Autopilot Device Preparation | Intune | MMP-C | Windows | EPM

The Treasure of the MMP-C Madre

Posted on: July 23, 2023August 7, 2024Intune , MMP-C

This time, a simple blog without technical details. It will be just me showing you why I am so enthusiastic about a specific service called MMP-C and why I assume […]

Under the Hood of: MDE Attach V2 / Security settings management

Posted on: July 18, 2023February 21, 2025Intune , Microsoft Defender , MMP-C

I will guide you through my MDE Attach V2 (Security Management) journey and explain which “service” delivers the Intune policies to your NOT AADJ (or Entra) Windows Server 2019.

The WinDC Refresh Schedule and the Dudes

Posted on: July 11, 2023February 21, 2025EPM , Intune , MMP-C , WinDC

In this series, I will try to explain more about a wonderful “refresh schedule” I noticed in the task scheduler after EPM was deployed. This first blog post will focus on how this scheduled task is being used by EPM (Endpoint Privilege Management) to refresh the WinDC (Declared Configuration)Policies—even when the device is offline!!!!!

The 0x800705B4 error in our stars

Posted on: June 28, 2023August 6, 2024Autopilot , Intune

In this blog, I am going to scuba dive a bit into the wonders of SyncML and how all devices ended up with sync errors and all new Autopilot enrollments […]

A Guide to Recognizing Your Post Authentication Actions

Posted on: June 20, 2023October 31, 2024Windows LAPS

LAPS everywhere!!!! This time I am deep-diving into the wonders of the Post Authentication Actions (PAA) and what is actually happening (or maybe not happening) when you try to authenticate yourself with the managed account.

The Infernal MMP-C Discovery

Posted on: June 16, 2023February 21, 2025EPM , Intune , MMP-C

This blog will be an additional blog post to the MMP-C one. In this blog, I am deep-diving into the first MDE / MMP-C / Declared Configuration enrollment steps, which will kick in once you have activated EPM/Endpoint Privilege Management.

The Password Rotation: The Ballad of Windows LAPS and Threadpools

Posted on: June 6, 2023August 19, 2024Intune , Windows LAPS

In this blog post, I will explore the wonders of Windows LAPS and what happens when you remotely perform a password rotation from Intune—nothing more! 1. Introduction As almost every […]

The Virtual Account that rocks the EPM!

Posted on: May 31, 2023October 5, 2024EPM , Intune

Are you using Intune Endpoint Privilege Management (EPM) and wondering what is “needed” when you launch a process with elevated access? In this blog, I will take a peek at […]

Easy Riders, Intune Bulls: How the Defender for Endpoint, Live Response, and Rock ‘N’ Roll PowerShell Script Recovered the Intune Certificate

Posted on: May 18, 2023September 25, 2024Intune

We talked about this in our MMSMOA session, but I still needed to write something about it…..so here we go! This blog will be “again” about issues with the Intune […]

Endpoint Privilege Management and the Device Health Monitoring Reports: Quantumania

Posted on: May 2, 2023August 8, 2024EPM , Intune

This blog will be small and simple, but it will be about me looking at how the Endpoint Privilege Management reports will be delivered to Intune. Oww did I said […]