You may or may not know that there is a specific way to install Teams when using a VDI solution. AVD is what I end up working with in almost every situation, so this article is catered to AVD. However, this solution can be used for any VDI solution that uses the Teams machine-wide installer. […]
Keep Teams Machine-Wide-Installer Updated on AVD (or other VDI) with Intune Remediations Read More »
After getting some questions recently about deploying S1 with Intune and noticing some documentation still instructing people to use an MSI LOB app (ew), I made a quick guide on how to deploy the S1 agent to Windows workstations. Hope this helps.
Deploy SentinelOne with Intune Read More »
I’ll start this post by saying I do not endorse disabling Windows Hello for Business. There are big benefits to using WHfB, and I recommend using it. But, different organizations have different desires. So, this post will describe how to remove Windows Hello as an authentication method on workstations. To clarify – how to remove
If you do a lot of testing with different Intune tenants, you probably have several test devices or VMs that you use. Occasionally, you may forget to remove one from a client tenant after doing your testing. When this is a test VM, it’s not a very big deal. Tearing it down and recreating it
Find the Tenant Where a Device is Autopilot Registered Read More »
I recently had a situation I hadn’t encountered before while moving a client to Hybrid Device Join + Intune (or Entra ID Join, HAADJ, EIDJ, or whatever you want to call it these days). This involved both firewall settings and configuration manager blocking device registration (see Ben’s post here for more on that Co-management Series
Hybrid Device Join – What Happens Behind the Scenes Read More »
Intro Every couple of weeks I see a Reddit post or question asking about device group memberships or filters for certain properties that Azure AD doesn’t natively contain. One common request is making a dynamic group for all desktops or all laptops. There may be other specific properties about your devices that Azure AD doesn’t
Dynamically add Device Extension Attributes using Remediations Read More »
There never seems to be a shortage of issues when dealing with Hybrid Azure AD Joined + Intune Enrolling endpoints. Especially when you inherit a setup and have no history of what was implemented in the past. I encountered a new issue the other day and figured I’d made a quick post. In this situation,
Resolve HAADJ Intune auto-enrollment errors for devices previously enrolled in MAM Read More »
This post is quick, but useful if you’re dealing with sporadic FSLogix issues that can’t be reproduced. Especially if you have users who tell you about issues more than two days after they’ve occurred. The FSLogix logs are located under %programdata%\Fslogix\Logs. By default, logs are kept for two days. If you suspect FSLogix is to
Increase FSLogix Log Retention Period Read More »
Naming Hybrid Joined devices during autopilot has always been very limited. You can’t use variables like %SERIAL% to add the serial number to the device name. You’re basically stuck using a prefix and a randomly generated string of characters. That’s not the best naming convention and it usually adds an additional step for IT admins
Introduction Sometimes you end up discovering pretty neat things as a result of working on an unrelated issue. That’s how this post was born. I have been working on a way to rename hybrid AADJ devices during Autopilot to use their serial number for several weeks (I’ll have that post finished in a week or
Automate a Reboot or Custom Script When the Autopilot ESP is Complete Read More »