Browsed by
Month: May 2020

Intune auto MDM enrollment for devices already Azure AD joined

Intune auto MDM enrollment for devices already Azure AD joined

Today I spend some time to enrol existing azure ad joined devices into Intune. These devices were azure ad joined without Intune enabled/configured. There are 2 ways to make sure the device will be registered in intune Group Policy:  Computer Configuration > Administrative Templates > Windows Components > MDM. 2. Registry: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\MDM]“AutoEnrollMDM”=dword:00000001“UseAADCredentialType”=dword:00000001 When you apply these changes. You will notice a new Task is being created in the task scheduler. Give it some time… and…

Read More Read More

Blocking Websites on IOS/Android

Blocking Websites on IOS/Android

Picture the next Scenario: You have implemented App protection Policies and you require Approved Apps on ios and android. You still want the user to be able to copy/paste the business data between the approved apps. People can still copy/paste the business data into an approved web-browser (EDGE). So if a user signs into their personal Gmail account… they can copy paste information in it. You can create an App Configuration policy to block websites on ios and android devices…

Read More Read More

Azure Files from anywhere!!

Azure Files from anywhere!!

Normally you will put your data in onedrive/sharepoint/teams. But when you have got a lot of Data which should be archived, you can put it on a Azure File share as an example But of course the SMB port 445, is being blocked outbound on most ISP’s. Of course you can think of solutions with VPN’s. But just a thought, why not using a Https connection to map a network drive to it? With this approach, you can make a…

Read More Read More