-
Microsoft Intune Suite Joins E3 and E5: What’s New and Why it Matters
(📦 Integration | 🔐 Security | 💡 Value) Microsoft is making a bold move: Intune Suite capabilities will be integrated into Microsoft 365 E3 and E5 plans starting July 2026. This update simplifies licensing and delivers advanced endpoint management and security features without extra add-ons. Here’s what’s new and why it matters: 📦 New Features
-
Microsoft Ignite 2025 – My Key Takeaways
Ignite in San Francisco was an incredible experience—amazing sessions, inspiring conversations, and networking with fantastic colleagues! Out of all the announcements, these are the updates that stood out the most for me and will have the biggest impact on how we work going forward. 🔐 Security Gets Smarter with E5 Security Copilot Microsoft has now
-
Using Intune Remediations to Ensure Windows Services are Set to Automatic and Running
Managing Windows services across a fleet of devices can be a daunting task—especially when you need to ensure that critical services are always running and set to start automatically. Whether it’s the Windows Update service, a custom in-house service, or something like the Print Spooler, ensuring these services are correctly configured is essential for system
-
Blocking Store App Downloads on Windows 11 – The Browser Trick
With Windows 11, Microsoft continues to blur the lines between system components and Store apps. Notepad, Calculator, even Paint – they’re all Store apps now. And while that’s great for updates and modularity, it’s a headache for IT admins trying to keep user environments clean and controlled. For a while, blocking the Microsoft Store via
-
Entra ID Guest User Lifecycle Management — Automated, License-Free & Auditable
Managing guest users in Entra ID can quickly become a compliance headache. Stale accounts, forgotten access, and manual cleanup are a recipe for risk. But what if you could automate the entire lifecycle — from detection to deletion — without shelling out for premium identity governance licenses? That’s exactly what this solution delivers: a lightweight,
-
Desktop Shortcuts via Intune Remediations
🎯 Scenario You want to deploy desktop shortcuts via Intune. One for a classic installed app (PuTTY), and another for a Microsoft Store app (Calculator). Both should be handled via remediation scripts — detection + remediation — and work silently in the background. 🧪 Variant 1: Installed Program (PuTTY) 🔍 Detection Script 🛠️ Remediation Script
-
Windows Hello for Business: ESS & MFU – Smarter Security for Smarter Devices
🧠 Why ESS & MFU Matter 🔒 ESS isolates biometric data (fingerprint, facial recognition) at the hardware level. This protects against replay and extraction attacks—your face and fingerprint stay yours. 🧩 MFU enforces true two-factor authentication directly on the device. Think PIN + fingerprint or PIN + facial recognition. No cloud dependency, no shortcuts. Together,
-
Timezone Control in AVD & Windows 365 via Intune
Managing timezones in cloud-based desktops might seem trivial, but it can make or break user experience — especially in distributed teams. Whether you’re running Azure Virtual Desktop (AVD) or Windows 365 Cloud PCs, Intune gives you full control over how time is handled. Let’s explore how to redirect the client timezone, when it’s already enabled
-
Workplace Ninja Summit 2025 – My Key Takeaways from Baden
Last week, I had the chance to attend the Workplace Ninja Summit in Baden, Switzerland, together with three colleagues. In short: it was an incredibly valuable experience. The sessions from Microsoft and community experts made one thing crystal clear:☁ Cloud-native first is no longer a future vision – it’s the new standard. ✅ What does that mean in practice?
-
In-Place Upgrade to Windows 11 24H2 Multisession in AVD
Microsoft’s Windows 11 24H2 multisession image has been around since late 2024, quietly available in the Azure Marketplace. While it’s not a revolutionary release, it does bring stability and long-term support to Azure Virtual Desktop (AVD) environments. For admins and consultants, the real value lies in the ability to perform an in-place upgrade—keeping existing session hosts