Azure Active Directory – Page 2 – All about Microsoft Endpoint Manager

Microsoft Intune – zscaler client connector connectivity issues cant reach login.microsoftonline.com

Posted on July 23, 2021 by Eswar Koneti | 0 Comments | 4,661 Views

Introduction: I was recently involved to setup Microsoft 365 POC (zero trust) and manage the endpoints such as windows, iOS, android using Microsoft Endpoint Manager (Intune). The windows devices were set up using autopilot and are purely azure AD joined with Bitlocker keys in the cloud. To secure the internet web traffic and to enforce…

Get a list of devices based on iOS enrolment type – dynamic groups in Azure Active Directory

Posted on November 28, 2020 by Eswar Koneti | 2 Comments | 6,164 Views

A year ago, Apple announced a new method of iOS/iPad device enrolment which is called User Enrollment. This enrolment method is available in iOS 13 and macOS 10.15 Catalina and later OS. with user enrollment, we can use federated authentication to link Apple Business Manager to your instance of Microsoft Azure Active Directory (Azure AD). As…

Monitor Azure AD Enterprise applications using powershell script

Posted on September 19, 2020 by Eswar Koneti | 2 Comments | 6,960 Views

Azure Active Directory (Azure AD) is the future and is Microsoft’s cloud-based identity and access management service, which helps your users to sign in and access resources. Azure AD contains a large number of enterprise applications such as the gallery, on-premise, custom-developed, and non-gallery applications. For more information about Application Management in Azure AD, please…

We couldn’t sign you in to the Microsoft whiteboard using work or school account error code 80070164

Posted on April 29, 2020 by Eswar Koneti | 3 Comments | 10,376 Views

Microsoft whiteboard is out almost 2 years that is available to users on Windows 10 which lets users to type, draw, erase and attach notes, images, and beyond what you cannot do it on a physical whiteboard. Following are some of the activities that you can do with whiteboard: Running effective meetings Brainstorming Team sprint…

How to add users to local administrators group on Azure AD joined devices ?

Posted on October 29, 2019 by Eswar Koneti | 2 Comments | 18,913 Views

Windows Autopilot is a collection of technologies used to set up and pre-configure new devices, getting them ready for productive use. You can also use Windows Autopilot to reset, repurpose and recover devices. This solution enables an IT department to achieve the above with little to no infrastructure to manage, with a process that's easy…

Use powershell to create Azure AD dynamic security group for Azure AD joined (AADJ) devices only

Posted on October 2, 2019 by Eswar Koneti | 5 Comments | 9,653 Views

Recently, we had a requirement from customer, that they wanted to deploy applications /apply device configurations etc. from Intune to Azure AD Joined devices ONLY but not other devices like BYOD intune enrolled devices. (MAM/MDM) With intune, you can target apps ,device configurations, profiles ,deployments to both user groups OR device groups but not…

How to create device based Azure AD group with OSType and OSVersion using powershell for intune

Posted on September 14, 2019 by Eswar Koneti | 1 Comment | 9,033 Views

Friend of mine had asked for help to create device based dynamic group with deviceOSType=iOS ,and deviceOSversion less than 12.4.1. The reason for this group was to limit anything below iOS 12.4.1 for iPhone devices and MDM managed devices only to have a collection. So that ,we can exclude them from VPN to restrict users…

Unable to see the intune enrolled windows 10 device in Azure portal – You can’t get there from here

Posted on July 9, 2019 by Eswar Koneti | 0 Comments | 15,183 Views

Problem: Recently ,i was looking at customer intune related issue (POC) . Customer had setup conditional access policies (device to be compliant or hybrid Azure AD join) ,intune device compliance policies and also configured Mobility (MDM and MAM). Customer is purely using on-prem domain join and no hybrid azure AD join and no SCCM. They…