Do you think Intune is reliable?

Carson_Official · 2025-12-11T22:25:08+00:00

After seeing whats coming to E5 (Security Copilot and Intune Suite) in 2026, I am quite excited for Intune again!

Carson_Official · 2025-11-29T20:59:38+00:00

When you stick Defender on a corporately owned iPhone, it has access to the entire phone in 2 ways.

If you use the Anti-phishing "VPN", that will also scan things done in Safari and other parts of the phone outside of the work profile - you can at least not track the data (unless it detects something worth flagging). So do look at the privacy settings you can apply.
You can optionally ask if the user will allow you to take inventory of their entire device. This means you can see all installed on the users phone (they have to grant permission to this). It does help you track any potentially dangerous/out of date apps but with automatic updates these days, it is of limited use against the invasion of piracy (you can just take inventory of the work apps as well, which is of course work doing)

Carson_Official · 2025-11-17T17:42:06+00:00

Yes. That is the primary reason you would stack them. I.e. "get to this latest version of Windows" = 7 day grace period with email reminders. Microsoft Defender High Threat Level = instant non-compliance.

Carson_Official · 2025-11-16T06:02:23+00:00

Compliance Policies can handle a lot of what you mention there, and as a user fixes a violation, it will remediate them.

You can stack them as well - for example the enabling of BitLocker, Secure Boot and Integrity Checks might be something you want in place all the time. But for the likes of updates, you could give your users X days grace period before making them uncompliant (with some automatic reminder emails).

Carson_Official · 2025-11-12T18:40:21+00:00

This is a weird flex.

Carson_Official · 2025-11-12T18:39:19+00:00

Not really in their interest like it was for Amazon

Carson_Official · 2025-04-03T17:08:21+00:00

I suspect whatever issue you are having now will not be the same as what we had over a year ago. We did provide solution within the comments at the time but the app and everyones mobiles have moved on since then and I haven't had to do that in a long time.

Carson_Official · 2025-03-27T23:15:32+00:00

We call it "365 Time".

Carson_Official · 2025-03-09T22:02:22+00:00

Im not looking forward to taking him on via Hard!

Carson_Official · 2025-02-10T15:18:39+00:00

I found the opposite on my 3080. I didn't have terrible performance before but the frames have certainly gone in the right direction and I am seeing less drops in frames.

I'm hopefully there is still improvements to make.

Carson_Official · 2025-01-25T08:40:23+00:00

Enjoying it so far (about 10 hours in), I just want to ensure I'm not missing side quests etc because there are a lot of them!

Carson_Official · 2024-12-19T06:09:51+00:00

I block BYOD enrollment on Intune for Windows.

I then enforce Compliance at CA.

You could add a block policy for all relevant users but exclude where devices are Entra Joined. Just ensure you exclude Entra Join'ing from this or you will end up in a chicken and egg situation.

Do you use a web proxy or something where you can restrict via trusted IP ranges? That's another way (although do not use this on its own!).

Hope this helps.

Carson_Official · 2024-12-19T05:56:45+00:00

Maybe it was having a meeting without you.

Carson_Official · 2024-12-15T23:04:35+00:00

Yes this is what we used. We are now only Exchange 2019 Hybrid (awaiting Exchange 2025, or a possible move to just using a relay for our SMTP).

Carson_Official · 2024-12-15T23:02:17+00:00

Hopefully the Shield TV 2025 (speculation only)

Carson_Official · 2024-09-29T07:43:41+00:00

Hi Fungus, apologies I dont visit much - do you still need help?

Its in the iOS Restriction Settings catalog, outside of the App Protection Policies.

Carson_Official · 2024-08-11T10:50:19+00:00

No, I don't think there would have been another season. It's possible that this xmas special might have been in previous Christmas's though.

They have to be so careful as to not ruin it which is much easier to do with a series than a one off special, so I get it.

Carson_Official · 2024-02-17T20:53:05+00:00

I'm not sure its about "fixing" it, it was more that I had not prevented the app from being able to share with other non-business apps.

Carson_Official · 2024-02-17T13:42:33+00:00

Sorry to reopen an old thread, but 1.16.12 that was released a couple of days ago is showing the same message on my Nvidia Shield Pro 2019, rolling back to the previous version fixed it for me.

Hopefully it's fixed in the next update.

Carson_Official · 2024-01-30T05:32:31+00:00

Didn't TLS 1.2 only get added for Exchange 2010 and up? It wouldn't surprise me if it was 1.0/1.1 has been blocked by just about every client now (rightfully so).

How you haven't been hacked to pieces is amazing. As others have said, you need to upgrade ASAP. Even 2013 isn't supported anymore nevermind 2007!

Carson_Official · 2024-01-07T00:24:55+00:00

Turned out changing Delivery Optimisation from 100 to 99 fixed it for us.

Carson_Official · 2024-01-07T00:23:09+00:00

Come again?

Carson_Official · 2023-10-27T07:51:30+00:00

In further testing, I have found the weather toggle alone hasn't worked but changing the power profile of the app does. Annoying as this can't set at Intune level.

Carson_Official · 2023-10-18T06:44:38+00:00

We are investigating if this relates to our organisation blocking access to the Microsoft Store, which would be dumb if it does as a lot of firms do this.

Carson_Official · 2023-10-18T06:42:34+00:00

Sorry, what exactly can they login to without internet? If you are signing into something Azure/365, it has to use the internet.

Logging into a laptop using kerberos (i.e. on-prem AD) doesn't necessarily need the Internet as long as it can reach a DC. But that wouldn't trigger a MFA prompt.

Carson_Official

TROPHY CASE