From my experience I’ve seen this when the SCCM Primary site server are on Server 2016 and Server 2019 and the new DP server is running 2019. If you for example install a new Site server with an Image that does not contain all the latest patches you might run
A few weeks back in Microsofts service release for Endpoint Manager 2208 there was one thing that caught my attention and that was the introduction to a feature that were related to Android Zero Touch. Week of August 15, 2022 (Service release 2208) https://docs.microsoft.com/en-us/mem/intune/fundamentals/whats-new#configure-zero-touch-enrollment-from-microsoft-endpoint-manager-admin-center The documentation on this is somewhat
Apple recently introduced a new feature in iOS 16 called Lockdown mode. This feature is aimed towards the small % of high risk targets of often state-sponsored hacking attempts. https://www.apple.com/newsroom/2022/07/apple-expands-commitment-to-protect-users-from-mercenary-spyware/ “Apple today detailed two initiatives to help protect users who may be personally targeted by some of the most sophisticated
There are a few different ways of getting Single Sign-on (SSO) with Windows Hello For Business (WHfB) up and running for Azure AD devices however in my opinion it has been very complex and the documentation from Microsoft have been hard to get my head around. There are so many
A while back I investigate if there was any possibility to lock down a Windows 10 or 11 device that gets provisioned with Autopilot and enrolled in to Azure AD and Intune to only allow the user who enrolled the device to be able to logon to that specific machine.
This is a follow up article to the one I wrote last week where we had a look at managing updates for our Samsung devices with E-fota and Intune. If you haven’t seen it you can read it here: To be able to enroll and manage our Samsung devices in