This is a post about enabling BitLocker on non-HSTI devices with Windows 10 version 1809 and standard user permissions. First of all a little background on HSTI. HSTI is a Hardware Security Testability...
Category - Identity
Oliver Kieselbach
Skip syncing specific Windows versions with Azure AD Connect synchronization rules
When enabling Hybrid Azure AD join in Azure AD Connect wizard it gives you the option to choose to enable the configuration for Windows 10 and down-level devices (Windows 7 and 8.1). A requirement for devices to be...
Nickolaj Andersen
Configure Restricted Groups Policy CSP with Microsoft Intune
In the on-premises world, many organizations use the RestrictedGroup Group Policy setting to place their own workstation admin groups on domain joined machines, and of course to remove other rogue local...
Zeng (Sandy) Yinghua
Automation of gathering and importing Windows Autopilot information
The following post is all about a complete process automation of gathering and upload of a device Autopilot information to the Windows Autopilot service with an Azure Automation Runbook. Table of content for easy...
Enabling Microsoft MFA for users in the organization – without user interaction
Helping user on-board to MFA
Michael Mardahl
Intune Managed Browser with Azure AD Application Proxy and Conditional Access
Recently Microsoft enhanced the Intune Managed Browser experience with Mobile Application Management (MAM) and app-based Conditional Access (CA) a lot. It is integrated into the Conditional Access story as an approved...
Deploy Hybrid Cloud Print
Update (March. 18. 2020) : If you are looking for cloud only print solution, Microsoft is offering now new print solution Universal Print. We often discuss what are the most blockers moving to Modern Management from...
Traditional Management vs Modern Management – Part 3 – AAD/Auto MDM Enrollment
Azure AD Joined/Azure Device Registration/Intune Enrollment I have spent a lot of time over the past few months working with Azure and Intune, there are a lot of toys to play with and a lot you can do and can’t do...
Terence Beggs
Create an Azure AD App Registration for accessing Microsoft Intune Graph API
With the announcement made recently that Intune on Azure is generally available, we can now fully leverage the Intune Graph API for automation. We’ve had access to the Intune Graph API for some time now during...
Create Azure AD Application with PowerShell for ConfigMgr and Upgrade Analytics connection
Recently I’ve published a few posts on Upgrade Analytics, like deploying the client script and how to setup a connection between ConfigMgr Current Branch (version 1610+) and Upgrade Analytics. Following down the...