Category: Intune

Dynamically set the time zone of a device in Intune using Azure Maps & PowerShell

Let me start off by saying I wish I didn’t have to write this post. Setting the correct time zone of a Windows device shouldn’t be this difficult, especially with all of the management possibilities provided to us with Intune and the entire endpoint management stack. But here we are… I get it though. At one point, as Michael Neihaus has written about previously, even if we could configure …

Managing Intune with Graph, PowerShell 7 & MSAL

So it seems we need to talk about Graph and authentication again… Recently, Microsoft announced an official “end of support timeline” for Azure Active Directory Authentication Library (ADAL) which means, any scripts or automation workflows that you use will need to be migrated over to the newer Microsoft Authentication Libraries (MSAL). There are many differences between the two libraries, but the workflows are very similar – a request is …

Installing fonts with PowerShell & Intune

So this seems like a fairly simple and innocuous task – the marketing department comes to you and ask for a handful of new fonts to be deployed to all devices.. Previously you may have solved this request using Group Policy – but if you are managing your devices with Intune, where do you even start? With PowerShell & Win32 app deployments of course! Create. First let’s scaffold out …

Rapidly build Autopilot VMs with Hyper-V and PowerShell!

Picture this scenario – you are at the pointy end of a major modern management project and it’s time to test every policy, configuration and application at scale and quickly. What do you do? With infinite money, infinite time and a willing client, you take over their VC meeting room and stack dozens of devices on a desk and blast slayer while you verify your builds ( this literally …

Installing printers with Intune & PowerShell

On the surface, installing printers on end user devices seems like a fairly simple process that’s been solved for decades – a nice combination of Group Policies and PowerShell has made this a non-issue. But what if our devices aren’t domain joined? When I first had to tackle this problem, I figured it would be a simple as running “Add-Printer” as the end user and moving on. The problem …

Creating Endpoint Security Policies with PowerShell

Keeping up with the rapid momentum of everything in the modern management world is a full time job. It’s exhausting, but it’s also fun. It truly pays to read the “What’s new in Microsoft Intune” on a regular basis. Case in point, late last month, Microsoft announced an updated URL for the Microsoft Endpoint Manager Admin Portal – https://endpoint.microsoft.com, previously https://devicemanagement.microsoft.com. Along with this change to the new and …

Synchronize SharePoint sites with Intune & PowerShell

I recently spent some time with my colleague and frequent collaborator Steven Hosking. We spoke about a solution I came up with to synchronize SharePoint sites to devices using PowerShell & Intune. This is something I’ve had in my drafts for quite a while, but it kept ending up being too long to write about. As it turns out, Steve ( and Adam) runs a very valuable and informative …

Organize AutoPilot devices in dynamic AAD groups using GroupTags & PowerShell

Don’t ever say Microsoft doesn’t listen! One of my biggest pet peeves was solved at the beginning of the month when Microsoft announced the ability to edit device group tags! This doesn’t sound like much, but it essentially unlocks the potential of group tags that was never really there before – we can now use group tags to dynamically control device group membership. While there have been quite a …

Upload files to Azure File Share using PowerShell & Microsoft Flow

I’m a big fan of using Start-Transcript in my application install wrappers as it provides a very neat and tidy way to capture the output of everything that happens during the installation process and as such, all of the applications I package end up storing log files locally and I passionately and repeatedly urge my support staff to view these log files to identify issues during deployment. However, not …