 Hello everyone, and welcome to another Protected Trust Live. Joining me today, Steve Cornell, fan favorite. I've lost track of how many times you've actually done this live stream, do you remember? Four. I think four. Four? Then we should have you on several more times. I enjoy it. Anyway, today we're going to be doing something special. We're going to be doing a part unboxing, part demonstration. And what we're demonstrating is how to, I mean, maybe you should go over the explanation. Okay, so what Microsoft has offered is a feature for enrolling your devices that you either distribute out to your clients and they distribute it out to everyone else, called Autopilot. So Autopilot is a nice little feature where you can input a serial number to a machine, or from a machine anyway, into the Autopilot admin portal in their tenant, in their 365 tenant. Once that serial number is registered in there, you could take this wrapped Microsoft surface, for instance, with the serial number on the back and put it into your Intune or Autopilot portal and ship it off just like that to the user. So if they're in the fields, if they're in a remote office, you could send this out to them, completely wrapped. They can open it, connect it to their Wi-Fi, log into it with their 365 credentials. And once the process is finished, it will sync with another admin portal that we'll talk about at a later date called Intune, which can actually push down security policies, Windows policies, antivirus, business line apps, web browsers. It can push all those things down automatically, depending on, say, the group that this person is in. And so Autopilot is the first step to being able to have your users experience the out-of-box experience as coined by Microsoft. So I've already enrolled this one into a test tenant that we've set up, and I've already added the serial number. It's basically as easy as adding a serial number in a small CSV file, clicking import, and it's done. Okay, so should we do it? Let's give it a shot. All right. Oh, do I get to open this one? Yeah, you can. You don't necessarily need the keyboard for function, but it's nice. These surfaces are... Is there some sort of special way to open this? You've got to wish it open. Oh, there's tape on it. These are really well boxed as well. It's really thick cardboard, so try not to make as much noise on these tables here. The mic's picking them up, but, okay, so as you can see, we have a brand new surface. A lot of noise. And then that thing just attaches. Yep, it's just magnetic. Oh, you didn't even show off the little kickstand either? Oh, the kickstand on the back. Look at that. Yeah, that's great. It turns from a tablet to computer. Yeah, and then it does have a couple little features here where you can roll it up to where there's a little bit of a height. So what normally happens in most installations when you're enrolling a machine outside of Intune is you have all these questions you have to answer, agreements, and all these things that you have to answer to do it. Well, with Autopilot, you can toggle a lot of those off before you have your users go into it. So the basic questions that it does ask, I believe, is the country. Hi there. And Cortana is going to kick in. And I'm here to help. I'm going to go ahead and mute her temporarily. And it asks you for your language. Those are two things that you can't specify in the Intune portal. You basically have to let the user do that because these, in any company, could be going to any country, a lot of different languages. So we let the user choose that. So for now, Cortana kind of kicks in and gives a little bit of an intro. And it'll have us connect, pick the United States, and we're going to connect a Wi-Fi. And it's the right keyboard layout. Once it gets to the network, I am going to go ahead and connect to that. And as you can see, it's taking us already to our Protected Trust demo splash page here. So it's going to go out and look for some updates. It may find some, it may not. I think we just did an update, so it might. Yeah, it may find an update. So if this ends up taking too long, we can always circle back around after this finishes. Making sure I'm getting a good shot of that screen. Okay. So. I may be just a little bit too small for it to pick up. Yeah, it might be. But once it, you know, gets more taxed, it'll probably focus the camera a little bit better. Okay. So I'm going to set up for an organization. And I'm going to go ahead and fill out my information that I did for our test tenant. Okay. So while that's going, you can probably back the camera up that way. We'll just let this kind of run. But while this is going, kind of a brief explanation on what's happening with this is the serial number once added into the autopilot admin portal recognizes the device. So it adds it into your tenant. And you basically have the ability in the Intune admin portal to create groups. Say you have an admin group that has a lot, you know, less, you know, security restrictions, you can designate if the user that's going to get this particular thing is part of a group where they're created as a local admin. You can push ticketing system software, you know, like we use, you know, automate. So, you know, it could push one of those to every single machine that's in a group. It comes, it comes in handy. And so the autopilot part is the, is a really, really quick step before you do all that. The only thing that I will say about that is Microsoft has given us three ways to input this kind of information into the tenant and only one of them you can do a complete out of box experience because it only requires a serial number. There are two other things. There's a product ID and there's a hardware hash. And the other two ways, which is from the Microsoft store and directly from Intune to enroll a device requires the Windows product ID and the hardware hash, which you can't get until you unbox it. So having the ability to do it based on the serial number, which is, you know, clearly on the outside of the box and whoever you buy them from, you know, if you get the service from us, we already have it during our order. So, you know, we can easily go through and set that up. So now this particular surface does have a webcam and it does feature the ability to use Windows Hello, which has two parts to it, a pin and a face. So you can register your face and have it automatically unlock for you in the future. And the pin, these two things are also something that you can turn off in Intune. So you can have it set up to configure, you can configure how long the pin can be, the complexity if they can use Alpha Numeric or just Numeric. So there's a lot going on there. So I'm just going to go ahead and skip the face part right now. But it does require you to set up a