Welcome to this weeks newsletter, another Tech Takeoff week and video heavy so I would grab a set of headphones for this one. Tomorrow I am off to MVP summit at Microsoft HQ to catch up with MVPs and Microsoft staff for a week of sessions and evening events. Next weeks newsletter will probably be later due to the time difference.
Community Content
We start this week with a look at the Secure Boot Certificate update, in this case digging into the High Confidence Database for those devices which will securely update. Learn more and how to grab it in this post from Trevor Jones
Viewing the Secure Boot High Confidence Database with PowerShell
Business Premium is incredible value and who better to look at just what is included than Lewis Barry
https://conditionalaccess.uk/blog/whats-included-in-m365-business-premium/
Ever wondered what is assigned to a group? Try this new tool from Dustin Gullett
Stay Tunedin: Why I Built My Own Intune Assignment Dashboard
If you need to extend the size of your event logs, check out this remediation from Nick Benton
https://www.oddsandendpoints.co.uk/posts/windows-event-log-size/
Aresh Sarkari has released a Terraform script to build a whole enterprise-ready AVD environment here
If you are using multi-app kiosk with assigned access, this post from Peter van der Woude runs through your options for the login account
Understanding the profile assignment of multi-app kiosk mode on Windows 11
Whilst a lot of people are focusing on the wipe action in Intune, you really need to be looking at how to protect your elevated roles instead, you want to stop attackers getting in, not block them from doing specific things from within the tenant. This post from Jon Towles looks at securing your Entra roles
How to Secure Access to Entra Roles with Conditional Access and Privileged Identity Management
Always a popular subject at the moment, if you are concerned about secure boot certificates in your organization, try this post from Steffen Schwerdtfeger
https://www.manage-everything.cloud/post/secure-boot-certificate-update-playbook-for-intune-admins
Video Content
Now for the video content, starting with a look at the best way to deploy feature updates in Intune from Manish Bangia
This video from Chander Mani Pandey runs through how to create a policy and enable multi-admin approval
We have the latest Intune for MSPS community meetup with a bit of everything Graph and Automation featuring Andy Rostad, Dave Randall, Me and Erik Loef
Learn how to deploy Defender for Endpoint onto your macOS devices using Intune in this video from Steve Weiner
And now for the Tech Takeoff for this week, starting with a look at what’s new in Intune and why to shift to cloud native from Maggie Dakeva and Danny Guillory
This video from Cassidy Fein covers your Windows update reporting with Windows Autopatch
A lot of updates to the user experience on Windows 365 including Windows 365 boot updates, Teams optimizations and more from Elina Luthra and Saumyaa Krishnan
One I imagine we will keep hearing more and more about, Intune agents. This video from Juanita Baptiste digs in further and looks at the agents available now
Staying on the AI/Security Copilot theme, look at what else it has to offer here in this AMA from D.C Tardy, Lavanya Lakshman, Ankur Goyal, Amit Ghodke and Roshan Kommusetty
For those managing macOS devices, this video from Iris Yuning Ye and Neil Johnson is well worth watching
Next, Nicole Zhao looks at Enterprise App Management for deploying and patching your apps including how it works, the architecture behind and demos
Always a tricky one, Mahi Choudhary, Jordan Geurten and Carlos Mayol Berral discuss App control for business
Learn exactly what is happening when Intune does it’s magic after making any changes in the portal through to the device updating here (or why is Intune slow) from Albert Cabello
This video from Andrej Radinger looks at migrating your VDI infrastructure to Windows 365 via the new API
Microsoft Content
Time for the Microsoft content, starting with the official best practice guidance for securing your environment following the Stryker incident from the Intune Support Team
Let your agents work in a protected environment using Windows 365 for agents as covered here by Joydeep Mukherjee
Windows 365 frontline shared mode is now available in Norway East. Learn more in this post from Vidya Iyer
The windows app for Android and iOS now includes Teams optimizations to further improve your VDI experience on AVD and Windows 365. Find out more here with Pavithra T
That’s all for this week, have a great weekend!