Author: Thomas Kurth

Security
Thomas Kurth

Defense in depth on an example: Office Macro Protection

Office Macros are one of the things every IT department tries to block, but will never really be able to 100% eliminate them. The reason is simple the documents with macros are sometimes produced by business apps, sent by business partners via e-mail or created by employees to improve business

Read More »
Windows 10
Thomas Kurth

Be prepared the Chromium based Edge will be released in January

Update 10.01.2020: The docs article is updated with better information about which devices are targeted. https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-blocker-toolkit#overview   Update 27.12.2019: The Microsoft Edge team informed me, that they will only make Edge available in specific scenarios. For more information read the comment of Sean. Thanks for this update and hopefully the official docs will

Read More »
Intune
Thomas Kurth

Updated Automatic Intune documentation

The Intune documentation script is now updated and includes the documentation of Application Configurations, PowerShell Scripts and a new documentation design. Additionally, I did various testing’s and fixed some smaller bugs. Download from Github Device Management Scripts / PowerShell Scripts In a Windows 10 deployment the PowerShell Script feature helps

Read More »
MDATP
Thomas Kurth

Configure Intune to deploy Microsoft Defender ATP for macOS

Since this summer Defender Advanced Threat Protection supports also macOS. Now I had time to review the functionality and share my experience in this blog. First of all, my starting position is a MacBook Air, which is enrolled to Microsoft Intune and is able to retrieve Configuration Profiles. The device

Read More »
Intune
Thomas Kurth

Cleanup duplicated devices in Intune

In nearly every environment I detect duplicated devices which make most of the reports incorrect and it makes it hard for the support staff to find the correct device of a user. This script basically will remove all devices which have another object with the same serialNumber and are not

Read More »
Powershell
Thomas Kurth

ConfigMgr with missing Boundaries is a content delivery nightmare

In bigger ConfigMgr environments it’s important to manage boundaries and boundary groups to optimize content flow. Especially when using caching technologies like Peer Cache or Delivery Optimization it’s important to have them correctly configured. One of the biggest problems I often see is, that there is no notice from the

Read More »
Best Practice
Thomas Kurth

Best Practice: Complete Naming Convention for ConfigMgr CB

A few weeks ago I posted and updated poster for the collection structure and naming conventions. because of the great feedback I got I have now added a new poster for objects like Task sequences, applications, packages and WIM files in the ConfigMgr Console. Additionally I have moved all posters

Read More »
Intune
Thomas Kurth

Extended Intune Documentation Script

Today I had time to extend my Intune Documentations script with new sections and release version 11 on Github. The script now documents the following parts of Intune: Configuration Policies Compliance Policies Device Enrollment Restrictions Terms and Conditions Applications (Only Assigned) Application Protection Policies AutoPilot Configuration Enrollment Page Configuration Apple

Read More »