Works standalone
Perfect with Intune

Provision Manager

Bare-metal provisioning, reimagined for modern IT

A cloud-native platform for bare-metal OS deployment, device recovery, and automated driver orchestration. Provision any Windows device from scratch to ready-to-work — using nothing but an internet connection. Works standalone, or as the foundation your Intune and Autopilot strategy is missing.

<strong>Request a Demo</strong>
<strong>Start Free Trial</strong>
ration
CapaOne Provision Manager
CapaOne Provision Manager

HOW IT FITS

Where CapaOne Provision Manager steps in

Microsoft Autopilot requires a working OS. Intune manages devices that are already running Windows. Provision Manager covers what neither can — deployment from nothing.

Phase 1
Bare-metal device
  • New device, no OS
  • Corrupted system
  • Malware recovery
  • Refurbished hardware
Phase 2 · Provision Manager
Cloud OS deployment · Driver matching · Secure baseline
  • Vendor-certified drivers
  • Remote recovery
  • No server — internet only
  • One image · All models
Phase 3
Autopilot + Intune
  • Azure AD join
  • Configuration policies
  • App deployment
  • Ongoing management
The same applies to broken devices, malware recovery, and remote onboarding — all scenarios where Autopilot can't start.
<1h
From bare metal to ready device
First deployment template configured and first device booted in under one hour.
0
Deployment servers needed
Decommission all on-premise deployment infrastructure and its associated maintenance burden.
Fewer hardware-related tickets
Manufacturer-certified drivers eliminate an entire category of support cases.
Audit-ready documentation
Full logging of all OS and driver activity. No manual record-keeping required.
Provision Manager
CAPABILITIES

What you can do

A 100% cloud-native solution for bare-metal OS deployment, device recovery, and driver orchestration — with no servers, no images to maintain, and no manual packaging.

Move to a zero-infrastructure model and retire legacy deployment servers entirely
Perform true bare-metal OS deployment over the cloud on any device, without needing a local server or physical media
Recover failed devices remotely by triggering a clean cloud-based re-image
Automatically install manufacturer-certified drivers for Dell, HP, Lenovo, and Microsoft devices
Automate driver orchestration and lifecycle management across devices already in production
Extend Microsoft Autopilot with the bare-metal foundation needed to prepare any device for enrollment
☁ Cloud-native
Secure OS image
Clean, up-to-date Windows images delivered directly in the platform.
🔧 Drivers
Certified drivers
Dell, HP, Lenovo and Microsoft. Official packages only.
📋 Logging
Full logging
All deployment activity logged and available for audit at any time.
EU
European sovereignty
European-built. Hosted in the EU. Your data stays in Europe.

Take a Closer Look

LEGACY VS. CLOUD-NATIVE

What you leave behind

Provision Manager eliminates the infrastructure and manual work that makes legacy deployment expensive, slow, and a security risk.

Legacy · MDT / on-premise
Local deployment servers requiring constant maintenance and patching
Manual OS image maintenance per hardware model
Hours spent on driver research and packaging every cycle
Failed devices must be physically returned to IT
3–5 days of downtime for remote device failures
Provision Manager · Cloud-native
One universal image for all device models
Automatic vendor-certified driver matching
Remote recovery triggered from the cloud — no shipping
Device back in action within hours

SECURITY & COMPLIANCE

A clean, verifiable foundation for every device

Reduce your attack surface by ensuring every endpoint runs on the latest manufacturer-approved driver versions.
Eliminate risks from unknown configurations by deploying a clean, standardized, and updated OS image to every device.
Demonstrate compliance for audits and change management with clear visibility into OS and driver states across all endpoints.
Restore any Windows device to a known, good, trusted state after a malware attack using a secure, cloud-based re-imaging process.

REMOTE RECOVERY

Device fails in Frankfurt. Back online within hours

No shipping. No days of downtime. IT triggers a cloud re-image — the user is back at work the same day.

Device fails
Frankfurt · Remote
Provision Manager
Cloud · EU-hosted
Back online
Same day
3–5 days
Downtime with legacy — shipping + full reinstall
< 2 hours
Recovery with Provision Manager — cloud re-image

CLIENT TESTIMONIAL

"The flexibility is what stood out immediately. I reinstalled a machine from remote office — no local server, no USB key, no company network. And knowing I can recover a completely bricked device from the cloud changes how I think about device failures entirely."

