Mattias Melkersen Kalvåg

Fix PrintNightmare via Endpoint Manager using expedite updates

Introduction With the expedited updates feature in Microsoft Endpoint you can deploy updates like the most recent patch Tuesday release or out-of-band security updates. For example, we just saw a flaw with the windows print spooler where the attacker could execute arbitrary code with SYSTEM privileges on a non-patch system.

Continue to read »

Passwordless using FIDO2 security key with HoloLens 2

Introduction Some time ago I was asked by FEITIAN if I would like to test their FIDO2 key. I said yes, because I am in a project where we will onboard Microsoft HoloLens’s in production, in that journey, we will make use of FIDO2 keys + Windows Hello for Business

Continue to read »

Intune multi app kiosk mode using the new Microsoft edge

Introduction This is my notes while playing around with kiosk. I was testing the brand-new Kiosk setting for the new Microsoft Edge and the only result I got out of that was a non-working device. Eventlog saying MDM Session: Failed to get AAD Token for sync session User Token: (Unknown

Continue to read »

Intune compliance with Lenovo dynamic BIOS configuration

Introduction Using compliance policies in Intune is a great idea for many reasons. Main reason is to be able to set certain security standards before granting your users’ access to company resources. Letting your users deal with setup configurations in BIOS might be to much of a task to be

Continue to read »

OSDCloud – Image devices without need of infrastructure

Introduction Have you ever been in a situation where you need to image or reimage your device? Of course, you have and so have I. Recently David Segura launched some awesome PowerShell code called OSDCloud. You might know him better for the Offline patching of images OSDBuilder, which has been

Continue to read »

MSIX Modern Packaging – Part 5

  Introduction In the last “MSIX Modern Packaging – Part 4” we did some ninja tricks to be able to use context menu to right click a file and open with Notepad++ captured into MSIX. As you probably also experienced, context menus are something that are not going very well

Continue to read »

MSIX Modern Packaging – Part 4

Introduction In the last “MSIX Modern Packaging – Part 3” we transformed Notepad++ from a legacy installer to MSIX. There is more to packaging like testing and make sure the application work as intended after we changed how the bits and bytes flow to the device. Most companies introduce user

Continue to read »

MSIX Modern Packaging – Part 3

Introduction In the last “MSIX Modern Packaging – Part 2” I showed you how to create a certificate (PFX) to use while creating MSIX packages. In this chapter I will show you how to “capture” an easy package to MSIX. Requirements Hyper-V Start packaging MSIX Let’s start by fire up

Continue to read »

MSIX Modern Packaging – Part 2

Introduction In the last “MSIX Modern Packaging – Part 1” I showed you how to get a virtual environment to start creating MSIX. For MSIX to work we need to sign our packages, and this is typically where we say "ok, I give up". At least back in the days

Continue to read »

MSIX Modern Packaging – Part 1

Introduction If you are working with system management, you also come across applications that need to be mass deployed to your endpoints. Before that can happen the vendor either deliver unattended parameters to their installation process or they deliver another installation format like MSI or MSIX. Every business can benefit

Continue to read »

MEMCM debug in-place upgrade (IPU) using Azure blob

Introduction A couple weeks ago I showed you how to get vital logs from a client without disturbing the user. This blog post will cover how to deal with in-place upgrades that did not go as expected. Now as most people still work from home, it can be difficult to

Continue to read »

MEMCM debug using Azure blob

Introduction Transitioning more and more to modern, many strive to get rid of the classic VPN for their endpoints. As we have more options managing endpoint without building a large and complex infrastructure it become natural to disconnect the traditional access model and build more enterprise applications to authenticate with

Continue to read »

OneDrive Error message 0x80071129

Introduction When we buy license to use office365 services we have lots of collaboration possibilities. One of the great features is OneDrive. OneDrive gives us the possibilities to backup folders like desktop, documents and pictures what makes the life of working on multiple devices much easier. (e.g., some of this

Continue to read »

Transition from legacy WSUS to Windows Update for Business

Introduction In this blog post I will describe how you can transition to Windows Update for Business from a legacy WSUS environment. It is easy to just set it up “modern management” so to speak but managing legacy systems and make sure every system works and get its updates from

Continue to read »
Search blog posts
Search
Authors
Modern Workplace consultant and a Microsoft MVP in Enterprise Mobility.
Modern Workplace consultant and a Microsoft MVP in Windows and Devices for IT.

Infrastructure architect with focus on Modern Workplace and Microsoft 365 security.

Cloud & security specialist with focus on Microsoft backend products and cloud technologies.

Cloud & Security Specialist, with a passion for all things Cybersecurity

Cloud and infrastructure security specialist with background in networking.

Infrastructure architect with focus on design, implementation, migration and consolidation.

Infrastructure consultant with focus on cloud solutions in Office365 and Azure.

follow us in feedly
Categories

Follow on SoMe