I recently posted a blog about the many ways to enroll Windows 10 devices into Intune. I didn’t go into detail on troubleshooting existing devices and how to work out the method they used to enroll in the first place. The reason you might want to know how a device was enrolled is because some …
Managing Windows 10 with Intune – The Many Ways to Enrol
There are many ways to enrol Windows 10 devices into Microsoft Intune for device management. Some are User-driven and some controlled by IT administrators, Some exist to support BYOD programs and others to streamline modern provisioning scenarios and management for corporate-owned devices. Each enrolment method can have different setup requirements and behaviours. The meat of …
Setting up Windows Hello for Business with Intune
The purpose of this post is to help IT pro’s and architects understand Windows Hello for Business as it relates to Windows 10 modern management (with Intune). The deployment guide for Windows hello for business is very comprehensive so I’m not reproducing that – but instead want to strip out much of the complexity and …
How to Set up Azure AD Certificate-Based Authentication for Office Apps on Mobile Devices (IOS and Android) PART 4
Part 4 – Deploy a certificate to Mobile Devices and test it out This is the last part of this blog series and is focussed on getting some user certificates to your devices and testing that certificate authentication works for the office apps. To get to this point you should have Published a CRL, Setup Azure AD …
How to Set up Azure AD Certificate-Based Authentication for Office Apps on Mobile Devices (iOS and Android) – PART 3
Part 3 – Set up ADFS Active Directory Federation Services is a key requirement in making this solution work. You’ll need to configure some claims (serial Number and Issuer) so that they are issued to users and eventually presented to Azure AD. You also need to make the “Sign in using an X.509 certificate” option …
How to Set Up Azure AD Certificate-Based Authentication for Office Apps on Mobile Devices (iOS and Android) – PART 1
Part 1 – Get your Certificate Authority CRL Ready If you are not doing this already, you need to publish your CRL so that it can be hit by everyone (internally and externally to your organisation). I’ll detail the steps to publish this onto an internal web server that you already have, then use Azure …
How to Set up Azure AD Certificate-Based Authentication for Office Apps on Mobile Devices (iOS and Android)
A while back, Microsoft announced the ability to allow office apps on the phone to authenticate to office 365 services using a certificate rather than user name and password.A bunch of office apps support this – here is a list for iOS and android. Since the end-end setup is pretty complex, with a few moving …