Issue with FIDO2 Security Key Sign-in on Hybrid AD Joined Machine
Hello Team, I am encountering an issue with a Hybrid AD joined machine where I am unable to log in using FIDO2 security keys for Windows Hello for Business. Below are the details of the setup: System Details: Hybrid AD Joined PC: Operating System:…
Set up new company computers on intune to be restricted to work purposes only
Hello, I purchased new laptops running windows 11 pro for the company. I'd like to set up these computers to be restricted to work purposes only. Restrictions such as software or app installations, personal emails, usb and external storage devices,…
Changing per-app VPN profile assignment from user group to device group
Is it possible to swap the assignment of a per-app VPN configuration profile from a user group to a device group without affecting the users? The profile settings will remain the same; only the assignment needs to be changed.
Export & import Intune tenant settings (Windows | Configuration profiles)
I have tried the following but seems like not working between Azure…
What is the product ID for Visio and Project Online Desktop client, in the Office Configuration XML
I am trying to create an xml document to uninstall a previously deployed instance of Visio and Project Online Desktop using intune. In the normal case these apps are removed from the suite using an exclude app tag like: <ExcludeApp…
Intune - MDM ConfigurationManager: Command failure status - Error: The parameter is incorrect.
Hi, to control some Windows workstations, I configured some administrative templates and attack surface reduction policies. The policies seem to be partially pushed to the devices. I see following error: MDM ConfigurationManager: Command failure status.…
How to set up Intune android device custom background?
I am using Intune to manage a fully android device (Tablet 13 Vortex), but every time I go to Configuration> Device Restriction> then Device Experience and put the URL of public background it doesn't work. no matter what kind of link i do, it…
Difference in Windows Hello settings in Device Enrollment and through Configuration Policy
Hello, what is the difference between configuring Windows Hello in the Device Enrollment stack and through Configuration Policy. As far as I understand, only that the policy can be applied to devices. And Enrollemt will be applied to users, no matter…
Creating a json file for Managed Homescreen for Android Devices. Errors with Adding Multiple Apps on the Homescreen
Hello Everyone, Im trying to create a json Data file to enable multiple apps in Managed Homescreen for a Android Device. I have created a File which is working perfecty , just with adding additional Applications gives me issues. So this file works…
how to set system bios serial number as computer name in autopilot
Hello Experts, I need to set computer name as device serial number while doing autopilot process. is there any way to achieve it in autopilot of devices. if yes...how. please help and guide. thanks Rich
How to stop user from accessing google app by using Intune?
I am using Intune to mange a fully corporate android device. But when user sign in they can use Google and search whatever they want, I want to restrict them from using it, but I can't find anything. I want to block google, google message, and contacts…
Microsoft Entra | Permission Management configuration
Hello Guys, While we try to access the Permission management, we are getting the below errors, and we are not able to proceed further.
How to set 'Account lockout duration' with an intune device policy
Good morning For the Security Recommendation "Set 'Account lockout duration' to 15 minutes or more" I want to deploy this setting with the value "15" as a device configuration policy. I know I can set the LockoutPolicy with a OMA-URI…
Windows Device restrictions - Printers
Hello team, Do the printer settings under device restriction configurations support network shared printing? Also, could I please have the steps to set up these settings? Thank you for your help
MacOS FileVault
Hi all, I'm testing FileVault for MacOS and encountered several error codes from different policies (on different devices and tenants). This one says -2016341107 and error code 0x87d1138d. My other friends reported their policy shows -2016341107 with…
DeviceControl Policy for USB block leads to rights / access problems when changing the user
Hello together! We distribute a device control policy via Intune that is intended to prevent access to USB flashdrives, with maintenance of an exception list for certain USB devices. The policy is rolled out to the users. This means that the policy works…
Android phone; Security policy prevents installation of this application
I have user that are using their personal phones to register with Intune to register and that device is compliant. A user has an application that is needing to be updated but is met with this error message " Security policy prevents installation of…
Pushing lock screen background to user machines from Intune
Hi everyone, I am trying to push an image to all Azure joined PCs from Intune. I have the policy set, but keep getting errors. The path is correct C:\folder\image.jpg. I used the Settings Catalog in the configuration profiles when I created it. These are…
Linking Microsoft accounts with GCPW
Hey there I wanted to get some information on linking GCPW with Intune. My ideal scenario is that when a user signs in with GCPW, that then pairs with a Microsoft account and pulls down the correct policy/settings onto the machine depending on the…
0x87d1fde8 Error Code Intune
I've created a Configuration Policy through Intune for Windows devices, so that after one minute of inactivity the laptop goes to lock screen. However I'm getting this error and I have no idea as to why. MaxInactivityTimeDeviceLock DataType:Integer…