Category Archives: AzureAD

Cloud attach – Endpoint Managers silver lining – part 8 Enabling Tenant Attach

Introduction This is part 8 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on enabling the compliance policies … Continue reading

Posted in 2103, AzureAD, Cloud Attach, tenant attach | Leave a comment

Retire My PC – a self-service app to secure company data on old computers

Introduction By now we should all be familiar with Windows Autopilot and how it is used to provision new computers, as explained below in Microsoft’s diagram. For every new computer delivered via the Windows Autopilot process there’s usually an old … Continue reading

Posted in AzureAD, BitLocker, httptrigger, sendgrid | Leave a comment

A quick look at the “Retire MY PC” app

Introduction I tweeted about this recently and it gained a LOT of attention, so I thought I better do a video showing what this actually does. When your users get a new Windows Autopilot PC, their old computer will usually … Continue reading

Posted in 2103, AzureAD, BitLocker, BitLocker Management over CMG, httptrigger, sendgrid | Leave a comment

Gathering logs and sending an email when you need to reset Windows Autopilot – part 3

Introduction In a previous blog post I explained how you could use the SendGrid resource in Azure to send emails, and with a PowerShell script create an Intune app to give end users additional options when resetting their Windows Autopilot … Continue reading

Posted in AzureAD, httptrigger, troubleshooting, Windows AutoPilot | Leave a comment

Adding devices or users to an Azure AD group after Windows Autopilot is complete but only when the device is marked as Compliant

Introduction I’ve touched on this subject before where I used http triggers to add devices or users to an Azure AD group after Windows Autopilot was completed, however that solution did not check the compliance of the device prior to … Continue reading

Posted in Azure AD Connect, AzureAD, Compliance, httptrigger, Intune | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 3 Creating a Cloud Management Gateway

Introduction This is part 3 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on creating a Cloud Management … Continue reading

Posted in 2010, AzureAD, CMG | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 2

Introduction This is part 2 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on preparing your environment for … Continue reading

Posted in AzureAD, BitLocker Management over CMG, Cloud Attach, osd via cmg boot media | Leave a comment

Windows Autopilot: Gathering logs and sending an email when resetting windows

Introduction I’ve posted two blog posts about this already, but to explain it thoroughly I’ve created a video to explain how to test and use this ability. Here are the blog posts: Gathering logs and sending an email when resetting … Continue reading

Posted in AzureAD, sendgrid, Windows 10 | Leave a comment

Gathering logs and sending an email when you need to reset Windows Autopilot – part 2

Introduction In a previous blog post I explained how you could use the SendGrid resource in Azure to send emails, and with a PowerShell script create an Intune app to give end users additional options when resetting their Windows Autopilot … Continue reading

Posted in AzureAD, Intune, sendgrid, Windows 10 | Leave a comment

Gathering logs and sending an email when you need to reset Windows Autopilot

Introduction Windows Autopilot deployment profiles allow you to decide if the user is a local administrator or a standard user. With all the security concerns today, choosing an User account type of Standard as shown below is a logical choice, … Continue reading

Posted in AzureAD, company portal, Intune, PowerShell scripts, sendgrid | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 1

Microsoft released Windows Intune back in March 2011, this was their launch pad to get users into the cloud. This later evolved into Microsoft Intune and is now known as Microsoft Endpoint Manager. This cloud journey encompassed several new technologies … Continue reading

Posted in Azure AD Connect, Cloud Attach | Leave a comment

Adding devices to an Azure AD group after Windows Autopilot is complete – part 2

Introduction In part 1 you learned how to use Azure functions and a http trigger to add a device to an Azure Ad security group. In this part you’ll see how it all fits together on the client side after … Continue reading

Posted in AzureAD, httptrigger, Intune, Windows 10 AutoPilot | Leave a comment

Adding devices to an Azure AD group after Windows Autopilot is complete – part 1

Introduction I’ve come across various problems during Windows Autopilot causing OOBE to fail that could be solved if only we could decide the order of when things were installed, and to resolve this in a nice way we wanted to … Continue reading

Posted in AzureAD, httptrigger, Intune, Windows 10 AutoPilot | Leave a comment

How can I RDP to an Azure AD joined Windows 10 device ?

Introduction If you are using Azure AD, you can join Azure AD as part of the Windows 10 OOBE (from version 1703 and later), it’s easy to do, just provide your AzureAD credentials… and once it has completed OOBE your … Continue reading

Posted in AzureAD, RDP | 3 Comments