WPNinjas HeaderWPNinjas Header

Tag: Azure AD

Azure AD
Thomas Kurth

Azure AD Conditional Access “NotApplied”

After the implementation of Conditional Access policies, it’s important to monitor the coverage status to check if all sign-ins are covered by a conditional access rule. But it’s important to know that it is highly likely that the coverage in a normal environment will never be 100%. This blog is

Read More »
Azure AD
Thomas Kurth

Azure AD Device based Authentication

When creating solutions in Endpoint Management it’s often the case that you need to execute scripts in SYSTEM context and submit data to a webservice. As long the devices are Active Directory Joined or Azure Active Directory Hybrid Joined this is not an issue as the computer itself has an

Read More »
Azure AD
Thomas Kurth

Automatic Intune Documentation evolves to Automatic Microsoft 365 Documentation

One of the biggest pain points of many companies is the documentation of their infrastructure. With the fast changing products/features it’s more important to have an accurate documentation. The Automatic Microsoft 365 Documentation is the successor of the Automatic Intune Documentation which provides many advantages. It’s no longer a simple

Read More »
Azure AD
Thomas Kurth

Dsregcmd for PowerShell and .NET

I often write script or small applications for devices. Many times I required the AzureAD device ID which can be obtained from registry or by parsing the dsregcmd output. But parsing console output is not really reliable when the output changes for example. Now, I found a solution by using the

Read More »
Azure AD
Thomas Kurth

Automatic Azure AD Conditional Access Documentation

Creating configuration documentations is always hassle. Therefore, I extended the Intune documentation with a new option to also document Azure AD Conditional Access policies. The new function Invoke-ConditionalAccessDocumentation will document: Azure AD Conditional Access Policies Translate referenced id’s to real object names (users, groups, roles and applications) Important: The Conditional

Read More »
Azure AD
Thomas Kurth

Azure AD Guest Account -Governance and Cleanup

One of the biggest challenges with guest/external accounts in Azure AD is to build a governance process to keep your directory clean. Many companies do not like to have old and unused guest accounts forever in their Azure AD. Without a review functionality and information who has invited them this

Read More »
SCCM
Thomas Kurth

Monitor Windows Hello and AAD Hybrid join enrollment with MEMCM

Dsregcmd.exe is one of the most important troubleshooting tools on a Windows device when working with Azure AD Hybrid Join or Windows Hello. But this tool is only available as a command line tool and not in PowerShell. I wrote a translation function to change that. The Get-DsRegStatus function can

Read More »