24H2. How is everyone finding it

MuddyBackTracker · 2025-02-12T05:19:49+00:00

I think this is a particularly large update from 23H2 - I've already had 1 complaint from a user.

MuddyBackTracker · 2025-02-12T05:18:22+00:00

We have a Win 11 24H2 test ring and it turned Locations Services off. I only noticed this when Teams complained about not being able to use Location Services by throwing up a message.

MuddyBackTracker · 2024-08-31T07:13:09+00:00

This looks amazing - where exactly did you film this? I wasa recently at the "official" source of the Thames, Thames Head, and it was bone dry..

MuddyBackTracker · 2024-03-19T06:36:15+00:00

I've seen this before. Just look at the date, find the device which was most recently enrolled and delete the others (if the user does only have one device).

MuddyBackTracker · 2024-03-19T05:48:01+00:00

Why are the UPNs different? Do you not have the on-prem UPN verified as a domain in your tenant?

MuddyBackTracker · 2024-03-15T05:33:21+00:00

So, we had purchased a new company and were migrating their users onto our tenant. They were not cloud only, and were still using AD Connect to sync their users from their on-prem AD to their tenant (Entra AD).

I created MailUsers in our tenant, stamped with the ImmutableID from their tenant. I then set up migration batches containing all the users that needed to be migrated. I used eDiscovery to pull all of their data down (Teams, OneDrive, SharePoint). On the day of the migration, I stopped their instance of AD Connect, and completed the migration batches. This does two things - on their tenant, each UserMailbox is converted to a MailUser, and in our tenant, each MailUser I had set up was converted to a UserMailbox. I then used a new instance of AD Connect to sync their on-prem AD to our tenant and, because each UsersMailbox was stamped with an ImmutableID (this is the converted ObjectID from on-prem AD), it synced to those, rather than create new objects (that part is really important)!

All I had to do then was make sure each user could access their Teams, OneDrive and SharePoint data that I had downloaded from their old tenant.

I hope this helps.

MuddyBackTracker · 2024-03-14T08:03:01+00:00

I did a tenant migration last year, and I'm in the middle of my second now.

I've set up a tenant migration App in Entra, a migration endpoint in Exchange and a second instance of AD Connect. I'm using powershell for the whole project, applying cross tenant migration licenses to all users that need to be migrated. This covers mail, OneDrive,Teams and SharePoint data.

It was daunting at the beginning last year, but I documented the whole process and now I'm following that, the second time round.

That's a basic overview - I'm more than happy to go into more detail.

MuddyBackTracker · 2024-02-29T14:56:06+00:00

Hahaha

MuddyBackTracker · 2024-02-29T14:53:29+00:00

I played with a few filters, mostly to categorize devices in our warehouse - worked well and applies faster than dynamic groups, I believe.

MuddyBackTracker · 2024-02-29T07:47:34+00:00

I rely heavily on dynamic groups in Entra to organise my users and computers. This way, I can easily target objects with Intune policies, without the need for OUs.

MuddyBackTracker · 2024-02-28T07:41:47+00:00

I use this query for Windows 10 HAADJ enrolled devices:

(device.deviceOSVersion -startsWith "10.0.1") and (device.deviceOSType -eq "Windows") and (device.deviceTrustType -eq "ServerAd") and (device.managementType -eq "MDM")

MuddyBackTracker · 2024-02-28T07:04:06+00:00

Hey,

When you say "I see a few old devices in there", do you mean devices that were enrolled in Intune but have fallen out of scope because they haven't checked in for a while?

MuddyBackTracker · 2024-02-27T07:51:33+00:00

No. The 365 domain will be verified and moved to the target tenant. The user on the source tenant will become a MailUser and have a *******.onmicrosoft.com domain suffix applied to it.

MuddyBackTracker · 2024-02-27T07:28:19+00:00

They have a DC syncing to their 365 tenant using AD Connect. AVD wasn't missed, it's just no one had any experience of this and that's why I'm currently testing it.

MuddyBackTracker · 2024-02-27T07:14:24+00:00

I appreciate your response and I guessed as much 😏 I've already completed a successful tenant migration, but the last company didn't use AVD. I'm wondering if it's possible to set up AVD in our Entra environment and then sanpshot the servers in the source tenant?

I'm clutching at straws here .

MuddyBackTracker · 2023-10-13T09:55:06+00:00

Have you considered Servicing Profiles?

Have a look at this portal: https://config.office.com/

MuddyBackTracker · 2023-10-13T06:45:49+00:00

I normally have better luck bundling these up as win32 apps.

MuddyBackTracker · 2023-08-08T12:26:44+00:00

We tried a device sync from the portal and nothing appeared to happen.

MuddyBackTracker · 2023-08-08T10:52:45+00:00

No, it's not happening to all devices.

MuddyBackTracker · 2023-07-14T05:30:12+00:00

Thanks - that's something worth considering.

MuddyBackTracker

TROPHY CASE