Enterprise Mobility and the Microsoft Cloud
Maybe you have read the previous article How to configure certificate-based WiFi with Intune already and asked how to do the same with the freshly released Microsoft Cloud PKI. Then you don’t have to wait any longer, I promised to write about it and here is the setup with Microsoft Cloud PKI. I’ll dive into…
Read More
As promised in my last post about WiFi and certificate-based authentication, I spent some time creating a new SyncML Viewer version v1.3.0. This time I would say I focused on the usability of the tool. I added a lot of features since version 1.2.0. I’m going to demonstrate a few of them and release the…
Read More
A month ago, I published a new version of the SyncML Viewer to support MMP-C. With this release I came to the idea of integrating some SyncML requests functionality. Sending local SyncML requests to the Windows OS and letting it process the OMA DM commands and get results back. After quite some research how to…
Read More
Today we are going to look under the hood of certificate requests or renewals on an MDM (Intune) managed Windows client. The environment is simple and uses a Windows client and SCEPman as the Cloud CA, which is easily set up and nothing more than an Azure App Service. It is especially interesting, as this…
Read More
Intune managed devices must be configured to leverage Delivery Optimization (DO) to reduce the overall internet bandwidth usage. It is a distributed cache solution using peer to peer transfers for content downloads. It is a very well designed solution especially for the cloud era. The latest addition to that concept is the so called Microsoft…
Read More
In this post I will dive into the Intune policy processing on a MDM managed Windows 10 client. Intune is an MDM system and has the ability to deploy so called device configuration profiles to managed Windows 10 endpoints. We will have a look at the architecture, the settings, and the actual processing including the…
Read More
Successful onboarding without the pitfalls to miss devices and analytics data.
Read MoreThis is a post about enabling BitLocker on non-HSTI devices with Windows 10 version 1809 and standard user permissions. First of all a little background on HSTI. HSTI is a Hardware Security Testability Interface. It is an interface to report the results of security-related self-tests. Its purpose is to provide high assurance validation of proper security configuration.…
Read MoreWhen using the Modern IT approach and building Microsoft 365 powered devices it is a combination of the following cloud services for Modern Management: Microsoft Azure Active Directory for Identity Microsoft Intune for Management Windows Update for Business for Servicing Windows Analytics to Monitor To support the Windows as a Service strategy with cloud services we rely on the…
Read MoreI recently got motivated to research a bit about new MDM settings available in the latest Windows 10 Insider Build (17074) and how to configure them. Settings available in preview Windows 10 versions normally do not have a lot of technical documentation for it or there is even no documentation for a particular feature and…
Read MoreSince Windows 10 1703 you can use a feature called ADMX ingestion to extend policy settings in Intune. What it basically does is to parse an ADMX file and build a MDM policy of it. In the end you can configure the ADMX settings via OMA-URIs in Intune. More details about ADMX ingestion can be…
Read More
Modern IT - Cloud - Workplace 