Intune Newsletter – 31st March 2023

Welcome again to this weeks newsletter and can you believe it’s nearly April!!

You haven’t come here to read my weather related discussions, so on with the content!

Community Content

We start this week with a public website from Trevor Jones to redirect any users from Software Centre over to company portal. If you’re using Config Manager, this is worth checking out!

https://smsagent.blog/2023/03/24/software-center-retirement-website/

A second post from Trevor (and the first of a 2-part series) using HP Image Assistant to report on your out-of-date drivers

https://smsagent.blog/2023/03/28/managing-hp-driver-updates-with-microsoft-intune-azure-log-analytics-and-power-bi-part-1/

And the second part showing how you can use this data to update the drivers

https://smsagent.blog/2023/03/31/managing-hp-driver-updates-with-microsoft-intune-azure-log-analytics-and-power-bi-part-2/


This post from Niklas Tinner shows how you can utilise the custom device attributes to block specific devices in Conditional Access, useful for any kiosk style devices you may have

https://niklastinner.medium.com/conditional-access-block-specific-device-e5ffc81a5d69


Next, Jonas Bøgvad looks at how you can use AAD password policy and Conditional access to force your users to only use passwordless sign-in

https://blog.skymadesimple.io/require-passwordless-sign-in/


Whilst on the subject of Conditional Access, the latest in the series from Paul Winstanley and Mike Marable is now out, this one looking at User Risk policies and how to force a password change for your high risk users

https://sccmentor.com/2023/03/26/just-dropped-in-to-see-what-condition-my-conditional-access-rule-was-in-part-6-require-password-change-for-high-risk-users/


As I’m sure you’ve heard, Endpoint Privilege Management (EPM) is now in public preview (and free until GA). We have a number of posts looking at it this week, starting with this from Jannik Reinhard

https://jannikreinhard.com/2023/03/26/intune-suite-part-2-easy-start-with-endpoint-privilege-management/


Fabrizio Gobeli also looks at the process and end-user experience here

https://gobisweb.ch/2023/03/26/microsoft-intune-first-impressions-of-endpoint-privilege-management-epm/


Another post on the subject, this from Joost Gelijsteen


It’s certainly been a popular topic, another first look, this one from Sandy Zeng


Another EPM post, this one from Niklas Rast

https://niklasrast.wordpress.com/2023/03/29/preview-endpoint-privilege-management-in-microsoft-intune/

Niklas also has this run through of packaging apps using MSIX

https://niklasrast.wordpress.com/2023/03/31/msix-packaging-the-future-of-application-deployment/


This post from Ola Ström looks at the Intune Suite as a whole including the licensing requirements

https://www.olastrom.com/2023/intune-suite-whats-in-it-for-me


Next, we have three posts from Jitesh Kumar, the first with a look at all of the new features in the 2303 Intune release

https://www.anoopcnair.com/new-feature-in-intune-service-release-2303-mar/

Jitesh’s second post gives a deep dive into one of these features, the new device experience

https://www.anoopcnair.com/new-devices-experience-in-intune-admin-portal/

The third post looks at the Intune Suite Roadmap from the recent security event

https://www.anoopcnair.com/microsoft-intune-suite-roadmap-insights/


Traditionally if there was an acquisition or merger, you would need to migrate one into the other. Fortunately there is now cross-tenant synchronisation to make things slightly easier. Read this post from Damien Bowden to find out more

https://damienbod.com/2023/03/27/azure-ad-cross-tenant-synchronization/


We all know how much I enjoy a good proactive remediation, but as with all admins, I’d rather not have to login to a portal to keep an eye on things. This post/script from Gannon Novak will show how you can receive Teams alerts if your script fails


Thiago Beier has put together a guide to create a Sharepoint list of devices uploaded to Autopilot and their status

https://thiagobeier.wordpress.com/2023/03/27/create-a-sharepoint-list-to-receive-windows-autopilot-update-upload-status/

