Quick Guide: How to disable personal device enrollments in Microsoft Intune
Many times, I’ve seen companies actively managing personal devices in Microsoft Intune, sometimes intentionally, but most of the time, accidentally without…
Microsoft Defender (MDE) for personal Android & iOS with MAM
Organizations with access to Microsoft Intune will almost always choose to manage their corporately owned devices using Mobile Device Management. However,…
Quick Guide: How to configure a break glass account and alert on sign-in
In short, we can use a break glass (or emergency access) account to regain access to our Microsoft Cloud environment during…
How to manage secure access for external admins
Some time ago, I had a conversation with my girlfriend (also a Microsoft Consultant) about how to manage secure access for…
My favorite Conditional Access policies to implement (part two)
This post is the second part of my favorite conditional access policies to implement. If you haven’t read part one yet,…
My favorite Conditional Access policies to implement (part one)
A bit of light reading today, but still an important topic worth discussing: Conditional Access! If you’re not very experienced with…
MS Defender for Endpoint (MDE) Onboarding Method Overview
Microsoft Defender for Endpoint (MDE) is part of the Microsoft Defender platform, and is designed to protect devices and endpoints from…
First Look at Mobile Application Management (MAM) for Windows
Update: Microsoft has moved this feature from Public Preview to General Availability. I’ll update this post once new features or changes…
Limited Access with Session Policies for Unmanaged Devices
In two previous blog posts, I wrote about enforcing limited web-only access on unmanaged devices using Conditional Access policies or Sensitivity…
Quick Guide: Enable Single Sign On (SSO) for Chrome and Firefox
Enabling Single Sign-On (SSO) for third-party browsers like Google Chrome and Firefox offers several benefits. Firstly, users won’t have to repeatedly…