pin. Every one of the surfaces that I've been in contact with, you have to have a pin. And it's the alternative to a password. You can use either or. So setting up a pin works great. And I will go ahead and put one in by default. I believe it's six characters. And the cool thing about this is it knows who I am and it knows my phone number. And it has, I don't know if you can see this, but Microsoft has sent me a code to go ahead and do this. And it recognized my account. It knew my cell phone number was listed in our address book. And so it said, so we know who you are, we're sending you a code. So that's a lot of security goes in to these things on the back. And then, you know, a lot of people don't realize, but okay, so I'm going to go ahead and set up a quick pin. Hey, I had to change camera. Oh, it's already all set. That was quick. So the pin set, now it's going to go to the desktop. The Microsoft account is there. And as you can already see the Intune, I added Google Chrome into our Intune to just push it down for this tenant. And it's already installed Chrome. So I mean, before we even got to it, one of the four programs has already finished installing. And so now what we're waiting on, excuse me, there are some business line apps that do require a little bit of time because of how large the installs are. So I mean, you're using MSIs to push programs down to these machines. Teams is opening up now. And teams is opening up now. So, you know, these types of things are working very quickly now. I think in the future, Microsoft may put those types of things in the process of what we were kind of doing. You know, as we're setting up a pin and as we're, you know, selecting different types of options during that kind of system prep, it's already installing a lot of those things. And as you can see, Google Chrome probably was, but the bigger ones, we would, you know, ideally like to see them all just immediately pop up when you log in. And it's already signing you in. Yep. It's already signing me into Teams with the account that I used. I don't think I have any conversations going on here because I'm the only user in that tenant. So I would just be talking to myself. Right. Yeah. So this is a new user. Yeah. Actually, you can see one of our other techs, Javier has a, he has a user within that tenant as well when we were, you know, playing around with multiple setups within the surface. And he's already listed in there. And the Teabot is a Teams bot that just kind of goes in and when it recognizes that you're new, it tries to help you out and tell you how to do certain things in Teams. Yeah. So we're just doing, this is a brand new user, right? You just hired them. All you had to do was know what the serial number was of the computer and set them up with a mailbox in your 365 tenant and you're done. And it already went. However, if we were dealing with someone who's like a five-year veteran of the company and they break their computer, it's the same thing. That's the beauty of autopilot and Intune. So with autopilot, it works the same way perfectly. Now, if you have that five-year user and they've been with 365, like say through us, and they have all their documents in OneDrive, maybe they have their file share, they move to, you know, SharePoint, they're using Teams, they have their email and outlook, everything is working in the 365 suite in the, in the cloud portal as we, you know, as we use it for. That user simply has to just open this, open this box just like we did, connect to Wi-Fi, sign in with their email address and password and all of their apps will install, OneDrive will sync, Outlook will open without prompting for credentials and so will Teams. And, you know, given variables on bandwidth and, you know, where they're at at the time and how much data needs to actually be dumped down, I would say within at least, you know, 15 to 30 minutes after doing it, their, their machine will be set up the exact same way their old one was. Right. Which is great. And especially with the programs that we have here, with the surface is if, you know, Microsoft has a really, really stand up warranty program when it comes to these, where they'll basically, you call them in and say, hey, you know, my screen's broke, it's not turning on, they do a little bit of troubleshooting, they drop ship you another surface that's identical to this. And with the autopilot program, you know, us, you know, in IT would take that serial number, we would input it into the tenant and the exact same way autopilot would just kick in and within 30 minutes, they're back up and running after having a total failure on a machine, back up and running in 30 minutes after receiving it in the mail. I mean, that's unheard of. You just, you never were able to do that before any of this. And I guess the main takeaway is that the IT guy never even touches the computer. No, not at all. It doesn't have to ship twice. We simply just get the serial number from the, the Microsoft tech when we open the ticket. We add it in there and it's already enrolled in autopilot before the user even gets it in the mail. We, we do the comparison that it's like getting a new iPhone, like if you drop it in the lake or something. Absolutely. Or smash it on the ground. Right, right. But yeah, so you're, you're not worried about your data when you lose your phone. You're like, oh, well, now I have to buy a new phone. But at least I know once I get that new phone, everything's going to sink back down to this phone. And now it's the same way with these computers. Absolutely. And it's, it's beyond, you know, anything that I've dealt with before. And I've been doing, you know, IT work for a really long time and at other companies, you know, if the computer goes down, you have to have an image. And then you have to have all these other things that go into it. And someone like me has to do it. Like it would, it's completely unheard of to have a user basically set up their own computer and still have all of their programs and data on there. Like you don't have to back up and restore anything. It's just there. And autopilot is, like I said, the first step to getting this device exactly where you want it to be. And it's a very easy and simple setup. And, you know, we can help, you know, any of our clients utilize that. So very cool, Steve. Yeah. Thanks for showing us. Absolutely. Thanks for burning a Surface Pro for us. Yeah, I know. I know. That's great. All right. And thank you everyone for watching. And if you like our content, don't forget to like and subscribe. Also, an additional step is to hit that notification bell so that you actually get notifications each time that we post a new video or a live stream. And also, thank you to our clients who make these live streams possible. Thanks, everyone.