W11 - Virus & Threat Protection
Hi, When I disable "Automatic sample submission" (see below) I receive periodic popups that the device may be vulnerable (see below), and it remains the same until I "Dismiss". Is there any workaround to NOT show this popup…
Enable MFA for cloud and disable MFA for on-premises
Hello, Within our organization, we utilize both cloud services and on-premises solutions. For example, User 1 accesses cloud-based services such as SharePoint and Exchange, while User 2 exclusively uses on-premises solutions. We are planning to…
ARM Processor with Windows 11 Home is not allowing Checkpoint SSL Network extender
We are not able to use following Application on below Microsoft Laptop. Not allowing to run : Checkpoint SSL Network extender & Checkpoint VPN on Below Laptop. Microsoft Surface Laptop 7 Copilot+PC ZGM-00080 Qualcomm Snapdragon
MFA requirement for all Admins for an External Provider
I needed your help with some clarity regarding the MFA that has to be done by 10/15/2024. I am one of the Intune Engineers at my job, This company uses OKTA for their MFA currently for the companyname.com tenant but they are saying that our Intune…
Android device - system security policy
Good morning, I am starting with deploying android devices on Intune. Mode: FULLY MANAGED the policy regarding SYSTEM SECURITY - UNLOCK MOBILE DEVICES doesn't seem to start, even though I formatted the phone. I am sure the assigned user group is…
ASR Exclusion not working for network drive
We are having trouble adding an exclusion rule to our ASR rule, specifically the rule "Block Win32 API calls from Office macros," to a location on a mapped network drive. We have set the ASR rule to Audit, and we know exclusions for local…
I have been assigned a COURSE:Microsoft Cybersecurity Architect, I have completed the learning paths my certificate of completion is not showing
I have been assigned a COURSE: Microsoft Cybersecurity Architect, I have completed the learning paths my certificate of completion is not showing, Please what are the learning paths/mdoules i have to complete becuase from what I see, I had completed…
Intune Security Baseline firewall help?
We have devices, joined to Entra ID, and Intune. I push the following Security baselines: Windows 10 Security Baseline Windows 365 Security Baseline Defender Security Baseline They all have a Firewall section, including settings for the three…
Mandatory multifactor authentication for Azure
I received a pop up when I logged into the Azure Portal stating that I needed to setup up MFA for my Azure Portal due to the Mandatory multifactor authentication for Azure. I am a little confused as I have 'Security Defaults' enabled for a 'Microsoft…
Cant remove work or school account from personal PC
recently left an organization and my ID there was disabled. When employed there, I used my personal PC for work as well as my own stuff. Now I get frequent requests to log in to my Work or School Account. How do I remove the Work account from my personal…
Windows defender for Antivirus and Endpoint updates
Hi All, We are planning to deploy defender for endpoint for our premises, the patch management solution which we are using is Ivanti to deploy the patches to windows 10 and 11 client machines. I read from the MS article that below are the patches…
Windows Hello - DisablePostLogonProvisioning Intune CSP fails on some client
Hello, we're about to deploy Windows Hello for Business (WhfB) in our Hybrid environment. For that, we're using the Account Protection policy to enable WhfB scoped on user groups. At first, we don't want to force users to enroll WhfB, for which we like…
My laptop is locked with a BitLocker. I need a recovery key to access my laptop again, but I don't have access to my key or I get a message that there is no key for my laptop. How can I solve this without having to reset my laptop? All my documents are on
My laptop is locked with a BitLocker. I need a recovery key to access my laptop again, but I don't have access to my key or I get a message that there is no key for my laptop. How can I solve this without having to reset my laptop? All my documents are…
Please be aware that multi-factor authentication will become mandatory for all tenants on October 15, 2024...
I need to enable multi-factor authentication (MFA) for my tenant by October 15, 2024. All my users are already using MFA for their individual accounts. Do I still need to take any action at the tenant level? If so, would the following steps be…
I am getting notifications that MFA will be required, but I already have it "enforced" via a CA policy
Not sure what I need to do, but I keep getting the notification stating that MFA will be "enforce" for Admin access but I already have MFA enabled via conditional access policy (per a Microsoft recommnedation for security). What is it I need to…
Conditional Access Policy Frustration
I do what I am asked. I was asked to build a policy that would prevent using Office 365 apps or access to Online apps unless the device was either Entra Registered or Entra Joined. I have this working 99%. The issue is that I cannot enroll new devices…
I added my new security key to my MS Account in an enterprise setup of Hybrid joined AAD (Entra ID) and I am able to login using the Security key into microsoft applications but not onto my device.
Hello there, I registered my new Yubico 5c Security key into my Microsoft account, which is working fine to logon to many MS resources. My MS account is on Hybrid-joined AD (Entra ID). I am unable to use Security key to logon to my windows 11 device…
Mandatory MFA enablement by Oct 15th required if MFA is enabled for Microsoft Account?
I received an email for a tenant I have w/ a single subscription that MFA is required to be enabled on the tenant by Oct 15th. I only use this subscription currently for the cloud storage. I access it through the Azure Portal using a Microsoft Account…
Conditional access policy for risky sign-ins
I am trying to create a conditional access policy to require multifactor authentication for risky sign-in attempts. I am following the instructions on this article but there is no section to define user or sign-in…
Enabling KQL Query for the risky users without Entra ID Premium P2?
Does the Entra ID Premium P2 required to be able to query the risky users with KQL (Kusto) and then send the email alert to the relevant team? Thank you in advance for any help and suggestions.