Security – “The Best Christmas Gift, Securing your Accounts (‘Tis the season to be hacked on Facebook)”

Issue It's December and time to let your hair down. It could be a time to relax, do some reading or even take time to upskill in a new technology. Perhaps catch up with friends and family. But if you think you can completely relax just remember, your identities on-the-line(Vince Vaughn) are open and exposed … Continue reading Security – “The Best Christmas Gift, Securing your Accounts (‘Tis the season to be hacked on Facebook)” →

Intune – Query Azure AD Bitlocker Keys using Graph API

The Issue If you have recently started using the BitLocker Encryption options out of Intune whether its device configuration or the endpoint protection encryption portion you will see there are many great reports like the encryption below. The problem is its quite hard to see if your machines have backed up their keys to Azure … Continue reading Intune – Query Azure AD Bitlocker Keys using Graph API →

Azure – “Executing Runbooks with Power Platform and Webhooks”

The Question In a recent Workshop I wanted to explain how you could use webhooks in clever ways to kick off specific tasks in Azure Automation. Specifically I wanted to create a Power App where I could just click a button and all my Az Modules in my Azure Automation Account gets updated. You can … Continue reading Azure – “Executing Runbooks with Power Platform and Webhooks” →

Intune – “Conditional Access, Terms of Use and The Company Portal”

The Issue We recently had an issue where we tried to use the Conditional Access setting and only granting Terms of Use for an Android Device Enrollment. The Investigation What happens now is as described in our docs article Terms of use - Azure Active Directory | Microsoft Docs - The authenticator app installs... Why … Continue reading Intune – “Conditional Access, Terms of Use and The Company Portal” →

Microsoft Endpoint Manager – “Defeating Vulnerability Scans”

The Issue In Operations you may get approached by your Security Team from time to time to help them close new Vulnerabilities that have been identified after a Vulnerability Scan was run. It might look like the below and contain a list of Vulnerabilities that need to be addressed. The Investigation If you are lucky … Continue reading Microsoft Endpoint Manager – “Defeating Vulnerability Scans” →

Azure – Assign A Custom Role to Allow Specific Users to Stop/Start/Restart a specific VM

The Issue A customer recently had the need to only allow specific Server Owners to Start\Restart\Deallocate specific Virtual Machines. The Investigation I actually found this article that explains how to create this for an assignment to an entire subscription. https://techcommunity.microsoft.com/t5/itops-talk-blog/step-by-step-enabling-custom-role-based-access-control-in-azure/ba-p/363668 You use the mentioned JSON File, { "Name": "Restart Virtual Machines", "IsCustom": true, "Description": "Restart … Continue reading Azure – Assign A Custom Role to Allow Specific Users to Stop/Start/Restart a specific VM →

Azure – Point to Site Transit Traffic over Connected VNETs Issue

The Issue Recently one of my customers experienced an issue where we wanted to achieve the below. The reason was we wanted machines out on the internet to communicate with Active Directory Servers by using the Azure VPN Client. The Investigation So there are two ways to achieve a "Connection" between Virtual Networks. You can … Continue reading Azure – Point to Site Transit Traffic over Connected VNETs Issue →

Microsoft Endpoint Manager – “Ultimate Environment”

Intro I really love building solutions that contain a vast variety of the tools you could ever want or need to do your job. This may be a bit excessive and you might end up with tools you only click once in a blue moon. Never-the-less if you are a Configuration Manager Admin and also … Continue reading Microsoft Endpoint Manager – “Ultimate Environment” →

Infrastructure – Hybrid Cloud Print – Publish Printers Powershell

The Issue I recently had the opportunity to build a Hybrid Cloud Print Solution. If you have never built this before, it isn't hard but there are a lot of moving parts. Stay close to our official document - https://docs.microsoft.com/en-us/windows-server/administration/hybrid-cloud-print/hybrid-cloud-print-deploy By not deviating from the above document you not only make your own life easier, … Continue reading Infrastructure – Hybrid Cloud Print – Publish Printers Powershell →

Visual Studio Code – “The IDE you wished you had started using earlier”

I recently presented at Ignite The Tour Johannesburg and my topics were relating to managing your Azure Environment using better tools and also some tips and tricks. This was a revolutionary step to say none the less as I was going to have to present a tool that I wished I started using earlier - … Continue reading Visual Studio Code – “The IDE you wished you had started using earlier” →