If you work for a CSP/MSP and you use Partner Center to control access to Client environments, this post may help you determine which existing GDAP permissions are out there. We won’t be going into how to request an admin relationship or assign roles to a security group. This post is focused on existing admin […]
Generate Partner Center GDAP Role assignment Reports for Each Client Read More »
Intro: I just recently moved into a new house. Moving with four young kids meant some of my things had to take a back seat being unpacked. One of which was my home lab hardware. I forgot how much I used my home lab until it wasn’t available for a few days. That’s what sparked
A Guide for Creating an Entra & Intune Lab Read More »
I came across an interesting Microsoft learn page about using custom attributes on a user’s profile card a couple of weeks ago and did some testing. I felt the MS Learn article was a bit confusing, so I made this post to help clarify some things. Extension Attributes are essentially custom values you can add
This is a short holiday week for me, so this post is quick and basic. It’s surprising to me how many tenants I encounter that have no dynamic groups configured. Many IT teams are still manually adding/removing devices or users from assigned groups. For anyone not using dynamic groups, you need to start using them.
Back to Basics – Use Dynamic Groups Wherever Possible Read More »
Microsoft’s new authentication strength options for Conditional Access is awesome, and I encourage you to start using this feature. This post will add some clarification on using Conditional Access for MFA, how to add a FIDO2 security key as an authentication method, and then how to use conditional access to protect certain applications with different levels
If you’re using AD connect and you’re planning to eliminate Active Directory, you’ll eventually need to remove AD connect and convert all users to cloud managed identities. Azure AD Connect synchronizes your AD identities with Azure AD, giving the users a cloud identity in addition to their on-prem identity. However, AD remains the source of
How to Convert AD Connect Synchronized Users To Cloud Managed Identities Read More »
This is a quick post, but useful for anyone who has not stamped out basic authentication in their environment. Or perhaps you’ve inherited several new clients, or need to identify this across many clients. In any case, you can always use the manual method of signing into the Azure GUI and filtering sign-in logs, which
Find successful basic authentications quickly with PowerShell Read More »
Intro This post was inspired by a question posted to the Modern Endpoint Management LinkedIn group about syncing/backing up users’ teams backgrounds to OneDrive. I work with Teams a lot, so this was something I was interested in solving. Teams backgrounds are stored in the user’s %appdata% folder. So, the challenge was to sync the
Sync Users’ Teams Backgrounds (or other files) with OneDrive using Intune Read More »
