Category
All posts
-
Hotpatching is the New Default: What Does This Mean for Your Update Strategy?
Read more →: Hotpatching is the New Default: What Does This Mean for Your Update Strategy?Starting May 2026, Microsoft is making hotpatch updates the norm for Windows, meaning security updates won’t need a reboot. This shift boosts compliance and efficiency for organizations. Admins will get new management controls to tailor this change while Windows Autopatch becomes key for smarter update management. Time to rethink your strategy!
-
RBAC for Applications – Least Privilege When Sending Email via the Graph API
Read more →: RBAC for Applications – Least Privilege When Sending Email via the Graph APIA while ago I received a question from a Power Platform team. They were building a Power App and wanted to add email functionality to it. To send emails from the app, they wanted to call the Microsoft Graph API. For this purpose, they had created an App Registration in Entra ID. The question was…
-
Conditional Access Policy Creation Improvements
Read more →: Conditional Access Policy Creation ImprovementsMicrosoft is constantly improving and developing existing services. This can be seen within Conditional Access, a few months ago the feature was introduced which made it possible to create a new policy based on a template. The templates that were available have recently been expanded considerably. The available templates are divided into several themes. For…
-
Do you have the correct MFA settings in your conditional access policy?
Read more →: Do you have the correct MFA settings in your conditional access policy?Fortunately, the realization and necessity to use MFA has penetrated many administrators. But are the settings set via a conditional access policy the correct settings? At a number of organizations I have now come across that have a single conditional access policy configured where users are members of a security group when logging in must…
-
Refresh Android Enrollment Tokens step-by-step
Read more →: Refresh Android Enrollment Tokens step-by-stepIn my previous blog I created a step-by-step guide for enrolling dedicated Android devices via a Power App. This way you don’t have to give permissions to the servicedesk in Intune. But what happens if the token expires? Because there is no standard way of knowing if the token has expired other than look within…
-
Android QR Code Device Enrollment Portal step-by-step
Read more →: Android QR Code Device Enrollment Portal step-by-stepWhen you don’t want to provide Intune permissions to the servicedesk because they only need to scan a QR Code for enrolling Android dedicated devices building a portal isn’t a bad idea. I have been playing around with the roles and the permissions within Intune and haven’t found a way to provide permissions to the…
-
Secure connection to Azure SQL database with Azure Private Link
Read more →: Secure connection to Azure SQL database with Azure Private LinkA customer asked if there was a secure method to connect to an Azure SQL Database. Employees were connecting to the SQL database from home and connected with the public interface. When users want to access the database, a firewall rule must be added. This requires a lot of management for the it department. This…
