Take an Azure Exam for Free

Take an Azure Exam for Free

Hello Readers,
Due to Covid-19 Microsoft has been offering free training online for the AZ-900 exam. There have been a number of sessions in recent months and the uptake as been so high Microsoft has now added more sessions throughout June, July and August: 

Head over to the following URL where you can sign up for the events today.

https://azure.microsoft.com/en-us/community/events/?query=fundamentals

These session are split into two half-day sessions. And at the end, you receive a free voucher to take Any Azure exam within 7 working days.

In case you do not receive the voucher you can reach out to techsfb@microsoft.com to get the vouchers

So, if you have been studying for AZ-103, 104, 300, 301, 303, 304 or 203 and have not booked it yet, perhaps this is the perfect time to take up this offer.

Regards
The Author – Blogabout.Cloud

Publishing Whats new and Microsoft Blogs to Microsoft Teams and To Do via Power Automate

Publishing Whats new and Microsoft Blogs to Microsoft Teams and To Do via Power Automate

In today’s modern world its getting increasingly more difficult to keep up to date with the latest development from Microsoft. So here is how I keep on top of the Cloud by leveraging Power Automate.

Regards
The Author – Blogabout.Cloud

Your one stop shop for all things Microsoft UserVoice related

Your one stop shop for all things Microsoft UserVoice related

Microsoft UserVoice is a platform where organisations and Microsoft collaborate to understand key product development asks from the community. The higher number of votes, the more likely Microsoft will investigate and introduce the new ask.

Below table provides links to all the Microsoft UserVoice.

