What's New
Recast’s Endpoint Management Recap – June 2023
Topics: What's New
Welcome to Recast’s Endpoint Management Recap, June 2023 – by Daniel Engberg
Hello everyone, I hope this message finds you well.
Firstly, I’m excited to announce that Microsoft has finally released the long-awaited driver and firmware management feature in Microsoft Intune. This significant milestone empowers organizations to seamlessly transition from on-premises Configuration Manager environments to the cloud, unlocking new possibilities for streamlined device management and enhanced security.
In the upcoming sections, we’ll explore more details about this exciting update and other noteworthy developments across the Microsoft ecosystem.
I also wanted to share some exciting news from my side. My family and I are eagerly awaiting the arrival of our second child in August. As I prepare for this joyous occasion, I will continue to provide the Recast Endpoint Management Recap newsletter during my upcoming vacation and paternity leave. Even though I’ll be taking some time off, I’m committed to staying current with the latest developments and bringing you valuable insights.
Before I sign off, I want to express my appreciation for your continued support and engagement. Your active participation makes the Recast Endpoint Management Recap a valuable resource for the community. Your feedback and insights are always welcome.
Stay tuned for the comprehensive coverage of Microsoft products, insightful articles, and community highlights in this month’s newsletter.
I wish you a wonderful summer filled with joy, relaxation, and exciting discoveries.
Best regards,
– Daniel Engberg
Contents – Endpoint Management Recap
Upcoming Events
- SpiceWorld – Austin, TX – September 5-7, 2023
- Modern Endpoint Management EMEA Summit 2023 – Issy-les-Moulineaux, France – September 6-7, 2023 – Call for Speakers at Sessionize.com
- Workplace Ninja Summit – Baden, Switzerland – September 27-29, 2023
- AppManagEvent – Utrecht, Netherlands – October 6, 2023
- Techorama – Utrecht, Netherlands – October 09 – 11, 2023
- MMS – Midwest Management Summit – MMS 2023 Miami Beach Edition – October 30 – November 1, 2023
Check out Recast Software’s new SysAdmin Event and Tradeshow page, which compiles noteworthy events for the IT and SysAdmin community taking place around the globe.
Here is a brief highlight of the product updates from Microsoft during June.
Microsoft Defender for Endpoint released an important update regarding enrollment prerequisites for Windows devices managed by Defender for Endpoint with Intune. This update on the Microsoft Community Hub includes enhanced security measures.
For Microsoft ConfigMgr, a helpful article on the Microsoft Community Hub explores Configuration Manager Automation Fundamentals using WMI. It provides valuable insights into streamlining automation processes.
Microsoft Intune brings a range of exciting updates. You can now easily add apps on Windows 11 SE devices for Microsoft Intune for Education. Additionally, there’s a new Microsoft 365 apps security baseline profile and updates to the Microsoft Edge baseline. Introducing the Microsoft Mac Admins community allows Mac administrators to connect and share insights.
In Windows 11, the exciting news is the availability of multi-app kiosk mode in Windows 11. This feature allows for a more versatile and customized user experience.
Lastly, for Windows 365, there’s a helpful article on Microsoft Learn that guides you on how to move a Cloud PC during the preview phase.
Find the rest of the updates from Microsoft below.
