#intune — Public Fediverse posts

🔊 #NowPlaying on #BBCRadio3:

#InTune
- The Sarahbanda live in session

Live Cuban music from The Sarahbanda. Virtuoso jazz guitarist Julian Lage discusses his Royal Festival Hall concert.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vxrh

🔊 #NowPlaying on #BBCRadio3:

#InTune
- The Sarahbanda live in session

Live Cuban music from The Sarahbanda. Virtuoso jazz guitarist Julian Lage discusses his Royal Festival Hall concert.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vxrh

🔊 #NowPlaying on #BBCRadio3:

#InTune
- The Sarahbanda live in session

Live Cuban music from The Sarahbanda. Virtuoso jazz guitarist Julian Lage discusses his Royal Festival Hall concert.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vxrh

🔊 #NowPlaying on #BBCRadio3:

#InTune
- The Sarahbanda live in session

Live Cuban music from The Sarahbanda. Virtuoso jazz guitarist Julian Lage discusses his Royal Festival Hall concert.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vxrh

🔊 #NowPlaying on #BBCRadio3:

#InTune
- The Sarahbanda live in session

Live Cuban music from The Sarahbanda. Virtuoso jazz guitarist Julian Lage discusses his Royal Festival Hall concert.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vxrh

🔊 #NowPlaying on #BBCRadio3:

#InTune
- Petroc talks to Sir John Tomlinson

Sir John Tomlinson on singing Gurnemanz. Piano duo Wu Qian & Juho Pohjonen perform live.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vyws

🔊 #NowPlaying on #BBCRadio3:

#InTune
- Petroc talks to Sir John Tomlinson

Sir John Tomlinson on singing Gurnemanz. Piano duo Wu Qian & Juho Pohjonen perform live.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vyws

Part 2 of my graceful reboot series - a real-world use case: pushing Microsoft's 2026 Secure Boot certificate update via Intune Remediations, with a user-friendly reboot built in.

http://dlvr.it/TSWSCn

#Intune #SecureBoot #PowerShell

Part 2 of my graceful reboot series - a real-world use case: pushing Microsoft's 2026 Secure Boot certificate update via Intune Remediations, with a user-friendly reboot built in.

http://dlvr.it/TSWSCn

#Intune #SecureBoot #PowerShell

Part 2 of my graceful reboot series - a real-world use case: pushing Microsoft's 2026 Secure Boot certificate update via Intune Remediations, with a user-friendly reboot built in.

http://dlvr.it/TSWSCn

#Intune #SecureBoot #PowerShell

Part 2 of my graceful reboot series - a real-world use case: pushing Microsoft's 2026 Secure Boot certificate update via Intune Remediations, with a user-friendly reboot built in.

http://dlvr.it/TSWSCn

#Intune #SecureBoot #PowerShell

Part 2 of my graceful reboot series - a real-world use case: pushing Microsoft's 2026 Secure Boot certificate update via Intune Remediations, with a user-friendly reboot built in.

http://dlvr.it/TSWSCn

#Intune #SecureBoot #PowerShell

🔊 #NowPlaying on #BBCRadio3:

#InTune
- Papagena sing live from their album Tomorrow is Today

Papagena sing live from their new album. Peter Salem on his music for Gentleman Jack.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vxmz

🔊 #NowPlaying on #BBCRadio3:

#InTune
- Papagena sing live from their album Tomorrow is Today

Papagena sing live from their new album. Peter Salem on his music for Gentleman Jack.

Relisten now 👇
https://www.bbc.co.uk/programmes/m002vxmz

Spin up Autopilot test VMs in seconds with HyperV.VMFactory - a PowerShell module for Hyper-V that handles differencing disks, vTPM, Gen 2, custom screen resolution, and bulk creation out of the box.

http://dlvr.it/TSRV0L

#Autopilot #HyperV #PowerShell #Intune

Running Ubuntu 26.04 LTS as a daily driver, enrolled in Microsoft Intune with MDE, and it just works.

Linux endpoint management has come a long way. Zero friction, full compliance.

