Spooky endpoint dreams: What's keeping you up at night? What are your worst nightmares?

That concludes today's episode of Unpacking Endpoint Management. Thanks for joining!

In addition to the questions posted on this page, we also answer questions posted in reply to the event on LinkedIn, Twitter, and the Microsoft Intune Community. Here are the questions we answered today:

• QUESTION -- Why do software companies create the possibilities for the user to potentially be disruptive? - answered at 10:00.
• QUESTION -- What was the biggest nightmare of a support case you have ever worked? Harjit? Joe? Danny? Steve? - answered at 15:00.
• QUESTION -- What was one of your rookie mistakes? Have you ever been nearly or actually fired from an IT job before? - answered at 20:10.
• QUESTION -- Do you have your own version of “TPS Reports” you have to do at Microsoft? - answered at 27:50.
• QUESTION -- Steve, what would you say you do around here? At Microsoft? - answered at 43:55.
• From VinodS2020 -- I need a script to reboot the devices via Intune as at a scheduled date & time? What's the solution? - answered at 41:00.
• From John -- I have deployed the 22H2 feature update through Intune and I want to verify that the deployed machines have been updated. The reports blade in the Intune portal is so odd, I cannot understand whether it is installing or installed or it shows progress but it has been more than 3 days. - answered at 47:40.
• From Michal -- is there a way to get notification (admin notification) when a new computer is enrolled in Intune? We have hybrid joined scenario... so it takes a while for devices to show up there.... I would like to get some email notification vs. Windows enrollment notifications, which seem to send notifications to the user, not me as admin. - answered at 49:15.
• From Giovanni -- We need to enroll a couple of computers as shared devices in Intune. These devices are Windows 11 computers, but we plan to add a couple of iOS devices as well in the short term. These machines still need to be managed with Intune for updates, security policies, etc. Until now we have used an administrator account to set up these machines, but this is not ideal as employees can leave the company and the machines need to be reassigned to a new primary user, the management name needs to be updated, etc. I am considering using a dummy user as an Enrollment Manager to set up shared machines, but I am wondering if there are best practices for this. In particular: Is it better to use a "dummy user" account or a "resource account"? What kind of license is required for this user? Intune Plan 1? Even if this is a resource account? Other considerations to keep in mind for this scenario? As this user would not be an admin and wouldn't have any access to SharePoint sites or other company data, it would be easier to make an exception from dual factor authentication, would this be considered an acceptable risk or a big no? - answered at 52:35.

We're halfway through! Keep those questions flowing and share information about use cases you need to support, any nightmare scenarios you're afraid of, and feedback. Post away in the Comments.

That does remind me of a small oopsie sometime ago, when we needed to do reporting about which users were local admin at a medium size company... But somehow we switched the report /detection script with the remediation part 🙂 We deployed adminless within a couple of minutes 😛

It sounds positive but somehow it didn't feel that way 🙂

Welcome to today's spooky episode of Unpacking Endpoint Management! We're live answering your questions, so post them here in Comments now and throughout the show! Share your fears - and your feedback!