In this post I will be showing the details on how to keep a track on who modified WUfB Intune policies using email alert. These covers modifying any Windows Update Ring, Quality update policy to expedite the updates and Feature update policies. This is just not related to modifying the policy but for creating the update policies as well.
(more…)
This is a step by step guide to configure Windows Autopilot configuration. I will be going through each steps to configure the autopilot from scratch and make it up and running to deploy Operating System using MEM utilizing Intune.
(more…)In this post I will show you multiple methods on how to assign O365 license to users. We can assign the license using various portals such as “Microsoft 365 admin center”, “Azure Portal”, “Microsoft Endpoint Manager admin centre”. For repetitive activity, I will show you how to assign O365 license to users using PowerShell command which requires AzureAD module to be installed. Though we can use MSOnline Module as well but that is soon going to be depreciated, hence recommended module to install is AzureAD. This is not just limited to Office 365 license but any other kind of license which has been assigned to you.
(more…)In this post I will be covering the toping on how to verify Conditional Access Policies using Report Only Mode. It is always recommended to verify CA Policies before applying it in production. Report only mode comes as a handy tool to simulate the behaviour to check and see what could have happened if policy would have applied.
(more…)
In this post I will cover the topic on how to restrict the access to Azure Portal from external network using Conditional Access Policy. When we say restricting the access from external network – means we are talking about location / IP address range. If organization is having Active Directory installed, they already have Active Directory sites and services with all AD sites specified. These AD Sites (can be called location) will be having list of IP subnets defined for each. Based upon our requirement we can add create the Named Locations through Conditional Access settings and can specify the IP address subnets and can mark them as trusted location.
(more…)
In this post I will be discussing on how to Block access to Office 365 access when Windows is not patched. The purpose of this post is to implement a solution so as if any Windows 10 workstation device is not patched for last couple of months (let’s say 6 months), device should not be able to access Office 365 or we can say let’s block the access to Office 365 applications such as word, excel, PowerPoint etc.
(more…)
