Microsoft Intune

137 Conversations

Latest Activity

Custom List Message Item

Hiya

 

I'm just starting to get to grips with Intune.  I've added a number of ios apps but there is no sign of iPlayer or BBC weather when I search apps there is no sign of it.  If I go to the actual appstore the apps are available there.  Anybody come ac

... Read More
12 Views
0 Reply

Does the Intune Azure Portal show malware?  

 

One of the items monitored on Intune Classic was malware found on my win10 devices.  Is this (or will this be) available in the Intune Azure Portal, or is this available from some other Azure Portal app?

Read More
24 Views
0 Reply

We are using intune to manage the outlook app on iOS.  We've discovered that for some reason the copy/paste isn't allowed from the app itself to the signature block within the app.  Seems this is (oddly) by design?

 

Has anyone else experienced this?  If we

... Read More
29 Views
0 Reply

Has anyone tried in successfully deploying Intune Windows Information Protection on Domain joined Windows 10 PCs? What I meant of domain joined is the presence of an on-premise Windows Active Directory.

 

I get the fact the Windows Information Protection wo

... Read More
45 Views
3 Replies

Hi Christopher,

I am not aware of any customers who have deployed WIP. Here are the document links you requested.

https://docs.microsoft.com/en-us/windows/threat-protection/windows-information-protection/protect-enterprise-data-using-wip

... Read More

Enabling the modern workplace means empowering our users to be productive from anywhere and on any device. Mobile devices are a great way to stay in touch with colleagues, catch up on email, or add the finishing touches to a project. With the power of hav

... Read More
33 Views
0 Reply

Hi I have problem with deleting old device from Intune.

The device was manualy factory reseted by user and now I cannot delete it from Intune. The DELETE "button" is freezed.

Can anyone give me solution, how to solve this issue?

Thanks,bug.jpg

Read More
49 Views
2 Replies

Hi Tomas,

 

Try to click the "Remove Company Data" button first.  That should then enable the Delete button.

 

Let me know if that works for you.

 

Thanks,

 

Kevin

Read More

Hi Everyone,

I'm not sure if this is by design or somewhere in the process there was an error. When i use an on-prem AD account with admin rights to login to a Windows 10 PC and register to Azure AD using my Azure AD account (with Intune, Azure AD P2, Offi

... Read More
65 Views
0 Reply

Is there a way to block Android for Work users to connect to Office 365 with apps that are installed outside of the work profile? 

 

For example on my Android for Work capable device I have a work profile with eg. Outlook, which I can use to read my mail. H

... Read More
54 Views
2 Replies
No, however, you can use Intune Mobile Application Management to wipe the data from the personal profile which should address the concern.
https://docs.microsoft.com/en-us/intune/app-management Read More

Hi,

 

We have a couple of legacy Intune App Protection "With Enrollment" policies that come up with the status "This policy is read-only and will be deprecated in the future. To edit the policy, you can re-create it by adding a new policy."

 

We do not need t

... Read More
145 Views
2 Replies

Any resolution on this Issue? We are seeing the same thing with a Legacy Mobile App Management Policy that is showing "with enrollment" and still seems to be in effect on

... Read More

any luck getting a reply/resolution to this?

Hi,

 

We have following business requirement.

Only the devices issued/approved by IT departmernt should be able to access SharePoint Online. How can we acheive this using conditional or compliance policies?

 

We don't have on prem AD.

 

Thanks,

Read More
215 Views
7 Replies
Best Response confirmed by Vineet Arora (Occasional Contributor)
Are your computers all Azure domain joined? I would say Conditional Access is your friend for this. Do you use Intune?

Hey Vineet,

 

I am aware of the following solution, there could be other options;

 

To find out if a device is issued by the org/is compliant you would need a MDM solution li

... Read More

I originally set up Intune using the client in the silverlight console.   They are all windows 10 devices and didn't realize I should have used the MDM instead.   Is there a way to migrate these over to the the MDM?  If not do I need to unistall the clien

... Read More
82 Views
1 Reply

As far as I know, there is now option to migrate. So you have to remove the Intune client en enroll the device again.

Hi,

 

I am wondering how conditional access actually works with third party apps when in an on-premises Exchange environment. Microsoft states the only native mail/calendar apps are supported when using on-premises Exchange but we experience a variety of be

... Read More
58 Views
0 Reply

Hi,

I was looking for an option under the App protection policies for MAC OS. But the only option you can get from the drop down menu is for Android, iOS & Windows 10. 

 

Dropdown.PNG

 

How do you deploy App protection policies for MAC OS? Is this done differently?

