Happy valentines day, I imagine this newsletter was top of your list of things to read today!
If you have only just realised what day it is, I have you covered
As a thanks for reading this, I still have discount codes available for the Workplace Ninjas event in Edinburgh (June 2025). Book here using the code “IntuneNewsletter” for a massive 35% off
Now, onto the content…
Community Content
Strong mapping is now being enforced on certificates, find out what that means for your NDES and SCEP configuration here from Tim Beer
We have a deep dive from Ben Whitmore, looking at what happens when you click things within Company portal
Have you ever wanted your policies to apply safely after OOBE and EST complete? If so, check out this script from Maxime Guillemin
Enhancing Autopilot Deployments With Delayed Security Groups
What if you wanted the same but for your apps? Well, Rahul Jindal can sort that for you here
https://rahuljindalmyit.blogspot.com/2025/02/delaying-installation-of-applications.html
Next, Torbjorn (Mr T-Bone) Granheden looks at protected print mode, why you need it, how it works and how to enable it
Oktay Sari continues looking at securing your macOS devices, this time focusing on location services and how to audit them with Intune
https://allthingscloud.blog/whos-watching-auditing-macos-location-services-with-intune/
On the Apple theme, they have recently announced their AI features for all platforms. No doubt you will want to manage these centrally, follow this guide from Andy Jones to do so
Stale devices are always a management nightmare, do you leave them there and accept the clutter, or delete them and pray the user is never coming back. Fortunately, there is a third alternative via some fancy scripting here from Tom Machado
Windows 365 is most often accessed from personal devices, it’s one of the big selling points of it, but how do you secure the connection to the managed device? Find out here from Lewis Barry
If you are considering Autopilot Device Preparation, Michael Niehaus compares the performance in this post
Next, Sebastian F. Markdanner continues the series on securing your business premium licensed tenants. Building on the first post, this one looks at your authentication methods and strengths, especially for admin tasks
https://www.chanceofsecurity.com/post/securing-microsoft-business-premium-part-02-authentication
Whilst looking at security, Jan Bakker covers Risk Protection, conditional access and some mistakes to avoid
If you like the idea of Entra private access, but don’t want everyone to be able to use it at will, learn how to combine with Entra ID Governance in this post from Dustin Gullett
https://www.getrubix.com/blog/now-you-see-it-now-you-dont-secure-access-with-entra-id-governance
Deciding between MDM and MAM for your mobile devices is very important and best done early on. Kenneth van Surksum covers the options here
Peter van der Woude continues the series on protecting your browser, this time looking at in-browser protection leveraging Defender for Cloud Apps
Working with in-browser protection in Microsoft Edge for Business
Next, Aresh Sarkari has a very useful script for creating Windows 365 frontline provisioning policy automatically using Graph
PowerShell – Shared Frontline Workers – Create Windows 365 Cloud PC Provisioning Policy
If you are using QR codes to enrol your Android enterprise devices, take them to the next level with this post from Nick Benton
https://www.oddsandendpoints.co.uk/posts/android-enterprise-enrolment-customisation/
Learn all about administrator protection on Windows here with Nicklas Olsen
https://www.learnintune.net/administrator-protection-stay-secure/
Niall Brady and Paul Winstanley have released the fourth part of their Windows 365 series, this one covers managing your devices
Carrying on the macOS beginners series, Jeroen Burgerhout covers how to enrol your macOS devices here
https://www.burgerhout.org/how-to-enroll-macos-devices-in-intune-a-step-by-step-guide/
There is a change to the Data collection property used in Autopatch (and elsewhere) which you will need to sort. Have a look at what you need to configure here from Jan Mulder
Johan Vanneuville tests the new AVD Quick starts here (also covered in the video content by Dean Cefola)
Next, Peter Klapwijk has created an excellent employee onboarding automation to go alongside the extremely useful offboarding tool
Build your own user onboarding automation – Entra ID user account creation
VS Code is a key app for many of us, but as it runs in the user context, there is a risk your users can install whatever extensions they want. To control them, check out this post from Jörgen Nilsson
If you are looking to get started with Windows 365 Link, this post from Thomas Marcussen is well worth checking out
Have you ever wanted version control for your Intune scripts? Now you can using GitHub actions and this guide from Sander Rozemuller
https://www.rozemuller.com/manage-intune-scripts-with-github-actions/
Video Content
Onto this weeks video content, starting with a look at the new Robopack Radar functionality from Dean Ellerby
Quickly get started using AVD with Quick Start as explained in this video from Dean Cefola
If you’re using Windows 365, but need domain join, check out this video from Steve Weiner
Microsoft Content
Now for the exciting Microsoft news, starting with a new webinar series from Harjit Dhaliwal covering the extra value you get from Windows enterprise. It is a monthly webinar so well worth signing up in advance
Don’t forget Tech Take-Off March 3rd – 6th with some excellent sessions, all online, all free! Sign up here:
Want to know more about becoming an MVP? Check out this post from Christiaan Brinkhoff
Quality updates are soon to be returning to OOBE, but this time you can manage whether to enable it or not. Learn more here with Victoria Wang
Learn about pre and post-install scripts for macOS including some examples here from Iris Yuning Ye
If you want to keep up to date with Windows 365, check out this guide from Megan Gremmell
We can’t forget the What’s New in Intune, multi-device query is here and it’s available now!
https://learn.microsoft.com/en-us/mem/intune/fundamentals/whats-new#week-of-february-10-2025
That’s all for this week, have an amazing weekend!