Products
Microsoft Azure Active Directory [What’s New Page]
Microsoft ConfigMgr [What’s New Page] [Tech Community] [Virtual Hub][MS QA][Reddit][Feedback]
Microsoft 365
Microsoft Intune [What’s New Page]
- Update to adding apps on Windows 11 SE devices for Microsoft Intune for Education – Microsoft Community Hub
- New Microsoft 365 apps security baseline profile and updates to the Microsoft Edge baseline – Microsoft Community Hub
- Introducing the Microsoft Mac Admins community – Microsoft Community Hub
- Add and assign the Windows Company Portal app for Intune managed devices – Microsoft Intune | Microsoft Learn
- Update to Microsoft Intune PowerShell example script repository on GitHub – Microsoft Community Hub
- Updated experience for Intune device compliance reports – Microsoft Community Hub
- Support Tip: Intune moving to support new Google Play Android Management API – Microsoft Community Hub
- New Zebra OEMConfig app for Android 11 and later – Microsoft Community Hub
- Configuring Microsoft Intune just-in-time admin access with Azure AD PIM for Groups – Microsoft Community Hub
Microsoft Windows [What’s New Page]
- Windows Client
- Windows Server
- Windows 365
Security Alerts and Info [Microsoft Security Portal – Security Update Guide]
Other
- Conditional Access authentication strength is now Generally Available! – Microsoft Community Hub
- Why endpoint management is key to securing an AI-powered future | Microsoft Security Blog
- Skilling snack: Do more with Microsoft Graph – Microsoft Community Hub
- Public Preview : Improve Win32 app security via app isolation – Windows Developer Blog
Podcasts / Blog Series / Video Blogs
- Tracking Changes in Intune – Part1 – Thiago Beier🍁 (wordpress.com) – Thiago Beier (@thiagobeier)
- Windows 365 Custom Images – Part 2 – PowerShell Deployment (euc365.com) – David Brook (@DBBrook24)
- CMC Podcast – MVP Journey with Jon Jarvis – YouTube – Andy Jones & Dean Ellerby (@Andy_69Jones & @dean_ellerby)
- What’s new in Microsoft Intune (2305) – YouTube – Mattias Melkersen & Nickolaj Andersen (@MMelkersen & @NickolajA)
- Manage Intune App Deployment and Updates the easy way! – YouTube – Dean Ellerby (@dean_ellerby)
- Episode 8 – Report Only Conditional Access Policies – YouTube – Matt Call (@DeviceDeploy)
- Just Dropped In (To See What Condition My Conditional Access Rule Was In): Part 8 – Use application enforced restrictions for unmanaged devices – SCCMentor – Paul Winstanley – Paul Winstanley (@SCCMentor)
- Account-Driven Apple User Enrolment In Intune – Part 1 HTMD Blog (anoopcnair.com)
- Modern Endpoint Management talk with Mattias Melkersen – YouTube – Mattias Melkersen (@MMelkersen) & Niklas Tinner (@NiklasTinner)
- Manage your Surface device(s) via SEMM – part two. | Piesik.me – Jakub Piesek (@dzejzipl)
- Manage your Service Devices via SEMM – part three. | Piesik.me – Jakub Piesek (@dzejzipl)
- Episode 10 – Basic RBAC Setup – YouTube – Matt Call (@DeviceDeploy)
- Learn to master and manage macOS with Microsoft Intune – YouTube – John Bryntze (@JohnBryntze)
- 🔴 Copilot + PowerShell + Polyglot Notebooks – YouTube – Visual Studio Code & Doug Finke (@code & @dfinke)
- Embrace the Future Endpoint – Part 1 – SIMSEN blog – Simon Eriksen (@Sim0nEriksen)
- WWDC 2023: Apple’s Leap into Next-Level Device Management – Part 1 (intuneirl.com) – Somesh Pathak (@pathak_somesh)
Blog Posts
Intune
- Automating Endpoint Privilege Management Policies with PowerShell | MEM v ENNBEE – Battles with Device Management – Nick Benton (@ennnbee)
- Intune Organizational Message is GA – Icewolf Blog – Andres Bohren (@andresbohren)
- How to Manage Windows 10 & Windows 11 Multi-session Hosts Using Microsoft Intune – Nerdio (getnerdio.com) – Neil McLoughlin (@virtualmanc)
- Using 1 Intune to rule all Winget Apps – Blogs Created by Daag van der Meer (van-daag.nl) – Daag var der Meer (@DaagvanderMeer)
- How to roll out your compliance rules – Endpoint Cave – René Laas (@mr_helaas)
- What does the new Microsoft Intune Suite include? | TechTarget – Peter van der Woude (@pvanderwoude)
- Using authentication strengths in Conditional Access policies – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
