User Profile
Rafal_Fitt
Steel Contributor
Joined Apr 19, 2018
User Widgets
Recent Discussions
MDI - licensing for multiple isolated AD forests
Hi, We have the following setup: 400 humans standard AD domain in a single forest (sync'ed via AADConnect to the Entra tenant) 500 AD accounts (user accounts + service accounts), 450 synced to Entra ID (some on-prem service accounts are not synced), 400 accounts with M365 E5 licenses (RBAC accounts do not get any licenses), MDI sensors installed 3 separate dev/UAT/prod AD domains (each in a separate forest, no trusts, isolated): 20 accounts, 300 accounts, 500 accounts (prod AD has many accounts for external clients/consultants/etc). accounts not synchronized to anywhere we want to start using MS Defender for Identity for these domains to sync to the existing MDI workspace. 1. Are these 400 M365 E5 licenses enough for the whole environment (1+3 AD domains) ? 2. If not, what is the final count of licenses needed? 3. how many licenses need to be bought and of which SKU?480Views0likes0CommentsRe: Intune compliance issues Windows 11 22H2
1. hmmm, the latest Nuvoton firmware is 7.2.3.1 - https://www.catalog.update.microsoft.com/Search.aspx?q=nuvoton (from https://learn.microsoft.com/en-us/troubleshoot/windows-server/deployment/pcr7-configuration-binding-not-possible#more-information ) : 2. Open an elevated command prompt, and run the msinfo32 command. In System Summary, verify that BIOS Mode is UEFI, and PCR7 Configuration is Bound. 3. on my desktop: TPM: ID: {GUID} PCR Validation Profile: 7, 11 (Uses Secure Boot for integrity validation) ^^^^^^^^^^^^^ please verify that you can see this above line on your device5.9KViews0likes1Comment
Recent Blog Articles
No content to show