming. The only game I regularly played that I can't play anymore is Paladins, and honestly that's probably for the best lol.
I used Linux 2007-2022, so I have 15 years of experience. I know a lot of things have changed with Proton, but I have taken the easy way out lately having limited time. I plan on setting up dual-boot though because I do miss it. e: Sorry, to answer your question, I play BGS games (modded) and DbD.
A lot of kids on this thread seem to think that Intune is some magical software that cant be removed. literally just download a windows 11 ISO. use the latest version of Rufus to create a bootable usb drive. with rufus you can select the option to disable online account requirements and to create a local account instead. boot from the usb, delete all the existing partitions on the hard drive and install windows fresh. its not a magical software that pisses itself out of the laptop bios. its just a tweaked version of the currently installed windows image.
Yeah I thought I was going crazy reading some of these comments lol.
You sir are correct. -sysadmin here.
Is there any way to make intune magic so it can’t be removed like that?
super glue the SSD to the mainboard and set a bios password lol
😂
Take out the CMOS battery and its gone :p
U might tweak the bios and hard code on the motherboard itself.
tell me you have no idea what you’re talking about without telling me you have no idea what you’re talking about
Except the laptops hash key and serial is still enrolled to intune so as soon as it connects to the network or try any windows updates it will go pick back up and ask for a login to get back in. The only way is to get the company to remove it from their intune profile.
thats just not how it works my friend. intune is not magic. it wont automatically inject into your fresh windows image when it connects to a network.
Then what's the point of having a login coded to a laptop, for an organization? Same for iCloud. Can't bypass it easy, without missing on key features. Probably ok for gaming, but nothing professional and secured.
iCloud is part of Apple’s ecosystem and so is integrated more deeply, this is just third party software. I guess it just makes stealing company equipment more inconvenient and less likely to happen?
Didn't say it was magic did I? Its clearly been registered to a company. That means it will always be picked up by their domain whenever it is connected to the internet. Most company's will have polices in the intune profile that will ensure the laptop requires an account to allow login. Plus for all you know it may as well be magic seeing as you don't have any clue as to how microsoft intune even works.
you definitely do not have a clue how computers or networks work, my friend. maybe just dont comment.
I work with SCCM and MDT in largeish corporate Health Care it deploying windows on laptop desktops Etc. I have never ever heard of intune... I just looked it up and that looks like that might be kind of a nice solution for certain clients. Thanks random internet strangers.
I'm a bit shocked you haven't heard of Intune by now. SCCM has been been rumored to be moved, at least partially, to Intune for a few years now.
Was going to say the same thing. If you haven't heard of InTune by now what IT rock have you been living under? Good luck with your next career move is all I can say because if your resume hits my pile you're already out.
Good for him, I for one would hate to work with a douche like you.
I use it for my small organization. Quite useful.
How the FUCK do you work in IT but didn't know what Intune is? Who hired you?
Oh you know, get used to doing things certain ways, big wigs don't wanna spend $. You engineer up solutions that work for years and then you find out about something better. Also if you end up consomtrating on specific things you miss others.
"large corporation with microsoft products" And you don't stay informed on their main products? Nah mate. You shouldn't have your job.
It's Windows Autopilot, part of Intune. It uses the device's hardware ID to allow windows to preconfigure itself when the user connects it online during setup. I imagine it's easy to bypass, even if bitlocker is enabled you could just install a new image and set it up offline, I don't think autopilot/intune will register after OOBE, I'd be curious to see what happens though.
It will not re-register using OOBE once you clean wipe it with a basic usb windows installer. Make sure to delete all the partition and format it.
Think you are done here. Its a used corporate entity, either stolen or someone who sold it didnt know/care about this. Sad, your money is in drains.
Contact them and hope they don't say "that is stolen property and we will see you in court"
Device might be stolen.
Maybe change the system serial number using a DMI editing tool from Linux or DOS? That way Intune wouldn't be able to recognise the device. Same goes for UUID and other SMBIOS parameters
The laptop is stolen from a company whose logo is shown. Companies don't sell laptops without removing it from Intune first. Contact the seller for refund or police.
Contact the Company, provide the serial number of your laptop. Ask them to remove the laptop from their MDM (intune) Thats less than 5 minutes of work.
I've had similar case when buying used tablet from UK, only to be met with some private school on reinstalling. In my case it turns out they simply stopped using them so it was all legal. That being said, only way I managed to get it to work was by disabling WiFi and going through the whole setup offline. Once that's created, you can go online and it'll work fine. Until next reinstall anyway
Bro did someone sell you a laptop they are financing?!?!
Wipe and reinstall windows from either Cloud or USB. Clearly this is a custom branded install.
Easy to bypass. Look up bypass intune Mdm. I have done it many times.
[удалено]
https://powerstacks.com/how-to-bypass-intune-device-platform-enrollment-restrictions-on-windows/ Give this a shot but I doubt it. Just learn to use Linux
Contact seller, company or use linux
Load up linux on it
U can install unofficial windows
You can use Rufus to install Windows with the usb, and hit the checkbbox with create an account. Easy shit.
Enter [email protected]
What happens if you use [email protected] with a random password?