LOL
Lars Olsen Senior Desktop Manager, LEMAN

WORKING WITH MICROSOFT AUTOPILOT AND INTUNE

The gap Autopilot cannot close

Provision Manager works standalone as a complete provisioning platform — or as the bare-metal foundation Autopilot and Intune require. Use it either way.

Bare-metal device

No OS — cannot boot

Windows Autopilot

Requires a working Windows OS

Provision Manager closes the gap
Bare-metal device

No OS

Provision Manager

OS · Drivers · Secure baseline

Provision Manager

OS ready for enrollment

Autopilot → Intune

Configure · Manage · Daily operations

"Autopilot needs a working OS. Provision Manager provides it."
Standalone — without Intune
Provision Manager + Application Manager deliver a fully managed endpoint — no Intune required
Deploy OS, install certified drivers, and push applications from one cloud platform
No Microsoft dependency — full endpoint control from day one
With Intune + Autopilot
Provides the bare-metal foundation required for Microsoft Autopilot enrollment
Extend Intune with continuous driver management to improve fleet stability and security
Create a true zero-touch experience from bare-metal boot to daily endpoint use

TYPICAL IMPLEMENTATION

From decision to production in four steps

01

Configure deployment templates

Set up OS settings, regional preferences, and driver policies directly in the platform.

02

Connect your management layer

Integrate with Intune for seamless handoff — or run Provision Manager standalone without Intune.

03

Pilot on selected devices

Validate the workflow on a limited number of endpoints before rolling out broadly.

04

Operationalise the solution

Use Provision Manager for all new deployments, remote onboarding, and cloud recovery.

Most teams complete step 01–02 on day one and run their first deployment the same day.

Have More Questions?

You don’t need to. We provide the latest images directly in the platform, saving you the significant time and effort of building and maintaining them yourself.
 

The platform automatically identifies the hardware model and applies the correct, vendor-certified driver pack, eliminating manual driver management and guesswork.
 

No. Provision Manager is a complete standalone platform. Combined with Application Manager, you can deploy an OS, install certified drivers, and push all applications without Intune. For organizations already running Intune, Provision Manager adds the bare-metal deployment layer Intune cannot provide.
 

Microsoft Autopilot configures devices that are already running. CapaOne Provision Manager provides the essential bare-metal operating system foundation for new or broken devices. It also complements Intune by providing ongoing, automated driver management to improve fleet stability.
 

Yes. Provision Manager closes the gap MDT leaves behind — bare-metal OS deployment, device recovery, and driver orchestration — without the on-premise infrastructure that made MDT complex to maintain and ultimately impossible to secure.
 

It takes less than one hour to configure the first deployment template and boot the first endpoint from bare-metal.
 

Security is foundational. We ensure a secure baseline by using clean OS images and only provide official, vendor-certified driver packages to prevent tampering. The platform is built on a secure, modern cloud architecture hosted in Europe.
 

Latest from Us

NIS2 Audit Documentation: Can You Prove Your Endpoint Posture?

With the first NIS2 audit deadline on June 30, 2026, most IT teams are about to find out whether their security is real or just well-intentioned. According to a CyberSmart survey of 670 European business leaders from April 2026, only 16% of organisations consider themselves fully NIS2-compliant. The gap is not poor security. It is missing […]

Mickala Schwanenflügel Eilskov
No comments

NIS2 Requirements for Endpoint Management: A Practical Guide

NIS2 does not tell you which tools to buy. It tells you what you must be able to prove. For endpoint teams, that difference changes everything.  Most organizations subject to NIS2 already have patching processes, endpoint tools, and security policies in place. The compliance gap is rarely a question of intent. It is a question of evidence. NIS2 emphasizes operational capability […]

Mickala Schwanenflügel Eilskov
No comments
<strong>Read More</strong>

Ready to get started?

Consolidate your Endpoint Operations with CapaOne

<strong>Request a Demo</strong>
<strong>Start Free Trial</strong>

CapaOne is a European-built, cloud-native Endpoint Management Platform. It works standalone or alongside Microsoft Intune — giving IT teams an automation-first way to simplify operations, strengthen security, and eliminate tool sprawl across their entire endpoint estate.

Copyright © All Rights & Reserved 2026 CapaOne

Top