When you host your email on the Exchange Online (EXO) platform part of Office365 you can implement several security measures to make sure that email send from your domain gets delivered to the mailbox of the recipient. The most known solution for this is by implementing a Sender Policy Framework (SPF) DNS record. By creating…
Intune: Choosing whether to assign to User or Device Groups
One of the disadvantages of being an experienced consultant in IT is the fact that once in a while you need to re-learn. With re-learn I mean that for some concepts it’s easier to understand how it works if you come from no-experience. I’ve experienced this with quite some Microsoft products as well. If you…
Report-only mode, and some more handy reporting functionality for Conditional Access and Azure AD
During its annual Microsoft Ignite 2019 conference this week, Microsoft announced a new feature for Conditional Access called Report-Only mode in preview. So, what is Report-only mode? Report-Only mode is a new option within a Conditional Access policy. Besides the option to turn the conditional access policy on or off, the option to Report-only has…
What are Guided Scenarios in Microsoft 365 Device Management/Intune?
While browsing the new Microsoft 365 Device Management portal I noticed the following option: “Guided scenarios (preview)”. From the What’s new in Intune page it seems that this functionality was released in the release of October 14th 2019. Disclaimer: This post is written on Oktober 29th 2019 and reflects the state of this functionality at…
iOS restore behaviour when re-enrolling devices with backup data into Intune
While implementing Intune at my customers I rarely encounter green field implementations where computers and mobile devices are newly delivered and no data needs to be restored on the device. Most of the time, the devices are already in use and we need to figure out some strategy to deal with the data from the…
What are Intune Policy Sets?
Starting with the Intune release from October 14th 2019, Microsoft made available a new functionality called “Policy Sets”. Even though there a now (at time of writing this article) still in preview, they are a very welcome addition to the Intune options available. Added November 29th: Please make sure to also read about Guided scenario’s…
Extending Conditional Access to Microsoft Cloud App Security using Conditional Access App Control
In my blog article series on Conditional Access Demystied I mentioned that Conditional Access can be used to route sessions toward Microsoft Cloud App Security (MCAS). In this article I will go into more detail on what MCAS is, and how to setup Conditional Access App Control. Disclaimer: This article discusses the full option MCAS…
Litetouch deployment failed, Return Code = -2147467259 0x80004005 when installing Surface Pro 6 devices using MDT
TL;DR; – When reinstalling Windows on a Surface Pro 6 and it fails, make sure that you “temporarely” disable the ” Enable boot configuration lock” option and try again. At one of my customers we are using MDT to install Surface Pro 6 devices in order to make sure that the latest version of Windows…
Ask yourself if you still really need ADFS
In Q1 2017 Microsoft released the Pass Through Authentication (PTA) functionality as part of Azure AD connect. With the release of Azure Active Directory (Azure AD) Pass-through Authentication allowed for your users to sign in to both on-premises and cloud-based applications using the same passwords without the need to implement a Active Directory Federation Services…
Conditional Access demystified, part 8: Resources and further references
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is the last part of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does…
Conditional Access demystified, part 7: Modifying Conditional Access to suit your special needs
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 7 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 6: Troubleshooting Conditional Access
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 6 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 5: Implementing Conditional Access
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 5 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 4: Designing a Conditional Access strategy
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 4 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 3: How does Conditional Access work?
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 3 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 4: Designing a Conditional…