ADFS Claims depending on multiple conditions such as group membership and password expiry

ADFS Claims depending on multiple conditions such as group membership and password expiry

In this post I will quickly demonstrate how to achieve a ADFS Claims depending on two different conditions. This specific case is about the password expiry claims that we only want to show for users that are member in a specific Active Directory group. First we need to add an Issuance Transform Rule where we…



extensionAttributes – add values via Powershell + CSV file

It is common to have one or multiple extensionAttributes in an Azure AD environment for use with Intune for example. These extensionAttributes can be handled in a couple of different ways when it comes to managing the values set for each of those. For simplicity I’ve created a Powershell script that can add values to…



Add you own local admin users on Azure AD devices

Do you have issues when trying to add an account as local admin on your Azure AD Joined device? Maybe you have specific requirements regarding which accounts should be admins on your client machines and the Azure AD solution (additional local administrators on Azure AD joined devices) is not enough to satisfy your needs. There…



Deploy separate Intune workloads to different collections (Co-management)

I was looking for a way to be able to deploy a Co-management policy with only Windows Update policies workload to a specific collection. This in order to transition a smaller amount of computers (who are not a member of the already existing Pilot group) to be controlled via Intune instead. In the Configuration Management…



Printix – The Secure Cloud Print Management Solution

Are you looking for a new print solution that will work for a modern workplace? A solution that will let you get rid of those nasty on-premise print servers? A solution that will make print management more easy and fun? Look no further, you just found one! With Printix solution you will get a serverless,…



Move Software Updates to Intune with Co-management

To move on with the transition towards Modern Management we can use Co-management in SCCM to decide where settings are coming from. In this specific scenario we will do a switch from Software Updates via SCCM to Intune controlled Software Updates for one test client. I will show you the following steps. How to setup…



Intune – Administrative Templates (Preview) are here

Microsoft has now released their Administrative Templates (Preview) for Intune which makes it a lot more simple to use settings like controlling a OneDrive setup, changing Office settings or configure Internet Explorer. So where do you find this new functionality? Login to the Intune Management PortalGo to Device Configuration > Profiles > Create profileName: Enter…



Duplicate SRV records are cousing domain join workflows to fail

Have you ever had problems with duplicate SRV records in your environment? This is a quite common phenomenon when you google it without any real solution to it (not at least what I could find). Some environments would not be affected by this, but I got into a specific situation recently where some workflows in…



Upgrade Task Sequence (1803) with BitLocker active

With the new 1803 feature update for Windows 10 we got some new and exciting commands for the Windows Setup that we can use in a upgrade task sequence in SCCM to be able to upgrade without suspending BitLocker. For more information about the 1803 feature update, please see this blogpost. With these new Setup…



Spring Creators update (1803) for Windows 10

Microsoft released the next feature update on April 30th 2018 that we all have been waiting for. The Spring Creators update (Version 1803) for Windows 10. It comes with a bunch of new features and I will list some of them that you can benefit from in a deployment perspective.   Windows Autopilot Now enables…