Read More
51 Views
2 Replies

Doesn't look like it's available right now. Hopefully in future. Surely the demand for this in enterprises will increase.

Best Response confirmed by Christopher DelaTorre (Occasional Contributor)
actually it is not supported for macos!

Hi All

 

I have a conditional access policy set to Grant with MFA (among others) - but how often is the MFA challenged? It's not on each login - so it once a day or just once?

 

Thanks

Trent

SharePointCApolicy.PNG

 

 

Read More
76 Views
2 Replies

Check the MFA Settings page to see if you have the 'remember device' checkbox set.

https://account.activedirectory.windowsazure.com/UserManagement/MfaSettings.aspx

MFA.jpg

Read More
Best Response confirmed by Trent Queen (Contributor)

Hi 

 

I've setup MAM policies for Outlook on iOS to require a PIN if the device is not enrolled, which works. When users open the app, they are prompted to enter the PIN.

 

But on Android, the same policy sets a device policy and enforces a phone unlock PIN a

... Read More
218 Views
11 Replies

Hi, if your android device isn´t enrolled, try to enroll it as a Android for Work device (BYOD device) and set up MAM policies (PIN request) only for Outlook application.

Read More

Do you also require data encryption? You may find that with Android requiring encryption this forces the need for a device level passcode.

ADFS Error.PNG

 

We need to renew the APNS certificate for iOS devices, When we request the .CSR file from SCCM console, after we entering the login credentials to download .CSR file, we are receiving the above error

Please help us to get the resolution for download APNs

... Read More
48 Views
1 Reply

Have you tried with an admin account that is cloud only?

 

Having the right data at your fingertips is a must when you’re troubleshooting issues with your end users. Intune’s new Troubleshooting Portal provides a “single pane of glass” for reviewing device status, assignments and policies affecting a user, elim

... Read More
602 Views
1 Reply

Very useful Eric.

 

That reminds me, is there a single source of info about the various time intervals that can impact Intune and mobile devices? E.g. how often does a devi

... Read More

Check out our quick review of Microsoft Ignite cybersecurity coverage, sessions, and tips to help you build your knowledge and effectiveness toward a defensible and modernized workplace.

Read More
50 Views
0 Reply

We have a few Surface Hubs in our organization which I'd like to add to intune.  Obviously these devices should not be associated with a specific user, so I started looking into the Device Enrollment Manager (DEM) feature as a way to join the devices w/o

... Read More
60 Views
0 Reply

I'm trying to test the features of Intune and I've hit a few snags. I've previously set up security policy for iOS, but now I can't get back in to set one up for Windows. When I select Security Policies from the Security Centre menu, it says 'Loading...'

... Read More
36 Views
0 Reply

Hi All,

I was looking for some insights on how large enterprises handle this situation.

Assuming you have IP based restrictions for SharePoint Online OR Conditional access where you created a named location with a set of IPS.
In a scenarios where on the netw

... Read More
120 Views
1 Reply

If you're doing IP-based restrictions, then this becomes a change management issue. Before new IP ranges are added, or existing IP ranges are removed, you should include

... Read More
Best Response confirmed by Priyank Dhutia (Contributor)

People play an important part in cybersecurity. Top talent is critical to the success of your security strategy. But what do you do when there’s a talent shortage in this field? Check out 5 things you can do to fight cybercrime. 

Read the full post here.

Read More
45 Views
0 Reply

You may have seen the news about the “serious weaknesses” in Wi-Fi security protocol WPA2. The exploit, first reported by Ars Technica, made headlines from Tech Crunch, The Verge and ZDNet to Time and Wired. Security researcher Mathy Vanhoef of KU Leuven

... Read More
268 Views
0 Reply
I would like to know why Intune continues to stop New BlackBerry Phones running Android Software from Enrolling. We don't want to support BB10 Devices, but these New BlackBerry Devices are running pure Android and are not even built by BlackBerry anymore.... Read More
119 Views
1 Reply

Have you checked your settings to make sure Android or even Android for Work devices are allowed to enrol?  We have a number of KeyOne's enrolled with no problems.

 

Check

... Read More

Hi everyone,

I'm just seeking a bit of advice on the best way to accomplish this.  We will be asking regional and international users to go to a retail outlet and purchase a Microsoft Surface device (which will be Win10 Professional).  When they bring the

... Read More
169 Views
4 Replies

Depending on your licensing you should be able to use the Windows 10 Enterprise E3/E5 subscription.  You assign the license to the user so when they join the device to AA

... Read More

Hello Noel,

 

I think Windows AutoPilot may be what you are looking to implement as one of the things it can do is automatically convert the device from Windows 10 Pro to E

... Read More