your system administrator has blocked this program. for more info contact your system administrator
I am using a domain account and, as per company policy, I cannot create a local account. Additionally, I am unable to access the User Account Control (UAC) window to add or remove programs on this system. Could you please provide assistance with this…
Best Practices for Securing services in the Azure ecosystem : Tools for Access Logging and Monitoring?
Good morning, Our organization utilises Azure for hosting web services, SQL Server instances, and SQL Server on virtual machines to re-design our current data warehouse structure. Ensuring robust data security protection across these environments is…
Deleting and Removing computer object synched hybrid from Entra ID /Azure AD ?
I use Hybrid Azure AD / Entra ID and Intune to deploy and manage the AD computer objects that are joined to OnPremise AD DS. May I know the potential side effects of deleting the device using the below code? Remove-MgDevice -DeviceId Is there any way…
How to move/migrate macOS devices seamlessly from Intune to JAMF?
How to move/migrate macOS devices seamlessly from Intune to JAMF?
DeviceControl Policy for USB block leads to rights / access problems when changing the user
Hello together! We distribute a device control policy via Intune that is intended to prevent access to USB flashdrives, with maintenance of an exception list for certain USB devices. The policy is rolled out to the users. This means that the policy works…
Defender Self loop back VPN + Company VPN
Hello everyone, I'm currently working on iPhone enrollment with the Company Portal and Defender iOS app. I appreciate Defender's local VPN option as it adds web protection, but I noticed when I activate my company VPN (needed for some apps), the…
Role of BitLocker Drive Encryption in Device Migration.
Hi Team, I have a device that is hybrid-joined and co-managed. The system drives are encrypted using BitLocker and the recovery key is stored in Entra. The device is being migrated from one domain to another using a third-party tool called ForensIT User…
Only allow Entra ID devices to make inbound and outbound requests
I have an app service that I want to close down to ALL public access. They can neither read nor write. If you're apart of the companies Entra compliant devices I want to allow them to make inbound and outbound requests. But at the same time I need to…
How to setup Desktop/laptop background wallpaper and Screen Saver via Intune from locally stored on device or SharePoint or OneDrive?
How to setup Desktop/laptop background wallpaper and Screen Saver via Intune from locally stored on device or SharePoint or OneDrive? As I don't see such option in Intune so far which is really not good way to put company details on public sites like…
Intune - Comprehensive Properties of Security Groups
Good morning, For security groups created in the tenant, various custom or default policies can be added from the Intune, Entra ID, and Defender portals. In my case, I have configured several security groups, each with different associated policies and…
FortiGate with EntraID
Hello! Would it be possible to implement the scenario below? Example: When a user logs into the machine, appears in the FortiGate Firewall and then adds an SSO with DL groups? But this whole scenario with Entra ID. We know it is possible with Active…
Intune - Always On VPN Custom Policy Profile deployment
We can't use the built-in Intune based profile deployment, since we are using forced tunneling, and have to use exclusion routes. Therefore we must use the custom ProfileXML based method. Does anyone have experience with this method, and what is the best…
How would I go about setting up CA for our environment, so that MFA isn't required?
So I have been made aware that MS is forcing MFA on their tenants. Now I am still inexperienced when it comes to MS Cloud, Azure and Entra. Now we have a few different tenants and an on-prem environment. Now while we are getting our users on it we will…
Can't create Quick Access configuration - Global Secure Access
When creating Quick Access configuration in Quick Access | Create Quick Access configuration I get: Network access settings Application operation failed. no further information is provided in the error. I do have a connector set up correctly and on in…
Security Baseline for Azure and Office 365
Hi collegues. Is there any security baseline in Azure and Office 365 we could use from Microsoft as an starting point to secure a Tenant in an initial and advanced way? Thanks. Regards
Security requirements to be considered for Microsoft Data Migration
What specific security requirements should be considered in case of Microsoft O365 and Azure Data Migration between tenants. Is there any specific checklist from Microsoft which can be considered as an initial starting point? Thanks. Regards.
How to upgrade Windows 10 Pro and Enterprise OS to Windows 11 Pro or enterprise via Intune policy? What are the steps and things we need to prepare before doing that?
How to upgrade Windows 10 Pro and Enterprise OS to Windows 11 Pro or enterprise via Intune policy? What are the steps and things we need to prepare before doing that?
Are incorrectly enrolled devices able to be queried in Advanced Hunting?
Hi, I am using Advanced Hunting to perform some auditing. I expected some devices to return results, but they are not; and the number of results when I search for all devices is way lower than expected for my queries. After checking the different IDs, I…
Block mobile phones when connected to a device as Removable Storage
Hi all, I'm trying to block all USB removable media connected to my company's laptops to about security breaches. I'm able to block USB pendrives and external hard drives, but If a connect a mobile phone (Android) to a laptop and set the connection to…
Allow Scanning Network Files
Hello, Could you please explain how the “Allow Scanning Network Files” policy functions within the Intune portal, specifically under Endpoint Security > Antivirus? Does enabling this policy mean that Defender will scan network-mapped drives? Thank you…