In our original series on Windows Virtual Desktop we used a standard file server to host the FSLogix Profiles, this was the only option at the time – if used together with our on-premises Active Directory. Now it’s possible to use Azure file shares and on-premises Active Directory together (Preview
Last year we wrote about Azure AD and password-less sign-in https://blog.mindcore.dk/2019/07/azure-ad-and-password-less-sign-in.html Now we also have support (Public preview) for this in hybrid environments, so let’s try it out. We will use the same Yubico security NFC as last time. First thing we need to be aware of is that we
This is part 5 of our posts regarding Windows Virtual Desktop, until now we have covered: Part 1 – Created a Windows Virtual Desktop tenant – Part 1 Part 2 – Created a service principal and some customization of our on-premises AD – Part 2 Part 3 – Provisioning a
This is part 4 of our posts regarding Windows Virtual Desktop, until now we have covered: Part 1 – Created a Windows Virtual Desktop tenant – Part 1 Part 2 – Created a service principal and some customization of our on-premises AD – Part 2 Part 3 – Provisioning a
This is part 3 of our posts regarding Windows Virtual Desktop, until now we have covered: Part 1 – Created a Windows Virtual Desktop tenant – Part 1 Part 2 – Created a service principal and some customization of our on-premises AD – Part 2 In this part we will
This is part 2 of our posts regarding Windows Virtual Desktop, until now we have covered: Part 1 – Created a Windows Virtual Desktop tenant – https://blog.mindcore.dk/2019/11/windows-virtual-desktop-part-1.html Now let’s continue and create a service principal. We will create the service principal with PowerShell, in order to do that you will
This time we will take a look at Windows Virtual Desktop in Azure. We will connect this cloud solution to our own infrastructure so that we can use on-premises services as well. In order to make this work we already have a Site-to-Site VPN gateway connection setup to connect our
On Tuesday we identified a “funny” little thing when using the web version of outlook. If we invited an internal user to a meeting and that user only had two letters in his alias the invite failed (xx@domain.com), invitations to internal people with mail addresses that had more that two
In the last two post we looked at extending Azure AD with our own attributes https://blog.mindcore.dk/2019/10/azure-ad-extension-attributes.html and how to use this attribute to dynamically grant access to a Microsoft team https://blog.mindcore.dk/2019/10/access-to-teams-based-on-our-own.html. This time we will create the team and dynamic group using PowerShell instead. In order to do this we
In our last post we looked at extending Azure AD with our own attributes https://blog.mindcore.dk/2019/10/azure-ad-extension-attributes.html Now let’s try to dynamically allow access to a Microsoft team based on the attribute. First we create a Team in Microsoft teams. In teams we create a new private team called TestTeam. We will
This time we will try to extend our Azure AD directory with a new attribute, we will in a later post use this attribute for dynamic groups and team access. But let’s get started, we will in this test attach the extension attribute to users, but it can be assigned
This time we will take a closer look on how easy it is to onboard clients into Microsoft Defender Advanced Threat Protection with System Center Configuration Manager. First we will go the the Microsoft Defender Security Center https://securitycenter.windows.com/ On this page we select Settings – Onboarding – Windows 10 –
Since we now have Azure Bastion in preview it’s time to take a closer look. Azure Bastion will allow us to have private RDP and SSH access to our Virtual Machines from a HTML5 Web Browser over SSL. We can do this without using public IP address on the VM.
Desktop analytics is now available but only integrated with SCCM, so no Intune configuration for now, but let’s give it a test spin. We will start by clicking Desktop Analytics in Microsoft 365 Device Management or by using this direct link https://aka.ms/desktopanalytics Select Start. Then we need to Accept service
Since we have Azure Sentinel in preview, let’s give it a test spin. Azure Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyze large volumes of data across the enterprise. Azure Sentinel aggregates data from a lot of sources, including users,
This is an updated version of one of our very old articles ADMX files available Also take a look at this post about How to create and manage the Central Store for Group Policy Administrative Templates in Windows And now we are talking policies – I would like to recommend
Microsoft has declared the Edge ready for enterprise testing, and by doing so we now have MSI installers and new ADMX files. I have previously written that I am impressed by this new browser, and this has not changed, I still think that Edge (Chromium) has potential to be the
One of the interesting solutions a lot of us has been waiting for is now in public preview – password-less sign-in with Azure Active Directory (Azure AD). We have been able to use it with personal Microsoft accounts, but now we also can start testing with Azure AD accounts. So
I have been using the Edge Insider (Chromium), for awhile and I am impressed. You can find the download here https://www.microsoftedgeinsider.com/en-us/download/, and not only for Windows 10 as shown here: We now also have a preview of an admx file (Policy settings). You can find the preview here https://techcommunity.microsoft.com/t5/Discussions/Early-preview-of-Microsoft-Edge-group-policies/m-p/693929/thread-id/5164 The
At our last Mindcore Tech event, we took a closer look at Self-service Password reset in Azure AD. One question we did not have the time to pursue, was how to only allow entering security information from a trusted location. We have SSPR setup and users are required to setup
Yesterday at our Mindcore Tech meeting, one of our test sceneries did not work as expected. We did not get the reset password option on the Windows 10 insider build. https://blog.mindcore.dk/2019/03/azure-ad-password-reset-on-login-screen.html The reason behind was “just” some missing configuration in the lab we build during the meeting In order to
This time let’s try to connect Store for Business with Intune and deploy the Company Portal to all users. First thing to do is to register Store for Business, so sign in to https://businessstore.microsoft.com using the same tenant account you use to sign into Intune. Select Manage: Click Settings –
This is a quick post about a question I often get – How do we install extra Proofing tools together with Office 365 ProPlus? In the early days of Office 365 C2R we did not have the option to install individual Proofing tools with Office Deployment Tool (ODT). But if
Back in March we wrote a post about using PowerShell to create Naming policies for Office 365 groups and teams. https://bit.ly/2W9hMlK Now this feature is available in the Azure portal. Go to Azure Active Directory and Groups: Naming Policy: Since we already added custom blocked words with PowerShell, we can
We are able to use multiple custom email templates in Office 365. This will allow us to use customized logos and text when sending encrypted emails. By default Office 365 will use the following layout when an external recipient receives an encrypted email: Let’s try to change this, first
Modern Workplace consultant and a Microsoft MVP in Windows and Devices.
Infrastructure architect with focus on Modern Workplace and Microsoft 365 security.
Cloud & security specialist with focus on Microsoft backend products and cloud technologies.
Cloud & security specialist with focus on Microsoft 365.
Cloud & Security Specialist, with a passion for all things Cybersecurity
Cloud and infrastructure security specialist with background in networking.
Infrastructure architect with focus on design, implementation, migration and consolidation.
Infrastructure consultant with focus on cloud solutions in Office365 and Azure.
Modern workplace and infrastructure architect with a focus on Microsoft 365 and security.
