Recast’s Endpoint Management Recap – July 2023

Welcome to Recast’s Endpoint Management Recap, July 2023 – by Daniel Engberg

Hello!

I hope this message finds you in good spirits! As I write this newsletter, I eagerly anticipate our second child’s arrival, who could drop any day now. But before I head off on my vacation and paternity leave, I couldn’t wait to share this month’s Endpoint Management Recap with you!

Amidst the excitement of our new family member, there’s also plenty happening in the tech world. You might have heard about rebranding Azure AD to Entra, which will be gradually rolled out during the second half of 2023. It’s a change that promises new possibilities and enhancements for our Microsoft ecosystem.

Despite the summer season, the community has been buzzing with activity, creating an abundance of valuable content. There’s no shortage of knowledge-sharing, from informative articles to helpful video blogs and podcasts.

Here’s this month’s Endpoint Management Recap, packed with all the essential developments and highlights you need to stay informed.

See you again in August with more exciting news and content!

Best regards,

– Daniel Engberg

Contents – Endpoint Management Recap

• Events / Conference News
• Microsoft Product Announcements
• Community Tools / News
• Recast Updates

Upcoming Events

• SpiceWorld – Austin, TX – September 5-7, 2023
• Modern Endpoint Management EMEA Summit 2023 – Issy-les-Moulineaux, France – September 6-7, 2023 – Call for Speakers at Sessionize.com
• Workplace Ninja Summit – Baden, Switzerland – September 27-29, 2023
• AppManagEvent – Utrecht, Netherlands – October 6, 2023
• Techorama – Utrecht, Netherlands – October 09 – 11, 2023
• MMS – Midwest Management Summit – MMS 2023 Miami Beach Edition – October 30 – November 1, 2023

Check out Recast Software’s new SysAdmin Event and Tradeshow page, which compiles noteworthy events for the IT and SysAdmin community taking place around the globe.

On July 11th, Microsoft made a significant announcement, revealing their plan to rebrand Azure Active Directory as Entra. It’s a move that has captured the attention of the tech community, and we’re all curious to see how this transformation unfolds. The renaming process is scheduled to occur sometime during the second half of 2023, marking a new era for the identity and access management service.

You can read more about it in the Microsoft Entra Identity Developer Blog for further details:

• Azure AD is being renamed to Microsoft Entra ID | Microsoft Entra Identity Developer Blog

As the transition progresses, we’ll also rename this section to Entra in the upcoming months, reflecting the exciting changes within the Microsoft ecosystem.

Find the rest of the updates from Microsoft below.

Products

Microsoft Azure Active Directory (Entra) [What’s New Page]

• Cloud apps, actions, and authentication context in Conditional Access policy – Microsoft Entra | Microsoft Learn

Microsoft ConfigMgr [What’s New Page] [Tech Community] [Virtual Hub][MS QA][Reddit][Feedback]

• Importing updates into WSUS is changing – Microsoft Community Hub
• Update rollup for Microsoft Configuration Manager version 2303 – Configuration Manager | Microsoft Learn

Microsoft 365

• Provisioning a Microsoft 365 Developer Tenant and Assigning Roles to Team Members

Microsoft Intune [What’s New Page]

• Enrolling Microsoft Teams phones and Microsoft Teams Rooms on Android in Microsoft Intune – Microsoft Community Hub
• Support statement for supported versus allowed macOS versions for devices without a primary user – Microsoft Community Hub
• Learn about Windows Driver updates policy for Windows 10 Windows 11 devices in Intune | Microsoft Learn

Microsoft Windows [What’s New Page]

• Windows Client
  • Windows client roadmap update: July 2023 – Microsoft Community Hub
  • Multi-app kiosk mode now available in Windows 11! – Microsoft Community Hub
• Windows Server
• Windows 365
  • Windows 365 Frontline is now generally available | Windows IT Pro Blog (microsoft.com)
  • Public preview: Windows 365 alerts for Cloud PCs in grace periods – Microsoft Community Hub
  • Windows 365 Frontline is now generally available | Windows IT Pro Blog (microsoft.com)

Security Alerts and Info [Microsoft Security Portal – Security Update Guide]

