BitLocker Recovery Prompt After Update - Assistance Needed
Hi everyone, I’m experiencing an issue where BitLocker recovery is being required on a device, and I’m trying to understand why. The device recently received update KB5048652, and the recovery prompt started appearing after that. Is there a way to…
Disable Bitlocker on Surface RT8.1 and enter UEFI mode
I have an earlier Surface RT8.1 (2013) with an Nvidia Tegra(R) 3 Quad Core CPU 1.3GHz 2GB RAM 32bit OS Arm based proc. I want to disable Bitlocker and enter to change boot sequence at startup. How to do that? Thanks
Your system administrator has blocked this program. for more info contact your system administrator
I am using a domain account and, as per company policy, I cannot create a local account. Additionally, I am unable to access the User Account Control (UAC) window to add or remove programs on this system. Could you please provide assistance with this…
Multiple failed access attempts
Recently my email account has about 20 failed login attempts every day. This has been occurring for the past month and I am constantly being logged out of my email because of the multiple log in attempts. I changed my password and downloaded the…
Conditional Access Policy Frustration
I do what I am asked. I was asked to build a policy that would prevent using Office 365 apps or access to Online apps unless the device was either Entra Registered or Entra Joined. I have this working 99%. The issue is that I cannot enroll new devices…
Conditional Access Policy with Device Filter issue
My Azure Tenant is already licensed with Entra ID Premium P1 and both my AD user account and Computer account is hybrid synched to Entra ID with Azure AD Connect. I am having issue with configuring the Conditional Access Policy with Device Trust…
Creating non persistent Workstation OS with Intune settings?
I am working on configuring newly set up Windows 10 and 11 computers to join an existing Active Directory domain. These computers have Microsoft Office and custom applications installed, and I want to ensure that they can be refreshed or reset to the…
WIP issues with Visual Studio 2019
Hoping that someone may be able to help me with an issue. We have applocker policy in place to allow specific apps to run in our environment. One of the users advised that he needed Visual Studio 2019 to be installed on his workstation which I did. I…
Attack Surface Reduction (ASR) rules not showing any conflicts
I am testing deeply some ASR scenarios and I discovered, that if I create 2 different objects behind Endpoint Security, one will audit X rule and another will block X rule, the Intune monitoring does not show any conflict. While working just with rules,…
Microsoft Defender against Palo Alto Cortex
I am tasked to compare Palo Alto Cortex solution on our existing Windows workstations against MS Defender for Endpoint. There is several articles about this and my first conclusion is, that Defender might have only small weakness against Palo Alto but I…
Update rings
In my organisation, some devices are not getting the monthly updates trough the update rings. I've tried to push quality update profile and getting error like expedite client missing but update health tools are already deployed as win32 application. What…
Bitlocker enable - intune - how to confirm its enabled
Hi all, I have set bitlocker on a test machine. The policy has applied and I have restarted the machine. The polices I set are here: The test machine is azure AD joined too. On the machine itself I have checked the C drive and it says enable…
Upgrade To 2403 : Microsoft Defender security configurations are no longer managed with Microsoft Intune
Hello everyone, The current version of MECM we are using is 2303. (No Hotfixes Installed). We would like to upgrade to version 2403. We read about the problem “Security configurations removed from Intune” after the…
Protecting data on BYOD devices
Hi everyone, We have sixth form students using BYOD, and we're looking for advice on how to protect data on these devices, specifically for Microsoft 365 resources. I've tested Windows app protection for Edge, but students are also accessing data through…
Microsoft accounts compromised and used for malicious activity, unable shut them down.
Long story short’ My Microsoft accounts have been compromised and used maliciously. I’ve been trying to shut them down which sounds easy enough. But I can’t because they started a work organisation on them i tried calling Microsoft but they were of no…
Can Intune detect if a device is in motion and block it
Can Intune detect if a device is in motion and block it?
Resolving Blocked SMTP Access for certain user in Odoo Service
The user noreply@domain.com has been blocked due to security defaults. While I can sign in normally, I am unable to use SMTP in the Odoo service because of this account being blocked. I aim to mark this account as safe, which I can manage, but I also…
How to avoid/skip the UAC while end user open an application which runs on devices in backend?
How to avoid/skip the UAC while end user open an application which runs on devices in backend? Here is the use case: We have an app for Backup which keeps running on device in the backend but when we ask end users to open its app/agent on device it asks…
Conditional access for mobiles: Android and iOS
Hi everyone, I am asking for support, When I try to add a business account in a native application such as gmail on an unregistered cell phone, after specifying only the business email address and domain password = access is not possible (correct…
Question regarding Microsoft Admin Portals app in Conditional Access
If I block access to resource "Microsoft Admin Portals" app from other users than admin users, do I also block normal user or guest user access to Windows Azure Active Directory, so that normal users or guest user can register their 2FA to…