Matt

Have you considered blocking social media platforms like Facebook, TikTok, and others on corporate devices?   Many government entities in our community want to restrict access to social media on their official devices rather than personally owned devices (BYOD). There are several reasons for this. For example, in the USA, TikTok was blocked and unblocked.   There are many ways to do this, such as Firewall, Network, Microsoft Defender, and so on. However, I will discuss how to do it via Intune. Create a Policy:         Create a New Policy: Name it as you want and add the description.     Configuration settings > add settings > and search for “URL blocking” and pick both Google Chrome and Microsoft Edge. And pick the one for the device, not the user, did not work for me. Then add the URL you want to block to “ Block access to a list of URLs (Device)”. I went a little further by disallowing the users to run the TikTok application “...

  Secure Microsoft Edge Browser Happy New Year, everyone! I was reading some Microsoft Articles about how to secure the Microsoft Edge Browser, and I wanted to test it. It was fun 😊. Many companies prefer to use Edge as their default browser, which is both fast and efficient. However, we want to ensure that end users are safe and secure while using it. I came across a couple of Intune settings for Edge to enhance security. There are many options, but in this demo, I chose three. 1. Enable Microsoft Edge Password Manager 2. Password Reused. 3. Enhance Password Phishing Protection.  Let us take them one by one Enable Microsoft Edge Password Manager: Allow users to save their passwords in Microsoft Edge. When this policy is enabled, Microsoft Edge will automatically fill in the password the next time a user visits the site.  If you disable this policy, users can't save new passwords, but they can still use previously saved passwords. If you enable or disable this policy, ...

Windows Autopatch Hotpatch I am sure all of you guys are about to get busy for Thanksgiving! this is a short blog about Hotpatch. This morning, while I was checking for updates regarding my tenants and looking for the new hardware inventory setting, I was pleased to see that the new setting “ Hotpatch for Windows ” had appeared in my tenant. Before we discuss it, let’s first go over the details. We are all familiar with quality updates and the security patches released on the second Tuesday of each month. Microsoft has created a hotpatch for Windows 11 24H2 that allows these updates to be applied without requiring a restart. Typically, after monthly updates, the device must restart to install all security patches and to update the build number (the last four digits of Windows). According to Microsoft, there will be two types of updates each quarter. The first update will occur in January, April, July, and October and will include a full security patch and new features, requiring the de...

 Since last year and I have been testing "Remote Help" and trying to see how Microsoft is going to make it more affordable to all companies. When Ignite came last year and announced about Intune package, I was waiting for it, till this week when I saw Microsoft released Intune Suite and the prices. Let us talk about creating Remote Help App for Intune and how to Install it first, then talk about assigning the license. Create the App:- 1.        First let us download the app from Microsoft from this Download Remote Help . 2.        This app needs to be deployed via Intune, in this case, we have to create Win32App using Microsoft Script available on GitHub . 3.        Convert the (.exe) format to Intunewin format.  4.         Let’s go to Microsoft Intune Admin Center and create a security group to deploy the app to it later, or create the App first, I will do the ...