Eswar Koneti

MyApps and Conditional Access – Exclude with ease

Posted on January 26, 2023 by Eswar Koneti | 0 Comments | 162 Views

Azure Active Directory (Azure AD) Conditional Access is a powerful feature that allows administrators to control access to cloud applications based on specific conditions. These conditions can include factors such as location, device type, and network status. By using Conditional Access, administrators can ensure that only authorized users are able to access sensitive resources, and…

Efficiently Identify Co-Managed Devices: Techniques and Tools

Posted on January 17, 2023 by Eswar Koneti | 0 Comments | 257 Views

Co-management is a feature that allows organizations to manage their devices using both Microsoft Intune and System Center Configuration Manager (ConfigMgr). This enables organizations to take advantage of the latest security features and cloud capabilities, such as conditional access and device compliance policies, while also being able to manage certain client actions without the need…

Troubleshooting Azure MFA call to phone option missing (TwoWayVoiceMobile)

Posted on January 14, 2023 by Eswar Koneti | 0 Comments | 113 Views

Recently, while working on an office 365 hardening project, I came across an issue that was causing problems for many users in verifying the 2nd factor authentication (Azure MFA). During the 2nd factor authentication process, users were presented with the following screen. As you can see, the user has the option to verify their identity…

SCCM Client HTTP Error sending DAV request HTTP code 503 content download issue

Posted on November 14, 2022 by Eswar Koneti | 0 Comments | 605 Views

This is a quick blog post on an issue that I recently looked at regarding the client issue with content download from the distribution point. Clients in one specific boundary could not able to download the content from its assigned distribution point. Though the client was healthy, the inventory cycle is up to date but…

Intune manage write access to mobile storage and removable data drives

Posted on November 11, 2022 by Eswar Koneti | 0 Comments | 342 Views

I was recently working on an assignment to manage windows 10 devices using Microsoft Intune. One of the ask is to Block the write access to the mobile storage devices when the user plugs into the windows device and Allow write access to the removal data drives (thumb drives) if they are bitlocker protected. I…

How to migrate standalone MBAM to SCCM for bitlocker

Posted on November 10, 2022 by Eswar Koneti | 2 Comments | 1,054 Views

We all know that Microsoft BitLocker Administration and Monitoring (MBAM) is an administrative tool for managing BitLocker Drive Encryption for windows devices that are on-prem domain joined. MBAM mainstream support ended on July 2019 and is currently in extended support until April 2026. To know more about mainstream support and extended support, please read the…

Using Powershell to update Azure authentication method – phone number

Posted on October 16, 2022 by Eswar Koneti | 0 Comments | 1,246 Views

Azure AD Multi-Factor Authentication (MFA) works by requiring two or more authentication methods for a user to gain access to applications. Multi-factor authenticator in Azure AD can be set using different methods such as Microsoft Authenticator, Phone number, Email etc. One of the easiest MFA methods that doesn't require any user configuration and can be…

Investigating SCCM Client Policy Request and Communication Status with a Collection Specific Report

Posted on October 15, 2022 by Eswar Koneti | 14 Comments | 11,690 Views

Being as SCCM Configmgr administrator, your primary aspect is to maintain health of your sccm clients for application deployment,software updates,inventory etc. Questions often come up in forums ,email list asking for ,list of computers not contacted the server since X days (25) or how do I know the clients who’s policy request is old or…