Workplace Ninja's Blog
Our goal is to share knowledge with the community and to make Workplace Management with Microsoft Technologies simpler for everybody. We wish you happy reading!
Featured Posts
Build better pilot rings for Updates with MEMCM
When implementing a update concept there is always one important question open: How do I select devices for the pilot/test phase? My customers most often answer this with one of the following solutions: Manually selecting the devices and check from time to time if there are still enough devices in
Dsregcmd for PowerShell and .NET
I often write script or small applications for devices. Many times I required the AzureAD device ID which can be obtained from registry or by parsing the dsregcmd output. But parsing console output is not really reliable when the output changes for example. Now, I found a solution by using the
Latest Posts
Configure Windows 10 Auditing with Intune
Windows 10 auditing needs to be configured to comply with the Microsoft Security Baseline. In my opinion this is an important part but completely missed in the Intune UI. But happily there is the Policy CSP which allows us to configure it. The CSP is documented here https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-audit. To simplify
Defense in depth on an example: Office Macro Protection
Office Macros are one of the things every IT department tries to block, but will never really be able to 100% eliminate them. The reason is simple the documents with macros are sometimes produced by business apps, sent by business partners via e-mail or created by employees to improve business
Password less with bio-metric security key from eWBM Goldengate
I’m using a FIDO security key from Yubico since a year for some of my accounts. Now, I had the chance to get a eWBM Goldengate Security Key and test it. The rollout looks the same as for my Yubico keys, but there is one feature which is in my
Be prepared the Chromium based Edge will be released in January
Update 10.01.2020: The docs article is updated with better information about which devices are targeted. https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-blocker-toolkit#overview Update 27.12.2019: The Microsoft Edge team informed me, that they will only make Edge available in specific scenarios. For more information read the comment of Sean. Thanks for this update and hopefully the official docs will
Updated Automatic Intune documentation
The Intune documentation script is now updated and includes the documentation of Application Configurations, PowerShell Scripts and a new documentation design. Additionally, I did various testing’s and fixed some smaller bugs. Download from Github Device Management Scripts / PowerShell Scripts In a Windows 10 deployment the PowerShell Script feature helps
Configure Intune to deploy Microsoft Defender ATP for macOS
Since this summer Defender Advanced Threat Protection supports also macOS. Now I had time to review the functionality and share my experience in this blog. First of all, my starting position is a MacBook Air, which is enrolled to Microsoft Intune and is able to retrieve Configuration Profiles. The device