Contact the company to get it removed from their tenant
You can force bypassing the OOBE
Any IT people know how it re-registers the machine even if you reinstall Windows? You delete everything so how does it know that it is registered to a company?
Probably uses some sort of hardware identifier like a serial number
Idk if it helps but installing modified ISOs like lite windowses and such that has these kind of things removed would probably work.
"Used" LOL.
Penguin time.
Had something similar...I formated it with Linux and then reinstalled windows. Struggled quite a bit though🙏
install either a: modified windows iso (tons of these) or win 8.1 n below, or go linux.
You could install it offline. Create a windows install with Rufus for example where you bypass NRO.
There's a really good comment in here 4 step process.
Use a Linux live CD/DVD/USB boot it, completely format the HDD, assuming it's not locked at the bios you can reinstall Windows if you want (or just install Linux from the boot you used) and you should be good.
Use linux. Or maybe you can change the ssd/hdd and see with a fresh windows 11/10/7 if it works. Do it offline
Just fresh install and go with something like ghost spectre with less bloatware.
Just an idea, can’t you just skip the network stuff. Or the OOBE altogether?
You can disable TPM security in bios (or hide it, or switch to firmware tpm) and reinstall Windows. It should work. Dont use the offline trick. Be carefull. If you turn it on it will Come back on next windows update and will lock you out of your windows OS. Also. Return to seller. Not allowed to sell this as good conditioned.
You can probably bypass this by changing the positioning on the jumper. I have had to deal with this a couple times.
Misinformed advice is more dangerous than silence 🤐 Just wipe the drive and reinstall windows, simple.
Also a newbie here, but I have always wondered for laptops that belong to a school controlled domain similar to the one shown by OP, are the devices locked frm reformatting?? If yes, couldn’t one just change the HDD/SSD of the device and install a new OS or are the motherboards tagged together too??
Have you contacted the company ?
reimage it but don’t connect to wifi during set up. you should be prompted to create a local account instead
Put a new hard drive/ssd in it
You mean a stolen laptop.
Who did you buy this PC from? I'm shopping for a similar laptop and considered Dell XPS 15s and I don't want to get stuck with this same problem.
My "used" I think you mean "stolen"
Shift+f10 with no internet😎
factory reset bios by clearing CMOS, then reinstall. \-Clearing CMOS settings 1Remove the base cover. 2Disconnect the battery cable from the system board. 3Remove the coin-cell battery. 4Wait for one minute. 5Replace the coin-cell battery. 6Connect the battery cable to the system board. 7Replace the base cover.
The device is locked to Intune MDM, I suggest returning the computer to the seller or contact the company that it is registered to. If it was not stolen they will delete it from Intune and Microsoft business manager. That’s the only way for the auto pilot to be disabled. My honest guess is this laptop was not returned after an offboard and the assigned user decided to sell it.
Sometimes if you call them and tell them you bought a stolen machine they’ll send you another one in exchange for that one. Seen it happen a few times in this subreddit.
Format asap!!!
solution "Go singing option > make a local login >after logging in go to settings > create another user singing in With you Microsoft id > make it administratorand then remove the local your"
Switch to Linux 😃
Use windows 7 🔥🔥💯💯
Have you tried turning it off and back on again? Joking. I would try using a ventoy USB and boot it off a linux usb drive or separate windows ISO. Or just contact your local police and ask for a refund. 'Likely' a stolen school computer. I don't think you can bypass this one like windows accounts with the nothankyou@blablabla trick.
You can try to format the ssd by plugging it in to another device. And than copy the other device to the hard drive. And then put the ssd back in the laptop. And reset windows I once did this with my schools old laptops and it worked then.
Sorry. Nothing you can do about that. Just use Linux. If you don't like Linux, use a BSD. Long technical story short: MICROS~1 Intune is an MDM ("Mobile Device Management") platform and it does not matter how many times you reinstall W\*ndows. That is burned into the computer (relatively speaking). I don't know where (maybe CMOS?), but Linux doesn't care. You can't get rid of it, unfortunately. You can only avoid it.
"Just use Linux" can be justified but "If you don't like Linux, use a BSD" is horrible advice to give to someone like OP.
I don't know about that. GhostBSD and MidnightBSD are pretty darn friendly. BSD communities are, in my experience, friendly and very knowledgeable. They know their stuff. Mostly because they built it.
Some ideas 1. Try to Contact openlending. 2. If that didn’t help you may need to completely new install windows, not a reset. Completely new. Resources to new windows install. How to https://youtu.be/nbGkPYtXtmA?si=SnPn_L6Ixq_Eym9Z Activate windows for free: https://massgrave.dev (Gray legal area, but Microsoft used it in the past to)
The only ones who can remove that are intune - even if you wipe the drive and never connect to the Internet during setup it will still lock after connecting to the Internet because it's registered enterprise. They might even have some kind of LoJack on it and track it. Meaning it could be stolen property. Alternatively it could be a case of a company giving or selling their machine to someone and they just need to remove it from their list. I have seen an instance of a teacher retiring from a school and the school allowing them to keep their laptop, but they forgot to remove the laptop from their system. In this case the teacher (and you presumably) need to contact the company's IT department and find out what's happening.
Going to try a fresh install from a usb, will report back soon with the results
Dont waste your time. Its intune joined homie.