Shoulder surfers To start with, this looks harmless, but a way to scrape screen for Credentials and for sensitive stuff (documents, content) and co-workers and other people. Australian Signals Directorate calls this out in ISM (Information Security Manual) documentation specifically. While the Human Presence settings and Presence monitoring are already available in Windows 11, these … Continue reading Managing Screen Onlooker Detection Settings Via Intune
Category: Microsoft Intune
Device Risk Meets Conditional Access: The Real Power of Unified Endpoint Security
Device compliance is one of the things that should be on top of the list of any organization's Cybersecurity activities. This enforces the next steps that can be taken by the device management solution from reporting to block access to resources immediately if the configured device policies are not meeting a certain standard. For an … Continue reading Device Risk Meets Conditional Access: The Real Power of Unified Endpoint Security
Getting Started with Windows Autopatch in 2025 (cheat sheet)
Windows Autopatch have come a long way to become the new normal of updating your Windows endpoints, M365 apps, device drivers and Edge browser with Intune whether the devices are physical (workstations/ laptops/ kiosks/ billboards) or virtual (AVD/ W365). Microsoft Learn documentation will have more detailed info into the services, but this is a short … Continue reading Getting Started with Windows Autopatch in 2025 (cheat sheet)
Windows Quick Machine Recovery With Microsoft Intune
We all witnessed the incident where Windows devices worldwide got hammered by the AV update that caused Windows to go BSOD. Machine recovery was one of the top things probably the IT admins did post incident to get their endpoints fleet up and running ASAP again to support day to day and all the critical … Continue reading Windows Quick Machine Recovery With Microsoft Intune
🚨Important update for Intune Admins!
As you may already know, the Intune Connector that is used for Entra Hybrid Join is getting deprecated at the end of June 2025. Announcement: 🔗Read all about this important change here 💡Why? As a part of Microsoft's Secure Future Initiative, this will strengthen the account security. A Managed Service Account (MSA) will be used instead … Continue reading 🚨Important update for Intune Admins!
Configure Windows LAPS in Intune – March 2025 Update
Local Admin Password Solution has come a long way and the March 2025 Update (Service release 2503) had some good enhancements for the solution. Randomizing the LAPS username is one of them. Rather than enabling the local Administrator account or creating a special admin account for LAPS, having an auto randomizing username sounds confusing to … Continue reading Configure Windows LAPS in Intune – March 2025 Update
How to Change Intune Security Baseline Policy to Version 24H2?
Intune Security Baseline for Windows 10 and later Version 24H2 is finally here. This is a quick look at the policy and useful details on migration to the new policy. What you will see in the Security Baselines nowWhat's Available in Version 24H2Migrating from 23H2 BaselineTest Before Applying!Useful Links What you will see in the … Continue reading How to Change Intune Security Baseline Policy to Version 24H2?
🎙Out of Band: Microsoft Security Podcast. EP02: Intune it
In this episode, we discuss:- The transformation of SC-400 to SC-401,- An amazing resource on the DSPM for AI journey,- The new version of IntuneMaps (Version 3),- A new web-series to assist in your Intune cloud migration journey,- and... a special guest announcement for Episode 3. https://www.youtube.com/watch?v=6FvzfEOSHaE&feature=youtu.be Tune in and let us know what you … Continue reading 🎙Out of Band: Microsoft Security Podcast. EP02: Intune it
🎙Out of Band: Microsoft Security Podcast. EP01: Boots on Ground
Excited to bring the Out of Band: A Microsoft Security Podcast EP01 - Boots on Ground.In this episode, we discuss:- The Microsoft Summer Bootcamp highlights and the overall experience,- Microsoft Secure Future Initiative and what it means to Windows and the overall ecosystem, and- We navigate a password hash synchronization challenge and how to resolve … Continue reading 🎙Out of Band: Microsoft Security Podcast. EP01: Boots on Ground
My 2024 LinkedIn Rewind and Thank you!
https://coauthor.studio/rewind was awesome as it just collates all the LinkedIn activities. And as 2024 is coming to an end, it is always to look back what you have accomplished and what impact you have had on the community. Looking forward to 2025! I would like to thank everyone who is reading my blogs and getting … Continue reading My 2024 LinkedIn Rewind and Thank you!