- Enable Disable Personal Data Encryption On Windows 11 Devices Using Intune Settings Catalog HTMD Blog (anoopcnair.com) – Vidya M A
- Virtual Account | EPM | Endpoint Privilege Management (call4cloud.nl) – Rudy Ooms (@Mister_MDM)
- How to Run Shell Scripts on macOS devices in Intune (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
- Deploy SCEP Certificate Connector Intune – NielsKok.Tech – Niels Kok (@NielsKok5)
- How to track device objects in Intune. – Thiago Beier🍁 (wordpress.com) – Thiago Beier (@thiagobeier)
- Intune certificate deployment overview (oceanleaf.ch) – Niklas Tinner (@NiklasTinner)
- Secure Microsoft 365 Office Apps Using Intune Security Policies HTMD Blog (anoopcnair.com) – Vidya M A
- How to: Getting started with Windows LAPS via Intune – Manage The Cloud Jeroen Ebus (manage-the.cloud) – Jeroen Ebus (@JeroenEbus)
- How to Enable Screen Sharing on MacOS using Intune (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
- What does the new Microsoft Intune Suite include? | TechTarget – Peter van der Woude (@pvanderwoude)
- Providing users with global quiet times for notifications on their mobile devices – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
- How to Download Intune Scripts With Microsoft Graph PowerShell (ourcloudnetwork.com) – Daniel Bradley (@DanielatOCN)
- Intune Policy Assignment Basics – EMS Route – Shehan Perera (@Shehanperera85)
- Use Shell Scripts For MacOS Devices Using Intune HTMD Blog (anoopcnair.com) – Jitesh Kumar (@jitesh8092)
- Run CMPivot Queries from Intune Admin Center (Tenant Attach) (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
- Get-WindowsAutopilotInfo.ps1 updated, by Microsoft this time – Out of Office Hours (oofhours.com) – Michael Niehaus (@mniehaus)
- Manage Microsoft Defender Antivirus Updates Using Intune HTMD Blog (anoopcnair.com) – Jitesh Kumar (@jitesh8092)
- Configuring the default credential provider – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
- Configure Interactive Logon Message for Users using Intune (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
- Automatically import Windows Autopilot devices using a remediation script and Azure Automation | Syst & Deploy (systanddeploy.com) – Damien Van Robaeys (@syst_and_deploy)
- Silvio Di Benedetto – Microsoft Intune: configure HP Connect to centralize BIOS management – Silvio Di Benedetto (@s_net)
- Streamlined Mac App Deployments: Insights & Automation (almenscorner.io) – Tobias Almen (@almenscorner)
- Gerry Hampson Device Management: What do you mean, no GPOs? (gerryhampsoncm.blogspot.com) – Gerry Hampson (@GerryHampson)
- The Magic of ObliterationBehavior (intuneirl.com) – Oliver Kieselbach (@okieselb)
- Intune Power Settings – Always ON | scloud – Florian Salzmann (@FlorianSLZ)
- Intune – Rename devices with Powershell and Microsoft.Graph module – TimmyIT.com – Timmy Andersson (@TimmyITdotcom)
- Password rotation by LAPS – Just about the Modern Workplace (joostgelijsteen.com) – Joost Gelijsteen (@Jgelijsteen)
- Configure Intune Built-In Roles Using Azure AD PIM for Groups – EMS Route – Shehan Perera (@Shehanperera85)
- Windows LAPS user via Remediations – NielsKok.Tech – Niels Kok (@NielsKok5)
- Intune certificate deployment overview (oceanleaf.ch) – Niklas Tinner (@NiklasTinner)
- Migrate Group policies to Intune | Configuration Manager ManishBangia (@manish_bangia)
- Managing updates for Visual Studio – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
- managing Android updates for Zebra devices with Intune (timmyit.com) – Timmy Andersson
- 9 Things to Know About Windows Autopatch – Thomas MarcussenThomas Marcussen
- Dive into Microsoft Security Baselines (oceanleaf.ch) – Niklas Tinner
ConfigMgr
- SCCM 2305 Technical Preview New Features HTMD Blog (anoopcnair.com) – Jitesh Kumar (@jitesh8092)
- GitHub – svschmit/CMPivot-Queries: Collection of helpful CMPivot Queries – @zvensch
- How to configure BitLocker Management in SCCM (systemcenterdudes.com) – Jonathan Lefebvre (@JLefebvreGloben)
- Deploy HP MIK Client for ConfigMgr with CI – GARYTOWN ConfigMgr Blog – Gary Blok (@gwblok)
- HP Docks Update via ConfigMgr App Model – GARYTOWN ConfigMgr Blog – Gary Blok (@gwblok)
