IntuneA feature that was / is high on our wish list is the ability to block older OS versions. As from today this is publicly available in Intune. Like in Configuration Manager you are able to configure minimum and maximum versions of operating systems.

This way you are able to control exactly what kind of Operating Systems versions are supported for your environment. Whoho!

Read more

As from this weekend Microsoft enrolled the earlier announced new features in all Intune tenants. Like mentioned last week also Windows 10 Passport for Work support has been added. By default this great feature is enabled and configured with default settings from Microsoft, so be sure to have a look at the feature (Admin > Mobile Device Management > Windows > Passport for Work) and configure it for your needs so that you are compliant with your corporate security guidelines.

Passport for Work enabled by default

Passport for Work enabled by default

 

jan-win10-updates-00Next to smart lock support for Android, another update that came with the new Microsoft Intune release of January is Health Attestation Reports and the ability to check compliance based on the Health Attestation.

The compliance part I could not find yet but the reports are already there and usable to get a view if your Windows 10 devices are healthy or not.

Also the ability to fully wipe (factory reset) a Windows 10 device is new. Let’s have a look!

Read more

ms-passport-00Microsoft has added support for Microsoft Passport for Work as an alternative sign-in method for Windows 10 users.

If users of a Windows 10 device use Active Directory or Azure Active Directory to authenticate the password, smart card or virtual smart card can be replaced for Microsoft Password. As an Intune admin you are able to configure how Microsoft Passport is going to behave. Let’s have a look!

Read more

Android-logo
Mobile devices with Android are very popular but still a pain to really manage them in a descent way and keeping the device and the data on it secure. With the new version Android 6 (Marshmallow) which is currently rolled out, Google is securing the devices by default with device encryption. Which is a good thing if you ask me.

If you still have an Android device of an earlier version, you may also want to encrypt the device. A couple of tips if you are using Intune to manage Androids or if you are thinking of using Intune and starting to secure your devices.

Read more

During scheduled maintenance next week, Microsoft will release lots of new features to the Microsoft Intune service. A short summary with the features that are added.

  • Windows 10 support enhanced
    • Ability to configure a conditional access rule that require Windows 10 to be reported healthy via the Health Attestation Service.
    • Ability to configure Microsoft Password for Work policies
    • Ability to define apps in a VPN-Profile so that a VPN tunnel can be setup while starting the app or a VPN tunnel can be blocked for an app
    • ability to fully wipe a Windows 10 desktop that is managed via Intune
  • Support for Apple Volume Purchase Program (VPP) for Business
  • Improved support for Corporate Owned Devices
  • Integration of the Myapps portal
  • New policy settings for Android devices
  • Company Portal is improved.
    • for instance; ability to choose a mail app while trying to send diagnostic data.

Are you also looking forward to next week?

2016Like every year I would like to wish you and your family a healthy and successful 2016! I hope that all of your and your family’s whishes may come true. Also this year I would like to start this brand new year with looking back at the year we lived in yesterday. What a year it was!

Read more

xendesktop-000In my lab environment I am using the Citrix XenDesktop 7.x Connector to manage my Citrix farm. Since the release of the new System Center Configuration Manager 1511 I wanted to upgrade my environment, but I was unable to do so.

Due to a bug in the connector, the XenDesktop related collections are created with a wrong value of the CollectionType property. The Citrix Connector creates collections with the CollectionType property equals 0 (zero) instead of 2 for Device Collections. (User Collections have a CollectionType equals 1).

The Upgrade to Configuration Manager 1511 is failing due to the fact that the collections exist with the CollectionType equals zero. Let’s see how you are able to fix this in a lab environment.

Read more

ibiza01Earlier this month Microsoft announced the new Microsoft Intune functionality that have been released earlier this week. One of the new features is the ability to manage Mobile Application Management Policies from the new Azure Portal.

With the MAM policies you are able to prevent data leakage from the corporate apps that are managed but for now only for Apps that are managed without being enrolled in to Microsoft Intune. The MAM policies / Intune node in the Azure portal are currently in preview.

A quick sneak preview.

Read more

Screen Shot 2015-10-10 at 1.19.51 PMAs announced at Ignite earlier this year Microsoft is adding support for managing Mac OS X devices via Microsoft Intune during the upcoming service update. Yesterday Kieran Gupta explained the current features that are supported.

This blog will be about enrolling the device into the Microsoft Intune service, in later blogs we will have a look how to deploy settings and see what currently is supported.

Read more

msemsWhat to do when you are suffering from a jetlag after a great MVP Summit and MMS? Write a blog about a major update to Microsoft Intune that is arriving in a couple of weeks from now. Yesterday Brad Anderson and Dilip Radhakrishnan announced some major updates to Mobile Application Management in Intune. Microsoft announced that the some of the major software vendor embraced Intune and are making their apps manageable by Microsoft Intune, also some other Microsoft apps are added this week.

See a complete list of the apps here.

Read more