Welcome to 2026 and I hope you had a lovely holiday break (judging by the amount of content here, many of you were working between!). I’m preparing for my alarm to go off on Monday morning after having avoided it as much as possible until now.
Let’s start this exciting new year with loads of Intune content from this magnificent community!
Community Content
We start this newsletter (and year) with a very useful cleanup script from Mark Orr to quickly remove old devices from pretty much everywhere
Damien Van Robaeys has released a new script which can be used to search your remediation scripts for specific words. Extremely useful for environments with large numbers of scripts
https://www.systanddeploy.com/2025/12/list-all-intune-remediation-scripts_22.html
If you are a Microsoft partner trying to get the new Support Services Designation, this script from JJ Milner will help cover your MFA requirements
https://jjrmilner.substack.com/p/partner-centre-admin-mfa-assessment
Looking to get started with Windows 365? This post from Michael Frank has literally everything you need for multiple different scenarios including reporting and configuration.
https://michaelsendpoint.com/intune/win365.html
Self-Service Account Recovery is finally here for Entra to recover accounts using biometrics and ID. Learn more in this post from Michael Mardahl
Unlocking Self-Service Account Recovery (SSAR) in Microsoft Entra
Next, Justin Verstijnen has a useful script for removing printers, including the OneNote and Print to PDF included by default
You may have noticed a new Edge pop-up about connecting to resources on the same network. Learn how to control it using Intune here from Shehan Perera
Admin tasks are a new central blade for some of your more common things to complete (EPM requests, multi-admin etc.). If you’ve seen it pop up in your tenant and want to know more, Peter van der Woude has you covered
This in-depth post from Patrick Seltmann runs through why you need to make sure TPM has never been disabled and a custom compliance script to watch for it
Why you should ensure whether your TPM module has not been disabled once
With EAM coming to your E5 licensing, Andy Jones takes a look at how it fits and works in your environment
A new preview feature for Windows 365 to protect input and output, security at the kernel/system level. This post from Paul Winstanley and Niall Brady digs further into how to configure and use it
If you use the Collect Logs button a lot, but would like some of your own custom logs in there, try this approach from Nicklas Olsen
https://www.learnintune.net/collect-diagnostics-extending-with-custom-logs/
With the secure boot certificate potentially expiring soon, use this Log Analytics workbook and query from Jon Towles to find which of your devices are at risk
Leveraging Log Analytics to Query Secure Boot Certificate Update Status
You can now use Kerberos to access Azure File shares with cloud only identities, another step to hopefully killing off those on-prem file servers. This guide from Peter Klapwijk runs through configuring it all
Configure Azure file shares for Entra joined Windows devices and cloud identities
If one of your New Years resolutions was to finally sort those kiosk devices, check out this post from Kevin Malinoski
Struggling with Windows 11 Kiosks in Intune? Here’s What the Docs Aren’t Telling You
Learn how to build your own Intune AI agent in Microsoft foundry by following this guide from Jannik Reinhard
Video Content
Now for the video content, starting with part 1 of a new series covering how to deploy Win32 apps from Manish Bangia
With the very exciting updates to E3 and E5 licensing, Steve Weiner looks at the new products now included in your licenses.
If you’ve run Jon’s workbook above and have devices with secure boot certificate updates, here is a remediation to fix it from Chander Mani Pandey
Microsoft Content
Now for the first Microsoft content of 2026, starting with some exciting BitLocker news. With drives increasing with speed, software encryption can slow the drive performance, but that won’t be an issue soon with hardware accelerated BitLocker. Learn more from Rafal Sosnowski
That’s all for this week, have a great weekend!