The latest update on Intune is providing (in preview) the ability to configure group policy (GPO) for Windows 10 devices. This is not (yet?) the exact group policy we have in Active Directory but the idea is the same and based on the well known Administrative Templates (ADM/ADMX). NOTE this is currently not supported for co-managed device (aka Azure AD joined devices managed with System Center Configuration Manager (SCCM)) but…
Read MoreIntune – New Intune tenant details blade available
Intune has been updated to include a new blade resuming all Intune tenant details and health information. This new blade, called Tenant Status, is available below the Help and Support section of your Intune tenant, accessible either from the Azure portal – https://portal.azure.com It gives you your Intune tenant details (name, location, service release (version), number of licenses available and applied, number of enrolled devices) as well as health details…
Read MoreIntune / Windows 10 – You can refresh a device while keeping it enrolled
This has been available for few months already but apparently was not quite known. Since last August 2018, you can now request to refresh an enrolled Windows 10 (1703 and later) from Intune. The refresh option – called Fresh Start – will remove all preinstalled application while keeping the device enrolled. It is important to Retain the user data if you want to keep the device enrolled (Azure AD Joined,…
Read MoreIntune / Windows 10 – You can now configure the Delivery Optimization for Windows Update
The latest Intune update allows you to configure the Delivery Optimization for Windows Update in Windows 10/Windows Server 2019 (yes, Delivery Optimization is also available on Windows Server 2019 ) Do configure the Delivery Optimization you need to create a new Device Profile for Windows 10 or Later and then choose the Delivery Optimization profile type, then you can define how the Delivery Optimization will work – from HTTP only…
Read MoreSCCM – Use Autopilot when deploying OS
Following the availability of the new SCCM Current Branch build (1810), it is now possible to use the built-in SCCM task sequence to use Autopilot when deploying OS. To use it, you need to create an SCCM package which will contains the Autopilot settings and use the SCCM tasks sequence (this is not available for MDT integrated task sequence) and choose the Deploy Windows Autopilot for existing devices To create…
Read MoreIntune – You can now get Windows 10 join an Active Directory Domain (preview)
It has been quite a limitation so far for Windows 10 managed with Intune; it was impossible to get them to join an Active Directory domain using Autopilot, making these devices Azure AD Hybrid joined devices. Now (currently in preview – so there could be some glitch and may change), you can assign an Intune profile to your Windows 10 devices to join your Active Directory domain. Off course, to…
Read MoreIntune – You can now assign Windows Autopilot profile to already registered clients
As you may already know Windows Autopilot simplifies Windows 10 device enrollment to Azure Active Directory (AAD) and providing seamless user experience. One of the problem with Windows Autopilot was if your already have Windows 10 devices registered to your Azure AD, you were not able to assign an Autopilot profile. With the latest update on Intune, you can now update your Autopilot policy to apply the policy also on…
Read MoreIntune – Display an enrollment status page
With the latest Intune update, you can now display an enrollment status page after a Windows 10 device has been registered. The page will let your end-users know what is happening while their device is finalizing the registration process. To do so, you first need to enable the feature in Intune Connect to your Azure portal and reach out the Intune configuration blade Then reach out the Device Enrollment\Windows Enrollment…
Read MoreIntune – You can allow/block personal devices to register
If your company policy requires to allow only corporate devices to register to Intune, you can now block personally owned devices to join. To do so, from your Intune configuration blade reach out the Device enrolment blade and create/edit an Enrolment Restrictions policy The option to allow/block personally owned devices is available for each supported OS in the Configure platforms configuration blade
Read MoreIntune – You can now target specific users/devices when applying Windows Hello policy
With the latest updates on Intune, you can now define specific users/devices when you apply a Windows Hello policy. Until then, the Windows Hello policy was a tenant level settings and as such applied to all users/devices. To define the Windows Hello policy, go to your Intune configuration blade and reach out the Device configuration\Profiles and create an Identity Protection profile, then you will be able to define the targeted…
Read MoreIntune – You can edit the update channel for your Office 365 Click to Run and define which version to get installed
With the latest updates on Intune, you can now edit the channel update after you have added your Office 365 Click to Run application on Intune as well as define (if required) which specific release needs to be installed on the client. To edit the update channel and/or define the version to be installed, go to your Intune configuration blade from your Azure portal and reach out the Mobile apps…
Read MoreIntune – You can now edit your Office 365 Click to Run Deployment
With the latest updates on Intune, you can now update your Office 365 Click to Run deployment. Previously you had to delete the deployment and re-create a new one with the updated deployment settings if you had to add/remove Office application from your deployment. Just access your Intune configuration blade from the Azure portal and reach out the Mobile apps blade to edit your existing Office 365 Click to Run…
Read MoreSCCM/Intune – Hybrid mobile device management is deprecated
It seems it has not been widely and properly communicated As you may know with System Center Configuration Manager (SCCM) you were able to setup an hybrid mobile device management with Intune, meaning you were able to use Intune to register your device and use SCCM to manage them. So, since August 14th 2018, this hybrid mobile device management is deprecated. If you are using this hybrid MDM feature, you…
Read MoreSCCM – New co-management options
With the latest version of SCCM Current Branch (1806), new options are available for the co-management capability: Mobile apps, to use Intune for mobile applications deployment while keeping your Windows client managed by SCCM Office Click-To-Run, to use your Intune for Office 365 Click to Run deployment
Read MoreSCCM – A new version of SCCM Current Branch is now available
The update 1806 for System Center Configuration Manager (SCCM) Current Branch has been released and is now available for production customers. As usual the update is being delivered with the ‘in-console update’ (Administration workspace\Updates and Servicing) If the update is not yet available and you do not want to wait, a PowerShell script is available to force the detection here https://gallery.technet.microsoft.com/ConfigMgr-1806-Enable-3eb4b46c As part of the new capabilities, you can: add…
Read More
Recent Comments