Intune Newsletter – 28th June 2024

July is nearly upon us and hopefully I will get to see some of you at the Workplace Ninjas UK event next week!

Whilst I try and avoid including my own work in this newsletter, I have recently released a suite of tools for Intune, you may find them useful – https://euctoolbox.com

Holiday season is nearly upon us, I will attempt to keep the newsletter going, but there might be one or two with just a load of links if I’m busy enjoying the outside world…

Community Content

We start this week with a look at a critical part of Autopilot V2, Enrollment Time Grouping in this post from Peter van der Woude

https://www.petervanderwoude.nl/post/understanding-enrollment-time-grouping

https://www.petervanderwoude.nl/post/understanding-enrollment-time-grouping


Next, Nick Benton and Jonathan Fallis continue the dive into CIS benchmarks, this one looking at the Windows 11 settings and how they may impact Autopilot deployments

https://memv.ennbee.uk/posts/windows-cis-patching-gaps-part2


Finding the best size machine for W365 can be complicated, over-size it and you’re wasting money, too low and the experience isn’t going to be great. Fortunately Dieter Kempeneers has a guide here to help

https://kempeneers.eu/2024/06/22/guide-on-choosing-the-right-cloudpc-size


If you want to set a custom URL for AVD, check out this web app from Jeroen Burgerhout

https://www.burgerhout.org/redirect-avd-url-with-a-static-web-app


Learn about Windows 365 boot, including some things to watch for in this post from Niall Brady

https://www.niallbrady.com/2024/06/23/getting-more-out-of-windows-365-windows-365-boot

Niall also looks at the GPU functionality recently added to Windows 365 here

https://www.niallbrady.com/2024/06/22/windows-365-gpu-extending-your-graphics-capabilities-in-the-cloud


If you are managing macOS, Rahul Jindal has a guide here to secure your home folders (and stop MDE from nagging about it)

https://rahuljindalmyit.blogspot.com/2024/06/secure-home-folders-in-macos-using.html


A new EU ruling means that you can install apps onto iOS devices using stores other than the official App Store. If you don’t want this in your environment, Jan Mulder shows how to block it via Intune

https://wolkenman.wordpress.com/2024/06/22/manage-web-distribution-app-installation-for-eu-users


If you’re having issues updating W365 machines from W1121H2 to 22H2, it could be a guest profile. Find the fix here from Mads Johansen

https://evil365.com/windows%2011/Windows365Device_Stuck_Windows11-21H2


Next, Joost Gelijsteen runs through some steps you can take to protect your tenant from unwanted devices enrolling

https://joostgelijsteen.com/intune-mdm-hardening


A must read post this week from Maurice Daly. Delivery Optimization is crucial for saving bandwidth and speeding up deployments, but can be a pain to manage. This deep dive has you covered!

https://msendpointmgr.com/2024/06/20/delivery-optimization-troubleshooting-reporting

For those using ZScaler, this guide from Bruce Sa and Maurice will prove to be invaluable!

https://msendpointmgr.com/2024/06/27/delivery-optimization-zscaler-a-how-to-guide


Exciting news for EPM users, it can now elevate MSI and PS1 files, find out more in this post from Rudy Ooms

https://call4cloud.nl/2024/06/i-was-msi-and-ps1-nothing-but-endpoint-privilege-management-and-a-couple-of-file-extensions


Next, Curtis Cannon looks at the different script options available with Intune and how each behaves

https://traversecloud.co.uk/using-powershell-scripts-in-microsoft-intune


If you don’t explore outside the Intune console, you may never have heard of Cloud update for M365 apps. If you want to learn more, check out this post from Peter Klapwijk

https://inthecloud247.com/manage-microsoft-365-apps-updates-with-cloud-update


Joey Verlinden has updated the CA framework tool with some new and updated policies

https://www.joeyverlinden.com/conditional-access-framework-2


If you want to shift your AVD machines from old Teams to new Teams, check out this script from Gannon Novak

https://smbtothecloud.com/moving-from-classic-to-new-teams-on-avd-and-a-script-to-automate-it


Next, Jon Towles looks at using TAP for passwordless user onboarding

https://mobile-jon.com/2024/06/26/moving-toward-a-passwordless-world-powered-by-temporary-access-passes-and-passkeys


Whilst Intune doesn’t natively support PowerShell 7, Michael Niehaus has a solution here

https://oofhours.com/2024/06/27/using-powershell-7-as-a-replacement-for-windows-powershell-5-1


Video Content

Now for the video content, starting with a look at how to remove the old Teams client during Intune from Steve Weiner

https://www.youtube.com/watch?v=Zmk44EuMud4

Steve also covers how to use MAM for your unmanaged devices

https://www.youtube.com/watch?v=i6eMlZ7GFK0

Steve’s third video covers getting started with Conditional Access

https://www.youtube.com/watch?v=Z8ZKvKMULik


Microsoft Content

Starting the Microsoft content this week we have Scott Sawyer with a look at what’s new in the 2406 release

https://techcommunity.microsoft.com/t5/microsoft-intune-blog/what-s-new-in-microsoft-intune-june-2024/ba-p/4172928


https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/get-more-device-control-flexibility-with-bitlocker-settings-in/ba-p/4175131


That’s it for this week, have a great weekend!

Leave a Comment