I dealt with an interesting support issue recently that turned out to be an extremely simple fix, but the culprit took couple of hours to find, so I thought I’d share it. I also wanted to share this so people (hopefully) aren’t so quick to blame FSLogix for anything related to profile issues with AVD. […]
Troubleshooting Strange Temporary profile Issues with AVD & FSLogix Read More »
In the newest release of FSLogix (FSLogix Release Notes – FSLogix | Microsoft Learn) a new VHDX compaction feature is enabled by default. As most of you probably know, VHDX files dynamically grow but don’t dynamically shrink on their own. For example, if you download a 5GB ISO file to your FSLogix profile desktop, your
FSLogix automatic VHDX disk compaction Read More »
Introduction: The Windows 365 Preview application is a great store app for organizations utilizing Windows 365 virtual desktops. Although currently, there is no “official” way to bypass the first run experience. From what I’ve heard, Microsoft says there may be some more options for this once the app is GA, but there is no timeline
Skipping the First-Run Experience for the Windows 365 Preview application Read More »
Teams is my go-to collaboration application, but the popularity of Zoom makes it a necessary app for many organizations. If you have clients using AVD or Windows 365 personal desktops, there is a specific VDI installer for Zoom so your users get the best possible experience. The way Zoom VDI works is pretty neat. The
Installing Zoom for AVD & Windows 365 Read More »
I’ve made it a priority recently to push organizations away from active directory domain controllers and adopt Azure AD Joined devices as much as possible. AVD has often been a hurdle since it’s usually configured to use pooled desktops, which rely on FSLogix, which use SMB shares, which rely on Kerberos authentication, which traditionally relies
Azure AD Joined AVD with FSLogix + AAD Kerberos authentication Read More »
If you’re using Win32 apps with more than one detection rule, it’s advantageous to quickly determine which detection rule is failing. We get this information by inspecting the IME log on an affected device, but you need to know what to look for. The Intune Management Extension log is located in %programdata%\Microsoft\IntuneManagementExtension\logs\IntuneManagementExtension.log. It contains tons
Troubleshoot Intune Win32Apps with multiple detection rules Read More »
This is a continuation of where we left off in part one. Part one covered the structure of toast notifications, how we can craft customized notification content, and how to trigger a toast notification using PowerShell. We also reviewed how to use the action buttons to run PowerShell scripts. Part two of this post covers
Deploy Custom Toast Notifications with Intune – Part 2 Read More »
You’re probably familiar with toast notifications in Windows. They are the notifications that pop up in the bottom right-hand corner of your screen. They can be purely informational or have action buttons to click, such as opening a website. I wanted to figure out how to create custom notifications and use the action buttons to
BitLocker on removable drives is known as “BitLocker to go”, but I will just refer to it as BitLocker in this writing. Requiring BitLocker on removable drives is fairly easy with the built-in Intune Endpoint Security profile templates. Some of you may be thinking removable storage should be completely blocked for security reasons. I agree
In this post I’ll take a closer look at how AADJ machines authenticated with an AD Synced identity can seamlessly access on-prem resources. This includes things like SMB file shares or other applications that require AD USER authentication. It’s important to remember if you have services utilizing machine authentication, those devices will need to remain AD joined