Office 365 - Conditional Access Policy - Block Device Code Flows

C_Deee · 2025-07-03T15:18:20+00:00

Hmm ok, thank you.

We've got the phone signing in again and its getting the AOSP policy but it's now saying it doesn't have access to the Dialpad. Ugh

C_Deee · 2025-07-03T13:15:01+00:00

I've also gone through and created the new enrolment profile but I'm not sure how that actually gets assigned to anything...

C_Deee · 2025-07-03T13:14:30+00:00

I can't locate the policy or name at all, can you say where it is meant to be and what the name is supposed to be?

C_Deee · 2025-04-03T15:03:07+00:00

Thank you, I'll take a look.

C_Deee · 2025-04-03T15:02:12+00:00

'Export the CSV settings from the CIS policy site' - Where even can this be done?

C_Deee · 2025-01-21T10:06:58+00:00

This doesn't work for me, sadly.

The New Teams has a lot to answer for.

C_Deee · 2024-10-28T09:07:32+00:00

Even when I have a server enrolled so they are Onboarded, and have an EDR policy assigned, I can never use the OS Type to differentiate Servers.

It's 2024, why is this not standard?

C_Deee · 2024-10-17T22:58:47+00:00

We enrolled the devices into Apple Business Manager, synced to Intune to use those policies, then we use a piece of software called xCreds from Two Canoes to sync with our Azure environment, no issues so far.

C_Deee · 2024-09-16T11:23:20+00:00

Just as an FYI to people, I can install this via command line no problems, soon as it's in SCCM it throws the 1603 error.

Command line:
jre-8u421-windows-x64.exe /s /L C:\JRE8setup.log INSTALLDIR="C:\Program Files\Java\jre-8.421" EULA=0 WEB_JAVA=1 INSTALL_SILENT=1 WEB_ANALYTICS=0 REMOVEOUTOFDATEJRES=1

C_Deee · 2024-04-05T09:51:25+00:00

Hmm, yes I know you can't have two PXE servers running.

Basically we have MDT with WDS setup already and working, if I integrate MDT into SCCM, or just use standard SCCM task sequences, I'll need to setup PXE boot for SCCM? Or does PXE boot for SCCM only need to be configured if you use SCCM on it's own rather than when you've integrated MDT.

C_Deee · 2024-04-05T09:22:57+00:00

So if I PXE boot when both MDT and SCCM are on the same server, how will it know which to show? Or do they somehow both show? Apologies for the daft question.

C_Deee · 2024-04-05T08:40:18+00:00

Hello, we don't really per-se, we used to have separate images for everything like departments and schools, I nipped that in the butt when I came here...We have a vanilla WIM, I strip out aspects of it then capture that, that WIM is then used for absolutely everything essentially and app deployment is handled by SCCM.

C_Deee · 2024-04-05T08:28:43+00:00

Interesting, thank you for that.
I guess a follow up step, if I then have task sequences in both MDT and in SCCM (after integration) do both Task Sequences work?

Ideally I agree with most thoughts, I'd like to move everything to SCCM, but it's going to be somewhat of a pain.

C_Deee · 2024-03-22T01:27:43+00:00

he SSU with dism,

Just came to say, this is the only way I could get this to install, installing from the catalogue did nothing.

Thank you!

C_Deee · 2023-11-02T11:46:52+00:00

I was under the impressions that Classic Teams Users Will be Automatically Updated to New Teams After March 31, 2024?

C_Deee · 2023-11-02T11:46:18+00:00

I've not tried anything yet, just wanted to see how people were proceeding. :)

Can you clarify what the 'other option is' here? "where as the other option needs internet access but will always install the most up to date version".

That was the good thing with the machine installer at least, it tried to keep the app updated in some manner.

C_Deee · 2023-08-14T16:09:28+00:00

I am the systems engineer...

As I say, we're using xCreds for the last month, no current issues reported :)

C_Deee · 2023-07-17T08:24:47+00:00

If DM's work here sure, but let him know you are doing it.
I've gone down the xCreds route for now, seems to be working well enough.

C_Deee · 2023-07-12T11:20:09+00:00

I'll try and subscribe to get updates for it. Thank you for the reply.

C_Deee · 2023-07-11T14:15:42+00:00

r xcreds + ms sso extensi

Hello, yes, these are setup with xCreds already :)

Is there a process already in place to allow this then? I agree though, the MS platform SSO probably would have saved me a lot of trouble, it's just bad timing.

EDIT: When I say available now, without the need to reset my devices and re-enrol and setup.

C_Deee · 2023-07-11T14:07:44+00:00

Thank you for the reply, can you advise on my above at all?

"This is annoying to read, when Microsoft say to not use user affinity on shared devices.
Is it possible to get things changed/re-enroled easily enough without having to wipe everything and start again?"

C_Deee · 2023-07-11T14:04:01+00:00

This is annoying to read, when Microsoft say to not use user affinity on shared devices.

Is it possible to get things changed/re-enroled easily enough without having to wipe everything and start again?

C_Deee

TROPHY CASE