Autopilot Device Preparation | Intune | MMP-C | Windows | EPM

The Man Who Shot Office Hardware Acceleration

Posted on: September 10, 2020August 21, 2024Windows 10

This simple blog will explain why Outlook can be seriously lagging while typing. And I mean seriously lagging. Some letters will pop up 10/15 seconds after typing. The probability that […]

Guardians of the Local Admin rights

Granting your users local admin permissions when deploying Windows 10 is really really best practice…I’m joking, no it’s not! I must be saying this a lot lately. You need to […]

The never-ending Command Prompt

Posted on: September 4, 2020September 12, 2024Intune , Microsoft 365 Business , Privileged Access Workstation

This blog will be about some new ADMX-backed policies for MDM to block access to the Command Prompt (DisableCMD). After trying them out, I encountered some weird behavior. 1. Introduction […]

Lost in Monitoring Onedrive

Posted on: September 3, 2020September 9, 2024Onedrive , Solarwinds

In this blog, I will explain why it’s important to monitor OneDrive and show you how to set up OneDrive monitoring on your endpoints. When you enable KFM (OneDrive Known […]

Locking Down Guest Users: Why It’s a Must for Your Entra ID Tenant

Posted on: September 2, 2020November 19, 2024Azure Ad , Privileged Access Workstation , Securing Azure Ad Portal

In this blog, we’ll explore why it’s absolutely critical to lock down guest user access in your Entra ID tenant. Without proper restrictions, guest users could potentially access sensitive information, […]

Thank you for Application Guard for Office apps.

Posted on: September 1, 2020April 3, 2022Privileged Access Workstation , Endpoint Security Series , Powershell

This blog is the first part of the Endpoint Security Series. In this blog, I will show you, how to start deploying Microsoft Defender Application Guard for Office apps. Also, […]

Sensitivity Labels DLP’s Excellent Adventure

Posted on: August 28, 2020June 30, 2021Sensitivity Labels , Data Governance

In this blog, I’ll be talking about using DLP in combination with sensitivity labels and device protection. A perfect addition to labeling your data with sensitivity labels. Labeling your data […]

Things to block in Denver When You’re an IT Admin

Posted on: August 20, 2020September 4, 2024Azure Ad , Intune , Microsoft 365 Business , Privileged Access Workstation , Proactive Remediations

In this updated guide, we’ll explore effective strategies for blocking access to administrative tools such as Regedit (Block Regedit), the Command Prompt (Block CMD), and PowerShell (Block PowerShell). We’ll break […]

Interview with the ASR rules

Posted on: August 19, 2020December 10, 2024Microsoft 365 Business , Intune , Microsoft Defender , Privileged Access Workstation

Protecting your devices with Microsoft Defender ASR rules is best practice, but ensure you know the caveats. The sun was probably shining when you configured your ASR rules! After deciding […]

The Men who stare at the AppLocker event log

Posted on: August 13, 2020September 13, 2024Privileged Access Workstation

In this blog, we’ll delve into the curious interplay between AppLocker, MSI installers, Intune, and event logs. We’ll explore how to configure and monitor AppLocker policies, the limitations imposed by […]