Setting up an Android Emulator for testing Intune features on Apple macOS

Overview In September 2020 Vikash Sivanath wrote a blog on Setting up an Android Emulator for testing Intune features that focused on how to get it setup on a Windows platform. In this blog we will look at setting it up on Apple macOS. Installation Download the Android Studio software from Android’s developer site by … Continue reading Setting up an Android Emulator for testing Intune features on Apple macOS

How to configure Desktop Analytics and more…

The purpose of this article is not only to do a Step by Step guide on how to setup Desktop analytics but also to add extra information that can be used for troubleshooting. Have a look at the Config Confirmation areas that follow each section. Configuration Manager Prerequisites Configuration Manager, version 1902 with update rollup … Continue reading How to configure Desktop Analytics and more…

Intune – Query Azure AD Bitlocker Keys using Graph API

The Issue If you have recently started using the BitLocker Encryption options out of Intune whether its device configuration or the endpoint protection encryption portion you will see there are many great reports like the encryption below. The problem is its quite hard to see if your machines have backed up their keys to Azure … Continue reading Intune – Query Azure AD Bitlocker Keys using Graph API

Intune – “Conditional Access, Terms of Use and The Company Portal”

The Issue We recently had an issue where we tried to use the Conditional Access setting and only granting Terms of Use for an Android Device Enrollment. The Investigation What happens now is as described in our docs article Terms of use - Azure Active Directory | Microsoft Docs - The authenticator app installs... Why … Continue reading Intune – “Conditional Access, Terms of Use and The Company Portal”

Microsoft Edge: Configure IE Mode (Part 2)

IE Mode on Microsoft Edge provides compatibility for legacy sites that require Internet Explorer 11. IE Mode enables users to access modern and legacy sites using a single browser. Users no longer need to switch between browsers to access legacy intranet sites. IE mode supports ActiveX controls such as Java and Silverlight, and it also supports Internet Explorer settings and group policies that affect Protected Mode and security zone settings. In this final post of the two-part series, I will create the Enterprise Site Mode List XML file and test the configured sites to confirm that the specified sites can be successfully opened in IE Mode on Microsoft Edge.

Microsoft Edge: Configure IE Mode (Part 1)

IE Mode on Microsoft Edge provides compatibility for legacy sites that require Internet Explorer 11. IE Mode enables users to access modern and legacy sites using a single browser. Users no longer need to switch between browsers to access legacy intranet sites. IE mode supports ActiveX controls such as Java and Silverlight, and it also supports Internet Explorer settings and group policies that affect Protected Mode and security zone settings. In part one of this two-part series, I will configure IE Mode using Group Policy and Microsoft Intune.

Intune DeviceType Reference for Azure Sentinel KQL

As you start to connect your Intune/Endpoint Manager logs to Azure Sentinel, you may see right away that there's a DeviceType column exposed that looks valuable but the results show ID numbers instead of just device names. This DeviceType column is directly related to the DeviceTypeID for Intune device entities. As an example, the following … Continue reading Intune DeviceType Reference for Azure Sentinel KQL

Digging Deeper into Intune and Azure Sentinel

Last week I finally found some time to start digging into managing security for Intune-enrolled devices with Azure Sentinel. Obviously, the first thing that had to be done was to connect Intune data to Azure Sentinel. Read about how to do that here: Connecting Intune to Azure Sentinel. The next step was to ensure that … Continue reading Digging Deeper into Intune and Azure Sentinel

Cloud Management Gateway Troubleshooting Deepdive HTTP/1.1 500 CMGConnector_InternalServerError

Before starting into the troubleshooting part, let me just give you an overview of my lab environment: 1 Primary site TP2005 upgraded to TP2006Management Point in HTTPS modePublic SSL Cert on the CMGClient are Hybrid/and AAD joined Scenario: Co-Management over CMG was working fine until I upgraded to TP2006... After the upgrade clients on the … Continue reading Cloud Management Gateway Troubleshooting Deepdive HTTP/1.1 500 CMGConnector_InternalServerError

Resources on Servicing the Modern Workplace and WFH

We recently published a bunch of great articles with regards to Servicing Windows and Microsoft Apps for Enterprise (formally known as Office 365 Pro Plus) to help you overcome challenges you might face when it comes to Work from home scenarios. So as we want our devices stay healthy and secure as well in those … Continue reading Resources on Servicing the Modern Workplace and WFH