IMPORTANT NOTE

This is a developing list and more links will be included once they have been discovered.
TopicURL
Accesshttps://access.uservoice.com
Bookingshttps://outlook.uservoice.com/forums/314907-microsoft-bookings
Business Centerhttps://office365.uservoice.com/forums/600793-office-365-business-center
Connectionshttps://office365.uservoice.com/forums/600610-microsoft-connections
Delvehttps://office365.uservoice.com/forums/273487-delve
– Bloghttps://office365.uservoice.com/forums/273487-delve?category_id=153906
– Boardshttps://office365.uservoice.com/forums/273487-delve?category_id=100468
– Content typeshttps://office365.uservoice.com/forums/273487-delve?category_id=163845
– Delve for Androidhttps://office365.uservoice.com/forums/273487-delve?category_id=103383
– Delve for Windowshttps://office365.uservoice.com/forums/273487-delve?category_id=153948
– Delve for iOShttps://office365.uservoice.com/forums/273487-delve?category_id=103386
– People Experienceshttps://office365.uservoice.com/forums/273487-delve?category_id=101694
– Praisehttps://office365.uservoice.com/forums/273487-delve?category_id=153909
– Searchhttps://office365.uservoice.com/forums/273487-delve?category_id=153915
Excelhttps://excel.uservoice.com
FastTrackhttps://office365.uservoice.com/forums/602104-fasttrack
Flowhttps://powerusers.microsoft.com/t5/Flow-Feedback/ct-p/Feedback
Formshttps://microsoftforms.uservoice.com
Generalhttps://office365.uservoice.com/forums/264636-general
Invoicinghttps://office365.uservoice.com/forums/600781-microsoft-invoicing
Listingshttps://office365.uservoice.com/forums/600778-microsoft-listings
M365 (Microsoft 365) Admin Mobilehttps://office365.uservoice.com/forums/312601-m365-microsoft-365-admin-mobile
Microsoft Connection email marketinghttps://office365.uservoice.com/forums/600610-microsoft-connections-email-marketing
Microsoft Endpoint Managerhttps://microsoftintune.uservoice.com/forums/291681-ideas
– Android-specifichttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210853
– App protection policies (APP/MAM)https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=148986
– App config and deploymenthttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115719
– Autopilot / Windows enrollmenthttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=368299
– Azure Admin Consolehttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=189016
– Bitlocker Managementhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386689
– Certs, Emails, VPN, Wi-Fihttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=324422
– Co-Managementhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=331534
– Company Portal (all platforms)https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115704
– Compliance Policieshttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386695
– Conditional Accesshttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=155130
– Device Configuration Profileshttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386686
– Documentationhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115707
– Fencing – Geo, Time Speed, etchttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=338164
– Intune Data Warehousehttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=209608
– Intune PC Clienthttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115716
– Intune for Eductionhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=190729
– Inventory (All Platforms)https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=319828
– Language / Translationhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=128305
– MacOS-specifichttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210850
– Managed Browserhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210862
– Mobile Device Management (General)https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115713
– Remote Assistance / Controlhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=176502
– Reporting https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386692
– Role-based Access Control (RBAC)https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=358603
– Scripting-Graph / PowerShellhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=187750
– Silverlight Admin Consolehttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115722
– Telecom Expense Managementhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210859
– Terms and Conditions (All Platforms)https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=319825
– Troubleshootinghttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=359635
– User Managementhttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115710
– Windows Updateshttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=379660
– Windows-specifichttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210856
– iOS-specfichttps://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210847
Microsoft Information Protectionhttps://office365.uservoice.com/forums/928576-microsoft-information-protection-mip
– Auto-labeling for data at resthttps://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385018
– Data Loss Preventation (DLP)https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385009
– OMEhttps://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385015
– Right Managementhttps://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385012
– Sensitivity labels in Office applicationshttps://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385021
– Sensitivtes Information Typeshttps://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385027
Microsoft Invoicing https://office365.uservoice.com/forums/600781-microsoft-invoicing
Microsoft Listings Online Presencehttps://office365.uservoice.com/forums/600778-microsoft-listings-online-presence
Microsoft Searchhttps://office365.uservoice.com/forums/925270-microsoft-search
– Adminhttps://office365.uservoice.com/forums/925270-microsoft-search?category_id=373870
– Clienthttps://office365.uservoice.com/forums/925270-microsoft-search?category_id=373873
– Connectorshttps://office365.uservoice.com/forums/925270-microsoft-search?category_id=373876
– UX Customizationhttps://office365.uservoice.com/forums/925270-microsoft-search?category_id=373879
MyAnalyticshttps://myanalytics.uservoice.com/
Office 365https://office365.uservoice.com
Office 365 Adminhttps://office365.uservoice.com/forums/273493-office-365-admin
– Apps and App Launcherhttps://office365.uservoice.com/forums/273493-office-365-admin?category_id=127975
– Exchange Adminhttps://office365.uservoice.com/forums/273493-office-365-admin?category_id=96338
– Lync Adminhttps://office365.uservoice.com/forums/273493-office-365-admin?category_id=96339
– Message Centerhttps://office365.uservoice.com/forums/273493-office-365-admin?category_id=94710
– Service Health Dashboardhttps://office365.uservoice.com/forums/273493-office-365-admin?category_id=94709
– SharePoint Adminhttps://office365.uservoice.com/forums/273493-office-365-admin?category_id=96337
Office 365 Business Centerhttps://office365.uservoice.com/forums/600793-office-365-business-center
Office 365 Groupshttps://office365.uservoice.com/forums/286611-office-365-groups
Office 365 Security & Compliancehttps://office365.uservoice.com/forums/289138-office-365-security-compliance
– Advanced Security Managementhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=174141
– Auditinghttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137187
– Communication Compliancehttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=379534
– Compliance Managerhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=323794
– DLP & Transport Ruleshttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137265
– Information Governance and Records Managementhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=379531
– Information Protectionhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=379528
– Insider Risk Managementhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=384439
– Malwarehttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137184
– Message Encryption & Right Managementhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137262
– Message Tracehttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137181
– Privacyhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=333217
– Reportshttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137175
– Service Trust Portalhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=323791
– Spam & Phishinghttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137178
– eDiscoveryhttps://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=139404
Office 365 Suite Navigation Barhttps://office365.uservoice.com/forums/926008-office-365-suite-navigation-bar
Office.comhttps://office365.uservoice.com/forums/325347-office-com-home-page
Office + Edition Browser Extenstionhttps://office365.uservoice.com/forums/926797-office-editor-browser-extension
Office Lenshttps://officelens.uservoice.com
OneDrivehttps://onedrive.uservoice.com
OneNotehttps://onenote.uservoice.com
Outlookhttps://outlook.uservoice.com
Plannerhttps://planner.uservoice.com
Power BIhttps://ideas.powerbi.com/forums/265200-power-bi-ideas
PowerAppshttps://powerusers.microsoft.com/t5/Product-Feedback/ct-p/PA-feedback
PowerPointhttps://powerpoint.uservoice.com
Projecthttps://microsoftproject.uservoice.com
SharePointhttps://sharepoint.uservoice.com
StaffHubhttps://staffhub.uservoice.com
Skype for Businesshttps://www.skypefeedback.com
Streamhttps://techcommunity.microsoft.com/t5/Microsoft-Stream-Ideas/idb-p/StreamIdeas
Swayhttps://sway.uservoice.com
Teamshttps://microsoftteams.uservoice.com/forums/555103-public
To-Dohttps://todo.uservoice.com/
Visiohttps://visio.uservoice.com
Wordhttps://word.uservoice.com
Yammerhttps://yammer.uservoice.com

