As announced in Microsoft Ignite 2023, the latest addition to the Intune Suite features the Enterprise Application Management and it's Enterprise App Catalog is finally GA as of today. This will remove a lot of hassle that the Device Management Admins need to go through in re-packaging apps in to a .intunewin file and adding … Continue reading Microsoft Intune Enterprise App Catalog is Here!
Tag: Intune
From ConfigMgr to Fully Intune Managed in 2024. Let’s Make That a Reality
If you have Config Manager today and if you are thinking or planning on moving the devices and the workloads to Intune, this article is for you. If you are in that state today, chances are you have a stable (or near stable) method of managing the devices, patch updates, and GPOs. Moving the capabilities … Continue reading From ConfigMgr to Fully Intune Managed in 2024. Let’s Make That a Reality
Don’t Mess Around with MDM User Scopes – A Different Take to “Something Went Wrong 8004005” and “OOBEAADV10” Errors
Something went horribly wrong. Not the policies. Not the deployment profiles, Not the ODJ profile, not the ESP. Let me explain. Setup in a high-level Intune Connector setup Intune Connector account is licensed and the Intune admin role assigned OU delegation done Hybrid Join GPO has setup MDM Auto-enrollment GPO has set Autopilot deployment profiles … Continue reading Don’t Mess Around with MDM User Scopes – A Different Take to “Something Went Wrong 8004005” and “OOBEAADV10” Errors
How to Setup 3rd Party Device Compliance Partners in Intune for Conditional Access
While Intune and Entra ID as a whole provide industry-standard device compliance policies and conditional access policies to govern them, there might be a chance that a subset of your device fleet is managed via a different MDM. In the field when I'm talking with the customers, this is mostly because Microsoft Intune was catching … Continue reading How to Setup 3rd Party Device Compliance Partners in Intune for Conditional Access
How to Enable the New Security Settings Management Feature in Defender Security Portal
In Public Preview at the time of the writing. This is a much-needed feature I believe. Also in most of the IT departments due to the tasks being segregated among different admins, most of the time it is a team game and you need 2 different admins (Intune Administrator and a Security Administrator) to collaborate … Continue reading How to Enable the New Security Settings Management Feature in Defender Security Portal
Configure Intune Built-In Roles Using Azure AD PIM for Groups
The perfect Azure AD, Intune combo does not exi..... Some time ago I wrote about Azure AD PIM for groups and its usages. This came to light a few days ago in Microsoft Tech Community as an article and I thought I will give my touch to it. What is it and Why Does This … Continue reading Configure Intune Built-In Roles Using Azure AD PIM for Groups
Intune Policy Assignment Basics
The easiest step in any policy creation. Yet there is a possibility that the policy assignment to end up with errors. I want to discuss that in this article. We have our policy created with all the settings and we are pretty happy with it. The next step is assigning it to one of the … Continue reading Intune Policy Assignment Basics
Intune Remote Help – From Zero to Hero
This is a comprehensive guide to Intune Remote Help. Hope you find this useful. Remote Help BenefitsRemote Help License RequirementsNetwork ConsiderationsConfigure Remote Help App in IntuneRemote Help Win32 App DeploymentFirewall Rules ConsiderationsRBAC - Assign Users to roleCreate a new RBAC Permission RoleCreate The Conditional Access Policy for the Remote Help AppHow to UseInitiating Chat in … Continue reading Intune Remote Help – From Zero to Hero
🔗IntuneMaps – Device Profile Templates
Going one step ahead from my previous IntuneMaps.com click-friendly infographic. For anyone who is starting out with Microsoft Intune or wants to know what templates to set up and why, I hope this will be helpful to understand what Intune's Windows-based (Windows 10 and later) built-in config profiles are and how to apply them. Microsoft Learn can … Continue reading 🔗IntuneMaps – Device Profile Templates
🔗IntuneMaps
This is a small passion project of mine.Microsoft Intune has evolved like never before and continues to add more features as we speak. I always wanted to create a one-stop location for all things Intune Windows Platform that can be helpful to anyone who is starting out with the product, looking for the right Learn … Continue reading 🔗IntuneMaps
Intune Policy Conflicts
When dealing with day-to-day Intune activities, setting up and maintaining profiles are standard activities. And dealing with Policy Conflicts is also part of everyday activities. You will hopefully not get to deal with them every day, but every once in a while? Or maybe when too many admins try to set up policies. This article … Continue reading Intune Policy Conflicts
New Microsoft Intune Licensing Explained
Microsoft recently announced the new Intune Plans. In this blog post, I want to break down what that is and what it includes. Intune is already enabled in the licenses? Yes. However, the Plans can be separately purchased to help you elevate your device management game. If you are new to Microsoft Intune, a separate … Continue reading New Microsoft Intune Licensing Explained
Organizational Messages – A Better Way to Push Important Messages to Your Users via Microsoft Intune
There were a lot of new updates for Microsoft Intune at the Ignite 2022. Organizational Messages are one of them. This feature is still in preview and believe more options will be available in the coming months. Imagine you need to send that one quick important message to the users on a Friday afternoon reminder … Continue reading Organizational Messages – A Better Way to Push Important Messages to Your Users via Microsoft Intune
New and Updated Microsoft Intune Device Control Policy Settings
New day new blog post. This is more of an updated guide to what I've written some time ago (check below) https://shehanperera.com/2022/08/06/mem-device-control-1/ What I Will Be Covering? 👇🏽 What's New?🌟 Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria🌟 Removable Storage Access🌟 Defender Scanning (this setting can … Continue reading New and Updated Microsoft Intune Device Control Policy Settings
Microsoft Intune Audit Logs Hunting With KQL
In this blog article, I want to discuss the power of KQL again and do a bit of a deep dive. I've written a few blog posts about getting started with KQL and using some basic queries that can make your tech life more effortless. I want to specifically focus on the IntuneAuditLogs KQL table … Continue reading Microsoft Intune Audit Logs Hunting With KQL
How To Map a Shared Drive Using Microsoft Endpoint Manager Instead of GPOs
Welcome to another MEM how to article. Among Microsoft Endpoint Manager's wonderful capabilities I see this as a big win towards promoting it's modern device management capabilities. This will simply supersede the local AD, OUs and GPMC that used to manage drive mappings to user sessions. Update [03 Sep 2022] Microsoft have recently announced the … Continue reading How To Map a Shared Drive Using Microsoft Endpoint Manager Instead of GPOs
Microsoft Endpoint Manager Shared Multi-User Device Profiles
In this article, I'm planning on uncovering a configuration profile in MEM which is known as the Shared Multi-User Device Profiles. These profiles can be used and applied to the devices in the fleet which will be used by many users periodically and does not require to retain the data in the disk and have … Continue reading Microsoft Endpoint Manager Shared Multi-User Device Profiles
Preparing workstations for the Cloud Journey with Hybrid Azure AD Join
In almost all the cases, the organization is not in a position to get away from the local domain as its tightly connected with other services that are running on-premises and maintaining the on-premises identity is vital. Further, you have the on-premises domain and the workstations are joined to it, GPOs being pushed across and … Continue reading Preparing workstations for the Cloud Journey with Hybrid Azure AD Join
EMS Route 