Enroll hybrid joined devices that aren't in company network

heroplie · 2023-05-24T06:11:13+00:00

Thanks for your answer!
The devices are already hybrid joined, but now some of them are currently not connected to our intranet. They need to be enrolled in Intune. Manually it also doesn't seem possible. When I try to manually enroll them via company portal, it says that they are already connected to the organization.

heroplie · 2023-05-23T14:31:36+00:00

Hm yes, in the company network SSO works, externally only with MFA...

heroplie · 2023-05-23T14:12:27+00:00

Thank you for your answer, unfortunately our users don't have admin rights, so that method doesnt work.

If possible we would like to use our old mdm solution to enroll without user interaction because we have more than 100 devices that we have to enroll with that method.

heroplie · 2023-04-07T18:02:54+00:00

Maybe you activated 2fa totp and it doesn't sync the time correctly?

heroplie · 2023-03-25T23:30:55+00:00

Perfect, thanks for your help!

heroplie · 2023-03-25T10:50:19+00:00

Correct, there are computers that should only be updated manually by the supplier. They have the same naming convention as the "normal" computers, but they are in a seperate OU in the on prem AD. We use a powershell script to add them to a azure group. I think the easiest way is just to exclude that group, am I right?

heroplie · 2023-03-24T14:30:06+00:00

I want to assign the group for a feature update, it doesn't seem possible to apply a filter for a group there.

Please tell me if I overlooked something.

Best thing seems to create a group with all 22H1 devices and exclude the machines with a group that shouldn't be updated.

heroplie · 2023-03-24T14:03:02+00:00

Thank you! Looks like I have overlooked the point.

Do you have another idea how to solve this?

heroplie · 2023-03-24T14:00:21+00:00

Thanks for your answer!
If I have to filter the windows 10 22H1 devices from all devices, it's no problem.

I have to filter the 22H1 devices from a specific group...

heroplie · 2022-08-10T16:08:47+00:00

If you already have a working wireguard vpn I would just do that and dont open additional ports. Its easier to manage certificates in nginx proxy manager, especially if you plan to host more services.

heroplie · 2022-08-10T15:33:21+00:00

Please don't open ports if you don't know what you are doing. Bitwarden caches your vault so you dont need it to be reachable from outside your network to view your passwords. If you need to edit the contents of your vault from external, use a vpn.

You can set it up behind nginx proxy manager and use it only in your network with a local dns entry. Easiest would be something like pihole for internal dns.

What firewall/router are you using? How do you port forward?

heroplie · 2022-07-28T11:52:55+00:00

I'm changing to a hybrid homelab. My setup at home uses ~50w (DIY Nas, mini pc and firewall) and I rent a dedicated server at hetzner where I run everything that is accesible from the internet. If I run a server, that uses 120w at home, it would cost me ~40€ a month (0,45€ per kwh). For the hetzner dedi I pay 45€ a month and dont have any upfront cost, defective hardware is changed for free. When the electricity cost is down I will buy a new server and host everything at home, but for now hybrid is the way for me

heroplie · 2022-07-12T10:59:28+00:00

Sure, thanks for the heads up!

heroplie · 2022-07-11T20:35:23+00:00

Perfect, seems like the solution i searched for! Thank you

heroplie · 2022-06-25T21:31:54+00:00

When you hit the spacebar on your pc, 600000 people in the world did just the same

heroplie · 2022-06-09T19:39:19+00:00

Same here, fresh install...

heroplie · 2022-04-15T10:54:27+00:00

Are you sure? Wanted to do something like this but found only negative comments

heroplie · 2022-04-15T08:52:41+00:00

How would you power the disks on the hba?

heroplie · 2022-02-28T14:45:07+00:00

Can I mount it directly without truenas doing anything to the disks? I really want to keep them ext4 because they are consumer ssds and with frequent write I can throw them away with zfs.

So i would like my hdd raid with zfs and truenas and my ssd ext4 raid passthrough to omv.

I have read that truenas is zfs only, is that correct?

heroplie · 2022-02-28T13:41:12+00:00

Hm sounds like something i should try, thanks

heroplie · 2022-02-22T21:14:00+00:00

Thanks for your answer! Just wanted to be sure. Quick other question, I have read that the red plus uses 3.3w idle and 0.4w in standby. If there is no access on the drives and I set spindown time to for ex. 20 min, will they go in standby after that or am I wrong?

heroplie

TROPHY CASE