As part of a move away from standard OS deployment with SCCM toward Windows Autopilot with Intune, one of the usual key component is managing the installation of Office 365. Intune provides a built-in way of creating the application. While the end result will remain the same as other methods of installing Office 365, one of the great benefits of using this method is that it can automatically install the latest build available for the chosen channel, without a need for administrative modifications. In this post, we will detail how to prepare Office 365 application with Intune. This post is part of a series on Windows Autopilot that will be published in the following weeks. In the next posts, we will cover the following subjects : Getting started with Windows Autopilot | Step-by-step guide How to deploy Win32 Applications in Microsoft Intune How to customize Windows 10 with Microsoft Intune … Read More
How to join Autopilot devices to Hybrid AD
In our previous post, we covered how to set up computers using Windows Autopilot. While the main scenario is to join computers to Azure AD, leaving the on-prem domain aside is for sure not realist in many cases. Microsoft has added the ability to join the On-prem domain as part of the Autopilot setup. This feature is still currently in Preview, but worth testing and checking it out. In this post, we will detail the requirements and how to configure Azure and on-prem AD to allow Hybrid AD to join computers. Intune Autopilot Hybrid AD joined computers allows seamless integration. This post is part of a series on Windows Autopilot that will be published in the following weeks. In the next posts, we will cover the following subjects : Getting started with Windows Autopilot | Step-by-step guide How to deploy Win32 Applications in Microsoft Intune How to customize Windows 10 … Read More
Windows 10 Intune and Autopilot Customization
With the latest updates Microsoft released to Intune and Autopilot, it is becoming more realistic to leave the task sequence behind in favour of using Autopilot with Intune to deliver the computer standards required by an enterprise. While it will not be possible for all scenarios, a standard PC used for administrative tasks can be delivered with many, if not all, of the required windows 10 intune autopilot customization. While many of our previous Windows 10 Customization tricks are still gonna be useful, the delivery will be different from simply running various scripts from a Task Sequence. In this post, we will go over multiple Windows 10 customization all done with Intune in order to leverage Windows Autopilot. The ultimate goal is to be able to replicate a standard deployment made with a Task sequence from SCCM or MDT This post is part of a series on Windows Autopilot that … Read More
Getting Started with Microsoft Autopilot and Windows 10| Step-by-Step Guide
Since the announcement of Windows Autopilot there has been a lot of interest and questions about how it actually works, will it blend easily in our environment, etc. While at the beginning there was some major drawback compared to what a Task sequence’s configured computer can deliver, with the latest updates to the service, it is now a good time to start your journey with it. In this post, we will detail all the requirements and how to set up an environment for Microsoft AutoPilot and Windows 10 devices. This post is part of a series on Windows Autopilot that will be published in the following weeks. In the next posts, we will cover the following subjects : Getting started with Windows Autopilot | Step-by-step guide How to deploy Win32 Applications in Microsoft Intune How to customize Windows 10 with Microsoft Intune and Autopilot How to join Autopilot devices to … Read More
Top 5 No-Brainers Security Features in Microsoft Intune
By 2019, when you plan to deploy modern device management solutions in your company, the security must be a priority. The cloud is accessible from anywhere on the planet and mobility allows users to connect from anywhere. Also, our society is changing and our lifestyle habits as well. Users that have access to corporate data without being forced to connect to the corporate network, is much more convenient. Before you start registering devices in Microsoft Intune, it’s important to set up the Intune portal safely. Moreover, the different operating system platforms, and the types of devices that connect to your network or cloud applications is important as well. Microsoft Intune is a leader in MDM solution and it contains strong security capabilities that you can’t miss like role-based administrative control (RBAC), enrollment restrictions, compliance policy and a couple more. On several occasions, we have noticed that companies do not use … Read More
Block Apple Facetime Built-in App with Microsoft Intune
