If you are looking to deploy Windows 10 AutoPilot you are going to have to make a choice. Are you going to use an Hybrid AD Join or a Azure AD Join deployment? I am going to give you my thoughts on a Windows 10 Autopilot Hybrid AD Join vs Azure AD join. Furthermore I […]Read More "Windows 10 AutoPilot Hybrid AD Join vs Azure AD Join"
This blogpost is about creating a Windows 10 AutoPilot deployment profile based on a Hybrid Azure AD Joined scenario via Microsoft 365/Microsoft Intune. Creating the profile Go to https://devicemanagement.microsoft.com/ and log on. Go to Devices and to Windows: After that click on “Windows Enrollment”: We first need to setup automatic enrollment. Click on automatic enrollment: You need […]Read More "Create Windows 10 AutoPilot Hybrid Azure AD joined profile"
When you move to Exchange Online the connectivity to your mailboxes is no longer limited by your firewall. Microsoft enables everything by default. So if you don’t want users to configure Outlook on their unmanaged Windows 10 devices you need create policy to do so. To block Outlook on unmanaged Windows 10 devices you need […]Read More "Block Outlook on Unmanaged Windows 10 Devices"
Updating your Windows 10 devices was always a challenge. The devices were not on the corporate network or for some other reason they were not able to install Windows Updates. Microsoft Intune now partly solves this problem. Configuring Windows Updates is fairly easy. Prerequisites Update Rings We are going to create update rings. These update […]Read More "Windows 10 Updates via Microsoft Intune"
I have created a script which auto uploads your Windows 10 AutoPilot info to your tenant. I didn’t do the hard work, that is someone called Nickolaj Andersen. He wrote the script that you can download from the Powershell Galery. This is his original post: https://www.scconfigmgr.com/2019/06/04/import-windows-autopilot-device-identity-using-powershell/ The Script It is a simple script, it is […]Read More "AutoPilot info auto upload script"
I have been testing with Windows 10 AutoPilot White Glove and I have run in to the problem where the Azure AD Device was not able to find my organisation. Problem definition The error looked like this: I had uploaded the hardware hashes to Intune using a CSV. Therefore, I was very suprised to see […]Read More "Enable Azure AD Device Script"
This is a new feature in Microsoft Intune. Device bulk actions for devices. An example would be that you have implemented Windows 10 AutoPilot before the naming convention was released and now you are stuck with the naming convention “DESKTOP-XXXXXXX”. You can now rename all devices in bulk. Example for a bulk action Let’s grab […]Read More "Device Bulk Actions via Microsoft Intune"
(code is at the bottom of the page) This blog is about the powershell function that I wrote for packaging Win32Apps. Normally this would take sometime creating folder and find the tools etc… Now you just only need to supply these 5 parameters: Preparation/Set Parameters 5 parameters need to entered like this:The parameters need to […]Read More "Powershell Function for packaging a Win32App"
Every administrator for Microsoft Intune has run in to this problem. For example, users install office on their personal devices (mobile and laptops/workstations), Microsoft asks them to log on. They log on with their company credentials and after that the user gets the question whether he wants to let his company manage his device. This […]Read More "Block personal owned devices from Microsoft Intune"
If you use Azure AD as identity provider for your webbased third party applications, you might want to consider use the Google Chrome extension called “Windows 10 Accounts”. This extension provide the complete single sign on experience for applications that use Azure Activery Directory based identities. I will provide an instruction on how to deploy […]Read More "Chrome Extension via Win32App in Intune"