One of the most common requests I get when deploying Intune is that they want to deploy for instance a Certificate, VPN, WiFi or a specific app only to corporate owned devices and not personal(BYOD) devices. We have Dynamic groups in AzureAD that can solve this for us, however when I looked at the documentation
Technical preview 1710 of Configuration Manager is packed with new great improvements. Every time a new Technical Preview is released it is always a great time playing around with the new features that are available and testing them out. This time around there are many great new features long asked for like support for 512×512
During my session at Techdays Sweden I demoed the new Run Script feature both in Configuration Manager 1706 and the enhancements made in the Technical preview after and showed how a variable can be used. In the first demo I used the below Powershell script sample that will collect all SCCM Client log files in
After Ignite where Co-Management was announced, where we can manage a Windows 10 client both using SCCM on premise and using Intune and AzureAD, we can now test out this feature in Configuration Manager 1709 Technical Preview! While Co-Management is the biggest new feature in 1709TP, the VPN Profile creation wizard has gotten a whole
When deploying an Application using SCCM or Intune for that matter, the installation is run in System Context if you don’t select to run it as the user. I have answered this question I think once a day this week on Technet forum where the application fails when deployed using SCCM but works when tested
I wrote a blog post over at 4Sysops.com about how to use event forwarding to capture events from clients and then write it to SQL. I have been using this for years now and there are so many ways this can be used, Applocker – Which apps are blocked, Windows 10 projects – how do
With the new feature in Configuration Manager 1706 that makes it possible to launch Software center and show the correct application from a direct link in Software Center which is great! We can copy the link and email it to the user for instance. I have a customer that wanted to send out a mail
When chasing high-privileged accounts as they are a risk, this is a question I have seen many times. In the Security Compliance templates from Microsoft (even the latest for RS2) the setting “Access this computer from the network” is recommended to be set to “Administrators” and “Remote Desktop Users” which is a good recommendation! It
