The word on the street is not "If I get hacked" but "when I will get hacked" and securing your infrastructure starts from your end users and devices and hardening those devices that the users use every day has never been so important. Security Baseline policy for Windows 10 and later. This is one of … Continue reading Device Hardening with Intune Security Baseline for Windows Policy
Tag: Microsoft
From ConfigMgr to Fully Intune Managed in 2024. Let’s Make That a Reality
If you have Config Manager today and if you are thinking or planning on moving the devices and the workloads to Intune, this article is for you. If you are in that state today, chances are you have a stable (or near stable) method of managing the devices, patch updates, and GPOs. Moving the capabilities … Continue reading From ConfigMgr to Fully Intune Managed in 2024. Let’s Make That a Reality
Infographic – Migrate MFA and SSPR Policies to the Converged Authentication Methods Policy
Some useful URLs apart from the below infographic: ❤ Microsoft Learn doc converged-authentication-methods-policyDownload
🎙️MS EMS Community Podcast EP04
https://www.youtube.com/watch?v=XWvXVCIUm2c In this episode, myself along with Jonas Bøgvad , Andrew Taylor MVP, Lewis Barry and Eric Woodruff, CIDPRO discusses about,⚡️Intunemaps.com and the thought process behind that⚡️An in-depth look at AAD App Registration⚡️An in-depth look at the PRT⚡️MFA Number matching⚡️FIDO and Security
Protected Actions in Azure AD
Update 18/06/2024 Protected Actions are out of Preview and have 17 actions as opposed to 7 actions that was there when it was in preview. ✅Available Protected Actions Update basic properties for Conditional Access policies Create Conditional Access policies Update allowed cloud endpoints of cross-tenant access policy Update Microsoft Entra B2B collaboration settings of the … Continue reading Protected Actions in Azure AD
Intune Remote Help – From Zero to Hero – 2026 Update
This is a comprehensive guide to Intune Remote Help. Hope you find this useful. Update 2026 : What's new?Remote Help BenefitsRemote Help License RequirementsNetwork Considerations - Updated Endpoints listConfigure Remote Help App in IntuneRemote Help Win32 App DeploymentFirewall Rules ConsiderationsRBAC - Assign Users to roleCreate a new RBAC Permission RoleCreate The Conditional Access Policy for … Continue reading Intune Remote Help – From Zero to Hero – 2026 Update
🔗IntuneMaps – Device Profile Templates
Going one step ahead from my previous IntuneMaps.com click-friendly infographic. For anyone who is starting out with Microsoft Intune or wants to know what templates to set up and why, I hope this will be helpful to understand what Intune's Windows-based (Windows 10 and later) built-in config profiles are and how to apply them. Microsoft Learn can … Continue reading 🔗IntuneMaps – Device Profile Templates
🎙️MS EMS Community Podcast EP03
4 Steps to Configure Azure AD PIM for Groups
Few uses of PIM-managed groupsChallengeSolutionFew NotesPrerequisites - LicensesStep 1 - Group CreationStep 2 - Onboard the group for PIMStep 3 - Add PIM AssignmentsStep 4 - Setup Role SettingsUser ActivationUse Access ReviewsWrapping Up When I 1st posted the below infographic in my Socials, I thought I made myself clear that this is not an Azure … Continue reading 4 Steps to Configure Azure AD PIM for Groups
🔗IntuneMaps
This is a small passion project of mine.Microsoft Intune has evolved like never before and continues to add more features as we speak. I always wanted to create a one-stop location for all things Intune Windows Platform that can be helpful to anyone who is starting out with the product, looking for the right Learn … Continue reading 🔗IntuneMaps
Intune Policy Conflicts
When dealing with day-to-day Intune activities, setting up and maintaining profiles are standard activities. And dealing with Policy Conflicts is also part of everyday activities. You will hopefully not get to deal with them every day, but every once in a while? Or maybe when too many admins try to set up policies. This article … Continue reading Intune Policy Conflicts
Mergers, Acquisitions and Day 1 – Entra ID Cross-Tenant Synchronization
I would like to dedicate this post to writing something on a much-needed topic that personally got me to try a lot of methods and to be creative because this is one of the main tasks that an organization/ management is looking to get done from an IT Specialist. The Day 1. More precisely the … Continue reading Mergers, Acquisitions and Day 1 – Entra ID Cross-Tenant Synchronization
Use Authentication Context with Strong Auth on PIM Role Activation
What is Authentication Context? Authentication Contexts are being used to further secure your application data and actions. You may already have enabled Multi-Factor Authebtaion in your Azure AD tenant and everyone is using the MFA in the same way. However, imagine you have an application where you need to maintain confidential data that only a … Continue reading Use Authentication Context with Strong Auth on PIM Role Activation
🎙️MS EMS Community Podcast EP02
With no particular agenda other than having a casual chat about recent tech events, this time including: Hybrid IdentitiesSecurity PostureMindset changesAzure AD Cross-Tenant Sync https://www.youtube.com/watch?v=0RAvGTAlDSc
New Microsoft Intune Licensing Explained
Microsoft recently announced the new Intune Plans. In this blog post, I want to break down what that is and what it includes. Intune is already enabled in the licenses? Yes. However, the Plans can be separately purchased to help you elevate your device management game. If you are new to Microsoft Intune, a separate … Continue reading New Microsoft Intune Licensing Explained
[Nugget Post] How to Check All Intune Filter Related Associated Assignments?
![[Nugget Post] How to Check All Intune Filter Related Associated Assignments?](https://emsroute.com/wp-content/uploads/2023/02/downloadpage.png?w=863&h=0&crop=1)
You implement more and more filters in policies, but how to go back and see all the associated assignments? Rather than remembering or noting down all the filters you have created and checking manually, you can now see this in the Associated Assignments tab in the required filter. To check the created filter, go to … Continue reading [Nugget Post] How to Check All Intune Filter Related Associated Assignments?
🎙️MS EMS Community Podcast EP01
Azure AD Cross-Tenant Access with B2B Direct Connect
This is my take on the Azure AD Cross-Tenant access settings. This was something I was hoping to configure a while back. However the capabilities weren't available at that time, but the need for some kind of a trust relationship between two Azure AD tenants was bubbling up. Gone of days organizations set up trust … Continue reading Azure AD Cross-Tenant Access with B2B Direct Connect
New and Updated Microsoft Intune Device Control Policy Settings
New day new blog post. This is more of an updated guide to what I've written some time ago (check below) https://shehanperera.com/2022/08/06/mem-device-control-1/ What I Will Be Covering? 👇🏽 What's New?🌟 Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria🌟 Removable Storage Access🌟 Defender Scanning (this setting can … Continue reading New and Updated Microsoft Intune Device Control Policy Settings
The Calm After the Storm. Microsoft Ignite 2022 All Endpoint Management and Identity and Access Announcements
Microsoft Ignite 2022 just finished and it was a blast! So many new product updates and announcements. It was truly exciting to see all the Ignite related news. Because obviously it was a lot and probably the LinkedIn feeds are flooded with the updates and reposts and what not, I thought to give it a … Continue reading The Calm After the Storm. Microsoft Ignite 2022 All Endpoint Management and Identity and Access Announcements
EMS Route 