Browsed by
Category: Intune

The Quick and the PowerShell Bug Bounty

The Quick and the PowerShell Bug Bounty

This blog will be about setting up the combined MFA security information registration experience and while configuring it with PowerShell, I will show you how I ended up enabling it/or disabling it in the wrong tenant. Yes, you are reading it correctly! While I am showing you what got me the bug bounty, I will also show you some parts of our own tenant Deployment script. I will divide this blog into 3 parts: The combined security information registration experience…

Read More Read More

PowerShell: An unexpected Monitoring Journey

PowerShell: An unexpected Monitoring Journey

This short blog (but with a nice idea I hope and some PowerShell scripts) will show you why you could monitor some settings inside your Microsoft 365 tenant and of course, how you could set up your own monitoring solution. Again it’s all about the idea! I have been reading a lot about the Microsoft DSC. It’s a great tool for applying and monitoring your base configurations. Microsoft365DSC – Configuration-as-Code for the Cloud I really love the idea. I guess…

Read More Read More

65000 Days of Night

65000 Days of Night

This time a very short blog about an Intune Settings Catalog profile and the error code 65000. After reading a question on the Microsoft Technet forum I decided to dedicate a blog to it. Error 65000 with Settings Catalog – Microsoft Tech Community I will divide this blog into multiple parts: The Problem Troubleshooting it Another licensing Possibility Conclusion 1.The Problem So If you don’t know the answer immediately, test it yourself! configured the same setting inside my test tenant…

Read More Read More

Quality Updates: International Preview of Mystery

Quality Updates: International Preview of Mystery

This huge blog will about deploying Quality Updates, the  Update Health Tools and an alternative method to deploy the Quality Updates with proactive remediations within an hour! Of course, with the latest Printer Nightmare issue, we needed to update some devices quickly. Even with the update installed you are still vulnerable and you will get some issues with label printers with this update. But that’s not what this blog will be about. I am going to divide this blog into…

Read More Read More

O Removable Storage, Where Art Thou?

O Removable Storage, Where Art Thou?

I guess it’s time for the sixth part of the Endpoint Security Series. This time I will walk you through what Microsoft Defender Device Control is, how to configure it in Intune and how it works. I will divide this blog into 8 parts  Information about device control. Configuring Device Control in Intune Results of Blocking Specific Hardware Results of preventing Write Access Removable Storage Deploy printer protection on Windows Digger deeper Logging Removing/Changing the policy Conclusion 1.Information about device control  Microsoft Defender for…

Read More Read More

What about Printer Drivers

What about Printer Drivers

After reading a question on the Technet community about how to deploy printers with a printer driver to Azure Ad joined devices, I realized I only created a blog about the wonderful Microsoft Universal Cloud Print solution! So here we go! Of course, transforming to a modern workplace will also mean you need to do something with your existing Print solution. One of the best solutions would probably be to start using the Microsoft Universal Print solution. In one of…

Read More Read More

MDAC or (the Unexpected Virtue of Ignorance)

MDAC or (the Unexpected Virtue of Ignorance)

This blog is the fourth part of the Endpoint Security Series and it will show you how to configure Windows/Microsoft Defender Application Control(WDAC/MDAC).  It could be a great addition to securing your environment. I will divide this blog into multiple parts. MDAC/WDAC/Device Guard Explained Choosing between MDAC and Applocker How to configure MDAC Automatically with an Endpoint Protection Policy Manually with a CSP Monitoring / Testing/ Troubleshooting it Creating a golden Image Adding and merging policies The Microsoft Store/Blocking Apps…

Read More Read More

Those Magnificent Drivers in Their Flying Microsoft Store, Or How I Flew From The Enrolment Status Page To Paris in 25 hours 11 minutes

Those Magnificent Drivers in Their Flying Microsoft Store, Or How I Flew From The Enrolment Status Page To Paris in 25 hours 11 minutes

After you have read this enormous blog title, I guess you will know this blog will be about some weird behaviour during the ESP. I couldn’t find any documentation about the ESP, this could happen? I will divide this blog into 4 parts. Background Information about the ESP. The problem. Troubleshooting. Fixing it 1.    Background information I thought I already created a blog about this at some point, but I guess not. So here we go! The Enrolment Status Page…

Read More Read More

Let the Right Chromebook in

Let the Right Chromebook in

This blog will be about Chromebooks and MAM. I will also introduce a colleague of mine. He will co-author my blogs from now on, this will be our first joint effort. His name is Mark Uijtdewilligen. Please follow him on LinkedIn: Mark Uijtdewilligen | LinkedIn Today we received a call from a customer who wanted to buy Chromebooks. Our first reaction was “Huh? Why?” (his company is currently undergoing a transformation from a remote desktop environment to a modern MS365…

Read More Read More

Cloudy: With a chance of Winget

Cloudy: With a chance of Winget

This blog will be about my experience I had with Winget. Until now we only made use of Chocolatey but I was intrigued if Winget could be a good replacement. After reading some other blogs and information I decided to test it out myself. Just like always I am going to divide this blog in. There are 8 parts. Background information Installing the App installer Installing/removing applications Upgrading applications Winget ADMX Troubleshooting Winget Upload your own Apps Deploy all the…

Read More Read More