A while back I investigate if there was any possibility to lock down a Windows 10 or 11 device that gets provisioned with Autopilot and enrolled in to Azure AD and Intune to only allow the user who enrolled the device to be able to logon to that specific machine.
Here’s just a quick one about DPC extras when enrolling a device with Android Zero Touch that might come in handy. android.app.extra.PROVISIONING_LEAVE_ALL_SYSTEM_APPS_ENABLED Android documentation https://developer.android.com/reference/android/app/admin/DevicePolicyManager.html#EXTRA_PROVISIONING_LEAVE_ALL_SYSTEM_APPS_ENABLED System Apps are applications that comes on the device out of the box, this means its all apps that the manfucaturer has put on the
If you have been working with OEMConfig in Intune for Samsung devices you might have seen that there are some specific policies that says “Premium Features” on them when looking through the list of settings. https://www.samsungknox.com/en/solutions/it-solutions/knox-platform-for-enterprise How to claim your 2 year free license Go to https://www.samsungknox.com/ and login if
This is a follow up article to the one I wrote last week where we had a look at managing updates for our Samsung devices with E-fota and Intune. If you haven’t seen it you can read it here: To be able to enroll and manage our Samsung devices in
As an IT Admin you are probably familiar with the different processes and tools to manage updates for your Windows devices and servers in one form or fashion. For our Windows environment we have options like WSUS , ConfigMgr and Windows update for business if we want to have some
The Test DPC (Device Policy control) app is a tool from google that works without any integration with a MDM/EMM system that lets us demo and configure settings and policies on a device locally. Meaning that you don’t need access or have your Intune or Endpoint Manager environment up and