May 2020 - Call4Cloud

Intune auto MDM enrollment for devices already Azure AD joined

May 14, 2020 rudyooms Comments 3 comments

Today I spend some time to enrol existing azure ad joined devices into Intune. These devices were azure ad joined without Intune enabled/configured. There are 2 ways to make sure the device will be registered in intune Group Policy: Computer Configuration > Administrative Templates > Windows Components > MDM. 2. Registry: Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\MDM]“AutoEnrollMDM”=dword:00000001“UseAADCredentialType”=dword:00000001 When you apply these changes. You will notice a new Task is being created in the task scheduler. Give it some time… and…

Blocking Websites on IOS/Android

May 13, 2020 rudyooms Comments 0 Comment

Picture the next Scenario: You have implemented App protection Policies and you require Approved Apps on ios and android. You still want the user to be able to copy/paste the business data between the approved apps. People can still copy/paste the business data into an approved web-browser (EDGE). So if a user signs into their personal Gmail account… they can copy paste information in it. You can create an App Configuration policy to block websites on ios and android devices…

Azure Files from anywhere!!

May 6, 2020 rudyooms Comments 0 Comment

Normally you will put your data in onedrive/sharepoint/teams. But when you have got a lot of Data which should be archived, you can put it on a Azure File share as an example But of course the SMB port 445, is being blocked outbound on most ISP’s. Of course you can think of solutions with VPN’s. But just a thought, why not using a Https connection to map a network drive to it? With this approach, you can make a…