Regards
The Author – Blogabout.Cloud

What’s new in Microsoft Threat Protection? A Twitter Feed?

What’s new in Microsoft Threat Protection? A Twitter Feed?

While doing my regular check for updates from a number of Microsoft products, I came across this update for Microsoft Threat Protection.

https://docs.microsoft.com/en-us/microsoft-365/security/mtp/whats-new?view=o365-worldwide#june-2020

So what does this actually mean?

Microsoft have now including a Twitter feed into the Microsoft 365 Security Dashboard which will allow Administrators to get more information and news straight into a centralized location.

While I believe in keeping organisation informed about latest developments etc.. I am not 100% convinced this will be a well used feature and most likely be removed from Administrators Dashboards.

Regards
The Author – Blogabout.Cloud

Configuring Microsoft Endpoint Manager Connector for Managed Google Play Store

Configuring Microsoft Endpoint Manager Connector for Managed Google Play Store

In this video, I run through how to connect Managed Google Play Store to Microsoft Endpoint Manager and approve applications that can be published to your Android devices.

Regards
The Author – Blogabout.Cloud

Installing PowerShell modules using Microsoft Endpoint Manager

Installing PowerShell modules using Microsoft Endpoint Manager

In this video I show how I install all the common PowerShell modules that I use when building/provisioning Windows 10 devices that are registered in MEM.In this video I show how I install all the common PowerShell modules that I use when building/provisioning Windows 10 devices that are registered in MEM.

Regards
The Author – Blogabout.Cloud

Configuring your Windows 10 devices with custom Desktop and Lockscreen backgrounds with Microsoft Endpoint Manager.

Configuring your Windows 10 devices with custom Desktop and Lockscreen backgrounds with Microsoft Endpoint Manager.

Using Microsoft Endpoint Manager and Azure Blob Storage to deliver customized Desktop and Lockscreen backgrounds.

Regards
The Author – Blogabout.Cloud

What’s dropped this month in Microsoft Endpoint Manager – May Round Up

What’s dropped this month in Microsoft Endpoint Manager – May Round Up

In this post, you can see all the new items that have been released in the following product areas

– Device Management
– App Management
– Device Configuration
– Device enrollment
– Monitor and Troubleshoot
– Security

Device Management

Use sync remote action in bulk for iOS

You can now use the sync remote action on up to 100 iOS devices at a time. To see this feature, go to Microsoft Endpoint Manager admin center > Devices > All devices > Bulk device actions.

Automated device sync interval down to 12 hours

For Apple’s Automated Device Enrollment, the automated device sync interval between Intune and Apple Business Manager has been reduced from 24 hours to 12 hours. For more information on sync, see Sync managed devices.

