Happy Halloween for anyone who enjoys sitting up all night trying to get children down from a sugar high. We have a spooktacular edition of the newsletter for you to enjoy.
If it’s been half-term, congratulations, you have survived the week and everything returns to normal on Monday!
Community Content
We start this week with the exciting news that Security Copilot now supports Windows 365 as an additional source alongside Intune. Learn how to enable it and some prompt tips from Aresh Sarkari
Learn how you can make dynamic CA policies using custom security attributes within Entra in this post from Jan Bakker
Dynamic Conditional Access policies using custom security attributes
Jan also covers how to enable SSO for Windows 365 via Graph here
One I have personally come across and has been well requested, previously EPM used a different account for elevation which means files were written to the wrong user profile. You can now elevate as the current user for those pesky apps. Learn more in this post from Michael Meier
Intune Endpoint Privilege Management now supports elevation in user context
If you are managing (or looking to manage) Win365 Link devices with Intune, check out this end-to-end guide from Peter Klapwijk
Some exciting Android updates in the 2510 release, find out what they are here with Nicky De Westelinck
What’s New for Android in Microsoft Intune 2510: October 2025 Highlights
Next, Damien Van Robaeys has released a new script to identify which authentication method has been used by a user
https://www.systanddeploy.com/2025/10/identify-how-users-authenticate-on.html
If you want to use MDE machine risk with your Conditional Access, Shehan Perera runs through how to do so here
Device Risk Meets Conditional Access: The Real Power of Unified Endpoint Security
Are you looking to configure the start menu on your Windows 11 devices? This post from Peter van der Woude will show you how
Take your AVD security to the next level with the preview of managed identities for AVD (it is also something you shortly won’t be able to avoid either). Learn more in this post from Johan Vanneuville
Whilst Windows Recall is blocked by default on your corporate devices, to be extra careful you might want to make sure any BYOD machines can’t access your data with recall enabled. This thorough post from Nick Benton runs you through it all
https://www.oddsandendpoints.co.uk/posts/windows-recall-compliance/
We all block and manage the apps on the machines, but how many of you are blocking the store across Teams, Exchange and M365 apps? Kenneth van Surksum covers how to block for each here
Kenneth also looks at ways to manage the various Copilots popping up everywhere in this second post
Bringing Order to Microsoft’s Fast‑Moving Copilot Rollout in Microsoft 365
A very popular script from T-Bone Granheden has been updated to v6 with some excellent enhancements to set the primary user on a device automatically
Intune-SetPrimaryUsers.ps1 – Version 6.0: 10x Faster, Smarter, and More Reliable
A deep dive into the inner workings of Intune here from Joymalya Basu Roy with a look at the new MMP-C management layer
From OMA-DM to MMP-C: The Evolution of Modern Windows Management
Have a look at everything new in macOS and iOS 26 and the sunset of macOS on Intel devices in this in-depth post from Somesh Pathak
macOS & iOS 26 for Enterprise: DDM, Deployment, and the Intel Mac Sunset
Next, Mark Oldham looks at the new management options for devices running 25H2, check out the video if you would prefer a more visual look too
Manage Intune Windows 11 25H2 Settings to Block Recall, Remove Bloatware, and Control Copilot
Learn how to best manage your firewall rules in this post from Milan van Wingerden
If you want to let AI help analyze your Windows error logs, check out this guide from James Vincent using Azure Arc and Log Analytics
Configuring Windows EUC devices to report into Azure Log Analytics using Azure Arc
Next, Simon Skotheimsvik puts the new policy to remove in-built apps to the test running through various scenarios
Hailey Phillips has released part two of the Graph guide, running through how to make your scripts repeatable and re-usable (working in Graph is often just using your existing building blocks to make new things)
https://www.allwayshype.com/allways-hype/msgraph-practical-guide-part2
If you are hitting password issues on your kiosk devices using Autologon and assigned access, Gannon Novak has a few things to check here
https://smbtothecloud.com/auto-logon-for-assigned-access-and-what-breaks-it/
Video Content
Now for the video content, starting with the PowerShell podcast with Andrew Pla. In this episode, Andrew discusses Intune automation with Hailey Phillips
If you are looking to move fully cloud native, John Savill runs through moving your identities from on-prem AD to Entra ID
Microsoft Content
Onto the Microsoft content, starting with a look at the policy removal of pre-installed apps (Enterprise and Education only, sorry business users) from Ingrid Allen
There are a few options for connecting to Windows 365 machines, Elina Luthra looks at them all here and which is most appropriate for your requirements
An exciting addition to Intune and Defender, a remediate button within M365 apps to fix any compliance issues. Learn more here from Harish S
If you are watching, or lucky enough to be attending Ignite, these are the Windows sessions to catch. List compiled by Mark Pendergrast
And of course the all important Intune sessions here from Talal Alqinawi
Windows updates have been gradually increasing in size and the number of items, so they are being renamed to make the naming more simplified. Learn more in this post from Anton Fontanov
https://techcommunity.microsoft.com/blog/windows-itpro-blog/simplified-windows-update-titles/4465287
That’s all for this week, have a spooky weekend!