Just a note, I’ve been posting my blog posts directly to the Intune Customer Success website for the last year or so where they tend to be a bit easier to discover. I’m going to keep doing that. The site is here:https://techcommunity.microsoft.com/t5/intune-customer-success/bg-p/IntuneCustomerSuccess I’ll keep this site running just so that my old content can still …
Managing Windows 10 with Intune – The Many Ways to Enrol
There are many ways to enrol Windows 10 devices into Microsoft Intune for device management. Some are User-driven and some controlled by IT administrators, Some exist to support BYOD programs and others to streamline modern provisioning scenarios and management for corporate-owned devices. Each enrolment method can have different setup requirements and behaviours. The meat of …
Setting up Windows Hello for Business with Intune
The purpose of this post is to help IT pro’s and architects understand Windows Hello for Business as it relates to Windows 10 modern management (with Intune). The deployment guide for Windows hello for business is very comprehensive so I’m not reproducing that – but instead want to strip out much of the complexity and …
How to Set up Azure AD Certificate-Based Authentication for Office Apps on Mobile Devices (IOS and Android) PART 4
Part 4 – Deploy a certificate to Mobile Devices and test it out This is the last part of this blog series and is focussed on getting some user certificates to your devices and testing that certificate authentication works for the office apps. To get to this point you should have Published a CRL, Setup Azure AD …
How to Set up Azure AD Certificate-Based Authentication for Office Apps on Mobile Devices (iOS and Android) – PART 3
Part 3 – Set up ADFS Active Directory Federation Services is a key requirement in making this solution work. You’ll need to configure some claims (serial Number and Issuer) so that they are issued to users and eventually presented to Azure AD. You also need to make the “Sign in using an X.509 certificate” option …
How to Set Up Azure AD Certificate-Based Authentication for Office Apps on Mobile Devices (iOS and Android) – PART 1
Part 1 – Get your Certificate Authority CRL Ready If you are not doing this already, you need to publish your CRL so that it can be hit by everyone (internally and externally to your organisation). I’ll detail the steps to publish this onto an internal web server that you already have, then use Azure …