Microsoft Intune

Windows / Intune – Phone Link has been blocked by your system administrator

Phone Link, previously known as Your Phone, is a Windows app that allows connecting Android or iOS phones to Windows computers. It enables access and manage various phone features directly from their PC, such as texts, calls, notifications, and photos. Well, recently, I faced the “This feature has been blocked by your system administrator” error […]

Windows / Intune – Phone Link has been blocked by your system administrator Read More »

Intune – New attributes and S/MIME baseline requirements for SCEP certificate profiles

If you use Intune SCEP to generate and deliver user certificate, you need to review and update accordingly before July 16 your SCEP profile to use new required attributes for the certificate subject name: Given name – G={{GivenName}} Surname – SN={{SurName}} This new requirement is following the enforcement new S/MIME baseline requirements for public certificate

Intune – New attributes and S/MIME baseline requirements for SCEP certificate profiles Read More »

Intune / Windows – Hotpatching now enabled by default for new Windows quality update policies

By now, you are probably aware about the hotpatching for Windows 11 and Windows Server (see Hotpatch updates | Microsoft Learn and Hotpatch for Windows Server | Microsoft Learn). As hotpatch has been available for Windows 11 clients for few months already, Microsoft has announced that it will now be enable by default for all

Intune / Windows – Hotpatching now enabled by default for new Windows quality update policies Read More »

Intune – Changes in supported OS architecture for Win32 apps

If you are using to manage your client devices fleet, you already know that you can package and deploy custom Windows applications (aka Win32 apps). When deploying this type of application, you have to define the supported Windows architecture (x86 or x64) and version. Well, good news as there has been few changes to configure

Intune – Changes in supported OS architecture for Win32 apps Read More »

Intune / Windows – Bad interaction between ThreatLocker and Windows Hotpatch

Well, another one bit the dust but this time is more related to a third party security product – ThreatLocker (Enterprise Cybersecurity Solutions | ThreatLocker) – wrongly blocking DLL’s patched with Hotpatch. If you have read my previous post (Intune / Windows ARM – Issue with May 2025 Patch Tuesday on ARM devices) about Hotpatch

Intune / Windows – Bad interaction between ThreatLocker and Windows Hotpatch Read More »

Intune / Windows ARM – Issue with May 2025 Patch Tuesday on ARM devices

As you may already know, Intune is offering a Hotpatch for Patch Tuesday to allow installing Windows Updates without having to restart devices (see Intune – Hotpatch is becoming available for client devices). Well, we (at the company I’m working for) found an issue with the May 2025 updates. After getting the May 2025 updates

Intune / Windows ARM – Issue with May 2025 Patch Tuesday on ARM devices Read More »

Intune – You can now easily see relationship between applications (Win32)

As you know, when publishing a Win32 application with Intune, you can define dependencies with other applications (Win32 too). However, it can be challenging to identify the dependencies between applications. Well, good news, you can now see those dependencies by access the Relationship Viewer blade of the application. You can use filter too to view

Intune – You can now easily see relationship between applications (Win32) Read More »

Intune – Hotpatch is becoming available for client devices

You may have been aware of a major overhaul for Windows Update to allow deploying Windows Updates without having to restart (see Hotpatch for Windows Server | Microsoft Learn). This ‘hotpatch’ capability has been introduced first for Windows Server (2022, 2025) running in Azure and then started to be extended to Windows Server running on-premises

Intune – Hotpatch is becoming available for client devices Read More »

Intune – Enable Personal Data Encryption for added security

As you know, Windows devices with OneDrive client allows your end-users to redirect their personal folders (Documents, Desktop….) to OneDrive. This allows leveraging some security capabilities provided by SharePoint Online/OneDrive, such as versioning or ability to recover complete OneDrive space in case of corruption or encryption by malware. This also replace the ‘old school’ roaming

Intune – Enable Personal Data Encryption for added security Read More »

Intune – Get more detailed inventory from your Windows devices

As you know, with Intune you are able to gather some device hardware information but they were limited. Well, good news as now you can gather more hardware details from your devices. The new profile type is supported on the following Windows version: Windows 11, version 23H2 (22631.2506 or later) with KB5031455 Windows 11, version

Intune – Get more detailed inventory from your Windows devices Read More »