Server Enrollment in Intune/Azure
Hello, We have multiple production Servers for Different Purpose, and we are using Azure AD to manage users, and to manage Devices we use Intune I wanted to Know can we apply Security Baseline or other Intune Security Policies on these Servers if Yes…
Issues with Intune Configuration Profile for Disabling Microsoft Store
Is there any known conflict between Intune configuration profiles and applying them to Windows 10/11 PCs? I am trying to disable the Microsoft store for non-admin field users to improve our endpoint security. I have already made the profile, tested it on…
TENANT LOCKOUT - FAULTY CONDITIONAL ACCESS POLICY
We have been locked out of our tenant for almost 3 weeks now due to a faulty Conditional Access policy. During these 3 weeks, there have been countless conversations with a number of Microsoft support agents/technicians, none of which seemed to have an…
Can't Recieve SMS Code! Why can't i have the code?
Alright, here the problems -How can i verify my identity if i can't even get the SMS Code? -How can i add alternative email if you guys didn't even send the SMS Code? -How can i add another protection meanwhile this whole system telling me to verify my…
Set up new company computers on intune to be restricted to work purposes only
Hello, I purchased new laptops running windows 11 pro for the company. I'd like to set up these computers to be restricted to work purposes only. Restrictions such as software or app installations, personal emails, usb and external storage devices,…
Export & import Intune tenant settings (Windows | Configuration profiles)
I have tried the following but seems like not working between Azure…
Issue with Removing Local Admin Rights via Intune for Group Members
Hello,, I'm experiencing a challenge with Intune's "Local user group membership" policy on Windows 11. I've been attempting to remove local admin rights from devices, and the policy works as expected when I add individual users. However, when I…
Endpoint defender
I I have intune license why i cant unable it in order to push the devices on board?
How can I restrict Password synchronization when using Edge browser with personal account?
How can I use Group Policy or any other means to avoid password synchronization when using the Microsoft Edge Browser? Only allows it when using the Corporate account.
How to provide answers to the 7 security questions that I created?
I am setting up Microsoft 365 for business and I created 7 security questions for users if they need to reset their password. The problem is that it did not prompt me to provide answers to those 7 security questions. How do I go back and setup the…
Windows Prevent Screen Capturing in specific apps
Hi everyone in our company we use intune to enroll company device, for security reasons we decide to prevent users of screenshooting specific app, we would like to prevent screenshot inside specific application and don't block screen all capture on the…
DeviceControl Policy for USB block leads to rights / access problems when changing the user
Hello together! We distribute a device control policy via Intune that is intended to prevent access to USB flashdrives, with maintenance of an exception list for certain USB devices. The policy is rolled out to the users. This means that the policy works…
How to disable Copilot in Microsoft Edge via Intune policy or any other way?
How to disable Copilot in Microsoft Edge via Intune policy or any other way? See below snap which we see in Microsoft Edge browser
Password change request on next logon isn't request on M365 login, just on-premise AD accounts despite sync
Hello folks, I shortly resume my scenario: I am running a Windows Server 2022 Domain Controller on-premise I deployed Microsoft Entra Connect on this Win Server 2022 DC to sync on-premise AD accounts with Microsoft 365 accounts, enabling password…
Deleting and Removing computer object synched hybrid from Entra ID /Azure AD ?
I use Hybrid Azure AD / Entra ID and Intune to deploy and manage the AD computer objects that are joined to OnPremise AD DS. May I know the potential side effects of deleting the device using the below code? Remove-MgDevice -DeviceId Is there any way…
your system administrator has blocked this program. for more info contact your system administrator
I am using a domain account and, as per company policy, I cannot create a local account. Additionally, I am unable to access the User Account Control (UAC) window to add or remove programs on this system. Could you please provide assistance with this…
Intune - Comprehensive Properties of Security Groups
Good morning, For security groups created in the tenant, various custom or default policies can be added from the Intune, Entra ID, and Defender portals. In my case, I have configured several security groups, each with different associated policies and…
How to block USB devices in Mac from Intune.
Hi tried to block USB devices from Intune was creating the policy and getting the below error. MAC Usb policy .png
Best Practices for Securing services in the Azure ecosystem : Tools for Access Logging and Monitoring?
Good morning, Our organization utilises Azure for hosting web services, SQL Server instances, and SQL Server on virtual machines to re-design our current data warehouse structure. Ensuring robust data security protection across these environments is…
How to move/migrate macOS devices seamlessly from Intune to JAMF?
How to move/migrate macOS devices seamlessly from Intune to JAMF?