In today’s modern world its getting increasingly more difficult to keep up to date with the latest development from Microsoft. So here is how I keep on top of the Cloud by leveraging Power Automate.
Regards
The Author – Blogabout.Cloud
Microsoft UserVoice is a platform where organisations and Microsoft collaborate to understand key product development asks from the community. The higher number of votes, the more likely Microsoft will investigate and introduce the new ask.
Below table provides links to all the Microsoft UserVoice.
IMPORTANT NOTE
This is a developing list and more links will be included once they have been discovered.
| Topic | URL |
|---|---|
| Access | https://access.uservoice.com |
| Bookings | https://outlook.uservoice.com/forums/314907-microsoft-bookings |
| Business Center | https://office365.uservoice.com/forums/600793-office-365-business-center |
| Connections | https://office365.uservoice.com/forums/600610-microsoft-connections |
| Delve | https://office365.uservoice.com/forums/273487-delve |
| – Blog | https://office365.uservoice.com/forums/273487-delve?category_id=153906 |
| – Boards | https://office365.uservoice.com/forums/273487-delve?category_id=100468 |
| – Content types | https://office365.uservoice.com/forums/273487-delve?category_id=163845 |
| – Delve for Android | https://office365.uservoice.com/forums/273487-delve?category_id=103383 |
| – Delve for Windows | https://office365.uservoice.com/forums/273487-delve?category_id=153948 |
| – Delve for iOS | https://office365.uservoice.com/forums/273487-delve?category_id=103386 |
| – People Experiences | https://office365.uservoice.com/forums/273487-delve?category_id=101694 |
| – Praise | https://office365.uservoice.com/forums/273487-delve?category_id=153909 |
| – Search | https://office365.uservoice.com/forums/273487-delve?category_id=153915 |
| Excel | https://excel.uservoice.com |
| FastTrack | https://office365.uservoice.com/forums/602104-fasttrack |
| Flow | https://powerusers.microsoft.com/t5/Flow-Feedback/ct-p/Feedback |
| Forms | https://microsoftforms.uservoice.com |
| General | https://office365.uservoice.com/forums/264636-general |
| Invoicing | https://office365.uservoice.com/forums/600781-microsoft-invoicing |
| Listings | https://office365.uservoice.com/forums/600778-microsoft-listings |
| M365 (Microsoft 365) Admin Mobile | https://office365.uservoice.com/forums/312601-m365-microsoft-365-admin-mobile |
| Microsoft Connection email marketing | https://office365.uservoice.com/forums/600610-microsoft-connections-email-marketing |
| Microsoft Endpoint Manager | https://microsoftintune.uservoice.com/forums/291681-ideas |
| – Android-specific | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210853 |
| – App protection policies (APP/MAM) | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=148986 |
| – App config and deployment | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115719 |
| – Autopilot / Windows enrollment | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=368299 |
| – Azure Admin Console | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=189016 |
| – Bitlocker Management | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386689 |
| – Certs, Emails, VPN, Wi-Fi | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=324422 |
| – Co-Management | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=331534 |
| – Company Portal (all platforms) | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115704 |
| – Compliance Policies | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386695 |
| – Conditional Access | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=155130 |
| – Device Configuration Profiles | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386686 |
| – Documentation | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115707 |
| – Fencing – Geo, Time Speed, etc | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=338164 |
| – Intune Data Warehouse | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=209608 |
| – Intune PC Client | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115716 |
| – Intune for Eduction | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=190729 |
| – Inventory (All Platforms) | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=319828 |
| – Language / Translation | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=128305 |
| – MacOS-specific | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210850 |
| – Managed Browser | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210862 |
| – Mobile Device Management (General) | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115713 |
| – Remote Assistance / Control | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=176502 |
| – Reporting | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=386692 |
| – Role-based Access Control (RBAC) | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=358603 |
| – Scripting-Graph / PowerShell | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=187750 |
| – Silverlight Admin Console | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115722 |
| – Telecom Expense Management | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210859 |
| – Terms and Conditions (All Platforms) | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=319825 |
| – Troubleshooting | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=359635 |
| – User Management | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=115710 |
| – Windows Updates | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=379660 |
| – Windows-specific | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210856 |
