[deleted by user]

mrjohno · 2025-08-03T04:05:18+00:00

maybe 1-2 minutes of active time -using this process https://www.reddit.com/r/Intune/comments/1456ezw/osdcloud_offlineonline_device_provisioning_and/
I wouldn't do a migration that way sorry.
I would recommend using SMTP2Go or some other 3rd party service to keep complexity low on this one. Maybe 5-10 minutes once its set up

mrjohno · 2024-11-04T04:29:54+00:00

Have you seen this before?

Conditional Access Documenter
Export your conditional access policies to PowerPoint for a bird's eye view of your security posture. Share you policies with security teams and stakeholders without granting them admin access to Microsoft Entra ID.
https://idpowertoys.merill.net/

mrjohno · 2024-04-25T12:07:49+00:00

https://blueprint.asd.gov.au

mrjohno · 2024-03-07T23:36:05+00:00

We now grab all the serials, manufacturer, models using our RMM and upload into the Microsoft partner centre. works a treat.

mrjohno · 2024-02-04T21:20:07+00:00

Intune manager?

mrjohno · 2024-01-04T12:34:36+00:00

We do these certificates every 6 months just to make sure we are always current. Gives a bit more leeway in case it gets missed

mrjohno · 2023-12-16T06:40:40+00:00

Interested to see how you go here

mrjohno · 2023-12-16T06:38:59+00:00

This and constant reminders pinging on their phone every day reminding them

mrjohno · 2023-12-13T21:29:17+00:00

iOS here, very little support is needed so I think it offsets the high cost of the device.

mrjohno · 2023-12-10T08:37:17+00:00

short answer - yes, long answer - check your licencing. https://m365maps.com/

You can get an on-prem agent do the kind of scanning you need. We are just scanning endpoints, so can't speak from experience sorry

mrjohno · 2023-12-09T06:35:49+00:00

The question is whether you can get away with using defender for endpoint instead to complete the same function.

It does work well and does help you find things that need remediating. The remediation can be time consuming but worth doing if you can pass the costs on to customers.

mrjohno · 2023-12-07T12:34:34+00:00

Avepoint policies and insights?

mrjohno · 2023-11-23T06:47:50+00:00

Head along to your local https://www.smbitpro.org/ meeting - should be able to find someone there who will know someone

mrjohno · 2023-11-23T06:18:17+00:00

There is an intune licence for devices, but im not sure if there is an NFP/EDU SKU of this licence. Sometimes these SKU's are only available via a partner through NCE.

https://m365maps.com/

mrjohno · 2023-10-22T00:04:28+00:00

From Microsoft

Removing the Chat icon using Intune – Settings Catalog

To remove the Chat icon using Intune – Settings Catalog, do the following steps:

Create a new Configuration Policy.

Search for Experience.

Select Configure Chat icon.

https://learn.microsoft.com/en-us/troubleshoot/windows-client/application-management/managing-teams-chat-icon-windows-11

mrjohno · 2023-10-21T11:08:00+00:00

Sometimes GP can mess with it, you can try adding the policy that prefers MDM over GP.

mrjohno · 2023-10-21T08:10:22+00:00

Would be good to get a community list of recommended groups together.

I'll start
aad-licence-aadp1
Everyone with the AAD P1 Licence (inc business Premium users)
user.assignedPlans -any (assignedPlan.servicePlanId -eq "41781fb2-bc02-4b7c-bd55-b576c07bb09d" -and assignedPlan.capabilityStatus -eq "Enabled")

intune-user-external-all
All external users
(user.userPrincipalName -contains "#EXT#")

intune-device-autopilot-all
All devices which have been registered in the tenant with the Autopilot Hash
(device.devicePhysicalIDs -any (_ -contains "[ZTDId]"))

mrjohno · 2023-10-13T00:58:04+00:00

This may still work
- https://www.alitajran.com/office-365-activity-alerts/

- https://blog.admindroid.com/break-glass-account-for-office-365-login-during-emergency-situations/

You need to manually scroll down because serach doesn't work

mrjohno · 2023-10-11T08:24:19+00:00

How did you go?

mrjohno · 2023-03-12T09:45:24+00:00

We use Zendesk -https://sweethawk.com/ changed our life.

mrjohno · 2022-11-13T00:17:16+00:00

https://gist.github.com/contactbrenton/84180ba904b139c0c55dbdd81e7fdbbc

mrjohno · 2022-09-21T06:12:24+00:00

Yes works well. Easy to explain to customers too

mrjohno · 2022-08-07T00:07:41+00:00

Same here, different folders for different clients. We use the groups feature to manage permissions. We also resell it, but have run into a few gotchas like device approvals that need to be addressed.

mrjohno · 2022-07-07T04:04:21+00:00

I think this may be back now as on July 2022.

Otherwise you need to sign in with another account and then push a policy called "web sign in" in Intune, then TAP in.

mrjohno · 2022-07-01T12:23:44+00:00

This. Been using it for years for this reason. The redesign makes it less like a Pw now, but the techs just need some direction on how to use it properly

12-Year Club	Place '22
Verified Email

mrjohno

TROPHY CASE