Identity & Security

Friday resource! If you’re tinkering with Local Groups Membership policies in Intune and (like me) have cursed a bit while converting group/role ObjectIDs to SIDs and vice versa, here’s a website that does it online instantly and conveniently. 🔹 ObjectId ➡️ SID 🔹 SID ➡️ ObjectId I’d love to tag the author of this wonderful utility (Erik Engberg) here, but from what I’ve seen, they’re not on LinkedIn. If I’m mistaken and someone knows their exact profile, please let me know so I can give them proper thanks.

Why Windows Hello for Business is the Multi-Factor Authentication for Windows login and how to configure it via Intune in Azure AD Kerberos Cloud Trust mode, through the Settings Catalog. Below is the documentation I refer to in the video: 📄 Windows Hello for Business Overview 📄 How Windows Hello for Business works in Windows Devices 📄 Windows Hello for Business and Authentication 📄 Cloud Kerberos trust deployment 📄 Enable passwordless security key sign-in to on-premises resources by using Azure AD Have you implemented Windows Hello for Business?

A few days ago, I came across a very interesting article from the Intune Customer Success Team. The article discusses how to configure BitLocker through the Intune Settings Catalog. This piqued my curiosity because, considering the Settings Catalog, there are now three different ways to deploy BitLocker from Intune. I wanted to understand the advantages of using the Settings Catalog compared to the already available methods. Here’s my experience! ⚠️ As mentioned in the video: the settings you see were done for purely educational and illustrative purposes.

It took me a while to make this video, but finally, here I am: Azure Virtual Desktop Single Sign-On to Azure AD. One of the main “criticisms” always directed at AVD is the double authentication, which many consider a hassle. With Single Sign-On, the process becomes smoother, and the required authentications decrease. Could I have just shown you the simple SSO? Clearly NO, so I even included a FIDO2 security key in it!