Gannon Novak

Keep Teams Machine-Wide-Installer Updated on AVD (or other VDI) with Intune Remediations 

You may or may not know that there is a specific way to install Teams when using a VDI solution. AVD is what I end up working with in almost every situation, so this article is catered to AVD. However, this solution can be used for any VDI solution that uses the Teams machine-wide installer. […]

Keep Teams Machine-Wide-Installer Updated on AVD (or other VDI) with Intune Remediations  Read More »

Force Password Change at Next Sign-in for Entra Connect Synchronized Identities

Here’s a quick tip if you’re using Microsoft Entra Connect (Azure AD Connect) to sync your user identities, and you need to enforce a password change for users at the next logon. This can be useful if your user identities are all synced from AD but you have a mixed bag of devices with PCs

Force Password Change at Next Sign-in for Entra Connect Synchronized Identities Read More »

Remove Any Installed Version of Microsoft Office When Deploying M365 Desktop Apps

Deploying the Microsoft Office 365 desktop apps has become an easy task with Intune. This is especially true for environments where all machines are being replaced or wiped, and enrolled via Autopilot. However, not everything can be that easy. What if you encounter an environment with hundreds or thousands of PCs with various versions of

Remove Any Installed Version of Microsoft Office When Deploying M365 Desktop Apps Read More »

Removing Windows Hello (WHfB) as a sign-in method when it’s already configured on devices

I’ll start this post by saying I do not endorse disabling Windows Hello for Business. There are big benefits to using WHfB, and I recommend using it. But, different organizations have different desires. So, this post will describe how to remove Windows Hello as an authentication method on workstations. To clarify – how to remove

Removing Windows Hello (WHfB) as a sign-in method when it’s already configured on devices Read More »

Hybrid Device Join – What Happens Behind the Scenes

I recently had a situation I hadn’t encountered before while moving a client to Hybrid Device Join + Intune (or Entra ID Join, HAADJ, EIDJ, or whatever you want to call it these days). This involved both firewall settings and configuration manager blocking device registration (see Ben’s post here for more on that Co-management Series

Hybrid Device Join – What Happens Behind the Scenes Read More »