#Ubuntu #Intune #MDE #Linux #EndpointSecurity #Microsoft

This repo is actively maintained, I'll keep adding scripts and templates as I deploy new policies and configurations in production.

Next up: more Intune hardening configs, sensitivity label policies, and DLP templates.
#BlueTeam #M365 #Intune #EntraID #PowerShell #InfoSec

I've been building out M365 security tooling as a solo IT/Sec engineer and figured it's time to share it publicly

https://github.com/Bluewal/m365-intune-scripts

What's in there:
• Audit-before-block scripts (legacy auth, device code flow, shared mailboxes, admin accounts)
• Conditional Access policy templates (country blocking, device code flow block)
• Defender XDR threat response (axios supply chain attack IOC scan)

Everything is battle-tested in production on a real tenant. Feedback and PRs welcome.

#BlueTeam #M365 #Intune #EntraID #PowerShell #InfoSec

Microsoft now lets admins uninstall Copilot on enterprise devices via a new policy after April 2026 updates ⚙️
The change follows halted auto-installs and past data exposure issues, improving admin control over AI features and data risks 🔐

🔗 https://www.bleepingcomputer.com/news/microsoft/microsoft-now-lets-admins-uninstall-copilot-on-enterprise-devices/

#TechNews #Microsoft #Copilot #Windows #Windows11 #EnterpriseIT #Intune #SCCM #Privacy #Security #AI #DataProtection #FOSS #OpenSource #Cybersecurity #Compliance #ArtificialIntelligence

Spent hours debugging an Intune Win32 app supersedence failure.
Checked mstsc file locks. Reviewed uninstall scripts. Analyzed power events. Pulled device diagnostics.
Claude reads the logs:
"Your uninstall command says uninstall.ps"
...
It's always the typo 🫠
#Intune #MicrosoftEndpointManager #BlueTeam #ITAdmin

🔐 Just shipped a fix for the April 2026 Windows update (KB5083769) that flags unsigned RDP files as "Unknown Publisher".
If you manage RDP shortcuts via Intune and your users are suddenly seeing red security warnings — here's a complete solution:
✅ Self-signed code signing cert (no PKI required)
✅ rdpsign.exe signing workflow
✅ Intune Win32 package (install + uninstall scripts)
✅ Trusted Certificate profile + Settings Catalog policies
✅ Versioned detection rule for clean updates
✅ Supersedence pattern for migrating from unsigned deployments
Tested in production on a real M365 Business Premium environment.
🔗 github.com/Bluewal/m365-intune-scripts/tree/main/intune/rdp-signing
#Intune #Microsoft365 #RDP #BlueTeam #WindowsSecurity #MicrosoftDefender

🔐 Just shipped a fix for the April 2026 Windows update (KB5083769) that flags unsigned RDP files as "Unknown Publisher".
If you manage RDP shortcuts via Intune and your users are suddenly seeing red security warnings — here's a complete solution:
✅ Self-signed code signing cert (no PKI required)
✅ rdpsign.exe signing workflow
✅ Intune Win32 package (install + uninstall scripts)
✅ Trusted Certificate profile + Settings Catalog policies
✅ Versioned detection rule for clean updates
✅ Supersedence pattern for migrating from unsigned deployments
Tested in production on a real M365 Business Premium environment.
🔗 github.com/Bluewal/m365-intune-scripts/tree/main/intune/rdp-signing
#Intune #Microsoft365 #RDP #BlueTeam #WindowsSecurity #MicrosoftDefender

🔐 Just shipped a fix for the April 2026 Windows update (KB5083769) that flags unsigned RDP files as "Unknown Publisher".
If you manage RDP shortcuts via Intune and your users are suddenly seeing red security warnings — here's a complete solution:
✅ Self-signed code signing cert (no PKI required)
✅ rdpsign.exe signing workflow
✅ Intune Win32 package (install + uninstall scripts)
✅ Trusted Certificate profile + Settings Catalog policies
✅ Versioned detection rule for clean updates
✅ Supersedence pattern for migrating from unsigned deployments
Tested in production on a real M365 Business Premium environment.
🔗 github.com/Bluewal/m365-intune-scripts/tree/main/intune/rdp-signing
#Intune #Microsoft365 #RDP #BlueTeam #WindowsSecurity #MicrosoftDefender

