Author Archives: ncbrady

Technical preview 2104 get BitLocker recovery keys for a tenant-attached device

Microsoft have released Technical Preview 2104 and with it comes a new BitLocker Management feature. You can now get BitLocker recovery keys for a tenant-attached device from the Microsoft Endpoint Manager admin center. For example, a help desk technician who doesn’t have … Continue reading

Posted in 2104, BitLocker recovery via tenant attach | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 6 Enabling conditional access

Introduction This is part 6 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on enabling the compliance policies … Continue reading

Posted in Cloud Attach, Compliance, Conditional Access | Leave a comment

Prepare for HTTP-only client communication depreciation in ConfigMgr

Introduction Microsoft recently announced that HTTP only communication will be dropped from ConfigMgr in 2022 here. The advice is to enable a more secure communication method for the site either by enabling HTTPS or Enhanced HTTP. If you’d like to … Continue reading

Posted in PKI | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 5 Enabling compliance policies workload

Introduction This is part 5 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on enabling the compliance policies … Continue reading

Posted in 2010, Cloud Attach | Leave a comment

Gathering logs and sending an email when you need to reset Windows Autopilot – part 3

Introduction In a previous blog post I explained how you could use the SendGrid resource in Azure to send emails, and with a PowerShell script create an Intune app to give end users additional options when resetting their Windows Autopilot … Continue reading

Posted in AzureAD, httptrigger, troubleshooting, Windows AutoPilot | Leave a comment

Improvements to BitLocker support via cloud management gateway

Introduction Microsoft released Technical Preview 2102 and it’s got a bunch of new updates as usual, including some updates for BitLocker Management via the cloud management gateway. To get some ideas about how BitLocker Management via a CMG works please … Continue reading

Posted in BitLocker Management, CMG, TP2102 | 6 Comments

Cloud attach – Endpoint Managers silver lining – part 4 Enabling co-management

Introduction This is part 4 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on enabling co-management. This series … Continue reading

Posted in 2010, Cloud Attach | Leave a comment

Adding devices or users to an Azure AD group after Windows Autopilot is complete but only when the device is marked as Compliant

Introduction I’ve touched on this subject before where I used http triggers to add devices or users to an Azure AD group after Windows Autopilot was completed, however that solution did not check the compliance of the device prior to … Continue reading

Posted in Azure AD Connect, AzureAD, Compliance, httptrigger, Intune | Leave a comment

Fixing One or more Azure AD app secrets used by Cloud Services will expire soon

Introduction My Technical Preview lab (TP2101) had a message in the ConfigMgr console informing me that: “One or more Azure AD app secrets used by Cloud Services will expire soon. Renew to avoid service disruption.” After some quick research I … Continue reading

Posted in Renew Secret | Leave a comment

Required application deployments visible in Microsoft Endpoint Manager admin center

Introduction Microsoft recently released Technical Preview 2101, it’s the first technical preview this year and it’s packed with new features. One of those new features is related to Tenant Attach and we’ll take a look at that feature here. If … Continue reading

Posted in 2101, tenant attach | Leave a comment

Enrolling a Mac Book Pro (M1) into Jamf Pro

Introduction This is a short post to describe what I had to do to successfully enroll a brand new Apple Mac Book Pro (13-inch, M1, 2020) into Jamf. It involved some manual steps and I’m documenting it here so that … Continue reading

Posted in Apple, Big Sur, Jamf Pro, M1, Rosetta | Leave a comment

Technical Preview 2101 – Feature update in a task sequence

Introduction Microsoft just released Technical Preview 2101, it’s the first technical preview this year and it’s packed with new features. Let’s take a look at one of those new features and it is the ability to update Windows using feature … Continue reading

Posted in 2101, Feature updates in a task sequence | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 3 Creating a Cloud Management Gateway

Introduction This is part 3 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on creating a Cloud Management … Continue reading

Posted in 2010, AzureAD, CMG | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 2

Introduction This is part 2 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on preparing your environment for … Continue reading

Posted in AzureAD, BitLocker Management over CMG, Cloud Attach, osd via cmg boot media | Leave a comment

Windows Autopilot: Gathering logs and sending an email when resetting windows

Introduction I’ve posted two blog posts about this already, but to explain it thoroughly I’ve created a video to explain how to test and use this ability. Here are the blog posts: Gathering logs and sending an email when resetting … Continue reading

Posted in AzureAD, sendgrid, Windows 10 | Leave a comment