Welcome to this weeks newsletter with a whole additional section for some Tech Community Live videos direct from Microsoft. This is also the first newsletter running from a new mailing application so fingers crossed if you are a subscriber you are reading this!
We start this week looking at the history and future of Endpoint management from Simon Hartmann Eriksen. I’m looking forward to seeing the rest of this series.
Ugur Koc has released an excellent website which aggregates key community websites and includes the ability to bookmark posts of interest directly into the web page. It also includes a summary of each post. Well worth checking out
Ugur has also released a new toold to make enrolling your Ubuntu devices much easier
We can’t have a newsletter without at least one LAPS post, it’s a very popular addition in the community! This one comes from Joost Gelijsteen and looks at what happens when a password is rotated and where to look in the logs to see what is happening.
Whilst you cannot directly enrol servers into Intune, you can now deploy policies from Intune to your servers using Defender for Endpoint. Find out more in this post from Dean Ellerby
Book out some time for this one, it’s another Rudy Ooms deep dive, as a follow on to the previous MMP-C post (also worth reading). This one looks at what happens with MMP-C enrollment after EPM is activated
We have a second post from Rudy this week, this time delving into what happens when you login to a device with a LAPS account:
WDAC is a powerful tool, but it’s a pain to configure. If you want to restrict your machines to only install applications from Intune, check out this post from Michael Meier
Niall Brady has released an update to a previous post looking at location redirection on Windows 365 machines
Whilst not strictly Intune related, this list of 20 useful wmi classes from Shishir Kushawaha will be useful in your custom compliance policies
Thiago Beier has been helping me improve the community fork of get-windowsautopilotinfo. You can find out more here and please get involved too!
Thiago has also released part 2 of the series looking at Autopilot deployment profiles, this time looking at AADJ devices
This comprehensive post from Vidya M A runs through all of the available security policies across your Intune tenant
You can now manage Visual Studio directly from Intune using settings catalog without having to ingest any ADMX policies. Find out more in this post from Peter van der Woude
A new feature in Conditional Access (although a paid addition) is Workload Identities as covered in this post from Gannon Novak
Shehan Perera looks at how to use Azure PIM for Groups to configure and manage access to your Intune Built in Roles in this post
Never let your Apple certificates expire, it hurts! To learn how to renew them, follow this guide from Jitesh Kumar
Windows 365 boot is an exciting new feature which I can see being especially useful for multi-user kiosk style devices, especially when paired with a frontline license. This post from Ola Ström runs through the end to end process to configure and deploy
If you want to test Windows 365 boot, but don’t have a spare machine, this post from Roy Apalnes will show you how you can test it in Hyper-V!
You can now ingest custom CSS into AzureAD to customise the display further. Have a read of this post from Jan Bakker to find out how
The one downside with LAPS is it does not automatically create a custom account for you which means you either need the use a CSP, or PowerShell. Niels Kok has put together a very useful Remediation here to take care of that for you
Timmy Andersson has updated an article showing how to rename devices with PowerShell and Graph with the update covering using the new graph SDK
If you want to keep your machines online using Intune, check out this guide from Florian Salzmann
We start the video content this week with a deep dive into Endpoint Privilege Management from Saurabh Sarkar
Next, Andy Malone gives an introduction to Intune to quickly get started
Now for two videos from Alex de Jong, the first looking at managing updates for your Windows and Apple devices using Intune
The second video from Alex looks at managing cloud applications using Intune and Defender for Endpoint/Cloud apps
This video from Anoop Nair shows how to use Defender for Endpoint to block ChatGPT in your estate
John Bryntze has released a full 10-part series showing how to fully manage your macOS devices
Jordan Gross runs through the new MAM for Microsoft Edge (including Windows!) here
Tech Community Live Video
Now onto the Microsoft content starting with a look at the modernised Intune device compliance reports from Tyler Castaldo
Intune is now moving to support the new Google Play API as discussed here from the Intune support team
Find out how to use Graph to retrieve app reporting data
The M365 Copilot technical requirements have been released from Yana Terukhova
Application Control Policies are now in Private Preview, find out how to deploy them here:
Find out all of the exciting new features in the Intune June release from Ramya Chitrakar
That’s it from this week, have a great weekend!