Windows Autopatch – Deployment Cadence Scheduled install

There is a new feature within Windows Autopatch called Deployment Cadence with scheduled install. I have waited for feature for a long time. I wrote another blog about Windows Autopatch called notes from the field. Read about it here: This blog states that one of the things that I run into with Windows Autopatch that … Read more

Remove OneDrive Personal Icon

This is a quick blog about how to remove the OneDrive Personal Icon from Windows 10. Some users find seeing multiple OneDrive icons in their file browser confusing. So, I created a script to remove this. The script logs to the “C:\ProgramData\Microsoft\IntuneManagementExtension\Logs\” folder so you can pick it up with the “collect diagnostics” button in … Read more

Windows LAPS user via Remediations

This blog is about creating the Windows LAPS user via (Proactive) Remediations. The user that you want to manage via Windows LAPS is not created automatically. This blog and script help you do that. Prerequisites You have already configured the Windows LAPS policy. This is an example by Joost Gelijsteen. Proper licensing The scripts The … Read more

Deploy SCEP Certificate Connector Intune

This blog is about how to deploy a SCEP certificate connector for Microsoft Intune. The example shows the SCEP connector and the SCEP profile to deploy certificates. This blog is based on this blog from Saurabh Sarkar. I have used his blog to build my variant on the implementation and I want to share this … Read more

Discover specific apps on Intune Windows Devices

This blog is about how to discover specific apps on Intune-managed Windows devices. I needed to check whether TikTok was installed. The Dutch government advises not to install this app because of the security reasons involved. Of course, I used a Powershell script to do so and want to share this with you. Prerequisites There … Read more

Notification about untagged Autopilot devices

This post is about getting a notification about untagged Autopilot devices. Just like if your licenses run out, when you have an untagged autopilot device, you want to know! I wrote a script that does that and I want to share it with you! I run this script in an Azure automation account with a … Read more

Reprovision/Restore Windows 365 Devices

This blog is about showing another example of our Powershell module called PSCloudPC. The example is about Reprovision/Restore Windows 365 devices. My other post is about deploying Windows 365 via Powershell. Firstly, download and install the module. You can do so using the following command: After that, import the module: We are now ready to … Read more

Deploy Windows 365 via Powershell

Stefan Dingemanse and I built a Powershell Module to deploy Windows 365 more easily. We wanted a new challenge. Stefan looked at the Powershell Gallery and there wasn’t a Windows 365 module. So, we decided to build one. The module is available at the Powershell Gallery Full documentation is available on Github. The Github page … Read more

Install Quality Updates during ESP Intune

I am trying to automate the creation of the Enrollment Status Page (ESP). I was browsing graph explorer when I stumbled upon this. The graph explorer shows the option to install quality (windows) updates during ESP when enrolling into Intune: This is the current GUI for the ESP: This does not show the option to … Read more

ZScaler Custom Compliance in Intune

This blog post is about creating a custom compliance policy in Intune to check the ZScaler status. A customer of mine uses ZScaler for all their Windows endpoints. They want to ensure ZScaler is running because we want to protect those endpoints. I thought of the custom compliance feature in Microsoft Intune. The customer already … Read more