Other

• Hardware-backed device attestation powers mobile workers – Microsoft Community Hub
• HP Developers Portal | Customize HPIA Reference FIles
• Streamline Endpoint Security and Manageability with BLOBs | Dell Ireland
  

Podcasts / Blog Series / Video Blogs‍

• Cloud native certificate enrollment via Microsoft Intune (Part 1/3) – SCEPman – Manage The Cloud Jeroen Ebus (manage-the.cloud) – Jeroen Ebus (@JeroenEbus)
• Deploy macOS Configuration Profiles – Comprehensive guide – YouTube – Andy Jones (@Andy_69Jones)
• Cloud native certificate enrollment via Microsoft Intune (Part 2/3) – Intune Configuration – Manage The Cloud Jeroen Ebus (manage-the.cloud) – Jeroen Ebus (@JeroenEbus)
• Let’s get started with Intune! – YouTube – Travis Roberts (@Ciraltos)
• What is Entra Global Secure Access? – YouTube –  HTMD Community (@htmdcommunity)
• Intune + driver update management with Jannik Reinhard – YouTube – Niklas Tinner & Jannik Reinhard (@NiklasTinner & @jannik_reinhard)
• Embrace the Future Endpoint – Part 3 – SIMSEN blog – Simon Eriksen (@Sim0nEriksen)

Blog Posts

Intune

• Custom compliance policy script with multiple checks (endpointcave.com) – René Laas (@mr_helaas)
• Intune – You can now manage Windows drivers update with Intune (hametbenoit.info) – Benoit Hamet (@benoit_hamet)
• Download And Install Surface App For Microsoft Surface PCs HTMD Blog (anoopcnair.com) – Jitesh Kumar (@jitesh8092)
• Intune Architecture And Sample Architecture Diagram Explained HTMD Blog (anoopcnair.com) – Vidya M A (@Vidyasasidhara)
• Secure Windows Devices With Intune Application Control Policy Managed Installers HTMD Blog (anoopcnair.com) – Jitesh Kumar (@jitesh8092)
• Streamlining Primary User UPN Fix in Intune Using PowerShell – All about Microsoft Endpoint Manager (eskonr.com) – Eswar Koneti (@eskonr)
• Disabling automatic updates on selected devices Using Intune – All about Microsoft Endpoint Manager (eskonr.com) – Eswar Koneti (@eskonr)
• Setup virtual MacOS Sonoma to Intune – SIMSEN blog – Simon Eriksen (@Sim0nEriksen)
• Run on-demand Remediation script on Intune device with PowerShell and MS Graph | Syst & Deploy (systanddeploy.com) – Damien Van Robaeys (@syst_and_deploy)
• Disable Software Update Notifications on macOS Using Intune (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
• Driver and firmware update via Intune – Just about the Modern Workplace (joostgelijsteen.com) – Joost Gelijsteen (@Jgelijsteen)
• Playing around with Driver Updates in Intune – CCMEXEC.COM – Enterprise Mobility – Sassan Fanai (@sassan_f)
• Intune + driver update management – concept summary (oceanleaf.ch) – Niklas Tinner (@NiklasTinner)
• Easily configuring the Intune Management Extension as managed installer for Windows Defender Application Control – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
• Create dynamic Azure AD Group for Autopilot deployment – MSB365 – Drago Petrovic (@_DragoPetrovic)
• Using on-demand Remediation to collect all logs you want on Intune devices | Syst & Deploy (systanddeploy.com) – Damien Van Robaeys (@syst_and_deploy)
• PowerShell Functions to Invoke an Intune Remediation Script on Demand and View Remediation States (smsagent.blog) – Trevor Jones (@SMSagentTrevor)
• Automate your minimum OS build in your Compliance Policies – Endpoint Cave – René Laas (@mr_helaas)
• Monitor MacOS Update Installation Status From Intune HTMD Blog (anoopcnair.com) – Jitesh Kumar (@jitesh8092)
• Import Reuseable EPM Certificates in Intune automated (rozemuller.com) – Sander Rozemuller (@SandeRozemuller)
• Intune Licensing as of 7/8/2023 – Ciraltos – Travis Roberts (@Ciraltos)
• Intelligent Phased Windows Update for Business Deployments · Battles with Modern Device Management (ennbee.uk) – Nick Benton (@ennnbee)
• Getting started with Windows driver update management – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
• App update via vendor URL and remediation | scloud – Florian Salzmann (@FlorianSLZ)
• Intune Windows Update Compliance Reporting Automation & Email Subscription | Intune Patching Report – YouTube – Chander Mani Pandey (@Mani_CMPandey)
• Drivers Inventory dashboard on devices with Intune and Log Analytics | Syst & Deploy (systanddeploy.com) – Damien Van Robaeys (@syst_and_deploy)
• Set MacOS Device Name to Serial Number using Intune (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
• Enable network authentication with Azure AD only joined devices & Intune (oceanleaf.ch) – Niklas Tinner (@NiklasTinner)
• Prevent All Accessing Dangerous Websites Policy Using Intune HTMD Blog (anoopcnair.com) – Abhinav Rana
• Working with Scripts for detection rules with Win32app for Intune apps – Piesik.me – Jakub Piesik (@dzejzipl)
• Intune Service Release Numbers, Monthly Updates, & New Features (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
• Intune July Update 2307 New Features Improvements HTMD Blog (anoopcnair.com) – Jitesh Kumar ((@jitesh8092)
• Best Way To Set Wallpaper In MacOS Using Intune HTMD Blog (anoopcnair.com) – Snehasis Pani
• Getting started with Mobile Application Management for Windows – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
• Why Accepting Apple New Terms Conditions Is Important For Intune Communication HTMD Blog (anoopcnair.com) – Jitesh Kumar ((@jitesh8092)
• Intune RBAC Role For Windows Drivers Update Management HTMD Blog (anoopcnair.com) – Jitesh Kumar ((@jitesh8092)
• Configure Time Zone using Intune for Windows Devices (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
• Ambient Authentication For InPrivate And Guest Profiles Policy Using Intune HTMD Blog (anoopcnair.com) – Abhinav Rana
• Drivers Inventory dashboard on devices with Intune and Log Analytics | Syst & Deploy (systanddeploy.com) – Damien Van Robaeys (@syst_and_deploy)
• Intune – It is now easier to remove Windows Autopilot registration (hametbenoit.info) – Benoit Hamet (@benoit_hamet)
• Using Intune remediation – check the windows license activation is subscription or KMS based – All about Microsoft Endpoint Manager (eskonr.com) – Eswar Koneti (@eskonr)

