At Ignite 2019 Microsoft announced BitLocker key rotation for Intune managed Windows 10 devices. It is a long awaited feature and closes the feature gaps in the cloud managed BitLocker solution. In this article we have...
Category - Identity
Oliver Kieselbach
Passwordless journey with FIDO2 – Part 2 – Usage experiences
For earlier posts, please find them here: Passwordless journey with FIDO2 – Part 1 – Getting started with Security keys In the last part of this blog post I wrote about the beginning of my passwordless journey and which...
Michael Mardahl
Get started with Azure AD Report Only Mode for Conditional Access
The Microsoft Azure AD Team has just released a long awaited feature in public preview. That feature is called Azure AD Report Only Mode for Conditional Access. Report-only mode allows administrators to evaluate the...
Jan Ketil Skanke
Passwordless journey with FIDO2 – Part 1 – Getting started with Security keys
FIDO2, Multifactor Authentication, passwordless, Windows Hello for Business, Microsoft Authenticator, Security keys and a whole bunch of other fancy security words are taking the spotlight these days, and with good...
iPadOS launch breaks Azure AD Conditional Access
As Apple are getting ready to release iPadOS to the masses on September 30th 2019 there are important matters to take care of. If you have both MacOS and iPads in your enviroment there are difficult choices to be made...
Adding a new door to LAPS
Adding a new door to LAPS to get easy access to Local Administrator Account Passwords.
How to decode Intune Win32 App Packages
The new Intune Win32 app management is a great way to deploy Win32 apps with Microsoft Intune. Imagine you have a kind of source share for all the .intunewin files you have created. At some point in time you...
Enabling BitLocker on non-HSTI devices with Intune
This is a post about enabling BitLocker on non-HSTI devices with Windows 10 version 1809 and standard user permissions. First of all a little background on HSTI. HSTI is a Hardware Security Testability...
Skip syncing specific Windows versions with Azure AD Connect synchronization rules
When enabling Hybrid Azure AD join in Azure AD Connect wizard it gives you the option to choose to enable the configuration for Windows 10 and down-level devices (Windows 7 and 8.1). A requirement for devices to be...
Nickolaj Andersen
Configure Restricted Groups Policy CSP with Microsoft Intune
In the on-premises world, many organizations use the RestrictedGroup Group Policy setting to place their own workstation admin groups on domain joined machines, and of course to remove other rogue local...
Sandy Zeng