Category Archives: AzureAD

Encrypting devices during Windows Autopilot provisioning (WhiteGlove) – Part 3

Introduction Note: This method is not officially supported by Microsoft. That said, this speeds up compliance and more importantly increases security as the device is already encrypted (part 1) before the user logs on (part 2). BitLocker recovery key changes … Continue reading

Posted in AzureAD, BitLocker, functionapp, httptrigger, Intune, win32 app, Windows AutoPilot | Leave a comment

Migrate to the cloud – Part 3. Troubleshooting

Introduction This blog series is comprised of 3 parts. In part 1 you reviewed a video of the solution and then carried out the initial steps to set everything up. In part 2 you saw how you could modify files, … Continue reading

Posted in Auto MDM enrollment, Azure AD, AzureAD, Intune, sendgrid | Leave a comment

Migrate to the cloud – Part 2. Customization

Introduction This blog series is comprised of 3 parts. In part 1 you reviewed a video of the solution and then carried out the initial steps to set everything up. In this part, you’ll see how you can modify files, … Continue reading

Posted in Auto MDM enrollment, Azure AD, AzureAD, Intune | Leave a comment

How can I renew an expired secret in an Azure Function app

Introduction If you’ve been looking at my guides, you’ll know that I’ve used httptriggers in functionapps to add functionality to Windows Autopilot, below are some examples of that. Adding devices to an Azure AD group after Windows Autopilot is complete – part … Continue reading

Posted in AzureAD, functionapp, httptrigger, secret | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 8 Enabling Tenant Attach

Introduction This is part 8 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on enabling the compliance policies … Continue reading

Posted in 2103, AzureAD, Cloud Attach, tenant attach | Leave a comment

Retire My PC – a self-service app to secure company data on old computers

Introduction By now we should all be familiar with Windows Autopilot and how it is used to provision new computers, as explained below in Microsoft’s diagram. For every new computer delivered via the Windows Autopilot process there’s usually an old … Continue reading

Posted in AzureAD, BitLocker, httptrigger, sendgrid | Leave a comment

A quick look at the “Retire MY PC” app

Introduction I tweeted about this recently and it gained a LOT of attention, so I thought I better do a video showing what this actually does. When your users get a new Windows Autopilot PC, their old computer will usually … Continue reading

Posted in 2103, AzureAD, BitLocker, BitLocker Management over CMG, httptrigger, sendgrid | Leave a comment

Gathering logs and sending an email when you need to reset Windows Autopilot – part 3

Introduction In a previous blog post I explained how you could use the SendGrid resource in Azure to send emails, and with a PowerShell script create an Intune app to give end users additional options when resetting their Windows Autopilot … Continue reading

Posted in AzureAD, httptrigger, troubleshooting, Windows AutoPilot | Leave a comment

Adding devices or users to an Azure AD group after Windows Autopilot is complete but only when the device is marked as Compliant

Introduction I’ve touched on this subject before where I used http triggers to add devices or users to an Azure AD group after Windows Autopilot was completed, however that solution did not check the compliance of the device prior to … Continue reading

Posted in Azure AD Connect, AzureAD, Compliance, httptrigger, Intune | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 3 Creating a Cloud Management Gateway

Introduction This is part 3 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on creating a Cloud Management … Continue reading

Posted in 2010, AzureAD, CMG | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 2

Introduction This is part 2 in a series of guides about cloud attach in Microsoft Endpoint Manager, with the aim of getting you up and running with all things cloud attach. This part will focus on preparing your environment for … Continue reading

Posted in AzureAD, BitLocker Management over CMG, Cloud Attach, osd via cmg boot media | Leave a comment

Windows Autopilot: Gathering logs and sending an email when resetting windows

Introduction I’ve posted two blog posts about this already, but to explain it thoroughly I’ve created a video to explain how to test and use this ability. Here are the blog posts: Gathering logs and sending an email when resetting … Continue reading

Posted in AzureAD, sendgrid, Windows 10 | Leave a comment

Gathering logs and sending an email when you need to reset Windows Autopilot – part 2

Introduction In a previous blog post I explained how you could use the SendGrid resource in Azure to send emails, and with a PowerShell script create an Intune app to give end users additional options when resetting their Windows Autopilot … Continue reading

Posted in AzureAD, Intune, sendgrid, Windows 10 | Leave a comment

Gathering logs and sending an email when you need to reset Windows Autopilot

Introduction Windows Autopilot deployment profiles allow you to decide if the user is a local administrator or a standard user. With all the security concerns today, choosing an User account type of Standard as shown below is a logical choice, … Continue reading

Posted in AzureAD, company portal, Intune, PowerShell scripts, sendgrid | Leave a comment

Cloud attach – Endpoint Managers silver lining – part 1

Microsoft released Windows Intune back in March 2011, this was their launch pad to get users into the cloud. This later evolved into Microsoft Intune and is now known as Microsoft Endpoint Manager. This cloud journey encompassed several new technologies … Continue reading

Posted in Azure AD Connect, Cloud Attach | Leave a comment