App Management

Customize self-service device actions in the Company Portal

You can customize the available self-service device actions that are shown to end-users in the Company Portal app and website. To help prevent unintended device actions, you can configure these settings for the Company Portal app by selecting Tenant Administration > Customization. The following actions are available:

Auto update VPP available apps

Apps that are published as Volume Purchase Program (VPP) available apps will be automatically updated when Automatic App Updates is enabled for the VPP token. Previously, VPP available apps did not automatically update. Instead, end-users had to go to the Company Portal and reinstall the app if a newer version was available. Required apps continue to support automatic updates.

Unified delivery of Azure AD Enterprise and Office Online applications in the Company Portal

This feature has been delayed. On the Customization pane of Intune, you can select to Hide or Show both Azure AD Enterprise applications and Office Online applications in the Company Portal. Each end-user will see their entire application catalog from the chosen Microsoft service. By default, each additional app source will be set to Hide. This feature will first take effect in the Company Portal website, with support in the Windows, iOS/iPadOS, and macOS Company Portals expected to follow. In the Microsoft Endpoint Manager admin center, select Tenant administration > Customization to find this configuration setting. For related information, see How to customize the Intune Company Portal apps, Company Portal website, and Intune app.

Android Company Portal user experience

In the 2005 release of Android Company Portal, end-users of Android devices that are issued a warn, block, or wipe by an app protection policy will see a new user experience. Instead of the current dialog experience, end-users will see a full page message describing the reason for the warn, block, or wipe and the steps to remediate the issue. For more information, see App protection experience for Android devices and Android app protection policy settings in Microsoft Intune.

Support for multiple accounts in Company Portal for macOS

The Company Portal on macOS devices now caches user accounts, making sign-in easier. Users no longer need to sign into the Company Portal every time they launch the application. Additionally, the Company Portal will display an account picker if multiple user accounts are cached, so that users don’t have to enter their user name.

Newly available protected apps

The following protected apps are now available:

  • Board Papers
  • Breezy for Intune
  • Hearsay Relate for Intune
  • ISEC7 Mobile Exchange Delegate for Intune
  • Lexmark for Intune
  • Meetio Enterprise
  • Microsoft Whiteboard
  • Now® Mobile – Intune
  • Qlik Sense Mobile
  • ServiceNow® Agent – Intune
  • ServiceNow® Onboarding – Intune
  • Smartcrypt for Intune
  • Tact for Intune
  • Zero – email for attorneys

For more information about protected apps, see Microsoft Intune protected apps.

Search the Intune docs from the Company Portal

You can now search the Intune documentation directly from the Company Portal for macOS app. In the menu bar, select Help > Search and enter the key words of your search to quickly find answers to your questions.

Windows 32-bit (x86) apps on ARM64 devices

Windows 32-bit (x86) apps that are deployed as available to ARM64 devices will now be displayed in the Company Portal. For more information about Windows 32-bit apps, see Win32 app management.

Windows Company Portal app icon

The icon for the Windows Company Portal app has been updated. For more information about the Company Portal, see How to customize the Intune Company Portal apps, Company Portal website, and Intune app.

Update to icons in Company Portal app for iOS/iPadOS and macOS

We’ve updated the icons in Company Portal to create a more modern look and feel that’s supported on dual screen devices and aligns with the Microsoft Fluent Design System. To see the updated icons, go to UI updates for Intune end-user apps.

Device Configuration

Improvements to OEMConfig support for Zebra Technologies devices

Intune fully supports all features provided by Zebra OEMConfig. Customers managing Zebra Technologies devices with Android Enterprise and OEMConfig can deploy multiple OEMConfig profiles to one device. Customers can also view rich reporting about the status of their Zebra OEMConfig profiles.

For more information, see Deploy multiple OEMConfig profiles to Zebra devices in Microsoft Intune.

There is no change in OEMConfig behavior for other OEMs.

Applies to:

  • Android Enterprise
  • Zebra Technologies devices that support OEMConfig. For specific details on support, contact Zebra.