| – iOS-specfic | https://microsoftintune.uservoice.com/forums/291681-ideas?category_id=210847 |
| Microsoft Information Protection | https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip |
| – Auto-labeling for data at rest | https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385018 |
| – Data Loss Preventation (DLP) | https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385009 |
| – OME | https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385015 |
| – Right Management | https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385012 |
| – Sensitivity labels in Office applications | https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385021 |
| – Sensitivtes Information Types | https://office365.uservoice.com/forums/928576-microsoft-information-protection-mip?category_id=385027 |
| Microsoft Invoicing | https://office365.uservoice.com/forums/600781-microsoft-invoicing |
| Microsoft Listings Online Presence | https://office365.uservoice.com/forums/600778-microsoft-listings-online-presence |
| Microsoft Search | https://office365.uservoice.com/forums/925270-microsoft-search |
| – Admin | https://office365.uservoice.com/forums/925270-microsoft-search?category_id=373870 |
| – Client | https://office365.uservoice.com/forums/925270-microsoft-search?category_id=373873 |
| – Connectors | https://office365.uservoice.com/forums/925270-microsoft-search?category_id=373876 |
| – UX Customization | https://office365.uservoice.com/forums/925270-microsoft-search?category_id=373879 |
| MyAnalytics | https://myanalytics.uservoice.com/ |
| Office 365 | https://office365.uservoice.com |
| Office 365 Admin | https://office365.uservoice.com/forums/273493-office-365-admin |
| – Apps and App Launcher | https://office365.uservoice.com/forums/273493-office-365-admin?category_id=127975 |
| – Exchange Admin | https://office365.uservoice.com/forums/273493-office-365-admin?category_id=96338 |
| – Lync Admin | https://office365.uservoice.com/forums/273493-office-365-admin?category_id=96339 |
| – Message Center | https://office365.uservoice.com/forums/273493-office-365-admin?category_id=94710 |
| – Service Health Dashboard | https://office365.uservoice.com/forums/273493-office-365-admin?category_id=94709 |
| – SharePoint Admin | https://office365.uservoice.com/forums/273493-office-365-admin?category_id=96337 |
| Office 365 Business Center | https://office365.uservoice.com/forums/600793-office-365-business-center |
| Office 365 Groups | https://office365.uservoice.com/forums/286611-office-365-groups |
| Office 365 Security & Compliance | https://office365.uservoice.com/forums/289138-office-365-security-compliance |
| – Advanced Security Management | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=174141 |
| – Auditing | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137187 |
| – Communication Compliance | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=379534 |
| – Compliance Manager | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=323794 |
| – DLP & Transport Rules | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137265 |
| – Information Governance and Records Management | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=379531 |
| – Information Protection | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=379528 |
| – Insider Risk Management | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=384439 |
| – Malware | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137184 |
| – Message Encryption & Right Management | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137262 |
| – Message Trace | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137181 |
| – Privacy | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=333217 |
| – Reports | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137175 |
| – Service Trust Portal | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=323791 |
| – Spam & Phishing | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=137178 |
| – eDiscovery | https://office365.uservoice.com/forums/289138-office-365-security-compliance?category_id=139404 |
| Office 365 Suite Navigation Bar | https://office365.uservoice.com/forums/926008-office-365-suite-navigation-bar |
| Office.com | https://office365.uservoice.com/forums/325347-office-com-home-page |
| Office + Edition Browser Extenstion | https://office365.uservoice.com/forums/926797-office-editor-browser-extension |
| Office Lens | https://officelens.uservoice.com |
| OneDrive | https://onedrive.uservoice.com |
| OneNote | https://onenote.uservoice.com |
| Outlook | https://outlook.uservoice.com |
| Planner | https://planner.uservoice.com |
| Power BI | https://ideas.powerbi.com/forums/265200-power-bi-ideas |
| PowerApps | https://powerusers.microsoft.com/t5/Product-Feedback/ct-p/PA-feedback |
| PowerPoint | https://powerpoint.uservoice.com |
| Project | https://microsoftproject.uservoice.com |
| SharePoint | https://sharepoint.uservoice.com |
| StaffHub | https://staffhub.uservoice.com |
| Skype for Business | https://www.skypefeedback.com |
| Stream | https://techcommunity.microsoft.com/t5/Microsoft-Stream-Ideas/idb-p/StreamIdeas |
| Sway | https://sway.uservoice.com |
| Teams | https://microsoftteams.uservoice.com/forums/555103-public |
| To-Do | https://todo.uservoice.com/ |
| Visio | https://visio.uservoice.com |
| Word | https://word.uservoice.com |
| Yammer | https://yammer.uservoice.com |
Regards
The Author – Blogabout.Cloud
While doing my regular check for updates from a number of Microsoft products, I came across this update for Microsoft Threat Protection.
