BYOD – Part 1 – The Love-Hate Relationship

This is a 2 part series and I would like to get to the nitty gritty of BYOD because as IT Pros or leaders who are managing IT in an organization, we have dealt with BYOD (Bring Your Own Device) related questions at least once in our career. Not once, but maybe daily or maybe … Continue reading BYOD – Part 1 – The Love-Hate Relationship

It’s 2023. Let’s Talk About Azure AD Connect Cloud Sync

The first post for 2023 and I thought I want to focus on something that will take over the main stage soon (probably). Azure AD Connect Cloud Sync. This has been there for a while and its capabilities (some capabilities) are proven to minimize that admin overhead and if you have dealt with the Azure … Continue reading It’s 2023. Let’s Talk About Azure AD Connect Cloud Sync

Azure AD Cross-Tenant Access with B2B Direct Connect

This is my take on the Azure AD Cross-Tenant access settings. This was something I was hoping to configure a while back. However the capabilities weren't available at that time, but the need for some kind of a trust relationship between two Azure AD tenants was bubbling up. Gone of days organizations set up trust … Continue reading Azure AD Cross-Tenant Access with B2B Direct Connect

How to Configure Multiple Admin Approvals Over Intune Resources

A new feature was recently introduced and is still in the Public Preview mode. Multiple Admin Approvals or MAAs. At this stage, this can be only applied to Apps and Scripts. What this does is let you as an Admin create MAA policies to make sure changes to App policies and Scripts will go through … Continue reading How to Configure Multiple Admin Approvals Over Intune Resources

How to Plan for a Windows 365 Cloud PC Deployment?

In my 1st blog post related to Windows 365, I discussed how to get started with the product. This is post #2 of the series and in this, I want to discuss what to think when planning for your Windows 365 deployment and especially how to set up RBAC. Before jumping into the technical side … Continue reading How to Plan for a Windows 365 Cloud PC Deployment?

Microsoft Entra Identity Governance – Connecting the Dots

Been working on this blog post for a while as this talks about an important service in Azure AD. In a standard organization environment, how many resources will a user access from the point where they have Onboard to the day that they are offboarded from all the systems? Are you able to keep a … Continue reading Microsoft Entra Identity Governance – Connecting the Dots

How to Get Started with Windows 365?

Windows 365/ Cloud PCs have got very popular very soon and also came a long way in a very short period of time. I wanted to write a blog about Windows 365 and its capabilities for a while now mainly because the reason it being how closely connected Microsoft Intune and Azure AD. This is … Continue reading How to Get Started with Windows 365?

My First Speaking Session and the First Microsoft EM+S Community Live Event

So last week I finally did my very 1st speaking session. This is the very 1st community event held by the Discord Group Microsoft EM+S Community. Microsoft EM+S Community https://www.youtube.com/watch?v=Cxr61C4g7iQ Shout out to the other speakers as they've all done a great job in presenting their sessions as well as continuously sharing their knowledge on … Continue reading My First Speaking Session and the First Microsoft EM+S Community Live Event

How to Configure Azure AD Connect Sync and Cloud Sync Tools to Prevent Accidental Object Deletions

This blog post is a combination of old and new features of Azure AD Connect Sync and Azure AD Cloud Sync tools. AAD Connect Sync feature was there already and what's new is the Sync Client's feature of preventing accidental deletion. There can be many reasons for this kind of mishap to take place Intentional … Continue reading How to Configure Azure AD Connect Sync and Cloud Sync Tools to Prevent Accidental Object Deletions

Enrolling Linux Devices and Setting Compiance Policies in Intune

My morning coffee hit me in a very different way this morning. I've been sitting on the whole Linux enrollment feature introduced a few weeks ago and this morning I thought I need to do it. This is an early look at the Linux Enrollment and what Compliance Policies are available from Intune. What I … Continue reading Enrolling Linux Devices and Setting Compiance Policies in Intune

Use Intune to Manage Device Firmware Configuration Interface Settings for Autopilot Devices

How handy it will be to manage the UEFI (Unified Extensible Firmware Interface) settings of the enrolled devices? That's exactly what I'm going to explore in this article. What I will be covering 👇🏾 What is DFCI? (Device Firmware Configuration Interface)Use CasesDFCI LifecycleRequirements and OEM Vendor SupportOEM Vendor SupportIntune to Manage DFCI?Intune Device Configueration ProfileWrapping … Continue reading Use Intune to Manage Device Firmware Configuration Interface Settings for Autopilot Devices

New and Updated Microsoft Intune Device Control Policy Settings

New day new blog post. This is more of an updated guide to what I've written some time ago (check below) https://shehanperera.com/2022/08/06/mem-device-control-1/ What I Will Be Covering? 👇🏽 What's New?🌟 Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria🌟 Removable Storage Access🌟 Defender Scanning (this setting can … Continue reading New and Updated Microsoft Intune Device Control Policy Settings