Configure system extensions on macOS devices

On macOS devices, you can create a kernel extensions profile to configure settings at the kernel-level (Devices > Configuration profiles > macOS for platform > Kernel extensions for profile). Apple is eventually deprecating kernel extensions, and replacing them with system extensions in a future release.

System extensions run in the user space, and don’t have access to the kernel. The goal is to increase security and provide more end user control, while limiting attacks at the kernel level. Both kernel extensions and system extensions allow users to install app extensions that extend the native capabilities of the operating system.

In Intune, you can configure both kernel extensions and system extensions (Devices > Configuration profiles > macOS for platform > System extensions for profile). Kernel extensions apply to 10.13.2 and newer. System extensions apply to 10.15 and newer. From macOS 10.15 to macOS 10.15.4, kernel extensions and system extensions can run side-by-side.

To learn about these extensions on macOS devices, see Add macOS extensions.

Applies to:

  • macOS 10.15 and newer

Configure app and process privacy preferences on macOS devices

With the release of macOS Catalina 10.15, Apple added new security and privacy enhancements. By default, applications and processes are unable to access specific data without user consent. If users don’t provide consent, the applications and processes may fail to function. Intune is adding support for settings that enable IT administrators to allow or disallow data access consent on behalf of end-users on devices running macOS 10.14 and later. These settings will ensure that applications and processes continue to function properly, and reduce the number of prompts.

For more information on the settings you can manage, see macOS privacy preferences.

Applies to:

  • macOS 10.14 and newer

Device enrollment

Company Portal for Android guides users to get apps after work profile enrollment

We’ve improved the in-app guidance in Company Portal to make it easier for users to find and install apps. After they enroll in work profile management, users will get a message explaining how to find suggested apps in the badged version of Google Play. The last step in Enroll device with Android profile has been updated to show the new message. Users will also see a new Get Apps link in the Company Portal drawer on the left. To make way for these new and improved experiences, the APPS tab was removed. To see the updated screens, go to UI updates for Intune end-user apps.

Enrollment restrictions support scope tags

You can now assign scope tags to enrollment restrictions. To do so, go to Microsoft Endpoint Manager admin center > Devices > Enrollment restrictions > Create restriction. Create either type of restriction and you’ll see the Scope tags page. For more information, see Set enrollment restrictions.

Autopilot support for Hololens 2 devices

Windows Autopilot now supports Hololens 2 devices. For more information on using Autopilot for Hololens, see Windows Autopilot for HoloLens 2.

Monitor and troubleshoot

Device reports UI update

The reports overview pane will now provide a Summary and a Reports tab. In the Microsoft Endpoint Manager admin center, select Reports, then select the Reports tab to see the available report types. For related information, see Intune reports.

Security

Derived credentials support for DISA Purebred on Android devices

You can now use DISA Purebred as a derived credentials provider on Android Enterprise fully managed devices. Support includes retrieving a derived credential for DISA Purebred. You can use a derived credential for app authentication, Wi-Fi, VPN, or S/MIME signing and/or encryption with apps that support it.

Send push notifications as an action for noncompliance

You can now configure an action for noncompliance that sends a push notification to a user when their device fails to meet conditions of a compliance policy. The new action is Send push notification to end user, and is supported on Android and iOS devices.

When users select the push notification on their device, the Company Portal or Intune app opens to display details about why they are noncompliant.

Endpoint security content and new features

The documentation for Intune Endpoint Security is now available. In the endpoint security node of the Microsoft Endpoint Manager admin center you can:

  • Create and deploy focused security policies to your managed devices
  • Configure integration with Microsoft Defender Advanced Threat Protection, and manage security tasks help remediate risks for at-risk devices as identified by your ATP team
  • Configure security baselines
  • Manage device compliance and conditional access policies
  • View compliance status for all your devices from both Intune and Configuration Manager when Configuration Manager is configured for client attach.

