Recent DiscussionsMost RecentNewest TopicsMost LikesSolutionsTagged:TagRe: SCCM PFE - Intune/Azure PFE SMIntune2020 you should contact your CSAM to see if there is any new update available. The answer depends on when the last time you had the MIP delivered. Re: Delivery Optimization cdorf There is so much I can dig into here. So, let's start here, I would recommend using what's there in Intune for the configuration of DO. Now there is way more configuration that can be done than what you see in that pane. If you look at gpedit.msc on any Windows device you can dig into that and see all the possible configuration options. So step one use Intune (https://docs.microsoft.com/en-us/mem/intune/configuration/delivery-optimization-settings). If more is needed look into gpedit.msc and configure those with CSP via Intune. Ok so that's a lot and if you need more feel free to pm me here on techcommunity. Happy to unpack more and understand more with you if needed. Thanks @sccm_avenger Re: April 8th: Episode 2 - Unpacking endpoint management jhuylebroeck here is the link for episode 2: https://bit.ly/Unpackingendpointmanagementep2 Re: Autopilot Bitlocker PIN + Autopilot GCC High?This is a great ask and something I agree we should look at. Can you please post this in UserVoice so this can be tracked other than in the forum. UserVoice is a tracking mechanism we use to track ask. https://microsoftintune.uservoice.com/forums/291681-ideasRe: Endpoint workloadA lot of customers choose to move Conditional Access or Windows Updates first. I would recommend reviewing your estate and looking at what workload works best for your business. I find the more difficult workload to move is application because of all the depth of application deployment customers can go through with certain applications. In short test them all, review your estate and plan around what makes more sense for your business.Re: Mem device sorting Today no there's not a way to filter groups view like we have the device's pane. This is good feedback and we can take that under consideration. Re: Endpoint/desktop analytics lalanc01 Thanks for the question and interest in Endpoint Analytics. We are working towards adding more capabilities to Endpoint Analytics. I would recommend keeping a pulse on the Endpoint Analytics documentation. Out of curiosity, what capability specifically is top of mind you are looking for? Re: Windows 10 Servicing for customised image vishalkhatpe So, this question can have many answers. So I will stick with a standard "Yes you should be able to service the image" I still have lots of questions that could lead into different dialogue. I have seen also where customers made changes to those images that prevent servicing. Re: C# Intercept and control any internet out call Kladys so a lot of questions here? Are you trying to URL rewrite something, build a tool? If you could share what problem your trying to solve that would help shape the conversation. PM for additional context. Re: Keeping Defender ATP in step with Windows versionsI don't know if an Intune Only Policy exists for MAX Version. May have to look into ADMX or ADMX Backed Policy. We are working on a few different things I can think of that would help coming but nothing to announce or go into detail about. We also released Endpoint Security so maybe there is a setting there you can leverage. So, lots of options in a cloud-only world oof the top of my head I don't know if theres a MAX version.Re: Keeping Defender ATP in step with Windows versions rybo3000 There are a few ways to set that, GP is the 1st thing that comes to mind, but you also have Configuration Manager and EndpointManager Cloud. Another outside the box way could be leveraging compliance in MEM OnPrem or Cloud. Feel free to reply here are DM me if you would like to discuss in more detail and kick some ideas and thoughts. Re: Welcome to the Microsoft CMMC AMA!Hello Everyone, I am Danny Guillory Jr (SCCM_Avenger), chatting to you from St Louis, MO. Happy to be here to support this awesome community. I am a Senior Program Manager in the Customer Acceleration Team (CAT).Re: Feature Updates on Remote Device when we don't have CMG or IBCM in place Samstar777 have you tried CoManagement? Your devices will still need a way to get that CoManagement policy (ie VPN, DA, etc) but it would be a solution. Of course, I am making a few assumptions also if you need more dialogue feel free to PM and we can kick some ideas around. Re: SCCM and deploy Windows 10 Always On VPN Custom profile FrancescoFacco, when you use that scripted method your only limited to your own PowerShell skills so you can then check whatever your requirements are and create or put what's needed from there. Lots of ways you can go here. Feel free to DM me if you want to kick some ideas around. Re: SCCM and deploy Windows 10 Always On VPN Custom profile FrancescoFacco Since you need to make changes have you considered using Configuration Item(s) [Script] to do that evaluation and remediation. Ideally, you can set up a configuration baseline that should be able to do this, that's one option. Another option might be to try different deployments. https://docs.microsoft.com/en-us/mem/configmgr/compliance/deploy-use/create-custom-configuration-items-for-windows-desktop-and-server-computers-managed-with-the-client#bkmk_script Re: PatchingHere is the detail on how to get started with 3rd party patching: https://docs.microsoft.com/en-us/mem/configmgr/sum/deploy-use/third-party-software-updates. If your interest is around the 3rd party patching in this remote world make sure you subscribe to a catalog and provide those 3rd party patches on the CMG/CDP, windows update would not be able to facilitate the google, firefox, etc. product patches. Here is another link to the CMG video on the business continuity site. https://techcommunity.microsoft.com/t5/business-continuity-and-disaster/cloud-management-gateway-what-you-need-to-know-amp-what-s-next/m-p/1358533. Another good link is @Rob York's blog that covers patching in the remote/wfh state we are in today.Re: Co-Management MechanismTough spot for sure. There's not really going to be a good solution here but there are solutions, that are outside the box, Something like using Intune, but still that might have some caveats, and pitfalls. Feel free to reach out via Direct Message and we can chat about some interesting options.Re: WUfB with Co management Malvin711 When you move the slider to Intune the devices will receive the Software Update Policy from Intune, so make sure you deploy a software update policy from Intune. Re: RBAC in Desktop Analytics Karim Slaoui That it's on the backlog, but it is a large chunk of work so not something that will be delivered in the near future. You will likely see small steps toward RBACahead of full-blown RBAC. Re: RBAC in Desktop Analytics Looking into this right now. Will update in a few.
Recent Blog ArticlesNewest TopicsMost LikesTagged:TagSkilling snack: Go cloud first with Windows device management Wherever you are on your cloud-native journey, take the next step confidently. Introducing Microsoft Intune Enterprise App Management Learn about the new addition to the Microsoft Intune Suite for first and third-party application management. Skilling snack: From on premises to the cloud Plan or implement Windows migration from on premises to cloud and learn how to manage Windows cloud PCs. New RBAC capabilities with Configuration Manager and Intune Check out the new role-based access control (RBAC) capabilities in Endpoint Manager. Co-management settings: Windows Autopilot with co-management Take a closer look at co-management settings for Configuration Manager integration with Windows Autopilot. Unpacking endpoint management: the series Get tips. Optimize. Simplify. Next up: October 24-27. - Unpacking Endpoint Management: live from the Technical Takeoff. Cloud Attach Your Future - Part II - "The Big 3" When the global pandemic started, we were all thrust into the new (and very lightly explored) area of managing devices remotely 100% of the time. Of course, everyone rushed to their VPN solution only...Cloud Attach Your Future - Part I - ConfigMgr to AzureAD Groups From the title, you may be wondering what the heck does Configuration Manager have to do with Azure Active Directory (AD) groups. Well, get ready for another lesson. As a Configuration Manager ...Cloud management gateway: addressing common challenges Troubleshoot issues you may encounter setting up CMG as part of your Configuration Manager environment.
MicrosoftMicrosoftMicrosoftMicrosoft
