As we rely more and more to Entra ID for authentication and access control, a key requirements is the ability to recover from attacks and/or accidental changes. While there has been few improvements in Entra for quickly recovering (recycle bin for security groups (Entra ID – You can now recover deleted cloud security groups (preview)) […]
Entra ID – You can now backup and recover your Entra tenant (preview) Read More »
If you work in an hybrid environment with Active Directory being synchronized with Entra ID using either Entra ID Connect or Cloud Sync, you probably already the best practice and recommendation to use cloud-based account only when assigning administration privileges. This helps mitigating potential account compromission to be extended to other environment and elevated privileges.
Entra ID – Entra ID Connect/Cloud Sync going to block hard match for privileged roles Read More »
If you are allowing/supporting Bring Your Own Device (BYPO), you may already have experienced unintentional mobile device management (MDM) enrolment for Entra registered devices because end-users does not really understand the prompt (“Allow my organization to manage my device”) they may receive when sign-in on applications. To avoid such unintentional enrollment, Intune now allows administrators
Intune – Block automatic mobile device management enrollment (preview) Read More »
As you know, Microsoft has introduced Secure Boot with Windows 8 (2011) and has become more important with Windows 10 and Windows 11 (this is even a prerequisites). Well, in June 2026 (as announced in November 2025 Secure Boot playbook for certificates expiring in 2026) certificates used by Secure Boot are going to expire. You
Windows – Enable Secure Boot certificate updates Read More »
If you are synching your on-premises Active Directory to Entra ID using Entra Connect, you need to plan to upgrade to the latest version 2.6.1.0 This new version does not provide any new capabilities, rather bugs fixes or improving existing features. This new version: introduces a change in managed certificate lifetime when using the application
Entra ID – New Entra Connect version is available for download Read More »
UPDATED February 20th, 2026, you can now use the Entra ID portal to deactivate/reactivate registered applications. This feature is currently in preview with its own support SLA and is not (yet?) also available through the Entra ID portal. As you know to deliver SSO authentication, Entra ID uses Enterprise Applications (either from catalog, application proxy
Entra – You can now disable registered applications (preview) Read More »
As you know, when using Teams for meetings and authorized users (usually organizers) start recording and/or transcription a notification is displayed to all participants. This notification is enabled and can not be disabled. Well, good news as Teams administrators can now customized the notification for recording and transcription. This can be helpful to provide privacy
Teams – You can now customize your recording and transcription notifications Read More »
As you know, with Intune you can package Windows applications (aka legacy, aka Intune package [Win32]). This package can include PowerShell scripts to perform the installation/uninstallation processes. When deploying such Win32 app, it could have been a bit complex as you had to use the command line to properly run the scripts, including parameters or
Intune – You can now use a PowerShell script when deploying a Win32 app Read More »
If you are a company using both M365 services and Slack, there is good news as it is becoming easier (and cheaper – aka free ich ) to migrate your data from Slack to Microsoft Teams. For years, many company have been using both M365 services and Slack as Slack has been providing
Teams – You can now easily migrate from Slack to Teams (preview) Read More »
You probably know that with Intune you can get administrators to approve, execute some tasks requiring special/temporary elevation/permission through multi-admin approvals, elevation requests or Defender security tasks. Unfortunately, until now all of these administrative requests were being handle from different Intune blades, making it a bit difficult and/or generating overhead by forcing switching from one
Intune – A single view to consolidate administrators tasks Read More »