🔐 Just shipped a fix for the April 2026 Windows update (KB5083769) that flags unsigned RDP files as "Unknown Publisher".
If you manage RDP shortcuts via Intune and your users are suddenly seeing red security warnings — here's a complete solution:
✅ Self-signed code signing cert (no PKI required)
✅ rdpsign.exe signing workflow
✅ Intune Win32 package (install + uninstall scripts)
✅ Trusted Certificate profile + Settings Catalog policies
✅ Versioned detection rule for clean updates
✅ Supersedence pattern for migrating from unsigned deployments
Tested in production on a real M365 Business Premium environment.
🔗 github.com/Bluewal/m365-intune-scripts/tree/main/intune/rdp-signing
#Intune #Microsoft365 #RDP #BlueTeam #WindowsSecurity #MicrosoftDefender

🔐 Just shipped a fix for the April 2026 Windows update (KB5083769) that flags unsigned RDP files as "Unknown Publisher".
If you manage RDP shortcuts via Intune and your users are suddenly seeing red security warnings — here's a complete solution:
✅ Self-signed code signing cert (no PKI required)
✅ rdpsign.exe signing workflow
✅ Intune Win32 package (install + uninstall scripts)
✅ Trusted Certificate profile + Settings Catalog policies
✅ Versioned detection rule for clean updates
✅ Supersedence pattern for migrating from unsigned deployments
Tested in production on a real M365 Business Premium environment.
🔗 github.com/Bluewal/m365-intune-scripts/tree/main/intune/rdp-signing
#Intune #Microsoft365 #RDP #BlueTeam #WindowsSecurity #MicrosoftDefender

🚀 On April 29th at EUC World Virtual, I’ll be presenting “From Hours to Minutes: Intune App Deployment Made Simple.”

Let’s turn complex Intune deployments into a breeze!

Join me live: https://worldofeuc.org/EUCWorld2026_Virtual

#EUCWorldVirtual #Intune #EUC #WorldofEUC #EUCWorld

Kein Betriebssystem der Welt wird sicherer, wenn man Microsoft Software drauf macht.

#intune #defender #fckYou

Update 🧵
Rules ARE active, Event ID 1121 confirms blocking (WmiPrvSE → HPFirmwareInstaller blocked, LSASS protection firing daily).
But Get-MpPreference returns empty, registry key missing. TVM can't detect them → Secure Score stuck at 22/22 exposed.
Anyone seen this before? #MDE #Intune #DefenderForEndpoint

Update 🧵
Rules ARE active, Event ID 1121 confirms blocking (WmiPrvSE → HPFirmwareInstaller blocked, LSASS protection firing daily).
But Get-MpPreference returns empty, registry key missing. TVM can't detect them → Secure Score stuck at 22/22 exposed.
Anyone seen this before? #MDE #Intune #DefenderForEndpoint

Update 🧵
Rules ARE active, Event ID 1121 confirms blocking (WmiPrvSE → HPFirmwareInstaller blocked, LSASS protection firing daily).
But Get-MpPreference returns empty, registry key missing. TVM can't detect them → Secure Score stuck at 22/22 exposed.
Anyone seen this before? #MDE #Intune #DefenderForEndpoint

Update 🧵
Rules ARE active, Event ID 1121 confirms blocking (WmiPrvSE → HPFirmwareInstaller blocked, LSASS protection firing daily).
But Get-MpPreference returns empty, registry key missing. TVM can't detect them → Secure Score stuck at 22/22 exposed.
Anyone seen this before? #MDE #Intune #DefenderForEndpoint

Weird Intune/MDE issue 🧵
ASR policy (Block PSExec/WMI) shows 38 Succeeded in Intune, but Get-MpPreference returns empty on endpoints and registry key doesn't exist.
AttackSurfaceReductionRules_ProviderSet = 1 in PolicyManager but no actual rule values written anywhere.
Cloud-only, no SCCM. Anyone seen this? #MicrosoftDefender #Intune #MDE

