Modern Management – Intune – Enrollment – Part III – iOS and MacOS

Enrollment is the process required to begin managing a device. This session is part 3 of a series focusing on device enrollment in Microsoft Intune. This session focuses on enrollment options and process for iOS and MasOS devices and includes discussion of direct enrollment, DEP and Apple Configurator. Further discussion includes Apple Notification Service and … Continue reading Modern Management – Intune – Enrollment – Part III – iOS and MacOS

Modern Management – Intune – Enrollment – Part II – Windows

Enrollment is the process required to begin managing a device. This session is part 2 of a series focusing on device enrollment in Microsoft Intune. This session focuses on enrollment options and process for Windows devices and includes discussion of direct enrollment, bulk enrollment and autopilot. Further discussion includes Windows Notification Service and also troubleshooting. … Continue reading Modern Management – Intune – Enrollment – Part II – Windows

Modern Management – Intune – Enrollment – Part 1 – Introduction

Enrollment is the process required to begin managing a device. This session is part 1 of a series focusing on device enrollment in Microsoft Intune. This session focuses on several precursor configurations that should be considered prior to or alongside device enrollment for the organization. Topics discussed include Terms and Conditions, strategies for Device Naming, … Continue reading Modern Management – Intune – Enrollment – Part 1 – Introduction

Microsoft Endpoint Manager – Intune – Introduction to MDM and Intune

Intune as a product has been around for several years. Still, many are just getting familiar with it and all that it can do and exactly where it fits in the management landscape. A while back I produced a video to go over the basics. It is a little bit dated by now but still … Continue reading Microsoft Endpoint Manager – Intune – Introduction to MDM and Intune

Multi-workspace View for Azure Sentinel Now in Public Preview

We've had a lot of interest from customers to be able to review multiple workspaces in Azure Sentinel. Prior to this release, this was only available through Azure Lighthouse or, alternatively, you could do cross-workspace KQL queries to view merged data. Now, with the multi-workspace view, you can select multiple workspaces as you enter into … Continue reading Multi-workspace View for Azure Sentinel Now in Public Preview

Tools and Resources to Practice Your Azure Sentinel KQL-fu

I teach a couple KQL courses focused on Azure Sentinel - one beginner and one more advanced. The beginner course (level 100-200), coupled with our KQL docs (aka.ms/KQLDocs), is usually enough though to get customers on the right path to learning the Kusto Query Language. Whenever I deliver an Azure Sentinel workshop, it's the moment … Continue reading Tools and Resources to Practice Your Azure Sentinel KQL-fu

Exporting Events from Disconnected Systems to Ingest into Azure Sentinel

I had the occasion recently to work with a customer that had domain controllers that were disconnected from the Internet, but still wanted to ingest the server event logs into Azure Sentinel. Sifting through research I found there's a myriad of ways to do it (including standing up a Log Analytics gateway) but one of … Continue reading Exporting Events from Disconnected Systems to Ingest into Azure Sentinel

Azure AD and ADFS: change alternateLoginID on arbitrary attribute.

Introduction During one of my engages, the Customer asked me to change the attribute they used as identity source for alternateLoginID from "mail" to another arbitrary attribute. Customer already had in place Azure AD Tenant with a federated domain. At the time of implementation, they choose to implement alternateLoginID using email address as identity so, … Continue reading Azure AD and ADFS: change alternateLoginID on arbitrary attribute.