https://docs.microsoft.com/en-us/microsoft-365/security/mtp/whats-new?view=o365-worldwide#june-2020
So what does this actually mean?
Microsoft have now including a Twitter feed into the Microsoft 365 Security Dashboard which will allow Administrators to get more information and news straight into a centralized location.
While I believe in keeping organisation informed about latest developments etc.. I am not 100% convinced this will be a well used feature and most likely be removed from Administrators Dashboards.
Regards
The Author – Blogabout.Cloud
In this video, I run through how to connect Managed Google Play Store to Microsoft Endpoint Manager and approve applications that can be published to your Android devices.
Regards
The Author – Blogabout.Cloud
In this video I show how I install all the common PowerShell modules that I use when building/provisioning Windows 10 devices that are registered in MEM.In this video I show how I install all the common PowerShell modules that I use when building/provisioning Windows 10 devices that are registered in MEM.
Regards
The Author – Blogabout.Cloud
Using Microsoft Endpoint Manager and Azure Blob Storage to deliver customized Desktop and Lockscreen backgrounds.
Regards
The Author – Blogabout.Cloud
In this post, you can see all the new items that have been released in the following product areas
– Device Management
– App Management
– Device Configuration
– Device enrollment
– Monitor and Troubleshoot
– Security
Device Management
Use sync remote action in bulk for iOS
You can now use the sync remote action on up to 100 iOS devices at a time. To see this feature, go to Microsoft Endpoint Manager admin center > Devices > All devices > Bulk device actions.
Automated device sync interval down to 12 hours
For Apple’s Automated Device Enrollment, the automated device sync interval between Intune and Apple Business Manager has been reduced from 24 hours to 12 hours. For more information on sync, see Sync managed devices.
App Management
Customize self-service device actions in the Company Portal
You can customize the available self-service device actions that are shown to end-users in the Company Portal app and website. To help prevent unintended device actions, you can configure these settings for the Company Portal app by selecting Tenant Administration > Customization. The following actions are available:
- Hide Remove button on corporate Windows device.
- Hide Reset button on corporate Windows devices.
- Hide Reset button on corporate iOS devices.
- Hide Remove button on corporate iOS devices. For more information, see User self-service device actions from the Company Portal.
Auto update VPP available apps
Apps that are published as Volume Purchase Program (VPP) available apps will be automatically updated when Automatic App Updates is enabled for the VPP token. Previously, VPP available apps did not automatically update. Instead, end-users had to go to the Company Portal and reinstall the app if a newer version was available. Required apps continue to support automatic updates.
Unified delivery of Azure AD Enterprise and Office Online applications in the Company Portal
This feature has been delayed. On the Customization pane of Intune, you can select to Hide or Show both Azure AD Enterprise applications and Office Online applications in the Company Portal. Each end-user will see their entire application catalog from the chosen Microsoft service. By default, each additional app source will be set to Hide. This feature will first take effect in the Company Portal website, with support in the Windows, iOS/iPadOS, and macOS Company Portals expected to follow. In the Microsoft Endpoint Manager admin center, select Tenant administration > Customization to find this configuration setting. For related information, see How to customize the Intune Company Portal apps, Company Portal website, and Intune app.
