A new administration role for Intune has been made available – Endpoint Security Manager. This new role is an extension of the the Security Administrator role, to allow you The associated permissions with this new Endpoint Security Manager are: Read, Create, Update, Delete, and Assign Device Compliance Policies Read, Delete, and Update Managed devices Read, […]
Intune – New administration roles available Read More »
As you may already know, you are able with Intune to provide a PKCS certificate for user when connecting to WiFi or VPN networks (see https://docs.microsoft.com/en-us/intune/protect/certficates-pfx-configure#create-a-pkcs-certificate-profile for more details). If you wanted to use a PKCS certificate for device based authentication, this was only possible for macOS based devices. Well, good news, the latest update
Intune – You can now use a device-based certificate for all operating system Read More »
A new application protection policy setting has been introduced in Intune to let you manage Outlook Mobile notification. With this new setting, administrator can define if notification from Outlook Mobile (email and calendar) can be (or not) by displayed on the lock screen – this is available for both Android and iOS devices, including wearable
Intune – Manage Outlook organizational data notification Read More »
By now you know, a new version/build of Windows 10 is known as Feature Update being released roughly every 6 months. You also already know that you can manage the update feature on Windows 10 with Intune policy. Well, a new policy capability has been added to Intune to let you define the Windows feature
Intune – You can set the Feature Update you want to stay on Read More »
Microsoft Intune now allows you to create a device configuration profile to manage and lock down firmware settings. This profile applies to UEFI Windows 10 devices, letting you enabling/disabling virtualization, built-in hardware (camera, micro and speakers, boot options…) To start using, logon to your Azure portal (https://portal.azure.com/) and reach out the Intune\Device Configuration\Profiles or Device
Intune – You can now define a configuration profile to lock down firmware settings Read More »
Intune is now providing built-in reporting capabilities (in preview) from the portal to give you an easier way to get reporting about your devices. To start using it, logon to either your Azure portal (https://portal.azure.com/) and then reach out the Intune blade, or to your Device Management portal (https://devicemanagement.microsoft.com/). From there you will see the
Intune – Get reports and trends about your managed devices Read More »
As you may know testing and validating Intune settings may be a little bit challenging. To help you with this, you can now create a secured test environment, called Cloud Managed PC. To start with this new capability you need to logon to your Device Management portal (https://devicemanagement.microsoft.com/) and access the Home blade NOTE you
Intune – You can now create a test environment to test recommended settings and apps Read More »
As you know, you can define policies to applications and devices using Intune to ensure minimum requirements, compliance and define various configuration settings. Until now, you had to create and assign policies (to devices, users or application) one by one. Well, good news, you can now start creating policy sets to apply these policies from
Intune – You can now define policy sets (preview) Read More »
As you know, with Windows 10 you can join your device to Azure Active Directory and then use your user principal name (UPN) – which usually is also your email address. In the past (aka when the device was Active Directory domain joined), end-users were used to enter their username using the ‘short name’ (aka
Intune – You can define the default domain to use for authentication Read More »
As you know, attackers always try to be ahead of the security game and one of their technique is to disable the endpoint protection (aka antivirus/antimalware). Well, while Windows Defender is a quite secure and robust endpoint protection, it is obviously one of the major focus for these attackers. To help mitigate security threats trying
Windows / Intune – Tamper Protection, a new protection capability is now available Read More »