▶️Video – New Intune Device Preperation. A Step by Step Guide
This is the 1st step by step guide on my YouTube Channel. I wanted to dedicate this to the new Intune Device Preparation process. AKA Autopilot V2. I've added a couple of useful links in the description. I hope you'll like this video. Subscribe to my channel for the latest content! Thank you :) https://www.youtube.com/watch?v=5JxF9gneqw4
I May Have Finally Launched my YouTube Channel
This is something I wanted to do from a long time and I guess finally I did it. Launching my own YouTube channel. I gave a lot of thought to planning the goal of this channel and what content I want to bring in and I'm so excited to share my knowledge in this form … Continue reading I May Have Finally Launched my YouTube Channel
Browser Security With Microsoft Intune – Set Google Workspace Domain Restrictions
It is possible that the organizations are in multi-cloud environments. Having a Google Workspace is nothing new. However, if you want to make sure your users are only login to a given list of domains and not to other Domains, a policy setting is imminent. Usage: This policy works in both Microsoft Edge and Google … Continue reading Browser Security With Microsoft Intune – Set Google Workspace Domain Restrictions
Browser Security With Microsoft Intune – How to Block Browser Extensions?
This is blog post 1 of the Browser Security With Microsoft Intune series. I wanted to dedicate this article to browser extensions. This is something we all know dearly, but can pose issues in a working environment if it's not managed properly. The IssuePast Browser Extension-Related IncidentsCreate the PolicyMicrosoft EdgeGoogle ChromeMozilla FirefoxKey Settings to Consider … Continue reading Browser Security With Microsoft Intune – How to Block Browser Extensions?
Browser Security With Microsoft Intune
This is a new set of blog articles I want to introduce. It's no wonder that the browser has become one of the main components in the device and what browser you use, security is an integral part of it. Microsoft Intune supports browser security and goes into the deep levels of helping the admins … Continue reading Browser Security With Microsoft Intune
Hardening Exchange Online Security with Microsoft Entra, Intune, and Defender XDR
Your emails are now in the cloud, specifically Microsoft 365 - Exchange Online (EXO). Now what? For many organizations emails are the heart and soul of communication and past records and they use the same On-premises methods to protect emails in the cloud. Regardless, defending it from bad actors is a must because this is … Continue reading Hardening Exchange Online Security with Microsoft Entra, Intune, and Defender XDR
💻 Intune Policy refresh intervals Vs. Config Refresh in simple terms
These are similar-looking terms that perform two different tasks and this quick nugget is to unpack what they do. ⚡Policy Refresh Intervals⚡ This is the standard way for the device to check in with the Intune service to receive the policies and settings.When the device is enrolled with Intune for the 1st time, notifications will … Continue reading 💻 Intune Policy refresh intervals Vs. Config Refresh in simple terms
How to Change Intune Security Baseline Policy to Version 23H2?
I'm excited to see the new Security Baseline version is finally available in Intune. Version 23H2 for Windows 10/11. This is a quick look at the policy and useful details on migration to the new policy. What you will see in the Security Baselines nowWhat's Available in Version 23H2Some Notable SettingsMigrating from an older BaselineIf … Continue reading How to Change Intune Security Baseline Policy to Version 23H2?
How to Use Intune to Create a Dell BIOS Config Profile?
Creating BIOS Configs and ingesting it during the imaging process is a tad bit old school when you think about moving to newer technologies that can do the same. Microsoft Intune recently introduced the BIOS Config Profile as a template in Intune. At this stage, DELL devices can be set up with this. At the … Continue reading How to Use Intune to Create a Dell BIOS Config Profile?
Why Does Group Policy Analytics Matter In Microsoft Intune?
"We never know what that GPO really does", and "The person who created this GPO is not in the business anymore". Sounds familiar? Most of the businesses that have a Microsoft ecosystem and who have been using AD/ GPO for a long time always have stories to tell about the Group Policies. This blog is … Continue reading Why Does Group Policy Analytics Matter In Microsoft Intune?
EMS Route 