- HP Dock ConfigMgr Global Condition – GARYTOWN ConfigMgr Blog – Gary Blok (@gwblok)
- Windows 11 22H2 Upgrade using SCCM | ConfigMgr (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
Windows 11
Windows 365
- Translate Microsoft 365 License GUIDs to Product Names in PowerShell | by Martin Heusser | M365 Apps & Services MVP | Jun, 2023 | Medium – Martin Heusser (@mozzeph)
- Enable Watermarking For Secure Windows 365 And AVD Experience HTMD Blog (anoopcnair.com) – Jitesh Kumar (@jitesh8092)
- How to manage Windows 365 Cloud PC’s using Nerdio Manager for Enterprise – techlab.blog – Dominiek Verham (@dominiekverham)
- Windows 365 Boot brings you to your CloudPC effortlessly. (mobile-jon.com) – Jon Towles (@m0bilej0n)
- Location redirection in Windows 365 | just another windows noob ? (niallbrady.com) – Niall C. Brady (@ncbrady)
- New Features Of Windows 365 Cloud PC 2305 Service Release HTMD Blog (anoopcnair.com) – Vidya M A
- Troubleshooting Windows 365 connection issues via the troubleshoot option in the Windows 365 app | just another windows noob ? (niallbrady.com) – Niall C. Brady (@ncbrady)
- Get-WindowsAutopilotInfo.ps1 updated, but not by Microsoft? – Out of Office Hours (oofhours.com) – Michael Niehaus (@mniehaus)
- Step-by-Step – Windows LAPS With Microsoft Entra And Intune – CHARBEL NEMNOM – MVP | MCT | CCSP | CISM – Cloud & CyberSecurity – Charbel Nemnom (@CHARBELNEMNOM)
- An update about location redirection on Windows 365 Cloud PCs | just another windows noob ? (niallbrady.com) – Niall C. Brady (@ncbrady)
- Windows 365: Perfect Test Environment – SIMSEN blog – Simon Eriksen (@Sim0nEriksen)
- Disabling the New Outlook Toggle and removing the Outlook Preview App – Cloud Clients – James Barber (@barberj66)
- How to Get Windows 365 Cloud PC Alerts in Intune (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
- Move Cloud PCs to a new Azure Region – Mindcore Techblog – Sune Thomsen (@SuneThomsenDK)
- Move Windows 365 Cloud PCs to Another Region (prajwaldesai.com) – Prajwal Desai
Cloud Security
- Require MFA to Register or Join devices with Azure AD – Device Settings Vs Conditional Access (rahuljindalmyit.blogspot.com)
- Windows Laps | Password Rotation | Threadpool | LRPC (call4cloud.nl) – Rudy Ooms (@Mister_MDM)
- Windows LAPS post-authentication bug | by Niklas Tinner | Jun, 2023 | Medium – Niklas Tinner (@NiklasTinner)
- Simon does Migrating Cloud LAPS to the New Windows LAPS (skotheimsvik.no) – Simon Skotheimsvik (@SSkotheimsvik)
Other SysAdmin Info
- Display any tree with PowerShell (itluke.online) – Luc Fullenwarth (@LFullenwarth)
- msgraph Samples · Discussions · GitHub
- Configure Windows Update for Business reporting | Peter Klapwijk – In The Cloud 24-7 (inthecloud247.com) – Peter Klapwjik (@inthecloud_247)
- Scheduled Tasks & PowerShell – GARYTOWN ConfigMgr Blog – Gary Blok (@gwblok)
- Taskbar Toolmaking in PowerShell (hashnode.dev) – Mdgrs (@mdgrs03)
- Embrace the Future Endpoint – Part 2 – SIMSEN blog – Simon Eriksen
- Simplifying MDM Support with Power Virtual Agents and Power Apps (intuneirl.com) – Somesh Pathak
Tool Updates
We recently held a webinar titled Unleashing the Power of Endpoint Insights. You can watch the recording here:
In the webinar we covered the common challenges faced by IT professionals in this domain and discover a transformative solution that revolutionizes the data collection process.
Recast Software recently released a pair of 3rd party patching assets. Read them here:
- Reduce Your Attack Footprint eBook
- Unpatched 3rd Party Software Exposes Companies to Risk infographic
Also, check out these new Recast Software blog posts:
- Become an Expert with Right Click Tools Certification
- Taking Endpoint Management to the Next Level – Introducing Agent Gateways
- Tips and Tricks – Reset a User’s Password in Under 30 Seconds
- The NPS Score Speaks
Also:
- Follow Recast on Twitter @RecastSoftware to hear the latest.
- Read our eBooks, The Top 10 Most Used Right Click Tools and The Top 5 Endpoint Insights to Empower IT Teams, as well as The State of System Administration White Paper.
Thank you for checking out Recast’s Endpoint Management Recap – June 2023. Stay tuned for more helpful content coming your way in the new year.