How to create IntuneWin file for Win32 app deployment

How to create IntuneWin file for Win32 app deployment

When you want to deploy any application using Intune, you have to choose from several deployment options available from Microsoft Endoint manager admin center. Line-of-business apps is used for MSI Installer applications. You can use Line-of-business app option for the deployment of a simple .msi file on end user’s devices. …

Read more

How to deploy .exe applications using Intune

How to deploy .exe applications using Intune

When you download an application from software vendor’s website. The application installer can be in the form of .msi file or .exe file. Intune provides different ways in which you can deploy the applications on end user devices. Deployment is MSI files using Intune can also be done in two …

Read more

How to deploy fonts using Intune

How to deploy fonts using Intune

Intune is really a powerful device management tool for any organization. You can setup and configure Intune easily and manage your company devices. There are In-built out of the box deployment methods available on Microsoft Endpoint manager admin center. For example, for Deployment of MSI using Intune, there is a …

Read more

How to add a Group tag to Autopilot Devices in Intune using Powershell

How to add a Group tag to Autopilot Devices in Intune using Powershell

Most of the organizations create a dynamic Azure AD group to include all autopilot devices using a Dynamic device membership query (device.devicePhysicalIDs -any (_ -contains "[ZTDID]")). This way you can automate the deployment of Autopilot profile, app deployment, Device configuration etc. to all devices using just one Dynamic Azure AD …

Read more

How to Implement Applocker using Intune

How to Implement Applocker using Intune

Applocker is a set of policies / rules to allow or deny apps from running on your windows device. Applocker helps to improve the overall security of all your devices in your organization by controlling the execution of applications, scripts, dll files, packages apps etc. What are the requirements for …

Read more

How to Import ADMX templates into Intune

How to Import ADMX files in Intune

Microsoft has made it easier to Import third-party ADMX and ADML files in Microsoft Endpoint Manager admin center. Now, you do not need to use custom device configuration profile and OMA-URI to ingest ADMX and configure application or device settings. You can simply download ADMX and ADML files for any …

Read more

How to deploy Zoom Desktop client with AutoUpdate Enabled using Microsoft Intune

How to deploy Zoom Desktop client with AutoUpdate Enabled using Microsoft Intune

Zoom desktop client can be installed and configured in bulk on Windows systems using one of below methods: Using MSI Installer. Active Directory administrative templates via GPO or Intune. Updating registry keys on windows machines manually. For mass deployment of zoom with pre-configured settings we will be using MSI Installer …

Read more

Exclude Files or Folders from Microsoft defender Antivirus Scan using Intune

Exclude Files or Folders from Microsoft 365 defender Antivirus Scan using Intune

You can exclude certain files, folders or Processes from scanning via Microsoft Defender Anti-virus. Exclusions will get applied to Schduled Scans, On-demand scans and always-on real-time protection and monitoring. Please note that Microsoft Defender Antivirus includes a lot of in-built automatic exclusions based on known operating system behaviours. In case …

Read more

How to configure Auto start of Azure Virtual Machine in Azure DevTest Lab

How to configure Auto start of Azure Virtual Machine in Azure DevTest Lab

Azure DevTest Lab is a service for easily creating, using, and managing infrastructure-as-a-service (IaaS) virtual machines (VMs) and platform-as-a-service (PaaS) environments in labs. Labs offer preconfigured bases and artifacts for creating VMs, and Azure Resource Manager (ARM) templates for creating environments like Azure Web Apps or SharePoint farms. As per …

Read more

How to rename a device in Intune

Rename Intune Device

You can easily rename a device which is enrolled in Intune. When you take this action, device name is changed In Intune and also device name is changed on that device as well. There are many use cases for this option, for example you have used autopilot on all your …

Read more

Block Office 365 apps on specific devices using Azure AD Conditional Access

Block Office365 Conditional Access Policy

I recently got a requirement where all the office 365 applications for example, Exchange Online / Outlook Client Email Access, Sharepoint Online, One Drive, Microsoft Teams, Microsoft Forms etc. both Online and Installed application access should be blocked from specific devices which were being used by few developers in the …

