Is Per-User MFA really disabled? Maybe not if its breaking your Entra-Joined W365/AVD Connections

If you didn’t already know, per user MFA can cause issues when connecting to Entra-Joined Azure virtual machines. Specifically, AVD and Windows 365 instances. When this happens, you will get an error when signing in like this: That error is almost always pointing to one of two things: I had an interesting situation where we […]

Is Per-User MFA really disabled? Maybe not if its breaking your Entra-Joined W365/AVD Connections Read More »

Import all 24H2 Security Baseline Policies with a Script

Over the last few weeks, several posts have been made about the release of the Windows 11 24H2 security baselines. If you’re unfamiliar with security baselines, they’re a pre-configured set of security settings based on Microsoft’s best security practices. Applying all security baseline settings, especially in an existing environment, can cause chaos and problems for

Import all 24H2 Security Baseline Policies with a Script Read More »

Auto Rotate Background & Lock Screen Images with AZ Automation + Graph API

There’s no shortage of posts regarding updating the background and lock screen images for your endpoints. The question that usually comes up is how to do this on Windows 10/11 Pro. This is because the Intune device restriction policy makes adding background/lock screen images easy, but it’s only compatible with Windows Enterprise/Edu SKUs. If that

Auto Rotate Background & Lock Screen Images with AZ Automation + Graph API Read More »

Identify where a Self-Deploying Autopilot device is registered

I do a lot of testing for clients and prospects with Azure, Intune, and Autopilot. Although I do the vast majority of my testing using Hyper-V VMs (I made a post about this here for quickly provisioning machines – Use Hyper-V and PowerShell to quickly spin up Windows test machines  – SMBtotheCloud), sometimes there is

Identify where a Self-Deploying Autopilot device is registered Read More »

Exceeding the normal churn rate limit for Azure Site Resovery? How to Migrate to a Premium Cache Storage Accounts

If you’re reading this, you probably know what Azure Site Recovery is (ASR). At a high level, ASR is a disaster recovery solution that replicates workloads on your Azure VMs or Physical on-prem servers to a secondary Azure Region. This allows you to failover your production workloads to the secondary region with minimal downtime. Configuring

Exceeding the normal churn rate limit for Azure Site Resovery? How to Migrate to a Premium Cache Storage Accounts Read More »