Today, we are continuing our posts about SCCM 1706 new features. One of them is the ability to enable SCCM Azure Active Directory User Discovery. This discovery method enables organizations to import Azure Active Directory user information. With the growing popularity of Azure AD, this discovery method will soon be circumvented. Azure AD Requirements Before configuring the new discovery method, you’ll need to have : A valid Azure Tenant Access to your Azure admin portal SCCM 1706 Configuration The first step is to configure the Azure Services in SCCM. This step will automatically create the web app in your Azure tenant, there’s no need to create it manually, SCCM takes care of it. Open the SCCM Console, go to Administration / Cloud Services / Azure Services Right-Click Azure Services and select Configure Azure Services In the Azure Service wizard, name your Azure Service and select Cloud Management in the bottom pane In … Read More
How to install Local Administrator Password Solution (LAPS)
One of the challenges faced by workstation administrators, is to manage the local administrator account in large environment. One of the options was to use Group Policy Preferences, but that was before KB2962486 removed the possibility to set password using Group Policy Preferences. Since then, Microsoft as come up with a solution : Local Administrator Password Solution (LAPS). Here’s the benefits of using LAPS : Unique password for local administrator per computer Password available from Active Directory, if needed to use local administrator account Remotly change the local administrator password Ability to use a custom administrator account Limitation : Only the local administrator account can be managed or a custom local account as administrator. In this post, we will detail how to install Local Administrator Password Solution (LAPS) to manage the local administrator password on a Windows 10 computer. High-level steps to install Local Administrator Password Solution (LAPS) On management computers … Read More
Configuring Active Directory and Create Users for Intune
Download and own all parts of the blog series in a single PDF file. Use our products page or use the download button below. This blog post won’t be updated, only the document will be. [purchase_link id=”3885″ style=”button” color=”gray” text=”Add to Cart | Mobile Device Management guide” price=”yes”] In Part 1 of this series, we prepared the Intune environment for mobile device management. We also make sure we got the Intune subscription account. In Part 2, we will configure Active Directory and create users in Intune to make possible a connection between Configuration Manager 2012 and Intune. The licensing model for Intune is user based and a single license entitles the user to enroll up to 5 devices. Active Directory Preparation In order to prepare your Active Directory, you need to create an alternate UPN suffix to match the domain you added in Intune. See part 1 if that’s not completed. An UPN suffix is … Read More