Browsing: Enterprise Mobility

If an organization uses Jamf Pro to manage Mac computers, they can use Microsoft Intune compliance policies with Azure Active Directory conditional access to ensure that devices in your organization are compliant. This blogpost will explain how to setup the basic configuration if you need to integrate Jamf Pro with Microsoft Intune.To connect Microsoft Intune with Jamf Pro we need to complete the following 3 steps:Create a new application in Azure ADEnable Intune to integrate with Jamf ProConfigure Conditional Access in Jamf ProStep 1: Create an application in Azure Active DirectoryIn the Azure Portal, navigate to Azure Active Directory >…

Next week I’ll be speaking at the Techorama conference. Techorama is a yearly international technology conference which takes place at Kinepolis Antwerp. This conference is a healthy mix between developers, IT Professionals, Data Professionals and SharePoint professionals. The key concept of the conference: Deep Knowledge, so expect less slides, and more demos!The speaker list is pretty awesome, and it’s perfect mix with lots of international top speakers, Microsoft MVP’s and Community Experts! Check out the full speaker list: https://techorama.be/speakers/I have the great pleasure myself to be delivering two sessions this year. My good friend and fellow MVP, Ronny de Jong…

Microsoft has released a few new Administrator roles in Azure AD, one of them is the Authentication Administrator, that allows delegation of MFA reset in Azure Active Directory without building custom solutions.The Authentication Administrator roles is allowed to view, set and reset authentication method information for any non-admin user.Authentication Administrators can require users to re-register against existing non-password credential (for example, MFA or FIDO) and revoke “remember MFA on the device”, which prompts for MFA on the next sign-in.More information: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-roles#authentication-administrator/Enjoy+Ronni Pedersen

If you are deploying a Cloud Management Gateway (CMG) in System Center Configuration Manager, and you are using a newly created Azure Subscription, you might see the following error when deploying the CMG:Resource Manager – Failed to list keys for storage <name of cmg> with status code: NotFoundIf you then navigate to the Activity log on the Resource Group for the subscription, you can see that the Microsoft.ClassicCompute resource provider is missing.This is a recent change (to my knowledge) that will affect all new Azure Subscriptions as the Azure Team has decided that the Microsoft.ClassicCompute will be disabled on all…

The Nordic Infrastructure Conference (NIC) in Oslo, Norway is one of my favorite conferences of the year! NIC is great a collaboration and learning event offering global best in class content and structure. The key concept of the conference: Less slides, more demos!The speaker list is pretty awesome, and it’s perfect mix with lots of international top speakers, Microsoft MVP’s and Community Experts!Check out the full speaker list: https://www.nicconf.com/speakers-at-nic19/I have the great pleasure myself to be delivering two sessions this year. The first one is about Protecting identities and data in the Microsoft cloud, using built-in Microsoft 365 technologies like…

Update: This feature still requires Global Admin rights! You can change and configure all the settings as “Intune Administrator” but you can’t click “Save”… This is by design!As a consultant I do a lot of Intune and Windows Autopilot projects for both small and large enterprise customers. Most of the small customers will most likely just provide me with Global Admin rights, but normally that’s not the case for large customers.If I’m there to work with Microsoft Intune, then the Intune Administrator role should be just fine. But one of the first steps we need to do, is to enable…

Just came back from an amazing week at Microsoft Campus in Redmond with 25 fellow SCCM & Intune MVP’s from all over the world. A special thanks to everyone from the Product Group that took time out of their busy calendar to spend time with us and listen to our feedback.Looking forward to come back again in March for the Global MVP Summit 2019./Ronni

Two weeks ago, at Microsoft Ignite in Orlando, Microsoft announced the public preview of Password-less phone sign-in. We enabled this feature right after the session in our company tenant, and we have all been super excited about this cool way of signing in. One big step closer to a more secure and password less world. This blog post will explain how to configure password-less phone sign-in and how to enable this feature for your users. Please note that this is still a pre-release feature. Prepare the Tenant First we need to install the latest version the of Azure Active Directory…

Yesterday I started a new Windows 10 1803 project with a customer. They want to start deploying Windows 10 1803 to new machines and also start upgrade existing Windows 10 clients to 1803. To upgrade existing clients, I’ve created a Task Sequence template that I’ve been using at many different customers in previous projects (including 1803). But yesterday I got the following error displayed in a Command Prompt during the deployment: winpeshl.ini file is present, but no commands were successfully launched. This could be caused by incorrect formatting or an invalid executable name. Please consult the documentation for more information.…

IntroductionThe Cloud Management Gateway (CMG) feature was first introduced in version 1610 as a pre-release feature. Last week Microsoft released 1802, and this feature is no longer a pre-release feature. We also now have the option to create the CMG using Azure Resource Manager (ARM).In this blogpost I will share some learnings that I got from migrating the first customer from an existing (Classic) CMG deployment to the new modern (ARM) deployment.Pre-Migration TasksThere is really not that much that needs to be prepared, but you should spend the 15-20 minutes it takes to read the following documentation before you start:Plan…