Handling Unmanaged Windows Devices – Using Windows MAM with Intune

All organizations differ in how they want to secure (or not secure) their data. Inevitably, the weakest points in an organization’s defense are the end users and endpoints. Allowing any device access to corporate resources is generally not a good practice. It’s much easier to control access from company-owned hardware since we can ensure our […]

Handling Unmanaged Windows Devices – Using Windows MAM with Intune Read More »

Find Stale FSLogix Profiles with Azure Automation and get Notified through Teams

Overview AVD and FSLogix are widely used and being adopted by more and more organizations. If you’re not familiar with FSLogix or AVD, you should have a basic understanding of how it works. At a high level, FSLogix creates a .vhdx file containing the user profile data (everything for the c:\users\username, which also contains the

Find Stale FSLogix Profiles with Azure Automation and get Notified through Teams Read More »

Resolving Sysprep error – “app was installed for a user, but not provisioned for all users”

 I recently ran into an issue with a client when trying to capture a new AVD image. When trying to sysprep the VM before image capture, we were receiving the below error – “Sysprep was not able to validate your Windows Installation. Review the log file at %WINDIR%\System32\Sysprep\Panther\setupact.log”    The above error on its own is

Resolving Sysprep error – “app was installed for a user, but not provisioned for all users” Read More »

Deploy Custom Backgrounds to New Teams with Remediations

With the New Teams app being GA, organizations will eventually move from “Teams Classic” to the “New Teams” app. There are several reasons to make the switch, the biggest reason likely being the performance benefits. As I’ve been testing the new teams, I realized that custom backgrounds that were manually added, or added via remediations,

Deploy Custom Backgrounds to New Teams with Remediations Read More »

Keep Teams Machine-Wide-Installer Updated on AVD (or other VDI) with Intune Remediations 

You may or may not know that there is a specific way to install Teams when using a VDI solution. AVD is what I end up working with in almost every situation, so this article is catered to AVD. However, this solution can be used for any VDI solution that uses the Teams machine-wide installer.

Keep Teams Machine-Wide-Installer Updated on AVD (or other VDI) with Intune Remediations  Read More »

Force Password Change at Next Sign-in for Entra Connect Synchronized Identities

Here’s a quick tip if you’re using Microsoft Entra Connect (Azure AD Connect) to sync your user identities, and you need to enforce a password change for users at the next logon. This can be useful if your user identities are all synced from AD but you have a mixed bag of devices with PCs

Force Password Change at Next Sign-in for Entra Connect Synchronized Identities Read More »

Remove Any Installed Version of Microsoft Office When Deploying M365 Desktop Apps

Deploying the Microsoft Office 365 desktop apps has become an easy task with Intune. This is especially true for environments where all machines are being replaced or wiped, and enrolled via Autopilot. However, not everything can be that easy. What if you encounter an environment with hundreds or thousands of PCs with various versions of

Remove Any Installed Version of Microsoft Office When Deploying M365 Desktop Apps Read More »