Event banner
Unpacking endpoint management: ask Danny & Steve anything
Event details
Looking for tips and tricks to help you optimize and simplify the way you manage your endpoints? Come to this live Q&A session!
Danny Guillory and Steve Thomas are bring their "Unpacking endpoint management" web series to Tech Community and answering your questions live about device configuration and management. Co-management, tenant attach, the cloud management gateway questions? Bring them! Blockers or struggles? Bring them!
Submit your questions during this live hour--or submit questions early (by posting a Comment below) and catch up when it's convenient for you.
- Heather_PoulsenCommunity Manager
"Shameless plug" from Steve Thomas A framework for Windows endpoint management transformation
- Harjit_DhaliwalMicrosoftThis is a great resource, folks!
- AnnaChuMicrosoftHow are you liking today's session? Is this session valuable and would you like to see more product teams run Tech Community Live experiences like this? Reply in the comments, your feedback will make these sessions more useful for everyone.
- David_SwensonSteel ContributorLove having the ability to interact directly with the Team! Thank you for all you guys have done for the MSP community!
- Dennis_EwaldBrass ContributorWill we get LAPS for cloud devices ?
- Jason_SandysMicrosoft
Hi Dennis_Ewald, there are ongoing investigations for a cloud-based LAPS solution and we, in general, understand the requirement and desire for this solution. There is nothing to share or announce at this time though.
- Andy1Q7Copper ContributorWe often have problems with machines that have not been patched for a long time and will come on and want to do autopilot (shelfware). I manage to script Windows Updates but its a pain.... will we see there features that update windows drivers and firmware during autopilot? for Office I can not use the build in functionality because the office ODT tool on those machines is ancient and causes office to fail. They only way to fix this is to make a win32 intunewin with the current odt. Will intune learn to update the windows build in odt at some point?
- David_GuyerMicrosoftAndy, the idea to have drivers and firmware updated during Autopilot is some great feedback. We appreciate your feedback and can consider this.
- jjgreinCopper ContributorWhat controls are expected for managing MS Store app self service purchases?
- jjgreinCopper ContributorWhat kind of Device Filters and/or Device Properties available to Dynamic azure groups will be available for Cloud pcs
- David_SwensonSteel ContributorCan we please have User Based filters? 😄
- David_GuyerMicrosoftDavid, can you provide a little more information about how you'd like to use User Based filters? I'm also curious if you have seen the Filters preview in Intune, while it doesn't include user values, I'm curious if the Filters preview has the right experience you'd like for User Based filters, or if you are looking for something different. -DG
- David_SwensonSteel ContributorDavid, We use Device Filters EXTENSIVELY and LOVE em! However, often times we would like to be able to create filter based on User's Azure AD Profile values: EX Department, Role, Office Location... This would help us make our application deployment much cleaner.
- Jason_SandysMicrosoft
Hi David_Swenson, can you expand on your user case here and provide some examples of filter criteria that you'd like to see, please?
- mikeh14Copper ContributorDo you see the ability to build dynamic groups based on installed programs in the future? It would be very helpful in multiple applications if policies could target devices that are applicable to them (ie: adobe reader vs adobe pro as a default program)
- Jason_SandysMicrosoft
Hi mikeh14, assuming this is in reference to targeting application assignments within Intune, then no, there won't be anything specific to AAD groups since AAD has no visibility into information on managed endpoints like installed software. However, the recently introduced [Assignment] Filters functionality in Intune does add advanced targeting capabilities and there are many discussions underway about what to include next for Filters. To ensure you voice is heard on this, please file feedback directly in the MEM admin console on this.
- Dennis_EwaldBrass ContributorWill we have the ability to set a different Display Name (Company Portal) for an Intune App then what I as a Admin see from the Endpoint Portal ?
- Jason_SandysMicrosoft
Hi Dennis_Ewald,
I've not specifically heard of this as a request before but it can certainly add value. Please add this as feedback directly in the MEM admin console to ensure it has greater visibility.
- jjgreinCopper ContributorWindows firewall used rules based on Domain, private and public networks. Is there a way to specify the "Domain" Subnets for azure ad joined only PC? or is it is just one ore thing requiring a device to be domain-joined.
- Jason_SandysMicrosoft
Hi jjgrein, there is nothing built-in to automatically accomplish this, however, the standard path for most orgs is to deploy a script to configure the interface as Private and utilize that profile in your firewall rules as necessary.
- jjgreinCopper ContributorI considered such an approach but worried about the user switching or answering the Prompt to allow the machine to be discoverable wrong.