Passwordless Authentication, Part 2: Temporary Access Pass, Security Key enrollment & Windows-Sign in

In my previous blogpost I demonstrated a basic enrollment of Passwordless authentication into Azure AD with a FIDO2 Security Key. Generally speaking, common use cases for FIDO2 certified hardware keys are as follows: Strong AuthenticationSecuring Privileged AccountsPasswordless AuthenticationShared DevicesPersonal Security…

Getting started with Intune App Protection and App Data Protection configuration framework

In this blog post I will go through the basics of App Protection Policies in Intune, the App Data Protection configuration framework and guide you in how to import related data-protection templates for Intune App Protection into your Intune tenant.…

Attack Surface Reduction

In this blog post I will go through some of the different configuration options available for Attack Surface Reduction using Endpoint Manager (Intune), Defender for Endpoint and analyzing the rules locally using Powershell. Short introductionAttack Surface Reduction Rules in Windows…

ABM – Invalid Profile during enrollment (Default Enrollment Restriction)

I stumbled upon a pretty dazzling error the other day where the solution wasn't too obvious for me so I thought I would share my findings.Prerequisites which all were in place:- Apple Business Manager configured and Apple-devices where transmitted from…

Post a policy to Intune using Intune PowerShell SDK

In my last post regarding the MSGraph and the Intune PowerShell SDK I demonstrated how you installed the Intune PowerShell SDK and connected to the Graph Explorer to query information in your tenant of choice.Today I will demonstrate how you…

Install the Intune Powershell Module

The Intune Powershell Module is a great addition to the currentDevice Management-portal when it comes to Intune management. Note: An account with the role Global Administrator is required for the authentication and the consent of this module for your tenant.…

Autopilot Resources

GeneralAutopilot Network RequirementsEvaluate AutopilotAutopilot @ Reddit Collect Hardware InformationGet Hardware detailsGet-WindowsAutoPilotinfoIntegration & ConfigurationAutopilot CSP AuthorizationMicrosoft Store for Business (Autopilot-devices)Manage Intune Graph API/Intune Powershell Module rightsConfiguring Windows 10 defaults via Windows Autopilot using an MSIAutopilot ProfilesAutopilot AzureAD JoinAssigning Dynamic Autopilot Profiles…