2010 Service Release – Intune in a half shell, Shell Power!!

The 2010 Service Release has since a number of updates as shown below;

SectionItemLink
App ManagementApps that require enrollment are hidden when enrollment is set to unavailableLink
Improvements to iOS Company Portal privacy message customizationLink
Android app protection policies (MAM) on COPE devicesLink
Max Company Portal version age for Android devicesLink
Mac LOB apps will be supported as managed apps on macOS 11 and higherLink
Enable Outlook S/MIME emails to be always signed or encryptedLink
Device ConfigurationUse the Connect Automatically setting on Android Enterprise basic Wi-Fi profilesLink
New user experience and new Enable direct download setting on macOS devices using associated domainsLink
New lockout password settings on macOS devicesLink
Required password type default setting is changing on Android Enterprise devicesLink
Device enrollmentIntune support for provisioning Azure Active Directory shared devicesLink
Device SecurityApp protection policy support on Android and iOS/iPadOS for additional partnersLink
Endpoint Manager Security tasks include details about misconfigured settings from Microsoft Defender ATP TVMLink
Endpoint security Firewall policies for tenant attached devicesLink
Expanded settings to manage hardware device installation through block and allow listsLink
Improvements to endpoint security Firewall rulesLink
Use Microsoft Defender for Endpoint in compliance policies for iOSLink
Security Experience profiles for Endpoint Security Antivirus policy now have tri-state optionsLink
Updated version of the Edge security baselineLink
Monitor and troubleshootNew Windows 10 feature update failures reportLink
Updates to Antivirus reportsLink
Updated Help and Support for Microsoft Endpoint ManagerLink
ScriptsCollect custom device or user properties using shell scripts on managed MacsLink

But what I wanted to pick up on is the new PowerShell elements within this service release as its something I regular do within my own Windows 10 deployments.

These are really cool additions.

View PowerShell scripts in the Intune Troubleshooting pane

You can now view your assigned PowerShell scripts in the Troubleshooting pane. PowerShell scripts provide Windows 10 client communication with Intune to run enterprise management tasks, such as advanced device configuration and troubleshooting. For more information, see Use PowerShell scripts on Windows 10 devices in Intune.

Win32 app support for Workplace join (WPJ) devices

Existing Win32 apps are supported for Workplace join (WPJ) devices. PowerShell scripts, which are not officially supported on WPJ devices, can be deployed to WPJ devices. Specifically, device context PowerShell scripts work on WPJ devices, but user context PowerShell scripts are ignored by design. User context scripts will be ignored on WPJ devices and will not be reported to the Microsoft Endpoint Manager console. For more information about PowerShell, see Use PowerShell scripts on Windows 10 devices in Intune.

Regards,
The Author – Blogabout.Cloud

Leave a Reply

Your email address will not be published. Required fields are marked *