I'm looking for advice on how to handle a connection issue we're facing with our new Windows 11 laptops in a domain environment. We have always relied on a pre-login VPN that allows domain access even for users without cached credentials. This has been crucial for pushing software and updates remotely. However, with our new batch of laptops running Windows 24H2, users are unable to connect to WiFi networks at the Windows logon screen. This is problematic for those without cached credentials because the VPN can't connect before they log in. From what I've observed, it seems that Windows has changed how wireless profiles work, and they no longer seem to be available system-wide at the logon screen. I've come across suggestions for exporting and reimporting wireless profiles using PowerShell, but this doesn't seem feasible for us due to the variety of hotspots we use. Is there a more efficient way to manage this situation in Windows 24H2? I'm open to any tips or suggestions!
2 Answers
It sounds like you're running into a default behavior change with how Windows handles wireless profiles on domain-joined machines. You should definitely check how your system image is set up because it's still possible to connect to WiFi networks from the login screen. If you’ve done that correctly but still face issues, there could be some settings that need tweaking within your image or group policies.
Have you considered using MDM to push wireless settings to those laptops? I know you're starting with Intune, but this might help in distributing the SSIDs more efficiently. It might feel similar to GPO, but MDM could offer better management flexibility for different networks you have.
That's an interesting point! We're still ironing out some issues with our Intune setup, but I'll explore how MDM could manage multiple SSIDs effectively. Thanks for the suggestion!
Actually, no. The behavior has shifted, and now wireless profiles are mainly user-based instead of system-based, especially when on a domain. Once you log in and then log out, any connected SSIDs won't be available at the logon screen anymore. This is an expected change in Windows 11, unfortunately.