In addition to the availability of content, the following are new for Endpoint Security this month:

  • Endpoint security policies are out of preview and are now ready to use in production environments, as generally available, with two exceptions:
    • In a new public preview, you can use the Microsoft Defender Firewall rules profile for Windows 10 Firewall policy. With each instance of this profile you can configure up to 150 firewall rules to compliment your Microsoft Defender Firewall profiles.
    • Account protection security policy remains in preview.
  • You can now create a duplicate of endpoint security policies. Duplicates keep the settings configuration of the original policy, but get a new name. Then new policy instance doesn’t include any assignments to groups until you edit the new policy instance to add them. You can duplicate the following policies:
    • Antivirus
    • Disk encryption
    • Firewall
    • Endpoint detection and response
    • Attack surface reduction
    • Account protection
  • You can now create a duplicate of a security baseline. Duplicates keep the settings configuration of the original baseline, but get a new name. The new baseline instance doesn’t include any assignments to groups until you edit the new baseline instance to add them.
  • A new report for endpoint security antivirus policy is available: Windows 10 unhealthy endpoints. This report is a new page you can select when your viewing your endpoint security antivirus policy. The report displays the antivirus status of your MDM-managed Windows 10 devices.

Support for S/MIME signing and encryption certificates with Outlook on Android

You can now use certificates for S/MIME signing and encryption with Outlook on Android. With this support, you can provision these certificates by using SCEP, PKCS, and PKCS imported certificate profiles. The following Android platforms are supported:

  • Android Enterprise Work Profile
  • Android Device Administrator

Support for Android Enterprise Fully Managed devices is coming soon.

For more information about this support, see Sensitivity labeling and protection in Outlook for iOS and Android in the Exchange documentation.

Use Endpoint detection and response policy to onboard devices to Defender ATP

Use endpoint security policy for Endpoint detection and response (EDR) to onboard and configure devices for your deployment of Microsoft Defender Advanced Threat Protection (Defender ATP). EDR supports policy for Windows devices managed by Intune (MDM), and a separate policy for Windows devices managed by Configuration Manager.

To use the policy for Configuration Manager devices, you must set up Configuration Manager to support the EDR policy. Set up includes:

  • Configure your Configuration manager for tenant attach.
  • Install an in-console update for Configuration Manager to enable support for the EDR policies. This update applies only to hierarchies that have enabled tenant attach.
  • Synchronize your device collections form your hierarchy to the Microsoft Endpoint Manager admin center.

Scripting

macOS script support

Script support for macOS is now generally available. In addition, we have added support for both user assigned scripts and macOS devices that have been enrolled with Apple’s Automated Device Enrollment (formerly Device Enrollment Program). For more information, see Use shell scripts on macOS devices in Intune.

Regards
The Author – Blogabout.Cloud

Watching the M365 Roadmap with Microsoft Teams and PowerAutomate

Watching the M365 Roadmap with Microsoft Teams and PowerAutomate

Watching the M365 Roadmap doesn’t have to be difficult, check out my video below and how I keep up to date with the Microsoft Roadmap.

Regards
The Author – Blogabout.Cloud

Troubleshooting PowerShell script delivered by Microsoft Endpoint Manager

Troubleshooting PowerShell script delivered by Microsoft Endpoint Manager

Delivering PowerShell scripts to Windows 10 devices using Microsoft Endpoint Manager is one of my favorite features but what do you do if the delivery of the script fails? There are two ways of checking for troubleshooting purposes

Using the Registry

By browsing the following location you able to see all the PowerShell script that has been applied to your Windows 10 device. With this, you will see Result/ResultDetails which provide if the execution was successful and any error message if not successful.

Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\IntuneManagementExtension\Policies\

Using the Log File

The other option is using the CMTrace.exe tool which is apart of the 2012 Configuration Manager Toolkit. The link has been provided https://www.microsoft.com/en-us/download/confirmation.aspx?id=50012

This allows you to open the IntuneManagementExtension log file which is located in C:\ProgramData\Microsoft\IntuneManagementExtension\Logs.

It highlights all the relevant warning and error messages in either Yellow or Red depending on the severity of the issue.

When you click on the failure you will receive details about the known issue that is causing the script to fail.

Regards
The Author – Blogabout.Cloud