ConfigMgr

• Unified Update Platform with ConfigMgr (uup) for Windows 11 updates – Texas Tech Squad (txtechsquad.com) – Matt Aljanabi (@muthmsir)
• SCCM 2303 KB21010486 Hotfix Rollup – Fixes and Improvements (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)

Windows 11

• Windows 11 Multi-App kiosk – a first look – CCMEXEC.COM – Enterprise Mobility – Jörgen Nilsson (@ccmexec)
• Windows 10 is Dead! Migrate to 11 immediately! (skiptotheendpoint.co.uk) – James Robinson (@SkipToEndpoint)

Windows 365

• Setup Windows 365 Frontline Cloud PC Provisioning Policy (prajwaldesai.com) – Prajwal Desai (@PrajwalDesai)
• Windows 365 end user improvements – open in browser, open in desktop app | just another windows noob ? (niallbrady.com) – Niall C. Brady (@ncbrady)

Cloud Security

• How to Enable the New Security Settings Management Feature in Defender Security Portal – EMS Route – Shehan Perera (@Shehanperera85)
• MS Defender for Endpoint Policy Tips #01 – Beware of this policy! (securityninja.cloud) – James Agombar (@JamesAgombar)
• MDE Troubleshooting Tools | Microsoft Defender for Endpoint – YouTube – HTMD Community (@htmdcommunity)
• Creating supplemental Application Control policies for the base Application Control policies created with the built-in controls – All about Microsoft Intune (petervanderwoude.nl) – Peter van der Woude (@pvanderwoude)
• Manage endpoint security policies in MDE (ms365news.com) – Rene Vlieger (@RVlieger)
• Microsoft Improves and Simplifies Defender for Endpoint Management Capabilities – campbell.scot | @rucam365 – Ru Campbell (@rucam365)
• No more passwords – Virtualwarlock.net – Kasper Johansen (@KasperMJohansen)

