Yes, some organizations still rely on client VPNs for access to on prem resources. Hopefully, if you find yourself in this situation, you’re moving towards Entra joining your devices, and have a plan to eventually remove your on-prem AD reliant resources. Until then, you need to deploy a client VPN to your workstations. This post […]
Deploy the SonicWall Global VPN client + Configuration Settings with Intune Read More »
If you configure an Azure environment with strict networking rules, like no or limited internet access, you may experience issues with Windows Activation on your VMs. This also extends to Win10/11 Pro & Ent for AVD and Windows 365 cloud PCs (if using vnet integration). Some of the screenshots below are what you may see
Windows Activation in Azure with Azure Firewall Read More »
This post walks through how to deploy the CrowdStrike Falcon Sensor for Windows using Intune. First, download the CrowdStrike Falcon Sensor executable from your CrowdStrike portal. You’ll also need the Customer ID (sometimes referred to as the CCID or CID). The Customer ID is different than the Installation token. Make sure you are copying the
Deploy CrowdStrike Falcon Sensor with Intune Read More »
I’ve configured password writeback dozens of times, but just recently, I stumbled upon the ADSyncConfig PowerShell module. If you don’t know how to configure password writeback, it’s a fairly simply process. You can follow the Microsoft Learn document for a tutorial. However, this post will look at making the permissions section much more efficient and
Easily set Entra Connect Password Writeback Permissions with PowerShell Read More »
Several months ago, I made a post on how to deploy the Cisco Umbrella Roaming client with Intune. Well, just recently Cisco announced the end-of-life dates for the Umbrella Roaming Client, and April 2, 2025, is the end of servicing & support (End-of-Life Announcement for the Cisco Umbrella Roaming Client). The replacement software is the
Deploy the Cisco Secure Client with Umbrella Module using Intune Read More »
Before I get into this, no, I do not suggest disabling BitLocker or running with decrypted drives in production. BitLocker is good and should be used. However, sometimes clients have requests that we must fulfill. Perhaps they are moving to a third-party encryption solution, or they want to re-encrypt their devices using a stronger encryption
Disable BitLocker on Existing Devices with Intune Read More »
This seems to come up every once in a while, as a question on Reddit or on LinkedIn – How can I block browser Internet access or only allow access to certain sites on an Intune managed device? This post will cover how to completely block internet access from web browsers and how to only
Block Internet Browsing with Intune Read More »
This issue started out as a support ticket where many users were being asked to authenticate to M365 apps every time they signed into AVD. For context, this was a smaller environment with only a few Windows 11 multi-session hosts. The session hosts are also hybrid-joined and Intune enrolled. So, the first thing I usually
Intune Enrollment Error 0x80180005 on AVD multi-session host Read More »
