I’m back from my holidays without falling off the aqueduct so that’s a relief! Hopefully many of you are still enjoying some much needed time off, looking at the content, still plenty of people working away though (hopefully you all get a break soon)
Community Content
We start this week with a look at the new Explorer functionality in Security Copilot in this post from Michael Meier
Security Copilot in Intune is now GA and brings an exciting new feature
We have another new script from Jorge Suarez, this one is especially useful for those running non-Windows devices to grab Winget manifests or download the source files
https://www.jorgeasaur.us/winget-without-winget-building-a-cross-platform-package-manifest-fetcher/
If you’re using Hybrid joined AVD machines and are looking for quicker enrollment, try this script from Joey Verlinden
Typo protection is a quick and easy way of giving a small level of protection within Edge (and it’s free). Learn how to configure it in this post from Peter van der Woude
Protecting against typosquatting with website typo protection in Microsoft Edge
Tugay Taskin has released a new version of the Deployment Editor which supports creation directly from Winget
For those of you managing Teams Rooms, these remediations from Thomas Marcussen will help you deploy apps to the devices
How to Deploy Applications to Microsoft Teams Rooms (MTR) with Intune Using Remediation Scripts
If you’re hitting a brick wall with your Windows 11 deployment due to Safeguard holds, try this remediation from Nick Benton to give you clues as to what is blocking it
https://www.oddsandendpoints.co.uk/posts/windows-feature-updates-safeguards/
Did you know you can use DLP on macOS, sounds useful, here is a guide from Rahul Jindal
https://rahuljindalmyit.blogspot.com/2025/07/microsoft-purview-dlp-domain.html
Video Content
Now for the video content, or as I’m calling it this week, “Dean’s corner” as we have three videos from Dean Ellerby starting with the different options for managing local admins in Entra Joined devices
Dean’s second video looks at some new features added to Entra this month
And the third video shows how you can test with Windows 11 25H2
We have a new video and script from Chander Mani Pandey to bulk add users to Entra groups with PowerShell
I still think Applocker is the better semi-native option for app control, but it can be tricky to configure within Intune. This video from Bernardo Arocho Jr should help get you started
Microsoft Content
We have a lot of Microsoft content as well this week, starting with a look at the different enrollment methods for your Apple devices from Rishita Sarin
Did you know MDE gives you live access to remote devices via Live Response, including the ability to run scripts? Find out more here from Santosh Pargi
Some important changes for those managing Android devices which need strong integrity. Use compliance policies to find those devices which will be impacted by following this post from Wayne Bennett
Windows 11 24H2 now has updates for increased resilience with quick machine recovery and the death of the BSOD. Learn more here from Monika Sandhu
RDP Multipath is now GA for W365 and AVD as covered here by Rinku Dalwani
Another GA announcement, connected cache is GA and ready to optimize your WAN. Learn more here from Christopher Lin
LAPS is now supported on macOS, here are the official instructions
https://learn.microsoft.com/en-gb/intune/intune-service/enrollment/macos-laps
That’s it for this week, have a great weekend!