Beta / Preview

Azure AD – Use Machine Learning in Azure AD Access Review (preview)

If you have Azure AD P2 license (either standalone or bundle with an Office 365 or EMS subscription), you know you can use the Access Review feature to help you manage access to your resources to only user which still need it. Access Review involve some level of human intervention to either approve or review …

Azure AD – Use Machine Learning in Azure AD Access Review (preview) Read More »

Azure – You can now restore virtual machine in a different subscription (preview)

If you are running virtual machines in Azure, you already know that you can backup your virtual machine using Azure Recovery Vault. Well, until now, when you had to restore a virtual machine you could only restore it within the same subscription. This is no longer the case as you can now restore the virtual …

Azure – You can now restore virtual machine in a different subscription (preview) Read More »

Azure – You can now use shareable link to connect to Azure Bastion (preview)

As you know Azure Bastion allows you to securely remotely connect to virtual machines running on Azure using either Remote Desktop (RDP) or SSH without having to open the corresponding ports to Internet. Access to the virtual machine using Bastion is performed by connecting the Azure portal using your web browser or using the native …

Azure – You can now use shareable link to connect to Azure Bastion (preview) Read More »

Intune – You can now send organization messages to Windows 11 devices

In 2029, Microsoft introduced a way to send messages to Android and iOS devices using Company Portal (see https://blog.hametbenoit.info/2019/07/24/intune-you-can-send-notification-to-managed-devices/). Well, this functionality has been extended to now allows you to send messages to Windows 11 devices too. With this updated functionality you can do the following: Enable always-on device onboarding messages to help people ramp …

Intune – You can now send organization messages to Windows 11 devices Read More »

Azure – You can now exclude public IP address from DDOS network protection (preview)

As you may already know, Microsoft Azure provides a Distributed Denial Of Service (DDOS) protection to protect your workloads publicly accessible on Azure (see https://learn.microsoft.com/en-us/azure/ddos-protection/ddos-protection-overview/). However, there is situation where you may need to have a public IP address being excluded from the DDOS protection. Well, you can now exclude public IP address from the …

Azure – You can now exclude public IP address from DDOS network protection (preview) Read More »

Intune – You can now manage macOS updates with Intune (preview)

As you already know you can control updates for Windows devices with Intune. Well, good news, you can now do the same for macOS devices. To manage which updates and when they are being installed on your macOS fleet, connect to your Intune portal (https://endpoint.microsoft.com/) to access the Devices\Update policies for macOS blade to create …

Intune – You can now manage macOS updates with Intune (preview) Read More »

Intune – You can now create a set of reusable settings for Attack Surface Reduction Profile and Firewall Profile

As you now to configure devices and Windows Firewall for managed devices in Intune you use profiles – attack surface reduction profiles or firewall profiles. You may have multiple profiles to apply different configuration settings on devices and these profiles may have common configuration settings. Unfortunately, until now, you were not able to define a …

Intune – You can now create a set of reusable settings for Attack Surface Reduction Profile and Firewall Profile Read More »

Intune – You can now onboard Chrome OS devices (preview)

After allowing you to onboard Linux devices (see https://t.co/J2nsZT6MPW), you can now also onboard Chrome OS devices in Intune. I have announced last week this was coming (see https://t.co/J2nsZT6MPW) but there was not yet any official documentation. This is now the case: https://learn.microsoft.com/en-us/mem/intune/enrollment/chrome-enterprise-connector-configure/ In a nutshell, you have to: Create a connection to your Chrome …

Intune – You can now onboard Chrome OS devices (preview) Read More »

Azure – Protect your backup with immutable vaults (preview)

As you know, you can backup your workloads (virtual machines, SQL, file shares…), either hosted in Azure or on-premises, using Azure Backup. Well, with the rise of ransomware attacks and other malicious activities, it becomes important to also protect your backups by blocking any operations which could lead to loss of recovery points. To help …

Azure – Protect your backup with immutable vaults (preview) Read More »

Azure AD – You can now use app filtering when configuring conditional access (preview)

As you know, Azure AD (P1 license minimum) allows you to set up conditional access to secure access to your applications and your workloads identities. Well, when it comes to selecting the applications/workloads to include in the condition you have the choice to apply to all cloud application or explicitly selected ones. The later obviously …

Azure AD – You can now use app filtering when configuring conditional access (preview) Read More »