Another script from Thiago, this one also notifies a Teams channel when a device is imported into Autopilot

https://thiagobeier.wordpress.com/2023/03/29/monitor-intune-device-enrollment-using-lists/


Sune Thomsen has released part four of the Windows 365 tips and tricks series, this time looking at the Windows app and the reporting available within Intune


An in-depth post from Peter van der Woude looking at WDAC and how you can use it in audit mode to review events within Log Analytics. Read on to find out how to deploy it to your environment


The latest Winget build includes a preview PowerShell module which Harm Veenstra tests in this post


Have you ever considered that going Win365 might be more sustainable? Doug Petrole looks at the environmental credentials here

https://www.desktopsforeveryone.com/blog/sustainability-esg-and-cloud-desktops


If you’re using Group Tags with Autopilot and want to be alerted if there are any devices without a tag, have a look at this post/script from Niels Kok

https://www.nielskok.tech/intune/notification-about-untagged-autopilot-devices/


Michael Niehaus has built a new tool to download and create a Windows ISO with the latest versions available directly from Microsoft, think of it as the media creation tool, but better

https://oofhours.com/2023/03/29/another-windows-media-creation-tool-sure-why-not/

This second post from Michael shows what’s going on underneath the GUI

https://oofhours.com/2023/03/29/the-inner-workings-of-a-media-creation-tool/


Browser notifications feel like the new toolbars at times! Learn how to block them in this post from Prajwal Desai


You may have noticed some issues last week with users failing to pass conditional access policies as their location was listed as Uzbekistan. To find out what happened, read this post from Eric Woodruff


There have been a few users reporting issues with Autopilot and Infineon TPM chips. Rudy Ooms has gone digging through logs to find out what is going on


Another new feature of Remote Help in the Intune suite is the Service-Now integration. To see how it works and set it up yourself, follow this guide from Somesh Pathak

https://www.intuneirl.com/integrate-microsoft-intune-with-servicenow/


For anyone looking at Windows 365, have a look at Thomas Marcussen‘s top 10 reasons why you should use it


Video Content

Now onto the video content with yet more content on EPM.

We start with three videos from Dean Ellerby, first looking at the Elevation Settings within EPM

And then Dean looks at the Elevation Rules

Dean’s third post gives a quick run-through of exactly what is currently included in the Intune Suite


The latest Intune.Training video is out and guest presented by Matt Call, along with Adam Gross, Steven Hosking and Lavanya Lakshman with an in-depth look at…EPM


Another look at EPM, this one from Andrew Jones


Next, we have two videos from Andy Malone, starting with a quick look at M365 licensing

Andy’s second video runs through some very useful features in Azure Active Directory which you may not know about


This video from Anoop Nair and Kannan CS looks at Autopilot from a pre-sales perspective


Nick Ross looks at the latest features in the March M365 update in this video


Microsoft Content

Now onto the Microsoft content, starting with a look at the new devices experience from Yvette O’Meally

https://techcommunity.microsoft.com/t5/intune-customer-success/new-microsoft-intune-devices-experience/ba-p/3777342


A look at what’s new in 2303 from Ramya Chitrakar

https://techcommunity.microsoft.com/t5/microsoft-intune-blog/what-s-new-in-microsoft-intune-2303-march-edition/ba-p/3778012


Find out the different ways to remove windows updates via Intune in this article from Aria Carley

https://techcommunity.microsoft.com/t5/windows-it-pro-blog/uninstalling-windows-updates-on-managed-devices-using-intune/ba-p/3778267


The latest skilling snack from Chris Morrissey looks at the monthly Windows updates process

https://techcommunity.microsoft.com/t5/windows-it-pro-blog/skilling-snack-windows-monthly-updates/ba-p/3782444


The final content this week comes from Matt Shadbolt and shows how to add additional Azure Network Connections to your Windows 365 devices

https://techcommunity.microsoft.com/t5/windows-it-pro-blog/using-alternate-ancs-in-windows-365/ba-p/3780384


That’s it for this week, have a fantastic weekend!

Leave a Comment