Azure MFA for Enrollment in Intune and Azure AD Device registration explained

I have been working with setup of MFA required for enrollement in Intune abit lately and have discovered a couple of things that is not really explained well in the Intune console/documentation. Enrollment of devices in Intune will in most cases also trigger a device registration in Azure AD. This registration in Azure AD can…


Azure AD Join: What happens behind the scenes?

Recommended blogpost from Jairo Cadena at Microsoft: Source: Azure AD Join: What happens behind the scenes? Filed under: AzureAD, Client, Cloud, Windows 10 Tagged: AzureAD, Cloud, Identity, Join, Lumagate, Microsoft, Technical, Windows 10


Single Sign-On to on-premises resources from Azure AD joined when Onprem

Azure AD Join was introduced in Windows 10 and allows a Windows 10 device to register with Azure Active Directory (Azure AD) and allows Azure AD users to sign-in to the device using their work credentials or more commonly know as their O365 credentials. Users on these devices will enjoy Single Sign-On (SSO) to Office…


Why and how you should register your Windows 10 Domain Joined PC’s with Azure AD

It has been a while since my last blogpost as I have been on parental leave with my 1 year old son. I have also got a new employment since then and are now working for Lumagate AS in Norway as a Senior Consultant. Over to the important stuff 🙂 Domain joining a PC has…


Windows 10, Azure AD Join and Password Changes

So I have been testing around a bit with password changes on Windows 10 when my machine is joined to Azure AD. I have testet a few scenarios and would like you share my impressions. All scenarios are based on a Cloud Only enviroment and does not have any connections to an OnPremise AD. Scenario…


Manage Surface Pro 3 UEFI Through PowerShell

After the v3.11.760.0 UEFI update is installed on a Surface device, an additional UEFI menu becomes available named Advanced Device Security. Clicking this option brings up a menu with new options. Some of this options is to enable/disable features like the Front and/or Rear Camera, Wireless, Bluetooth, Network Boot as well as some other cool features….


Microsoft Intune: New Extension “Conditional Access for Exchange Online” now available for ConfigMgr 2012 R2

In December Microsoft relased an update to Intune that enables admins to set up Conditional Access to Exchange online and I am happy to see that they now also have relased the ConfigMgr Extension that enables ConfigMgr/Intune Hybrid customers to set this up aswell. Read more about Conditional Access for Exchange with Intune here: Microsoft Intune…