Trevor Jones

Intune Assignments Report

Posted on April 8, 2024 by Trevor Jones in Azure, Intune, PowerBI, Powershell, Reporting

If you've ever wanted to see all of your assigned items in Microsoft Intune in one place, my Intune Assignments report may be your friend 🙂 Using Azure automation, assigned items are exported from Microsoft Graph on a schedule and sent to an Azure storage account in CSV format. A Power BI report connects with … Continue reading Intune Assignments Report →

The Quest for a Microsoft Graph Access Token

Posted on March 19, 2024March 22, 2024 by Trevor Jones in Powershell, Security

For a long time I've used the following PowerShell cmdlet from the Intune PowerShell SDK to get an access token for Microsoft Graph for running ad-hoc Graph queries or testing automation code locally: $GraphToken = Connect-MSGraph -PassThru Since most of the time I prefer to construct my own code to call the REST API directly … Continue reading The Quest for a Microsoft Graph Access Token →

Deploying a Custom Power Plan with Intune Remediations

Posted on February 1, 2024 by Trevor Jones in Compliance, Intune, Powershell

For a long time I've used ConfigMgr to manage power settings on devices, but I recently decided to migrate this to Intune. There is more than one way to configure power settings in Intune, such as using the Settings Catalog or the Power Policy CSP. But these approaches do not (currently) allow management of all … Continue reading Deploying a Custom Power Plan with Intune Remediations →

Fix CVE-2022-29470 / Intel-SA-00875 / Nessus 180052 Intel Dynamic Tuning Technology Vulnerability with Intune

Posted on October 27, 2023January 26, 2024 by Trevor Jones in Drivers, Intune, Powershell, Security

Note: this blog is now retired since the download URL for the Intel DTT drivers is no longer available and I could not find an alternative. The text and scripts remain for reference only. I've never been a fan of security - I see it as nothing more than a necessary evil. I don't lock … Continue reading Fix CVE-2022-29470 / Intel-SA-00875 / Nessus 180052 Intel Dynamic Tuning Technology Vulnerability with Intune →

Automate Backups for Azure Table Storage with Azure Function App

Posted on July 24, 2023July 25, 2023 by Trevor Jones in Azure, C#, Powershell

Image by rawpixel.com on Freepik If you've ever used Azure Table Storage you've probably wondered - where is the backup option?!! I mean, you can back up SQL server or NoSQL databases, and you can back up storage blobs and Azure files, so why not table storage? Microsoft do not provide any native backup solution … Continue reading Automate Backups for Azure Table Storage with Azure Function App →

PowerShell Functions to Invoke an Intune Remediation Script on Demand and View Remediation States

Posted on July 12, 2023July 13, 2023 by Trevor Jones in Intune, Powershell

!! Updated 2023-07-13 - added additional versions of the functions using the Microsoft Graph PowerShell SDK (v2), as well as adding paging support to the original two functions. Microsoft recently released a preview capability in Intune to run Remediations (formerly Proactive remediations - stop changing the name of things, Microsoft, really!!) on demand, which is … Continue reading PowerShell Functions to Invoke an Intune Remediation Script on Demand and View Remediation States →

Intune Remediations for CVE-2023-24932 (KB5025885 Windows Boot Manager Revocations)

Posted on July 11, 2023 by Trevor Jones in Intune, Powershell

With the release of todays Windows Updates (July 11, 2023) Microsoft have updated their guidance for managing the Windows Boot Manager revocations for Secure Boot changes associated with CVE-2023-24932. I've prepared some Intune Remediation scripts that can be used to apply the "revocations" mentioned in that KB - which is simply a registry key update. … Continue reading Intune Remediations for CVE-2023-24932 (KB5025885 Windows Boot Manager Revocations) →

Translating Windows Update Driver Names to Friendly Driver Names

Posted on July 7, 2023 by Trevor Jones in Drivers, Intune, Powershell

The Windows Driver Update management capability in Intune is a welcome new feature providing greater control of driver updates. One frustration I've long had with drivers in Windows Update though is the naming - sometimes the names are quite indescript and it can be difficult to know which driver (or driver software) it actually is. … Continue reading Translating Windows Update Driver Names to Friendly Driver Names →

Display a User Notification in an Intune Win32 Application

Posted on July 6, 2023 by Trevor Jones in Applications, C#, Intune, Powershell, WPF

I recently had the joy of migrating an Adobe application from ConfigMgr to Intune, and one of the requirements we needed to add was a user notification that prompted the user to close any M365 apps if they were running as they've been known to cause the installation to fail. Since this is not a … Continue reading Display a User Notification in an Intune Win32 Application →

New App: Microsoft Entra Group Bulk Import

Posted on June 9, 2023March 8, 2024 by Trevor Jones in Applications, Azure, C#, WPF

Change Log DateVersionComments2024-03-051.0.3> Added the "Allow duplicates" toggle. If enabled, all resources with the same name will be imported. If disabled, no resource with duplicate names will be imported.2024-01-081.0.2> Changed name from Azure AD Group Bulk Import to Microsoft Entra Group Bulk Import> Fixed issue with the Segoe UI font after font name change> Fixed … Continue reading New App: Microsoft Entra Group Bulk Import →