User Profile
joeyvldn
Brass Contributor
Joined 5 years ago
User Widgets
Recent Discussions
Re: Default to be set as Calibri
Sorry to see your post only now. You could have wrote a comment on the blog which i would have seen much faster. I have an example script here. Maybe this helps? Note: This script was based on a one-time deploy script and running as a scheduled task. The blog was later modified to use the proactive remediation script. The contents of the script are mostly the same. Take a look here: PS. Don't know anymore which font this was. https://github.com/j0eyv/scripts/blob/main/UEM_OutlookBranding_Example.ps1Block upload of specific file types bug?
Hi, For one of our customers we have configured the setting "Block upload of specific file types". Here we have crt configured as file type. Now, we see that people who are syncing folders (not files) which end with .crt are also blocked from syncing. Is this normal behavior or a bug? I'm looking for people who are willing to test this in their tenant/test and verify your results.Re: Offboarding Defender for Endpoint
You can try to offboard the device via the API. Pick thr device guid/id as shown in DFE. Not sure if the correct post syntax is shown on the page below but should be a good starting point. https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/offboard-machine-api?view=o365-worldwideRe: NPS extension for Azure MFA and MFA prompts
Agree. Try to convince the customer to switch to SAML unless of the design. We implemented Palo Alto VPN into Azure AD as an Enterprise App many times. This is the preferred method to my opinion. https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/palo-alto-networks-globalprotect-tutorialRe: Azure AD Sign-in to Azure VMs fails due to enforced MFA (I think)?
For my information. You are logging in to a local Windows 10 device without any issue? While trying to connect to a Azure VM (via RDP) with SSO from the local Windows 10 device it fails after the 14 days expire? When u have configured MFA for your user object it should not show the 14 days reminder. So i guess; 1: MFA is not configured for the user account logging in 2: There must be a CA policy requiring MFA? Could you show your CA policies? What happens if u exclude the user from the CA policies?Re: Conditional Access - Persistent browser session and LastPass SSO
Hi skywalker98, Is this the user who is using WHfB? Check previous sign-in logs to determine which sign-in was prompted for MFA. If not. Is the Per-user MFA configured as enforced for this user? I would recommend to focus on implementing WHfB. Windows sign-ins with WHfB are automatically protected by MFA and thus portal.office.com would be flagged as "previously satisfied".Re: Azure MFA (through Conditional Access) with MFA Trusted IPs - Expected Behaviour?
How is the windows sign in done? WHfB? To my opinion this is expected behavior in a inprivate mode. Can you check the Azure AD sign-in logs in the CA tab? I would never exclude corporate offices/subnets from MFA. I would always require MFA for all sign-ins. Try to migrate to Windows Hello for Business to make sign-ins protected by MFA and bring SSO to the next level.Re: Conditional Access - Persistent browser session and LastPass SSO
Azure AD joined devices and cloud apps like portal.office.com would do SSO if everything is configured correct. So yes, it can be because of your current config. Is the Windows logon done by WHfB? I guess not? How are all your CA policies configured? What is the Azure AD sign-in log telling you?ARM Template: Prevent VM from starting after deployment
Hi all, I just created a new Azure ARM template to deploy virtual machines. I've configured a scheduled shutdown task in it to make sure it shuts down at the end of the day. After deploying the ARM template the virtual machine is started immediately. I want to prevent this in my ARM template if that's possible. I don't see anything in the API documentation about this: Microsoft.Compute/virtualMachines 2020-06-01 - ARM template reference | Microsoft Docs Anyone a creative idea to prevent a VM from booting after deployment?
Recent Blog Articles
Re: Welcome to Microsoft Inspire 2023: Introducing Microsoft 365 Backup and Microsoft 365 Archive
As an MSP we use third party tooling for this which works great actually. No complaints about this. It would be great to have this under 1 hood. I'm curious about M365 Backup and how it integrates wi...