Intune documentation throwing some shade at FileVault
https://learn.microsoft.com/en-us/intune/intune-service/protect/encrypt-devices-filevault
#Microsoft #Apple #Intune #MDM #GlaciesDelendaEst

Intune documentation throwing some shade at FileVault
https://learn.microsoft.com/en-us/intune/intune-service/protect/encrypt-devices-filevault
#Microsoft #Apple #Intune #MDM #GlaciesDelendaEst

Intune documentation throwing some shade at FileVault
https://learn.microsoft.com/en-us/intune/intune-service/protect/encrypt-devices-filevault
#Microsoft #Apple #Intune #MDM #GlaciesDelendaEst

Intune documentation throwing some shade at FileVault
https://learn.microsoft.com/en-us/intune/intune-service/protect/encrypt-devices-filevault
#Microsoft #Apple #Intune #MDM #GlaciesDelendaEst

Intune documentation throwing some shade at FileVault
https://learn.microsoft.com/en-us/intune/intune-service/protect/encrypt-devices-filevault
#Microsoft #Apple #Intune #MDM #GlaciesDelendaEst

Microsoft Intune als Einfallstor! Der Medizintechnikkonzern Stryker wurde Opfer eines Cyberangriffs und die Angreifer nutzten Microsoft Intune als Hebel. Die Folge: globale Betriebsausfälle. Intune ist kein Nischenprodukt. Es ist in Zehntausenden Unternehmen weltweit das zentrale Werkzeug für Geräteverwaltung, Zugriffssteuerung und Softwareverteilung – von KMU bis Konzern, quer durch alle Branchen. #MicrosoftIntune #Stryker #Microsoft #Endpointsecurity #Intune #MDM

𝐇𝐨𝐰 𝐭𝐨 𝐜𝐫𝐞𝐚𝐭𝐞 𝐚 𝐖𝐏𝐀3 𝐖𝐢-𝐅𝐢 𝐩𝐫𝐨𝐟𝐢𝐥𝐞 𝐟𝐨𝐫 𝐖𝐢𝐧𝐝𝐨𝐰𝐬 𝐢𝐧 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐈𝐧𝐭𝐮𝐧𝐞

Microsoft Intune still cannot natively create a Wi-Fi profile with WPA3-Personal security at this time. Within the configuration templates, there is only Wi-Fi with WPA/WPA2 security, but WPA3 is missing.

If you have a Wi-Fi where WPA3 is enforced without hybrid mode with WPA2, then if you create a profile as WPA2, the device will not connect to it. So, if you have WPA3 enforced, you need to configure Wi-Fi using a custom profile and OMA-URI.

https://www.cswrld.com/2026/03/how-to-create-a-wpa3-wi-fi-profile-for-windows-in-microsoft-intune/

#cswrld #microsoft #intune #wifi #wpa3

Lol #Lenovo apparently sent out an already MS #Intune locked device to some individual and then basically told them to suck it as they were sold out with that exact model when they complained...

https://www.reddit.com/r/Lenovo/comments/1rfgtsb/newly_purchased_thinkpad_company_locked/

#ITAdmin #ITSupport #MDM

Breaking, new, by me: Iran-backed Hackers Claim Wiper Attack on Medtech Firm Stryker

A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports out of Ireland, Stryker's largest hub outside of the United States, said the company sent home more than 5,000 workers there today. Meanwhile, a voicemail message at Stryker's main U.S. headquarters says the company is currently experiencing a building emergency.

From the story:

"Wiper attacks usually involve malicious software designed to overwrite any existing data on infected devices. But a trusted source with knowledge of the attack who spoke on condition of anonymity told KrebsOnSecurity the perpetrators in this case appear to have used a Microsoft service called Microsoft Intune to issue a ‘remote wipe’ command against all connected devices."

