In the last months we have been working very hard to be able to release the first edition of our new book called Microsoft 365 Security for IT Pros. Together with lead author Michael van Horenbeeck, Ammar Hasayen, Ahmed Nabil (all Microsoft MVPs) and Thomas Verwer we are currently covering the following subjects; Introduction to […]
READ MORERecently another pretty cool feature has been added to Microsoft Intune. Now you are able to pre-configure the Outlook app so that for instance the users go not have to enable the Contacts Sync anymore themselves. Besides some general configuration options like, the contact sync, focused inbox, notifications, external recipient mail tips, external images and […]
READ MOREIn my last blog I showed you the new feature that allows you to send all audit events to Log Analytics. It is nice that all events are send to Log Analytics, but if you don’t do anything with it, it is useless. When managing and working with cloud services like Microsoft Intune you want […]
READ MORESince iOS 11.3 we had an issue when using Intune MDM and Outlook, managed via App Protection Policies (MAM) together. In this scenario the Outlook app was not allowed to write to contacts to the native iOS Contacts app since the data was considered corporate data when setting viewing corporate documents in unmanaged apps was […]
READ MOREThe App Protection Policies in Microsoft Intune are used to protect corporate data in apps that have the Intune SDK integrated. During the last service update of Microsoft Intune some nice new features were added to the policy set. While accessing a by Microsoft Intune managed app, the device can be checked if for instance […]
READ MOREReleased this week in Intune is location-based compliance. In other words, based on your location your device is marked as compliant or not, based on the location you get access to services in Azure or Office 365 or not. A location can be based on the following IPv4 variables; IPv4 Range (eg. 192.168.1.0/24) IPv4 Gateway […]
READ MOREA couple of weeks ago I had a customer already using the lightweight MDM solution in Office 365, which is built on Microsoft Intune. The lightweight MDM is part of many Office 365 subscriptions and it allows you to control a bit more settings than you can for instance with Exchange ActiveSync Access Policies, for […]
READ MORELast year Microsoft was planning to mark devices that were not evaluated by a compliance policy as non-compliant. The default behavior is that if a device is not evaluated by a compliance policy that it is being marked as compliant and therefor the user has access to services controlled by Conditional Access in Azure AD, […]
READ MOREToday I noticed in a couple of Intune tenants that Microsoft is now supporting group-assigned enrollment restriction, with that you are also able to prioritize the restrictions. With this change Microsoft Intune now also supports the ability to not only allow or disallow Android but also allow or disallow Android for Work (Android Enterprise) as […]
READ MORENow that we have configured the connection between EMS and Jamf Pro we need to make sure that the macOS devices can also be registered to Azure AD. To be able to complete the scenario we need to do the following; configure compliance policies deploy the company portal app with Jamf Pro create a Jamf […]
READ MOREIn my last blog I introduced the new Jamf Pro integration with Microsoft EMS. In this blog I would like to dive into the configuration of the integration and show you the experience. Setting it up is pretty straightforward and easy. To be able to integrate the two services, we need to: configure an Azure […]
READ MORE