-
Azure File Share with Entra Kerberos Authentication: Seamless Access for Windows and macOS Devices
🔐 Secure, seamless, and passwordless—that’s the future of enterprise file access. With Azure Files and Entra Kerberos authentication, organizations can finally deliver a true single sign-on experience for both Windows and macOS devices, without relying on legacy Active Directory. This guide walks you through everything you need to know to make it happen. 🌍 Why
-
Preparing Intune Devices for the Secure Boot Certificate Rollover in 2026
In June 2026, the current UEFI Secure Boot certificates will expire. This might sound like a small technical detail, but it affects every Windows device that uses Secure Boot. These certificates are critical for validating bootloaders and ensuring that your devices can continue to receive Secure Boot-related updates. If you don’t prepare in advance, devices
-
Microsoft Intune Suite Joins E3 and E5: What’s New and Why it Matters
(📦 Integration | 🔐 Security | 💡 Value) Microsoft is making a bold move: Intune Suite capabilities will be integrated into Microsoft 365 E3 and E5 plans starting July 2026. This update simplifies licensing and delivers advanced endpoint management and security features without extra add-ons. Here’s what’s new and why it matters: 📦 New Features
-
Microsoft Ignite 2025 – My Key Takeaways
Ignite in San Francisco was an incredible experience—amazing sessions, inspiring conversations, and networking with fantastic colleagues! Out of all the announcements, these are the updates that stood out the most for me and will have the biggest impact on how we work going forward. 🔐 Security Gets Smarter with E5 Security Copilot Microsoft has now
-
Using Intune Remediations to Ensure Windows Services are Set to Automatic and Running
Managing Windows services across a fleet of devices can be a daunting task—especially when you need to ensure that critical services are always running and set to start automatically. Whether it’s the Windows Update service, a custom in-house service, or something like the Print Spooler, ensuring these services are correctly configured is essential for system
-
Blocking Store App Downloads on Windows 11 – The Browser Trick
With Windows 11, Microsoft continues to blur the lines between system components and Store apps. Notepad, Calculator, even Paint – they’re all Store apps now. And while that’s great for updates and modularity, it’s a headache for IT admins trying to keep user environments clean and controlled. For a while, blocking the Microsoft Store via
-
Entra ID Guest User Lifecycle Management — Automated, License-Free & Auditable
Managing guest users in Entra ID can quickly become a compliance headache. Stale accounts, forgotten access, and manual cleanup are a recipe for risk. But what if you could automate the entire lifecycle — from detection to deletion — without shelling out for premium identity governance licenses? That’s exactly what this solution delivers: a lightweight,
-
Desktop Shortcuts via Intune Remediations
🎯 Scenario You want to deploy desktop shortcuts via Intune. One for a classic installed app (PuTTY), and another for a Microsoft Store app (Calculator). Both should be handled via remediation scripts — detection + remediation — and work silently in the background. 🧪 Variant 1: Installed Program (PuTTY) 🔍 Detection Script 🛠️ Remediation Script
-
Windows Hello for Business: ESS & MFU – Smarter Security for Smarter Devices
🧠 Why ESS & MFU Matter 🔒 ESS isolates biometric data (fingerprint, facial recognition) at the hardware level. This protects against replay and extraction attacks—your face and fingerprint stay yours. 🧩 MFU enforces true two-factor authentication directly on the device. Think PIN + fingerprint or PIN + facial recognition. No cloud dependency, no shortcuts. Together,
-
Timezone Control in AVD & Windows 365 via Intune
Managing timezones in cloud-based desktops might seem trivial, but it can make or break user experience — especially in distributed teams. Whether you’re running Azure Virtual Desktop (AVD) or Windows 365 Cloud PCs, Intune gives you full control over how time is handled. Let’s explore how to redirect the client timezone, when it’s already enabled