How can I restrict Password synchronization when using Edge browser with personal account?
How can I use Group Policy or any other means to avoid password synchronization when using the Microsoft Edge Browser? Only allows it when using the Corporate account.
Endpoint defender
I I have intune license why i cant unable it in order to push the devices on board?
How to provide answers to the 7 security questions that I created?
I am setting up Microsoft 365 for business and I created 7 security questions for users if they need to reset their password. The problem is that it did not prompt me to provide answers to those 7 security questions. How do I go back and setup the…
Windows Prevent Screen Capturing in specific apps
Hi everyone in our company we use intune to enroll company device, for security reasons we decide to prevent users of screenshooting specific app, we would like to prevent screenshot inside specific application and don't block screen all capture on the…
DeviceControl Policy for USB block leads to rights / access problems when changing the user
Hello together! We distribute a device control policy via Intune that is intended to prevent access to USB flashdrives, with maintenance of an exception list for certain USB devices. The policy is rolled out to the users. This means that the policy works…
How to disable Copilot in Microsoft Edge via Intune policy or any other way?
How to disable Copilot in Microsoft Edge via Intune policy or any other way? See below snap which we see in Microsoft Edge browser
Password change request on next logon isn't request on M365 login, just on-premise AD accounts despite sync
Hello folks, I shortly resume my scenario: I am running a Windows Server 2022 Domain Controller on-premise I deployed Microsoft Entra Connect on this Win Server 2022 DC to sync on-premise AD accounts with Microsoft 365 accounts, enabling password…
Deleting and Removing computer object synched hybrid from Entra ID /Azure AD ?
I use Hybrid Azure AD / Entra ID and Intune to deploy and manage the AD computer objects that are joined to OnPremise AD DS. May I know the potential side effects of deleting the device using the below code? Remove-MgDevice -DeviceId Is there any way…
your system administrator has blocked this program. for more info contact your system administrator
I am using a domain account and, as per company policy, I cannot create a local account. Additionally, I am unable to access the User Account Control (UAC) window to add or remove programs on this system. Could you please provide assistance with this…
Issue with Removing Local Admin Rights via Intune for Group Members
Hello,, I'm experiencing a challenge with Intune's "Local user group membership" policy on Windows 11. I've been attempting to remove local admin rights from devices, and the policy works as expected when I add individual users. However, when I…
Intune - Comprehensive Properties of Security Groups
Good morning, For security groups created in the tenant, various custom or default policies can be added from the Intune, Entra ID, and Defender portals. In my case, I have configured several security groups, each with different associated policies and…
How to block USB devices in Mac from Intune.
Hi tried to block USB devices from Intune was creating the policy and getting the below error. MAC Usb policy .png
Best Practices for Securing services in the Azure ecosystem : Tools for Access Logging and Monitoring?
Good morning, Our organization utilises Azure for hosting web services, SQL Server instances, and SQL Server on virtual machines to re-design our current data warehouse structure. Ensuring robust data security protection across these environments is…
How to move/migrate macOS devices seamlessly from Intune to JAMF?
How to move/migrate macOS devices seamlessly from Intune to JAMF?
Defender Self loop back VPN + Company VPN
Hello everyone, I'm currently working on iPhone enrollment with the Company Portal and Defender iOS app. I appreciate Defender's local VPN option as it adds web protection, but I noticed when I activate my company VPN (needed for some apps), the…
Role of BitLocker Drive Encryption in Device Migration.
Hi Team, I have a device that is hybrid-joined and co-managed. The system drives are encrypted using BitLocker and the recovery key is stored in Entra. The device is being migrated from one domain to another using a third-party tool called ForensIT User…
Only allow Entra ID devices to make inbound and outbound requests
I have an app service that I want to close down to ALL public access. They can neither read nor write. If you're apart of the companies Entra compliant devices I want to allow them to make inbound and outbound requests. But at the same time I need to…
How to setup Desktop/laptop background wallpaper and Screen Saver via Intune from locally stored on device or SharePoint or OneDrive?
How to setup Desktop/laptop background wallpaper and Screen Saver via Intune from locally stored on device or SharePoint or OneDrive? As I don't see such option in Intune so far which is really not good way to put company details on public sites like…
FortiGate with EntraID
Hello! Would it be possible to implement the scenario below? Example: When a user logs into the machine, appears in the FortiGate Firewall and then adds an SSO with DL groups? But this whole scenario with Entra ID. We know it is possible with Active…
Intune - Always On VPN Custom Policy Profile deployment
We can't use the built-in Intune based profile deployment, since we are using forced tunneling, and have to use exclusion routes. Therefore we must use the custom ProfileXML based method. Does anyone have experience with this method, and what is the best…