A new bug was discovered with Apple’s Facetime app that gives the caller the ability to listen to the other device and even watch the video without approving the call. This vulnerability is not giving access to corporate data or personal information, but have more consequences on personal level. Even though Apple temporarily kill the switch of the service and seems to have solved the problem via a future software update, there are some actions that can be made if you want to avoid trouble. You can manually turn off the Facetime app with iOS and MacOS. But, can we block this kind of app in an enterprise environment? Yes, you can block the facetime app on all devices by deploying a device configuration with Microsoft Intune. This post will show you how to block Apple facetime built-in app with Microsoft Intune. Device Configuration Note that you can deploy this … Read More
How to help Intune users Using Intune Troubleshooting Portal
The Intune troubleshooting portal can be used by Intune administrators to view information about a specific Intune user. It can be used to troubleshoot many problems for example, licensing problem, the devices assigned to a user, details about enrollment issues, compliance issues, app installation failure and much more. The Intune Troubleshooting portal can also give suggested remediation steps to resolve issues. You need at least the HelpDesk Operator role (RBAC) to use the troubleshooting portal. How to use the Intune Troubleshooting Portal Go to your Azure portal Select Microsoft Intune On the Intune pane, in the Help and Support section, select Troubleshoot On the left, click Select to select a user to troubleshoot Select a user, click Select at the bottom Once your user is selected, you can view the full dashboard for this device Let’s see what every section covers : #1 – Account Status Shows the status of the current Intune tenant as Active or Inactive #2 – User Status Shows the status of the user’s … Read More
How to start your Modern Management journey as an SCCM Administrator
If you have been following the SCCM community for the past months, you’ve been hearing a lot about comanagement, cloud management gateway, cloud distribution point and Intune. You may also hear that SCCM is dying and that Intune is your only path in the near future to manage your company devices. The good news is that SCCM is not dead, in fact, it’s been rolling out new features quarterly in the past 3 years thanks to the new servicing model and the product group is not slowing down. The bad news is that… well, there’s no bad news… but as a sysadmin, you have a steep learning curve if you’ve not been following the “sccm intune modern management” storm from past months. You may wonder why would I want to go to Intune in the first place. By using only SCCM you are not exploiting 100% of the features you can … Read More
Migrate Users from iOS Mail Native to Microsoft Outlook with Intune
Nowadays, the smartphone takes up a lot of room in our personal and professional lives. Being able to receive your work emails directly on a mobile device is becoming popular. Based on latest numbers provided by Brad Anderson from Microsoft, companies are more willing to use mobile device management solution like Microsoft Intune and let users access company data from outside the corporate network. Some companies shared beautiful stories of using Microsoft’s EMS solution, like Pepsi Cola and much more. Companies gain a lot of benefits in letting their employees access corporate data from everywhere, especially emails. There are several mail applications available in the App Store or Google Play Store for Android, but iOS native mail app and Outlook app are by far the most popular for iOS platform. Which one do you prefer? Some users will gain more productivity with iOS native mail app while some users will choose Outlook app for preference … Read More
Automatic Windows 10 PC Enrollment in Microsoft Intune or SCCM
The process of enrolling your Windows 10 computers in Intune should be as simple as possible for your users. If you’re using Azure Active Directory in your organization, the enrollment process can be made automatically when a user joins it’s device to AAD. It couldn’t be simpler. The process is the same rather for Intune Standalone or Hybrid mode (integrated with SCCM) Windows 10 Intune Automatic Enrollment Prerequisites CNAME DNS Entry created on your domain for automatic name resolution A valid Intune Tenant (Standalone or SCCM Integrated) Azure Active Directory Premium enabled For this post, we’ll be using a Windows 10 1703 device but the process is the same for Windows 10 1607 and slightly different for older versions but is supported. CNAME DNS Follow our Intune Preparation post for the steps to create CNAME entry. The Azure portal let you test your configuration Open the Azure Portal Go to Intune / Device Enrollment / Windows … Read More