**CISCO NO LONGER RECOMMENDS USING THE UMBRELLA ROAMING CLIENT. SEE THIS POST FOR INSTRUCTIONS ON DEPLOYING THE SECURE CLIENT WITH UMBRELLA MODULE – Deploy the Cisco Secure Client with Umbrella Module using Intune – SMBtotheCloud If your organization or clients are using Cisco Umbrella for additional endpoint protection, this blog walks through deploying the Umbrella […]
Deploy the Cisco Umbrella Roaming Client with Intune Read More »
MAM is becoming an increasingly popular Intune implementation. Especially for smaller organizations that don’t provide corporate cell phones but still want to allow employees access to company email and data from their personal devices. Manually configuring MAM for organizations can be slightly time consuming, so I’ve created a script that creates and assigns everything needed
Configure MAM for iOS/Android with one Script Read More »
If you’re familiar with Apple Business Manager, Android Zero Touch is the equivalent for corporate Android devices. There are some differences in how ABM and AZT are set up and the overall functions they provide, but the goal for devices is the same – to seamlessly enroll new or wiped devices in your MDM. When
Get Started with Android Zero Touch and Intune Read More »
All organizations differ in how they want to secure (or not secure) their data. Inevitably, the weakest points in an organization’s defense are the end users and endpoints. Allowing any device access to corporate resources is generally not a good practice. It’s much easier to control access from company-owned hardware since we can ensure our
Handling Unmanaged Windows Devices – Using Windows MAM with Intune Read More »
Overview AVD and FSLogix are widely used and being adopted by more and more organizations. If you’re not familiar with FSLogix or AVD, you should have a basic understanding of how it works. At a high level, FSLogix creates a .vhdx file containing the user profile data (everything for the c:\users\username, which also contains the
Find Stale FSLogix Profiles with Azure Automation and get Notified through Teams Read More »
If you need to migrate FSLogix profiles to a new storage account, Microsoft makes this very easy using the azcopy tool. You can also use Robocopy like we did back in the days of file server migrations, but azcopy is significantly faster. If you encounter an AVD environment that is using a transaction-optimized storage account
Migrate FSLogix Profiles to a new Storage Account Read More »
I recently ran into an issue with a client when trying to capture a new AVD image. When trying to sysprep the VM before image capture, we were receiving the below error – “Sysprep was not able to validate your Windows Installation. Review the log file at %WINDIR%\System32\Sysprep\Panther\setupact.log” The above error on its own is
With the New Teams app being GA, organizations will eventually move from “Teams Classic” to the “New Teams” app. There are several reasons to make the switch, the biggest reason likely being the performance benefits. As I’ve been testing the new teams, I realized that custom backgrounds that were manually added, or added via remediations,
Deploy Custom Backgrounds to New Teams with Remediations Read More »
You may or may not know that there is a specific way to install Teams when using a VDI solution. AVD is what I end up working with in almost every situation, so this article is catered to AVD. However, this solution can be used for any VDI solution that uses the Teams machine-wide installer.
Keep Teams Machine-Wide-Installer Updated on AVD (or other VDI) with Intune Remediations Read More »
Here’s a quick tip if you’re using Microsoft Entra Connect (Azure AD Connect) to sync your user identities, and you need to enforce a password change for users at the next logon. This can be useful if your user identities are all synced from AD but you have a mixed bag of devices with PCs
Force Password Change at Next Sign-in for Entra Connect Synchronized Identities Read More »