Read more

Connect-SPOService : Current site is not a tenant administration site

Connect-SPOService

I recently wanted to administer my sharepoint online sites using Powershell. I installed Sharepoint Online Management shell and then used the command Connect-SPOService. Connect-SPOService -url https://mylab000.sharepoint.com/ whereas the URL given in the end of the Command line is the URL of one of my Sharepoint online site. Error connect-sposervice : …

Read more

How to Fix CVE-2022-30190 vulnerability using Microsoft Intune

CVE-2022-30190

On Monday May 30, 2022, Microsoft issued CVE-2022-30190 regarding the Microsoft Support Diagnostic Tool (MSDT) in Windows vulnerability. A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code …

Read more

How to fix Error New-ExoPSSession: Create Powershell Session is failed using OAuth

Fix Error New-ExoPSSession: Create Powershell Session is failed using OAuth

When connecting to Exchange Online Powershell Module v2 using an administrator account, you may get an error message New-ExoPSSession: Create Powershell Session is failed using OAuth. Error Details: New-ExoPSSession : Create Powershell Session is failed using OAuthAt C:\Program Files\WindowsPowerShell\Modules\ExchangeOnlineManagement\2.0.5\netFramework\ExchangeOnlineManagement.psm1:475 char:30… PSSession = New-ExoPSSession -ExchangeEnvironmentName $ExchangeEnviro …~~~~~~~~~~~~~ CategoryInfo : NotSpecified: (:) …

Read more

Microsoft Intune Powershell Approval Required. The App requires your admin approval.

Recently deployed Windows Autopilot solution and to simplify the Autopilot Device registration experience, users are given the capability to register their devices themselves from the OOBE (Out of box experience) page by using the Get-WindowsAutopilotinfo -online command. Some of the organizations may not allow this approach and only want their …

Read more

Download from sharepoint, exchange online, onedrive is blocked even if the Device is Compliant

Download Blocked MCAS

You have created a Conditional Access (CA) Policy in which you have defined a session control for Conditional Access App control setting to blocks the downloads from Microsoft Online services e.g. Sharepoint, Teams, Exchange Online etc. In this policy, you have also excluded the Devices which are compliant by using …

Read more

Connect Office 365 App with Microsoft Cloud App Security (MCAS), Integrate AAD with MCAS, Block Downloads using MCAS and CA Policies

Office 365 app with MCAS

Overview In this article, we will look into the Initial setup of Microsoft Cloud App Security, connect Office 365 app connector and configure basic settings on the Portal. We will create policies to block downloads and then block cut, copy, paste and print while using Microsoft Online applications via browser …

Read more

How to block Cut, Copy, Paste and Print from an unmanaged device using Microsoft Cloud App Security (MCAS)

MCAS Cut Copy Paste Block

Overview Its recommended to block cut, copy, paste and print of corporate data from an unmanaged device while using Microsoft 365 / Office 365 applications, e.g. Microsoft Teams, Sharepoint, Onedrive, Exchange Online etc. We are categorizing an unmanaged device as Microsoft Intune Non-Compliant device. Using a combination of Conditional Access …

Read more

How to Deploy / Install ManageEngine Desktop Central Agent on Widows 11 using Microsoft Intune

Deploy ManageEngine Desktop Central Agent

ManageEngine Desktop Central Agent is required for managing client PC’s from Desktop Central Agent. Its a lightweight software which can be deployed on the client’s PC using different methods. If you are using On-Premise Active Directory, then you can use GPO and deploy it using a startup script or if …

Read more

This feature is not supported.Contact your system administrator with the error code 80180014

FeaturedImage_80180014

When you have configured Microsoft Intune as per your organization requirements and try to Azure AD Join a Windows 10 device you get a pop-up message saying “Something went wrong.” with the error message “This feature is not supported.Contact your system administrator with the error code 80180014“. You may get …

Read more

How to setup Microsoft Intune (MAM and MDM Configuration) – Step by Step Guide

Microsoft Intune Setup

What is Microsoft Intune ? Microsoft Intune which was previously known as Windows Intune is a part of Microsoft Cloud based Mobile device Management (MDM), Mobile Application Management (MAM) and Windows 10 PC Management Solution. No On-Premise Infrastructure is required for using this service from Microsoft and it can be easily managed using Microsoft Endpoint …

Read more