Happy October one and all, this year is absolutely flying by! The nights may be longer, but fortunately the Intune content keeps on coming plus some extra Microsoft AMA videos this week from Tech Community live. If that’s not enough, we also have the release of Windows 11 24H2!!
Community Content
We start this week looking at how to create and apply MAM policies for the new Windows app on iOS from Roman Kleyn
https://stoked4workplace.com/2024/10/01/mam-for-windows-app-on-ios-ipados-part-2-fun-with-filters/
Next, James Robinson looks at LAPS local admin accounts and the existing vs new account debate
https://skiptotheendpoint.co.uk/dot-slash-administrator-a-security-risk-analysis
Jan Mulder looks at Enhanced Phishing Protection available in Intune here
https://wolkenman.wordpress.com/2024/09/30/deploy-a-enhanced-phishing-protection-policy-with-intune/
Learn how to further protect your Windows enrollments usint attestation here from Peter van der Woude
https://petervanderwoude.nl/post/getting-started-with-windows-enrollment-attestation/
Monitor your Enterprise App Catalog apps for updates with this script from Daniel Bradley
https://ourcloudnetwork.com/report-enterprise-app-catalog-updates-in-intune-with-powershell/
Daniel then shows how to deploy them using PowerShell
https://ourcloudnetwork.com/how-to-deploy-enterprise-app-catalog-updates-with-powershell/
Device staging is a relatively new feature to allow an admin or a third party to complete some Android enrollment tasks to speed up the process for end-users. Timmy Andersson looks at how it works here
https://timmyit.com/2024/09/30/first-look-at-device-staging-for-android-in-microsoft-intune/
If you want to give staff the ability to upload hardware hashes without giving them permissions or an app reg, check out this useful approach from Florian Salzmann
https://scloud.work/autopilot-hash-upload-without-admin-role
A little known item in the Microsoft Security Compliance toolkit, LGPO lets you temporarily apply GPO items and them remove them afterwards. Learn more in this post from Michael Meier
Graph batch requests are an excellent way to run multiple queries quickly and without worrying about throttling. This post from Jannik Reinhard covers how to use them
https://jannikreinhard.com/2024/09/28/graph-batch-endpoint/
The latest version of the Windows app for connecting to AVD and W365 has a lot of excellent new features. This post from Niall Brady covers how to update the app and deploy to new devices
https://www.niallbrady.com/2024/09/27/updating-the-windows-app-to-the-latest-version/
If you want to disable Windows Copilot using Intune, Benoit Lecours has the steps to follow here
https://www.systemcenterdudes.com/create-intune-copilot-policy-for-windows-11
Damien Van Robaeys has an update to the excellent Intunewin build and extract tool
https://www.systanddeploy.com/2024/10/intunewin-build-and-extract-tool-to.html
A Copilot especially for macOS support? Sounds great and now it’s available from Ugur Koc
https://copilot.intunemacadmins.com
We have an update to the excellent Intune Network Requirements tool from Martin Himken
https://github.com/MHimken/toolbox/blob/main/Intune/IntuneNetworkRequirements/changelog.md
Increase performance of your connections to Windows 365 machines using RDP Shortpath. Learn how in this post from Jon Towles
https://mobile-jon.com/2024/10/01/introducing-rdp-shortpath-optimizing-windows-365-connectivity/
If you have Intune apps stuck in a pending state, Peter Klapwijk has a fix here
https://inthecloud247.com/application-installations-issues-download-pending/
IF you’re getting a 65000 error when booting a Windows 365 machine, you can find the fix here from Niels Kok
https://www.nielskok.tech/windows-365/windows-365-boot-error-65000/
Windows 11 24H2 is now out and Joey Verlinden runs through how to upgrade with Intune
https://www.joeyverlinden.com/upgrade-to-windows-11-24h2/
Simon Skotheimsvik looks at how to use Autopatch rings to deploy 24H2 to your organization
https://skotheimsvik.no/how-to-use-autopatch-groups-for-a-smooth-windows-11-upgrade
Tracking your apps in ESP can be tricky, follow this guide from Nicklas Olsen will help with your troubleshooting
https://www.learnintune.net/tracking-esp
Next, Maxime Guillemin has the second part of the W365 series, this time looking at what you can do as admins and what you can allow your users to do
https://cloudflow.be/windows-365-from-zero-to-hero-series-part-2-end-user-admin-controls/
Video Content
Now for the video content, starting with a look at how to control M365 apps versions using settings catalog from Chander Mani Pandey
Next, Manish Bangia runs through the end-to-end setup and use of Autopilot
Learn all about provisioning Windows 365 devices using Intune from Shady Khorshed
On the subject of Windows 365, Steve Weiner shows how to use it with Windows 10 LTSC for machines which can’t run Windows 11, or has software which won’t run on it
Always block personal device enrollment, Steve covers why in this video
Steve has also updated his Hyper-V automation script for quickly building test machines, find out more here
Now for many Microsoft AMA sessions from Tech Community live. This first one looks at improving your security posture with Tyler Castaldo, Sarahzin Shane, Matt Call and Aaron Hamilton
This video is a feedback session on Intune and Intune Suite featuring Dave Randall, Danny Guillory Jr, Yvette O’Meally, Matt Call and Bill Calero
This AMA is all about Copilot for Intune with Lavanya Lakshman, Zach Dvorak, Mike Danoski and Ravi Ashok
The final Tech Community AMA (but not the last AMA this week) is all about Device Inventory and features Steve Thomas, Zineb Takafi and Liz Cox
Jeremy Chapman looks at the new features in Win11 24H2 here including how to migrate to it
Shehan Perera also looks at the new update including how to update via Intune
We have room for another Microsoft AMA, this one from the Windows 365 team covering GPU enabled cloud PCs from Christian Montoya, Ron Martinsen and Femi Adebayo
Microsoft Content
On top of the video from Jeremy above, Harjit Dhaliwal runs through the new additions to 24H2 in this blog
That was a lot of content, congratulations for getting this far and have a lovely weekend!