Category: Security

Block Linux enrollment into Microsoft Intune with Conditional Access

Conditional Access, Linux, Microsoft Intune, Modern Management, Security 3 comments

Microsoft recently released the option to be able to enroll and manage devices running Linux (Ubuntu at this time) in Microsoft Intune. https://learn.microsoft.com/en-us/mem/intune/fundamentals/whats-new?source=recommendations#linux-device-management-available-in-microsoft-intune https://learn.microsoft.com/en-us/mem/intune/user-help/enroll-device-linux If you want to start playing around with this new feature, I highly recommend checking out Paul Winstanley (SCCMentor) article on it here: https://sccmentor.com/2022/10/19/first-steps-into-linux-management-via-microsoft-intune/ No Enrollment

Continue reading

Issue Installing ConfigMgr Distribution Point – Error = 0x800706BA

Endpoint Manager, Security 3 comments

From my experience I’ve seen this when the SCCM Primary site server are on Server 2016 and Server 2019 and the new DP server is running 2019. If you for example install a new Site server with an Image that does not contain all the latest patches you might run

Continue reading

Lockdown Mode in iOS 16 – What happens if the device is already managed ?

Apple, Endpoint Manager, iOS, Security One comment

Apple recently introduced a new feature in iOS 16 called Lockdown mode. This feature is aimed towards the small % of high risk targets of often state-sponsored hacking attempts. https://www.apple.com/newsroom/2022/07/apple-expands-commitment-to-protect-users-from-mercenary-spyware/ “Apple today detailed two initiatives to help protect users who may be personally targeted by some of the most sophisticated

Continue reading

Single Sign-on with Windows Hello For business on Azure AD devices using cloud trust

Endpoint Manager, Modern Management, Passwordless, Security, Windows 11, Windows Hello For Business, Windows Hello For Business 5 comments

There are a few different ways of getting Single Sign-on (SSO) with Windows Hello For Business (WHfB) up and running for Azure AD devices however in my opinion it has been very complex and the documentation from Microsoft have been hard to get my head around. There are so many

Continue reading

HP Elitebook 820 G4 – Bitlocker issue with BIOS firmware version 01.05

Security, Troubleshooting 3 comments

TLDR; Bitlocker issue for model HP Elitebook 820 G4 with BIOS firmware 01.05. Solution: upgrade to 01.06   The following versions of the Elitebook also are affected and can use the same BIOS. Elitebook 840 G4 Elitebook 850 G4 The issue   Earlier today I stumble upon an issue with

Continue reading

LAPS Powershell installation script for Domain controllers

Guides, Security Leave a comment

Continuing with LAPS, if you don’t know what LAPS is you should read this https://technet.microsoft.com/en-us/mt227395.aspx?f=255&MSPPError=-2147217396 And take a look at my earlier post https://timmyit.com/2017/03/19/quick-overview-of-local-administrator-password-solution-laps/   Steps to Install So, I created a powershell script that will help install LAPS on your DC and configure most of the things automatically tho

Continue reading