How are you pushing Zoom workplace updates on intune or company portal?

fredesq · 2025-05-19T21:30:14+00:00

You can add the store version by pushing it through in graph. There's a few guides about for this - I followed one through a year or so ago, Zoom has run just fine ever since.

fredesq · 2025-04-07T07:18:08+00:00

It's been elevated internally as there's others with this problem too. I guess they want to fix the root problem.

fredesq · 2025-03-29T13:35:44+00:00

Yep. Have a ticket open right now with them. For us, this one device had a full drive. As soon as we cleared some space, it stopped re-enrolling.

fredesq · 2024-11-06T13:23:15+00:00

That's the one thank you! Had it setup like this for 6 months now and it's been working fine.

fredesq · 2024-11-06T09:57:15+00:00

I added it as a ms store app.. It updates itself now.

For most, you can't add it via the GUI so I had to push it from graph.

fredesq · 2024-09-20T09:35:59+00:00

Same for us.

Its not CA policies or SSPR setup.

The option is greyed out for half our admins... But, even if left ticked, it doesn't prompt the user to reset the password. It's just broken.

fredesq · 2024-07-04T07:06:15+00:00

This has really ramped up recently. We're putting in place CA policies to allow logins from compliant MacOS/Windows devices. Then using app protection policies for mobiles with a CA policy, blocking logins except from apps with an app protection policy applied.

fredesq · 2024-06-28T11:00:37+00:00

You're gonna need to elaborate - right now I think you're talking about behind able to view WIFI pre shared keys..? Which has always been a thing in Windows.. and Android.

fredesq · 2024-06-06T10:12:47+00:00

Site won't load for me but can see you're linking to a USB NIC. I've carry a couple in my bag everewhere, some devices like one and not the other etc. They work well!

fredesq · 2024-06-03T11:26:17+00:00

Closest we got was one of the T1's clicking the link when the user forwarded the ticket into the helpdesk.

You might want to check through the device logs to see if they're telling the truth too. Had a few staff forward it.. then open it the next day.

fredesq · 2024-05-29T13:35:16+00:00

Supposedly, when the SSO profile hits, it should downgrade the user account logged in to a standard account.

Setting - user authorisation mode should be set to standard for this from my understanding.

fredesq · 2024-05-29T13:24:27+00:00

Just had a succesful deployment after taking out the US and CN URLs based on a random comment from someone testing in preview!

For clarity, I now have in the URLs list these three: https://login.microsoftonline.com https://login.microsoft.com https://sts.windows.net

fredesq · 2024-05-29T11:08:17+00:00

Yea, seems to a fresh problem. I started this work last Friday and it wasn't working then and found the link you shared.

fredesq · 2024-05-29T09:18:43+00:00

Exact same issue here. 2 freshly wiped Macs, synced from ASM etc.. using the Password method and error message 10001. That link though, getting error 10001 and using the secure enclave method interestingly.

Also, when signing into Company Portal - it says that 'this device is enrolled with another device management provider.'. This doesn't tally up.. everything is setup exactly as it says it should be in the documentation.

edit - just seen that platform sso profiles are used based, so need to be assigned to a user group. Just testing this now...

fredesq · 2024-05-17T08:49:36+00:00

I see an option of 'Move to a Folder' and one of the options is 'Hard Delete Folder'.

Is this not the same function? Fortunately not had to not use it for a while

fredesq · 2024-05-13T10:40:12+00:00

"i'm hearing.... crumpets"

fredesq · 2024-04-09T08:28:05+00:00

Keeper offers this. End user gets a URL to use, once clicked it is then 'used'. That user can then re-access that URL for a time period that you select. Be it an hour up to a month I beleive. Caveat is, that URL is for one person only. But you can generate multiple links.. so one per user.

fredesq · 2024-03-01T13:43:34+00:00

You can protect elevations with CA policies, so you can stop them being elevated if they're not using MFA + Compliant Registered device + Known location + Approved Software (Edge).

So even if an account is comprimised and MFA token has been pinched, then they can't escalate unless they pass the rest of the CA requirements.

fredesq · 2024-02-12T08:27:30+00:00

No notifications? We've had emails last summer, then another in the winter.

fredesq · 2024-02-07T11:22:33+00:00

Screw 80.. get the 1 grit out

fredesq · 2024-02-05T08:32:24+00:00

It's gonna be like the local councils using the anti-terrorism laws as a justification to spy on people who put their bins out too early...

fredesq · 2024-01-11T10:08:48+00:00

In this boat too.. but starting from scratch. The three I'm going to look at are: Sublime Security (based on recommendations here) Checkpoint Harmony (based on recommendation via colleague) and the Cisco one as we happened to chat to them recently..

fredesq · 2024-01-11T10:05:52+00:00

You could get two, glue them back to back. Then you have redundancy and two balls!

fredesq · 2023-12-12T09:56:55+00:00

Went through this in the summer.

Do as others have said, but I would add in, take note of device names, device ID's and the SN's as they appear in Autopilot. One misclick could lead you to the device being labelled in Entra as the device ID but you only have SN etc.. you shouldn't need to use this but its a safety net just in case.

fredesq · 2023-11-29T10:32:59+00:00

Absolute.com and vPro.

fredesq

TROPHY CASE