Bitlocker Intune assignment not silent
We're in a pilot to set up Bitlocker on all of our Entra-joined Windows 10 and 11 clients. We'd like the deployment to occur silently. One of the Windows 11 22H2 that is getting the policy shows the end user a toast notification saying "Encryption…
Configuring New Windows LAPS Settings added in Windows 11 24H2 via Intune
Windows 11 24H2 introduced new Windows LAPS settings, including the ability to use passphrases as passwords and the automatic creation of the managed local account that LAPS utilizes. In Intune, under the Account protection security blade, the Windows…
MECM 2403 : Hotfix
Hello everyone, After upgrading to version 2403, should we install the following hotfixes in order ? [1]https://video2.skills-academy.com/en-us/mem/configmgr/hotfix/2403/28290310 -----We don't have CMG, should we still install this Hotfix…
Question regarding Microsoft Admin Portals app in Conditional Access
If I block access to resource "Microsoft Admin Portals" app from other users than admin users, do I also block normal user or guest user access to Windows Azure Active Directory, so that normal users or guest user can register their 2FA to…
Unblock Toast notifications on Intune multi-app kiosk
I have a system utilising a multi-app kiosk delivered by Intune. The default settings block any and all Toast Notification popups. The system is for a Library setting and the library management system (Libki) session time reminder notifications are being…
Can't configure Windows Hello in O365 Azure inviroment
Hi. I am an administrator in my companys O365 online enviroment. I have watched this youtube guide to setup Windows Hello for Business: https://www.youtube.com/watch?v=A8faHO-bn-0 After setting my policy like this: (I put the user that i sign on to my…
Can no longer log in with PIN. 0xc000015b 0x0 is displayed.
PC kitted with AutoPilot After logging into the PC and leaving it for 2 days, the PIN will not allow me to log in. The following message appears 0xc000015b 0x0 Even if I change the login method to password, The message “Wrong password” is displayed. I…
Can we control New Outlook toggle organization wise
Hi, As of now MS is giving an option to users they can toggle between old and new outlook. Is there any way to control this toggle organization wise. Like if can push a policy to enable the toggle option or disable the toggle option.
Conditional Policy not matching Platform and blocking access
We are implementing a conditional access policy to limit BYOD iPhones to use the Outlook App. We have followed the recommendations…
Active Directory Password Policy: Changing the [Mast Change] Attribute
Hello everyone, Is there an article that specifies how to change the [Mast Change] attribute in Active Directory? I need to modify this parameter for some users to enforce a password change (bypassing the Default Policy - GPO). Are there any certified…
How to block USB Storage devices, but allow specific ones using Intune?
Hi, I'm trying to create a configuration profile with Intune that blocks USB Storage devices, but will allow specific ones based on the Device ID number or serial number. I've tried a number of links including the one below with no luck and the profile…
Intune iOS SDK integration MSAL login page showing as blank page.
Hi, we have integrated and followed the steps to use Intune SDK in iOS for an application we have in house. We have been trying to get the authentication piece working using the MSAL integration to get the account identifier for Intune and apply the…
Conditional Access Policies to allow Guests to Teams
Hi We have a Conditiona Policy to require Compliant Device to access any data/app in MIcrosoft 365 cloud service. We have Microsoft 365 Business Premium licenses. We have a need to allow Guest users to access Teams teams, they are invited to. For this,…
How to Dynamically set time zone for devices in Intune?
Hello Experts, My name is Sumit Kumar Mishra, and I have a query regarding the dynamic time zone setup for Intune-managed devices. I have an understanding of the static time zone assignment through Intune Configuration profiles, but I would like to know…
New remote assistance session is missing in corporate-enrolled Android devices. Please help!
Dear Support, I have enrolled a few Android devices into the following enrollment profiles: 1. Corporate-owned dedicated devices, and 2. Corporate-owned, fully managed user devices. After enrollment is complete, when I checked the overview of the…
Windows Hello - DisablePostLogonProvisioning Intune CSP fails on some client
Hello, we're about to deploy Windows Hello for Business (WhfB) in our Hybrid environment. For that, we're using the Account Protection policy to enable WhfB scoped on user groups. At first, we don't want to force users to enroll WhfB, for which we like…
M365 Installation - Language not found error
HI All, I would like to create an XML file for Microsoft 365 Apps for enterprise, including Visio Plan 2 and Project Professional 2024 (Volume license). The configuration should exclude Access, Groove, Skype, and Publisher. The supported languages should…
How to fix: IEFrafme.dll module not found
We are attmepting to instute Windows Hello for business, and are receiving the following error when installing the Kerberos Server: Set-AzureADKerberosServer : Unable to load DLL 'IEFRAME.dll': The specified module could not be found. (Exception from…
AzureVPN Profile Issue "windows was unable to parse the requested xml data"
Good morning everybody I have created a custom Intune policy to push a VPN profile for AzureVPN to my clients that includes the following OMA-URI: OMA-URI - ./User/Vendor/MSFT/VPNv2/test-c1-vnet-core/ProfileXML Data type: String (XML file) XML was…
Intune Wrapped App Access Blocked for User – "This app has not been set up" Error
Hello, I am facing an issue where an Intune-wrapped app is showing the following error message when a user tries to access it: "App access blocked: This app has not been set up for Mohans@outsystemsDemo.onmicrosoft.com **to use. Contact your…