Device compliance is one of the things that should be on top of the list of any organization's Cybersecurity activities. This enforces the next steps that can be taken by the device management solution from reporting to block access to resources immediately if the configured device policies are not meeting a certain standard. For an … Continue reading Device Risk Meets Conditional Access: The Real Power of Unified Endpoint Security
Tag: MSIntune
5. Cloud-Native Endpoints – Group Policy Analytics
Previously.. https://emsroute.com/2025/06/13/4-cloud-native-endpoints-from-config-manager-to-intune/ Group Policies are a major piece of the Cloud-Native Endpoints puzzle and it's not always easy to track back and remove the legacy policies and now you are planning on policy push via Intune and it's vital to add the GPOs in to the mix. Chances are there are GPO settings you still … Continue reading 5. Cloud-Native Endpoints – Group Policy Analytics
Browser Security With Microsoft Intune
This is a new set of blog articles I want to introduce. It's no wonder that the browser has become one of the main components in the device and what browser you use, security is an integral part of it. Microsoft Intune supports browser security and goes into the deep levels of helping the admins … Continue reading Browser Security With Microsoft Intune
Don’t Mess Around with MDM User Scopes – A Different Take to “Something Went Wrong 8004005” and “OOBEAADV10” Errors
Something went horribly wrong. Not the policies. Not the deployment profiles, Not the ODJ profile, not the ESP. Let me explain. Setup in a high-level Intune Connector setup Intune Connector account is licensed and the Intune admin role assigned OU delegation done Hybrid Join GPO has setup MDM Auto-enrollment GPO has set Autopilot deployment profiles … Continue reading Don’t Mess Around with MDM User Scopes – A Different Take to “Something Went Wrong 8004005” and “OOBEAADV10” Errors
🎙️MS EMS Community Podcast EP04
https://www.youtube.com/watch?v=XWvXVCIUm2c In this episode, myself along with Jonas Bøgvad , Andrew Taylor MVP, Lewis Barry and Eric Woodruff, CIDPRO discusses about,⚡️Intunemaps.com and the thought process behind that⚡️An in-depth look at AAD App Registration⚡️An in-depth look at the PRT⚡️MFA Number matching⚡️FIDO and Security
Configure Intune Built-In Roles Using Azure AD PIM for Groups
The perfect Azure AD, Intune combo does not exi..... Some time ago I wrote about Azure AD PIM for groups and its usages. This came to light a few days ago in Microsoft Tech Community as an article and I thought I will give my touch to it. What is it and Why Does This … Continue reading Configure Intune Built-In Roles Using Azure AD PIM for Groups
Intune Policy Assignment Basics
The easiest step in any policy creation. Yet there is a possibility that the policy assignment to end up with errors. I want to discuss that in this article. We have our policy created with all the settings and we are pretty happy with it. The next step is assigning it to one of the … Continue reading Intune Policy Assignment Basics
Intune Remote Help – From Zero to Hero
This is a comprehensive guide to Intune Remote Help. Hope you find this useful. Remote Help BenefitsRemote Help License RequirementsNetwork ConsiderationsConfigure Remote Help App in IntuneRemote Help Win32 App DeploymentFirewall Rules ConsiderationsRBAC - Assign Users to roleCreate a new RBAC Permission RoleCreate The Conditional Access Policy for the Remote Help AppHow to UseInitiating Chat in … Continue reading Intune Remote Help – From Zero to Hero
🔗IntuneMaps – Device Profile Templates
Going one step ahead from my previous IntuneMaps.com click-friendly infographic. For anyone who is starting out with Microsoft Intune or wants to know what templates to set up and why, I hope this will be helpful to understand what Intune's Windows-based (Windows 10 and later) built-in config profiles are and how to apply them. Microsoft Learn can … Continue reading 🔗IntuneMaps – Device Profile Templates
🔗IntuneMaps
This is a small passion project of mine.Microsoft Intune has evolved like never before and continues to add more features as we speak. I always wanted to create a one-stop location for all things Intune Windows Platform that can be helpful to anyone who is starting out with the product, looking for the right Learn … Continue reading 🔗IntuneMaps
Intune Policy Conflicts
When dealing with day-to-day Intune activities, setting up and maintaining profiles are standard activities. And dealing with Policy Conflicts is also part of everyday activities. You will hopefully not get to deal with them every day, but every once in a while? Or maybe when too many admins try to set up policies. This article … Continue reading Intune Policy Conflicts
New Microsoft Intune Licensing Explained
Microsoft recently announced the new Intune Plans. In this blog post, I want to break down what that is and what it includes. Intune is already enabled in the licenses? Yes. However, the Plans can be separately purchased to help you elevate your device management game. If you are new to Microsoft Intune, a separate … Continue reading New Microsoft Intune Licensing Explained
New and Updated Microsoft Intune Device Control Policy Settings
New day new blog post. This is more of an updated guide to what I've written some time ago (check below) https://shehanperera.com/2022/08/06/mem-device-control-1/ What I Will Be Covering? 👇🏽 What's New?🌟 Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria🌟 Removable Storage Access🌟 Defender Scanning (this setting can … Continue reading New and Updated Microsoft Intune Device Control Policy Settings
EMS Route 