MMS is one of my favorite conferences of the year! The reason is the community feeling I have never been to an event where I have had the pleasure to be part of so many great discussions and to me that is worth a lot! Microsoft also adds many speakers from many different product groups
A quick post on how to check Bitlocker compliance where all computers with “Hardware” encryption is used will also be marked as non compliant which can be useful after the recent security advisory for SSD’s with Hardware encryption: https://redmondmag.com/articles/2018/11/06/microsoft-ssd-security-advisory.aspx?fbclid=IwAR21wX_6S32eyqdRXDeoNqdjb6DZw8UPNXT_d2FQ8pdH52Jop9lvx7g6Tko And the Security advisory from Microsoft on the topic. https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180028 This started with a discussion with
The great feeling when you get an email from Uservoice that your uservoice item has been implemented in the latest Configuration Manager Technical Preview 1810.2!! This is one thing I always change, the Startup of the SCCM Remote Tools service on the clients to Automatic instead of Automatic(delayed). That is one of the biggest complaints
One of the biggest limitations in Microsoft Intune has been that we can only deploy single-file .MSI’s and not .EXE installers. With the release of Win32app install support (in Preview) that limitation is now gone! Not only does it support legacy setups like .exe files for instance we can also use it for advanced .MSI
Today version 2 of the “Onevinn Windows 10 Upgrade tools” was released and there are many new great features in there created by my colleague Johan Schrewelius. It can be downloaded here: https://gallery.technet.microsoft.com/Windows-10-Upgrade-Tools-431094ca More information on what TSlaunch is can be found here: https://ccmexec.com/2018/05/windows-10-upgradeservicing-tools-demoed-at-mms-2018/ I will try to cover at least some of the new features starting
In my work to get Google Chrome being a good citizen in an enterprise environment it is not time to look at roaming the Chrome settings. Chrome has support for roaming profile data and it can be enabled using a Group Policy which is great. Is it perfect, no it doesn’t roam Extensions for example.
I am writing this post because I am lazy and already have Configuration Manager in my lab. But it is useful in other scenarios as well to get the latest version of Windows 10 on a computer before testing AzureAD Join/Autopilot for example. When I am testing more and more scenarios with AzureAD Join and
Google Chrome has a great set of Group Policy settings we can configure which makes it possible for us to even use Chrome in environments with high-security requirements, and we can also do this with Intune as it supports ADMX ingestion and ADMX backed policies! Starting with Google Chrome version 69 and later it supports