"Intune is a cloud-based solution built for IT teams to enforce security and data compliance policies, and it provides a single, web-based administrative console to monitor and control devices regardless of location. The Intune connection is supported by this Reddit discussion on the Stryker outage, where several users who claimed to be Stryker employees said they were told to uninstall Intune urgently."

https://krebsonsecurity.com/2026/03/iran-backed-hackers-claim-wiper-attack-on-medtech-firm-stryker/

#stryker #handala #intune #wiper #cybersecurity

🟦 What's New in Microsoft 365 February 2026

February brought focused updates across Copilot Purview Intune and admin tools.
Highlights improve AI efficiency reporting and retention controls for admins.
I distilled the key items MSPs need to know in under 10 minutes.

💡 AI investigation automation
🔹 Cleaner Intune reporting
🎯 Separate Copilot retention

▶︎https://www.hubsite365.com/en-ww/pro-office-365/?id=ea25f076-7d15-f111-8341-7c1e52608b99&topic=35f1a028-c7dd-eb11-bacb-000d3abb299a&theater=true

#Microsoft365 #Copilot #Purview #Intune

ffs

The “Developer 16" MacBook Pro” that my employer sent me does not give me admin privileges and I am not in its sudoers file, so I cannot accept the license terms for #Apple’s #Xcode Command Line Tools, preventing me from running such basics as git.

Also, #Docker Desktop for Mac is not available via the #Jamf “Self Service+” app, only #Podman. Even though the former is available from the #Microsoft #Intune Company Portal on #Windows and I have a license for it.

And even Podman Desktop can’t be set up fully because of the lack of admin privileges.

I repeat: ffs

#Mac #macOS

🚀 Autopilot Device Preparation (Autopilot V2) just got a major boost!
Admins can now configure up to 25 apps to install during OOBE!
📘 Source: http://dlvr.it/TQhzn3
#Autopilot #AutopilotV2 #Intune #EndpointManagement #Windows11 #DevicePreparation #ModernWorkplace #OOBE #MicrosoftEndpointManager

🆕 Introducing the Install Matrix an open source GitHub repo full of PowerShell scripts that help reduce duplicate work making it quick and easy to package apps and reducing overhead when updating them.

Check it out! https://thedxt.ca/2026/01/install-matrix/

#PowerShell #Intune #EUC #GitHub #RMM

https://winbuzzer.com/2025/12/10/microsoft-365-commercial-prices-to-hike-up-to-17-in-2026-as-ai-costs-hit-enterprise-xcxwbn/

Microsoft 365 Commercial Prices to Hike up to 17% in 2026 as AI Costs Hit Enterprise

#Microsoft365 #Inflation #SaaS #EnterpriseIT #PriceHike #CloudSecurity #Microsoft #AI #ITBudget #Intune #TechBusiness #VendorConsolidation

🛠️ Want to deploy & update apps via #Intune — without pricey add-ons? At #PSConfEU 2025, @[email protected] showed how to use #Winget in remediation scripts, plus logs via App Insights. 🎟️ Early bird 2026 tickets → psconf.eu #PowerShell #Automation #EndpointManagement

- YouTube

Excited to welcome @[email protected], #Azure & #Intune MVP, as a featured speaker at #PSConfEU 2026 in #Wiesbaden! Modern management, #automation, and #cloud engineering at scale. 🎟️ #PSConfEU Tickets → psconf.eu #EndpointManagement #ModernManagement #PowerShell

Microsoft Unveils Security Enhancements for Identity, Defense, Compliance https://www.securityweek.com/microsoft-unveils-security-enhancements-for-identity-defense-compliance/ #Management&Strategy #MicrosoftDefender #securityproducts #Microsoft #Copilot #Purview #Intune #Entra

https://winbuzzer.com/2025/11/07/microsoft-puts-configuration-manager-on-annual-update-cycle-pushing-future-to-intune-xcxwbn

Microsoft Puts Configuration Manager on Annual Update Cycle, Pushing Future to Intune

#Microsoft #Intune #ConfigMgr #SCCM #EnterpriseIT #DeviceManagement #CloudMigration #Windows #ITPros #SysAdmin #EndpointManagement #Microsoft365 #Azure #TechNews #SoftwareUpdates