Privileged Access Workstation

Remote Wipe: The Next level

Posted on: October 16, 2020September 29, 2024Powershell , Device Enrollment , Privileged Access Workstation

This blog will show you how you can wipe all devices even when you don’t have Intune (yet) 1. Introduction The power of remote wiping your device is great to […]

Birds of Printer Nightmares

Posted on: October 14, 2020September 26, 2024Intune , Adminless , Powershell , Privileged Access Workstation

When I started this blog, it was all about showing you the options you have when you want to make sure the end user (without admin permissions) can still install […]

Fantastic PowerShell and where to find the Conditional Access Rules

Posted on: October 8, 2020July 27, 2024Powershell , Conditional Access , Privileged Access Workstation

Automating your tenant deployment is crucial in preventing human mistakes. One of the many examples you could automate would be the deployment of the Conditional Access Rules. Looking back at […]

A million ways to implement ISO 27001 controls.

Posted on: September 25, 2020December 27, 2021Privileged Access Workstation

After being inspired by Alexander Fields about the CIS framework and Microsoft 365, I took a deep dive into mapping ISO 27001 to a zero-trust modern workplace. I’ll try to […]

Guardians of the Local Admin rights

Posted on: September 9, 2020July 31, 2024Privileged Access Workstation , Adminless , Intune , Microsoft 365 Business

Granting your users local admin permissions when deploying Windows 10 is really really best practice…I’m joking, no it’s not! I must be saying this a lot lately. You need to […]

The never-ending Command Prompt

Posted on: September 4, 2020September 12, 2024Intune , Microsoft 365 Business , Privileged Access Workstation

This blog will be about some new ADMX-backed policies for MDM to block access to the Command Prompt (DisableCMD). After trying them out, I encountered some weird behavior. 1. Introduction […]

Locking Down Guest Users: Why It’s a Must for Your Entra ID Tenant

Posted on: September 2, 2020November 19, 2024Azure Ad , Privileged Access Workstation , Securing Azure Ad Portal

In this blog, we’ll explore why it’s absolutely critical to lock down guest user access in your Entra ID tenant. Without proper restrictions, guest users could potentially access sensitive information, […]

Thank you for Application Guard for Office apps.

Posted on: September 1, 2020April 3, 2022Privileged Access Workstation , Endpoint Security Series , Powershell

This blog is the first part of the Endpoint Security Series. In this blog, I will show you, how to start deploying Microsoft Defender Application Guard for Office apps. Also, […]

Things to block in Denver When You’re an IT Admin

Posted on: August 20, 2020September 4, 2024Azure Ad , Intune , Microsoft 365 Business , Privileged Access Workstation , Proactive Remediations

In this updated guide, we’ll explore effective strategies for blocking access to administrative tools such as Regedit (Block Regedit), the Command Prompt (Block CMD), and PowerShell (Block PowerShell). We’ll break […]

Interview with the ASR rules

Posted on: August 19, 2020December 10, 2024Microsoft 365 Business , Intune , Microsoft Defender , Privileged Access Workstation

Protecting your devices with Microsoft Defender ASR rules is best practice, but ensure you know the caveats. The sun was probably shining when you configured your ASR rules! After deciding […]