This issue started out as a support ticket where many users were being asked to authenticate to M365 apps every time they signed into AVD. For context, this was a smaller environment with only a few Windows 11 multi-session hosts. The session hosts are also hybrid-joined and Intune enrolled. So, the first thing I usually […]
Intune Enrollment Error 0x80180005 on AVD multi-session host Read More »
While troubleshooting some client AVD issues, I came across something I had not seen before. There were many errors in the FSLogix event log showing that a volume had errors, and this was pointing to user VHDX profile disks. After taking a closer look, this was happening on around half of the user profile disks.
Repair all FSLogix Profiles using PowerShell (or any VHDX files) Read More »
If you work at an MSP and are you’re not fortunate enough to have a good cert tracking tool like ITGlue or Hudu, you’re probably on your own to track certificate expirations. After encountering too many times where out of nowhere, a client has iOS Intune enrollments start failing due to an expired MDM push
Automate Notifications for Intune iOS Cert/Token Expirations with one Script Read More »
If you need to migrate FSLogix profiles to a new storage account, Microsoft makes this very easy using the azcopy tool. You can also use Robocopy like we did back in the days of file server migrations, but azcopy is significantly faster. If you encounter an AVD environment that is using a transaction-optimized storage account
Migrate FSLogix Profiles to a new Storage Account Read More »
I recently ran into an issue with a client when trying to capture a new AVD image. When trying to sysprep the VM before image capture, we were receiving the below error – “Sysprep was not able to validate your Windows Installation. Review the log file at %WINDIR%\System32\Sysprep\Panther\setupact.log” The above error on its own is
You may or may not know that there is a specific way to install Teams when using a VDI solution. AVD is what I end up working with in almost every situation, so this article is catered to AVD. However, this solution can be used for any VDI solution that uses the Teams machine-wide installer.
Keep Teams Machine-Wide-Installer Updated on AVD (or other VDI) with Intune Remediations Read More »
Here’s a quick tip if you’re using Microsoft Entra Connect (Azure AD Connect) to sync your user identities, and you need to enforce a password change for users at the next logon. This can be useful if your user identities are all synced from AD but you have a mixed bag of devices with PCs
Force Password Change at Next Sign-in for Entra Connect Synchronized Identities Read More »
I recently had a situation I hadn’t encountered before while moving a client to Hybrid Device Join + Intune (or Entra ID Join, HAADJ, EIDJ, or whatever you want to call it these days). This involved both firewall settings and configuration manager blocking device registration (see Ben’s post here for more on that Co-management Series
Hybrid Device Join – What Happens Behind the Scenes Read More »
***A new post covering how to do this for New Teams is available here – Deploy Custom Backgrounds to New Teams with Remediations – SMBtotheCloud A client recently wanted to deploy organizational backgrounds to all Teams users. However, this is now a Teams Premium feature, which is an additional cost per user per month (Custom
Intro Every couple of weeks I see a Reddit post or question asking about device group memberships or filters for certain properties that Azure AD doesn’t natively contain. One common request is making a dynamic group for all desktops or all laptops. There may be other specific properties about your devices that Azure AD doesn’t
Dynamically add Device Extension Attributes using Remediations Read More »