 Other SysAdmin Info

• Quiet installation of Juniper Secure Connect – Piesik.me – Jakub Piesik (@dzejzipl)
• Google Chrome Single Sign On (SSO) | Azure AD | scloud – Florian Salzmann (@FlorianSLZ)
• Translating Windows Update Driver Names to Friendly Driver Names (smsagent.blog) – Trevor Jones (@SMSagentTrevor)
• Dynamic User and Device Enumeration on steroids | by Daniel Petri | Jul, 2023 | Medium – Daniel Petri (@danielpetri666)
• Mac-on-Mac: Running a Virtual macOS using Parallels Desktop (intuneirl.com) – Somesh Pathak (@pathak_somesh)
• Configure Extensible Single Sign-On For MacOS Devices HTMD Blog (anoopcnair.com) – Snehasis Pani
• Working with Extensions for Edge via Admin Portal! – Piesik.me – Jakub Piesik (@dzejzipl)
• Unveiling a new version of M365Documentation PowerShell Module: Creating Markdown Documentation with Ease – Workplace Ninja’s (wpninjas.ch) – Thomas Kurth (@ThomasKurth_ch)
• Create a Windows Driver update approval report with Logic Apps | Peter Klapwijk – In The Cloud 24-7 (inthecloud247.com) – Peter Klapwjik (@inthecloud_247)
• New Microsoft Entra Portal Walkthrough HTMD Blog (anoopcnair.com) – Vidya M A (@Vidyasasidhara)

 Tool Updates

• Microsoft_Endpoint_Manager/Kusto_Query_Language_(KQL).md at main · tomwechsler/Microsoft_Endpoint_Manager · GitHub – Tom Wechsler (@tomvideo2brain)
• GitHub – jamesorlando/MEMCM-Update-Cleanup
• GitHub – dfinke/Tiny-PowerShell-Projects: Learning PowerShell through test-driven development of games and puzzles – Doug Finke (@dfinke)
• MicrosoftTeams PowerShell Module 5.4.0 released as GA – Icewolf Blog – Andres Bohren (@andresbohren)
• Microsoft.Graph PowerShell Module 2.1.0 GA released – Icewolf Blog – Andres Bohren (@andresbohren)
• GitHub – microsoft/mdefordownlevelserver – Adam Juelich (@acjuelich)
• GitHub – IntunePMFiles/DeviceConfig – Mike Dano (@MikeDanoski)

Join Recast for an upcoming webinar titled Navigating the Hybrid Work Security Landscape on Thursday, August 24th at 10:00am CDT. Recast will host Richard Campbell of RunAs Radio (also an MVP) along with our very own Danny Wheeler, Director of IT at Recast Software, to discuss how the hybrid work model impacted security practices and the adoption of Zero Trust within IT environments. Learn more and sign up here.

We recently held a webinar titled Unleashing the Power of Endpoint Insights. Watch the recording here:

Recast Software recently released a pair of 3rd party patching assets:

• Reduce Your Attack Footprint eBook
• Unpatched 3rd Party Software Exposes Companies to Risk infographic

Also, check out our newest blog posts:

• Transforming Remote Device Management: The FI$Cal Customer Story
• A Vulnerability Management Conversation at Recast Software
• Enhancing Cybersecurity: Meeting the ACSC Essential Eight Standards

Also:

• Follow Recast on Twitter @RecastSoftware to hear the latest.
• Read our eBooks, The Top 10 Most Used Right Click Tools and The Top 5 Endpoint Insights to Empower IT Teams, as well as The State of System Administration White Paper.

‍Thank you for checking out Recast’s Endpoint Management Recap – July 2023. Stay tuned for more helpful content coming your way next month.

Right Click Tools Enterprise is loved and trusted by thousands.

96% of our customers keep coming back and renewing because Right Click Tools is essential to amplifying the power of ConfigMgr.

Get Pricing