Android Company Portal user experience
In the 2005 release of Android Company Portal, end-users of Android devices that are issued a warn, block, or wipe by an app protection policy will see a new user experience. Instead of the current dialog experience, end-users will see a full page message describing the reason for the warn, block, or wipe and the steps to remediate the issue. For more information, see App protection experience for Android devices and Android app protection policy settings in Microsoft Intune.
Support for multiple accounts in Company Portal for macOS
The Company Portal on macOS devices now caches user accounts, making sign-in easier. Users no longer need to sign into the Company Portal every time they launch the application. Additionally, the Company Portal will display an account picker if multiple user accounts are cached, so that users don’t have to enter their user name.
Newly available protected apps
The following protected apps are now available:
- Board Papers
- Breezy for Intune
- Hearsay Relate for Intune
- ISEC7 Mobile Exchange Delegate for Intune
- Lexmark for Intune
- Meetio Enterprise
- Microsoft Whiteboard
- Now® Mobile – Intune
- Qlik Sense Mobile
- ServiceNow® Agent – Intune
- ServiceNow® Onboarding – Intune
- Smartcrypt for Intune
- Tact for Intune
- Zero – email for attorneys
For more information about protected apps, see Microsoft Intune protected apps.
Search the Intune docs from the Company Portal
You can now search the Intune documentation directly from the Company Portal for macOS app. In the menu bar, select Help > Search and enter the key words of your search to quickly find answers to your questions.
Windows 32-bit (x86) apps on ARM64 devices
Windows 32-bit (x86) apps that are deployed as available to ARM64 devices will now be displayed in the Company Portal. For more information about Windows 32-bit apps, see Win32 app management.
Windows Company Portal app icon
The icon for the Windows Company Portal app has been updated. For more information about the Company Portal, see How to customize the Intune Company Portal apps, Company Portal website, and Intune app.
Update to icons in Company Portal app for iOS/iPadOS and macOS
We’ve updated the icons in Company Portal to create a more modern look and feel that’s supported on dual screen devices and aligns with the Microsoft Fluent Design System. To see the updated icons, go to UI updates for Intune end-user apps.
Device Configuration
Improvements to OEMConfig support for Zebra Technologies devices
Intune fully supports all features provided by Zebra OEMConfig. Customers managing Zebra Technologies devices with Android Enterprise and OEMConfig can deploy multiple OEMConfig profiles to one device. Customers can also view rich reporting about the status of their Zebra OEMConfig profiles.
For more information, see Deploy multiple OEMConfig profiles to Zebra devices in Microsoft Intune.
There is no change in OEMConfig behavior for other OEMs.
Applies to:
- Android Enterprise
- Zebra Technologies devices that support OEMConfig. For specific details on support, contact Zebra.
Configure system extensions on macOS devices
On macOS devices, you can create a kernel extensions profile to configure settings at the kernel-level (Devices > Configuration profiles > macOS for platform > Kernel extensions for profile). Apple is eventually deprecating kernel extensions, and replacing them with system extensions in a future release.
System extensions run in the user space, and don’t have access to the kernel. The goal is to increase security and provide more end user control, while limiting attacks at the kernel level. Both kernel extensions and system extensions allow users to install app extensions that extend the native capabilities of the operating system.
In Intune, you can configure both kernel extensions and system extensions (Devices > Configuration profiles > macOS for platform > System extensions for profile). Kernel extensions apply to 10.13.2 and newer. System extensions apply to 10.15 and newer. From macOS 10.15 to macOS 10.15.4, kernel extensions and system extensions can run side-by-side.
To learn about these extensions on macOS devices, see Add macOS extensions.
Applies to:
- macOS 10.15 and newer
Configure app and process privacy preferences on macOS devices
With the release of macOS Catalina 10.15, Apple added new security and privacy enhancements. By default, applications and processes are unable to access specific data without user consent. If users don’t provide consent, the applications and processes may fail to function. Intune is adding support for settings that enable IT administrators to allow or disallow data access consent on behalf of end-users on devices running macOS 10.14 and later. These settings will ensure that applications and processes continue to function properly, and reduce the number of prompts.
