Known Intune Issue: iOS PKCS certificate policy

We’re sharing a tip that came out of a recent case with a customer where we were investigating a problem with their PKCS certificates. While we didn’t get any additional customer calls on this topic, we thought it would be good to post what we shared with the customer in case you were troubleshooting your own custom subject name PKCS…


Deploy Intune App Protection Policies based on device management state

In many organizations it’s very common to allow end users to use both Intune MDM managed devices (Corporate owned devices for example) and unmanaged devices protected with only Intune App Protection Policies (BYO scenarios for example). As Intune App Protection Policies are targeted to a user’s identity, the protection settings for a user traditionally apply…


Intune App Protection Blade Moving

We recently shared in MC129046 for Intune customers and MC129047 for hybrid (Intune + Configuration Manager) customers that the Intune App Protection blade is moving! Today, we started the redirect experience. When you head to the Intune App Protection service blade in the Azure portal it’ll give you a notice that App Protection is moving…


Using O365 APIs and PowerShell to access Intune messages from Message center in Office 365

4/26/18: Updated with link to an updated script to deliver messages to Teams and Outlook: Get Messages to Teams and Outlook  5/9/18: A follow up post is available here: Automating delivery of Message Center posts to Teams and Outlook using an Azure function Intune posts messages in the Message center in Office 365, accessed from portal.office.com using…


Support Tip: Company Portal Prompt

Microsoft Intune and Mobile Device Management (MDM) for O365 both use certificates to ensure there’s a secure communication channel to send mobile device management policies between the service and managed end user devices. As part of enrollment into the service, an end user’s device will be issued a certificate for secure connection. After enrollment, an…


How To: Enroll any iOS 11 or above device using the Apple Device Enrolment Program (DEP)

What is DEP? The Device Enrollment Program (DEP) helps businesses and education institutions to automatically enrol their devices into Intune. You can also configure the Enrollment Profile in Intune to skip certain Setup Assistant screens, so users can start using their devices soon after unboxing them and wouldn’t need to enroll them manually. Has anything…


Support Tip : Automating Stale Device Cleanup with Graph API

Josh and Sarah over on the EMS blog just posted a great article on using GraphAPI to automate the deletion of stale devices from Intune – check out the details here: https://blogs.technet.microsoft.com/smeems/2018/03/07/device-cleanup-with-graph-api/


Updated workflow for ”Send diagnostic logs”/“Get Help” in Intune Company Portal apps for iOS and Android

We are excited to announce that beginning April, Company Portal users will be able to upload Intune-related logs directly to Microsoft with the tap of a button and view an incident ID that can be used to refer to the uploaded logs when contacting Microsoft Support. Intune-related logs will no longer be attached to emails…