Passwordless Authentication, Part 2: Temporary Access Pass, Security Key enrollment & Windows-Sign in

In my previous blogpost I demonstrated a basic enrollment of Passwordless authentication into Azure AD with a FIDO2 Security Key. Generally speaking, common use cases for FIDO2 certified hardware keys are as follows: Strong AuthenticationSecuring Privileged AccountsPasswordless AuthenticationShared DevicesPersonal Security…

Getting started with Intune App Protection and App Data Protection configuration framework

In this blog post I will go through the basics of App Protection Policies in Intune, the App Data Protection configuration framework and guide you in how to import related data-protection templates for Intune App Protection into your Intune tenant.…

Attack Surface Reduction

In this blog post I will go through some of the different configuration options available for Attack Surface Reduction using Endpoint Manager (Intune), Defender for Endpoint and analyzing the rules locally using Powershell. Short introductionAttack Surface Reduction Rules in Windows…

Autopilot Resources

GeneralAutopilot Network RequirementsEvaluate AutopilotAutopilot @ Reddit Collect Hardware InformationGet Hardware detailsGet-WindowsAutoPilotinfoIntegration & ConfigurationAutopilot CSP AuthorizationMicrosoft Store for Business (Autopilot-devices)Manage Intune Graph API/Intune Powershell Module rightsConfiguring Windows 10 defaults via Windows Autopilot using an MSIAutopilot ProfilesAutopilot AzureAD JoinAssigning Dynamic Autopilot Profiles…