For more information on the settings you can manage, see macOS privacy preferences.
Applies to:
- macOS 10.14 and newer
Device enrollment
Company Portal for Android guides users to get apps after work profile enrollment
We’ve improved the in-app guidance in Company Portal to make it easier for users to find and install apps. After they enroll in work profile management, users will get a message explaining how to find suggested apps in the badged version of Google Play. The last step in Enroll device with Android profile has been updated to show the new message. Users will also see a new Get Apps link in the Company Portal drawer on the left. To make way for these new and improved experiences, the APPS tab was removed. To see the updated screens, go to UI updates for Intune end-user apps.
Enrollment restrictions support scope tags
You can now assign scope tags to enrollment restrictions. To do so, go to Microsoft Endpoint Manager admin center > Devices > Enrollment restrictions > Create restriction. Create either type of restriction and you’ll see the Scope tags page. For more information, see Set enrollment restrictions.
Autopilot support for Hololens 2 devices
Windows Autopilot now supports Hololens 2 devices. For more information on using Autopilot for Hololens, see Windows Autopilot for HoloLens 2.
Monitor and troubleshoot
Device reports UI update
The reports overview pane will now provide a Summary and a Reports tab. In the Microsoft Endpoint Manager admin center, select Reports, then select the Reports tab to see the available report types. For related information, see Intune reports.
Security
Derived credentials support for DISA Purebred on Android devices
You can now use DISA Purebred as a derived credentials provider on Android Enterprise fully managed devices. Support includes retrieving a derived credential for DISA Purebred. You can use a derived credential for app authentication, Wi-Fi, VPN, or S/MIME signing and/or encryption with apps that support it.
Send push notifications as an action for noncompliance
You can now configure an action for noncompliance that sends a push notification to a user when their device fails to meet conditions of a compliance policy. The new action is Send push notification to end user, and is supported on Android and iOS devices.
When users select the push notification on their device, the Company Portal or Intune app opens to display details about why they are noncompliant.
Endpoint security content and new features
The documentation for Intune Endpoint Security is now available. In the endpoint security node of the Microsoft Endpoint Manager admin center you can:
- Create and deploy focused security policies to your managed devices
- Configure integration with Microsoft Defender Advanced Threat Protection, and manage security tasks help remediate risks for at-risk devices as identified by your ATP team
- Configure security baselines
- Manage device compliance and conditional access policies
- View compliance status for all your devices from both Intune and Configuration Manager when Configuration Manager is configured for client attach.
In addition to the availability of content, the following are new for Endpoint Security this month:
- Endpoint security policies are out of preview and are now ready to use in production environments, as generally available, with two exceptions:
- In a new public preview, you can use the Microsoft Defender Firewall rules profile for Windows 10 Firewall policy. With each instance of this profile you can configure up to 150 firewall rules to compliment your Microsoft Defender Firewall profiles.
- Account protection security policy remains in preview.
- You can now create a duplicate of endpoint security policies. Duplicates keep the settings configuration of the original policy, but get a new name. Then new policy instance doesn’t include any assignments to groups until you edit the new policy instance to add them. You can duplicate the following policies:
- Antivirus
- Disk encryption
- Firewall
- Endpoint detection and response
- Attack surface reduction
- Account protection
- You can now create a duplicate of a security baseline. Duplicates keep the settings configuration of the original baseline, but get a new name. The new baseline instance doesn’t include any assignments to groups until you edit the new baseline instance to add them.
- A new report for endpoint security antivirus policy is available: Windows 10 unhealthy endpoints. This report is a new page you can select when your viewing your endpoint security antivirus policy. The report displays the antivirus status of your MDM-managed Windows 10 devices.
Support for S/MIME signing and encryption certificates with Outlook on Android
You can now use certificates for S/MIME signing and encryption with Outlook on Android. With this support, you can provision these certificates by using SCEP, PKCS, and PKCS imported certificate profiles. The following Android platforms are supported:
- Android Enterprise Work Profile
- Android Device Administrator
Support for Android Enterprise Fully Managed devices is coming soon.
