Install Applications after ESP (Enrollment Status Page)

A customer wanted to install applications after the ESP (Enrollment Status Page) phase. This application configures a BitLocker PIN which, obviously, needs interaction with the user. This is not possible in the ESP phase because of, well, the ESP. So, I needed a solution for that. I have configured Olivier Kieselbach’s BitLocker PIN solution. It’s … Read more

Remove OneDrive Personal Icon

This is a quick blog about how to remove the OneDrive Personal Icon from Windows 10. Some users find seeing multiple OneDrive icons in their file browser confusing. So, I created a script to remove this. The script logs to the “C:\ProgramData\Microsoft\IntuneManagementExtension\Logs\” folder so you can pick it up with the “collect diagnostics” button in … Read more

Deploy SCEP Certificate Connector Intune

This blog is about how to deploy a SCEP certificate connector for Microsoft Intune. The example shows the SCEP connector and the SCEP profile to deploy certificates. This blog is based on this blog from Saurabh Sarkar. I have used his blog to build my variant on the implementation and I want to share this … Read more

Deploy Windows 365 via Powershell

Stefan Dingemanse and I built a Powershell Module to deploy Windows 365 more easily. We wanted a new challenge. Stefan looked at the Powershell Gallery and there wasn’t a Windows 365 module. So, we decided to build one. The module is available at the Powershell Gallery Full documentation is available on Github. The Github page … Read more

Install Quality Updates during ESP Intune

I am trying to automate the creation of the Enrollment Status Page (ESP). I was browsing graph explorer when I stumbled upon this. The graph explorer shows the option to install quality (windows) updates during ESP when enrolling into Intune: This is the current GUI for the ESP: This does not show the option to … Read more

ZScaler Custom Compliance in Intune

This blog post is about creating a custom compliance policy in Intune to check the ZScaler status. A customer of mine uses ZScaler for all their Windows endpoints. They want to ensure ZScaler is running because we want to protect those endpoints. I thought of the custom compliance feature in Microsoft Intune. The customer already … Read more

Register Windows 365 Images in Azure

I am currently deploying Windows 365 and want to use a custom image. Firstly, I used the Azure Marketplace Windows 11 22h2 enterprise image. The performance was terrible. I checked again, but I couldn’t find it. I got a hint that you must register the Windows 365 Cloud PC images in your Azure environment. This … Read more

Windows Autopatch notes from the field

I had the pleasure to implement Windows Autopatch at a customer of mine and I want to share my notes from the field. This customer uses around 250 laptop laptops and they wanted to deploy autopatch to have less management overhead on updates for their Windows-based laptops. I really like this customer because there are … Read more

Use Winget with Intune

I had this post on my to-do list for a while. How to use winget with Intune to deploy your packages and create a default deployment method for these packages. If you deploy packages via this method you won’t have to update Intune again with new versions of packages. Peter van der Woude inspires this … Read more