Event banner
Event details
254 Comments
- The other problem our admins have had is when they remove a profile and it's setting remains. Sometimes (especially reg settings) flipping a 1 to a 0 will convert back when it's removed (usually on modernUI settings) and other times you have to make a profile to set it back to default.
- We want to continue moving to Intune only from our ConfigMgr instance but find Intune to be lacking in inventory and capabilities that we are used to on that side. For example, ConfigMgr can report on specific drivers and version that are installed on each device, but Intune doesn't have that.
- Is there any way to configure defender ASR policy for servers from endpoint manager.Any roadmap for this feature
- I used the default configuration for our machines and it uninstalled the MS store and other native applications. where is the PowerShell command that launches this removal so i can remove it?
- Jason_Sandys
Microsoft
Removing the Store app is a really bad idea. If you don't want your users to download and install apps from the Store, use the proper policy (GPO or Settings Catalog): https://learn.microsoft.com/en-us/windows/configuration/stop-employees-from-using-microsoft-store- I 100% agree I don't want the store to remove from the PC but when I enrolled a test device into Itune the store and all other native apps to the test device were gone. Like I looked for the MS store in the apps section and it wasn't on the list at all.
Hey Cody, this is a guess. It sounds like blocking Store and Native apps are a standard business configuration.
What you are trying to accomplish? When you say "remove it", what are you referring to as "it"? How many machines / Users do you have?
Dynamic Groups in Azure AD can't currently compete with the SQL-based query capabilities of CfgMgr collections. Also, the hardware and software reporting capabilities of Intune are worthless compared to CfgMgr. Two great reasons for even moderately complex environments to continue using Cloud Attach.
- Filters in Intune help to plug that gap
It is not just 3rd party applications. *cough* teams... microsoft 365 apps for business...
As we are still having problems with vendors who have yet to adopt modern management practices. PCs should have clean and up to date Windows, drivers should install and update through Windows Update and software should be in the Store.
To make it easier to find vendors and products that have made the transition, I have started a community maintained spreadsheet, "Modern Windows Management Database".
https://1drv.ms/x/s!AgG_boPR-xfWjN9i2Z_y_8ErM6t--ATransitioning from cloud attach with the ability of OnPrem AD OU scoping, how is that address from Cloud only to scope automatically as devices are AAD join. In a ecosystem where we support multiple companies in a single tenant.
- we are currently filtering on a name prefix defined for the devices of the different devisions, so we have groups for the Intune RBAC
- As you can imagine companies that have been using local naming format for years and in some cases overlap in the prefix between groups. Ideally not using device name but assigned user attribute would be preferable.
- @Aria...You say stop spreading that lie. Maybe make it work so it's not a lie???
- hahahahahahaha hilarious. A fax message from On-Prem
- I'm going to use that one with my customers!
- A holdback for our school district removing SCCM and group policy is the fact that Intune has always been so slow and intermittent for us at pushing out settings and applications. Group policy and SCCM always push out settings and apps quickly and reliably.
- We've seen this too when deploying a new Intune policy to devices - it can be slow to deploy even after multiple syncs/device reboots (which is frustrating when you're trying to test something!). If editing an existing policy, that seems to deploy almost immediately
- I find the exact opposite personally??
- Really? It's been bad for us for ios and windows devices....even if they are azure ad and intune only (no AD or SCCM). Any recommendations where to look on why Intune is slow and unreliable for us? We've used it more than 5 years.