For more information about this support, see Sensitivity labeling and protection in Outlook for iOS and Android in the Exchange documentation.
Use Endpoint detection and response policy to onboard devices to Defender ATP
Use endpoint security policy for Endpoint detection and response (EDR) to onboard and configure devices for your deployment of Microsoft Defender Advanced Threat Protection (Defender ATP). EDR supports policy for Windows devices managed by Intune (MDM), and a separate policy for Windows devices managed by Configuration Manager.
To use the policy for Configuration Manager devices, you must set up Configuration Manager to support the EDR policy. Set up includes:
- Configure your Configuration manager for tenant attach.
- Install an in-console update for Configuration Manager to enable support for the EDR policies. This update applies only to hierarchies that have enabled tenant attach.
- Synchronize your device collections form your hierarchy to the Microsoft Endpoint Manager admin center.
Scripting
macOS script support
Script support for macOS is now generally available. In addition, we have added support for both user assigned scripts and macOS devices that have been enrolled with Apple’s Automated Device Enrollment (formerly Device Enrollment Program). For more information, see Use shell scripts on macOS devices in Intune.
Regards
The Author – Blogabout.Cloud
Watching the M365 Roadmap doesn’t have to be difficult, check out my video below and how I keep up to date with the Microsoft Roadmap.
Regards
The Author – Blogabout.Cloud
Delivering PowerShell scripts to Windows 10 devices using Microsoft Endpoint Manager is one of my favorite features but what do you do if the delivery of the script fails? There are two ways of checking for troubleshooting purposes
Using the Registry
By browsing the following location you able to see all the PowerShell script that has been applied to your Windows 10 device. With this, you will see Result/ResultDetails which provide if the execution was successful and any error message if not successful.
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\IntuneManagementExtension\Policies\
Using the Log File
The other option is using the CMTrace.exe tool which is apart of the 2012 Configuration Manager Toolkit. The link has been provided https://www.microsoft.com/en-us/download/confirmation.aspx?id=50012
This allows you to open the IntuneManagementExtension log file which is located in C:\ProgramData\Microsoft\IntuneManagementExtension\Logs.
It highlights all the relevant warning and error messages in either Yellow or Red depending on the severity of the issue.
When you click on the failure you will receive details about the known issue that is causing the script to fail.
Regards
The Author – Blogabout.Cloud
I have been recently running a number of PowerShell scripts where I required to elevate the session to Administrator. Ideally I didnt want to have to provide logon details everytime, so the following script removed the need to provide Admin credentials.
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
# http://blogs.msdn.com/b/virtual_pc_guy/archive/2010/09/23/a-self-elevating-powershell-script.aspx
# Get the ID and security principal of the current user account
$myWindowsID=[System.Security.Principal.WindowsIdentity]::GetCurrent()
$myWindowsPrincipal=new-object System.Security.Principal.WindowsPrincipal($myWindowsID)
# Get the security principal for the Administrator role
$adminRole=[System.Security.Principal.WindowsBuiltInRole]::Administrator
# Check to see if we are currently running "as Administrator"
if ($myWindowsPrincipal.IsInRole($adminRole))
{
# We are running "as Administrator" - so change the title and background color to indicate this
$Host.UI.RawUI.WindowTitle = $myInvocation.MyCommand.Definition + "(Elevated)"
$Host.UI.RawUI.BackgroundColor = "DarkBlue"
clear-host
}
else
{
# We are not running "as Administrator" - so relaunch as administrator
# Create a new process object that starts PowerShell
$newProcess = new-object System.Diagnostics.ProcessStartInfo "PowerShell";
# Specify the current script path and name as a parameter
$newProcess.Arguments = $myInvocation.MyCommand.Definition;
# Indicate that the process should be elevated
$newProcess.Verb = "runas";
# Start the new process
[System.Diagnostics.Process]::Start($newProcess);
# Exit from the current, unelevated, process
exit
}
Regards
The Author – Blogabout.Cloud