High-level architecture Source: Microsoft Overview Intune Azure AD (Entra) – Identity and access management Defender – Security
Intune Suite add-on capabilities Capability Standalone add-on Intune Plan 2 Intune Suite Advanced endpoint analytics ✔️ Endpoint Privilege Management ✔️ ✔️ Microsoft Tunnel for Mobile Application Management ✔️ ✔️ Remote help ✔️ ✔️ Specialized devices management ✔️ ✔️ Use Intune Suite add-on capabilities – Microsoft Intune | Microsoft Learn .
Organizational messages generally available May 31st! Reach users more effectively: organizational messages in Windows – Microsoft Community Hub Windows driver and firmware managrment Coming soon to Intune: Windows driver and firmware updates – Microsoft Community Hub Preview Available: June 2023 Rollout Start: November 2023 advanced app management and patching Keep apps secure and updated with advanced app management and patching – Microsoft
2304: Local Administrator Password Solution: What’s new in Microsoft Intune – 2304 (April) edition – Microsoft Community Hub 2303: Devices Overview: Get an up-to-date, at-a-glance view of actionable information for your devices and a faster path to finding all the information you need on your device management journey. Update to Windows Autopilot pre-provisioning process for app installs – Microsoft Community
Sign in to Microsoft DevProgram choose your E5 Sandbox setup your Region and Domain Security Number consent MDM Reg link Github Settings – Microsoft 365 Dev Center Methods to Renew Microsoft 365 Developer E5 Subscription – Cybersecurity Memo (51sec.org) kylierst/MSO_E5_Dev_AutoRenew: This is a Python application based from Git Actions to produce development actions through Microsoft Graph API like a genuine
Make it possible for all users: Decision: Self service or automated: Element Self-service setup Windows Autopilot Bulk enrollment Require user interaction to set up Yes Yes No Require IT effort No Yes Yes Applicable flows OOBE & Settings OOBE only OOBE only Local admin rights to primary user Yes, by default Configurable No Require device OEM support No Yes No
some general usefull things around autopilot
Use this to build your lab local with Hyper-V Windows 11 and Office 365 Deployment Lab Kit | Microsoft Evaluation Center or use that to build in azure-cloud with Azure-VMs: Install Configuration Manager Tech Preview Lab in Azure (microsoft.com) Install Configuration Manager Current Branch in Azure (microsoft.com) with that script you can decrease disk space to reduce costs Shrink an
with this simple Powershell commands you can get a (nearly) complete summaraize of you Azure-Tenant
This PowerShell script adapts functionality from the Modern Workplace Concierge and documents your Conditional Access Policies. The script exports all the data as a csv file which can be pretty formatted as excel workbook. Script is saved to the user’s default script lcoation: “C:\Users\%USERNAME%\Documents\WindowsPowerShell\Scripts” Afterwards: Excel gimmicks The following steps might help you to format the documentation.
