AI-powered PCs are changing the game for business productivity and MSPs are at the forefront of this transformation. With Copilot+ PCs and Windows Recall, organizations can unlock new levels of efficiency, but only if these features are deployed and managed with care. Here’s how to make the most of these innovations while keeping security and user experience top of mind.
What Makes Copilot+ PCs Different?
Copilot+ PCs are built for the future, featuring advanced Neural Processing Units (NPUs) that supercharge Windows AI features. These devices deliver lightning-fast responses, offline AI capabilities, and enhanced privacy by processing data locally. For MSPs, this means clients get smarter tools without sacrificing control.
Key Features:
- Windows Copilot: An AI assistant built into Windows 11, optimized for Copilot+ hardware.
- Microsoft 365 Copilot: A productivity booster that integrates with familiar Microsoft 365 apps, accessible via a dedicated keyboard key.
- Recall: A revolutionary feature that periodically captures and indexes screen snapshots, making it easy to find anything you’ve seen just by describing it.
Privacy and Security: Designed for Enterprise
Windows Recall is both powerful and built with privacy in mind. Users must opt in, and every snapshot is encrypted and protected by biometric authentication. Sensitive information like passwords and private browsing sessions are automatically excluded, and users can pause Recall or exclude specific apps and websites whenever they choose.
For managed environments, these features are off or restricted by default. MSPs can enable them through policy, ensuring only authorized users have access and that data stays secure.
The My365 Baseline Policy: Simplifying Deployment
To streamline management, the My365 Recall & Copilot policy brings together all the necessary settings for Copilot+ PCs:
- Recall is enabled for opt-in, but exporting data is blocked.
- The Copilot key launches Microsoft 365 Copilot, aligning with enterprise workflows.
- AI features like Click-to-Do, Cocreator, and Generative Fill are available for productivity.
- Sensitive apps and admin URLs are excluded from Recall by default.
- The policy is assigned to a dynamic group, ensuring all licensed users’ devices are covered.
Devices without NPUs will ignore unsupported settings, so there’s no risk of misconfiguration.
Deployment Best Practices for MSPs
Preparation is everything. Before rolling out these features, MSPs should:
- Confirm hardware and OS requirements (Copilot+ PCs, Windows 11 24H2 or newer).
- Ensure biometric authentication is set up for all users.
- Verify Microsoft 365 Copilot licenses and app readiness.
Onboarding Checklist:
- Create or verify the dynamic Azure AD group for policy assignment.
- Import or manually configure the Intune policy.
- Assign the policy and check scope tags.
- Communicate with stakeholders about new features and privacy safeguards.
- Prepare support teams with troubleshooting resources.
Phased Rollout:
Start with a pilot group, validate settings, then expand to all users. Integrate the policy into your standard baseline for consistency.
Monitoring, Troubleshooting, and Governance
Ongoing monitoring is essential. Use Intune, Defender for Endpoint, and SIEM tools to track policy application, device health, and security alerts. Regular reviews and user feedback help catch issues early.
Troubleshooting tips:
- Policy errors on unsupported devices are normal—filter out the noise.
- If Recall or Copilot features are missing, check group membership, OS version, and policy application.
- Escalate persistent issues with diagnostic logs.
Governance: Treat Copilot and Recall as part of your broader IT strategy. Manage update rings, communicate changes, enforce compliance, and customize policies for tenant-specific needs.
Maximizing Value, Minimizing Risk
With the right approach, MSPs can deliver cutting-edge AI tools that boost productivity and protect sensitive data. The secret is proactive management: keep policies current, educate users, monitor for issues, and adapt as needs evolve. Copilot+ PCs and Windows Recall aren’t just new features; they’re a new way to work.