Trevor Jones

Activating PIM Roles that require MFA or Conditional Access Authentication Context with PowerShell

Posted on November 26, 2024 by Trevor Jones in Azure, Powershell, Security

For some time, I've been activating and scheduling activations for Azure roles under Privileged Identity Management (PIM) using the Microsoft Graph PowerShell SDK. However recently we secured these role activations to require a conditional access authentication context with MFA. This basically requires me to MFA when I activate a role with PIM. Problem is, by … Continue reading Activating PIM Roles that require MFA or Conditional Access Authentication Context with PowerShell →

Using the Fluent Theme in WPF with PowerShell and .Net 9

Posted on November 19, 2024 by Trevor Jones in Applications, Powershell, WPF

For a long time, adding a modern design theme to your WPF project typically meant adding a 3rd party library to provide the styling, such as MahApps Metro, or WPF UI. With the release of .Net 9, a Fluent theme is finally coming to WPF! There are still areas where 3rd party libraries will be … Continue reading Using the Fluent Theme in WPF with PowerShell and .Net 9 →

Investigating Safeguard Hold 54762729 for Windows 11 24H2

Posted on November 8, 2024December 11, 2024 by Trevor Jones in Drivers, Intune, Powershell, Reporting, Software Updates

!! UPDATE 2024-11-12 !! Microsoft have now documented this safeguard as well as patching it in the December 10, 2024 Windows updates. Read more about it here. A few days ago I happened to be reviewing our feature update Power BI report and noticed that a number of devices were now being blocked from upgrading … Continue reading Investigating Safeguard Hold 54762729 for Windows 11 24H2 →

Popping Toast Notifications in PowerShell Core

Posted on October 29, 2024 by Trevor Jones in Powershell

If you've ever popped a toast notification in PowerShell using the Windows Runtime (WinRT), you've probably discovered that, whilst it works fine in PowerShell 5, it doesn't work at all in PowerShell Core (5/6/7+). That's because the WinRT assemblies are not included in PowerShell Core - WinRT is an exclusively Windows thing and PowerShell Core … Continue reading Popping Toast Notifications in PowerShell Core →

Intune Assignments Report

Posted on April 8, 2024 by Trevor Jones in Azure, Intune, PowerBI, Powershell, Reporting

If you've ever wanted to see all of your assigned items in Microsoft Intune in one place, my Intune Assignments report may be your friend 🙂 Using Azure automation, assigned items are exported from Microsoft Graph on a schedule and sent to an Azure storage account in CSV format. A Power BI report connects with … Continue reading Intune Assignments Report →

The Quest for a Microsoft Graph Access Token

Posted on March 19, 2024November 27, 2024 by Trevor Jones in Powershell, Security

For a long time I've used the following PowerShell cmdlet from the Intune PowerShell SDK to get an access token for Microsoft Graph for running ad-hoc Graph queries or testing automation code locally: $GraphToken = Connect-MSGraph -PassThru Since most of the time I prefer to construct my own code to call the REST API directly … Continue reading The Quest for a Microsoft Graph Access Token →

Deploying a Custom Power Plan with Intune Remediations

Posted on February 1, 2024 by Trevor Jones in Compliance, Intune, Powershell

For a long time I've used ConfigMgr to manage power settings on devices, but I recently decided to migrate this to Intune. There is more than one way to configure power settings in Intune, such as using the Settings Catalog or the Power Policy CSP. But these approaches do not (currently) allow management of all … Continue reading Deploying a Custom Power Plan with Intune Remediations →

Fix CVE-2022-29470 / Intel-SA-00875 / Nessus 180052 Intel Dynamic Tuning Technology Vulnerability with Intune

Posted on October 27, 2023January 26, 2024 by Trevor Jones in Drivers, Intune, Powershell, Security

Note: this blog is now retired since the download URL for the Intel DTT drivers is no longer available and I could not find an alternative. The text and scripts remain for reference only. I've never been a fan of security - I see it as nothing more than a necessary evil. I don't lock … Continue reading Fix CVE-2022-29470 / Intel-SA-00875 / Nessus 180052 Intel Dynamic Tuning Technology Vulnerability with Intune →

Automate Backups for Azure Table Storage with Azure Function App

Posted on July 24, 2023July 25, 2023 by Trevor Jones in Azure, C#, Powershell

Image by rawpixel.com on Freepik If you've ever used Azure Table Storage you've probably wondered - where is the backup option?!! I mean, you can back up SQL server or NoSQL databases, and you can back up storage blobs and Azure files, so why not table storage? Microsoft do not provide any native backup solution … Continue reading Automate Backups for Azure Table Storage with Azure Function App →

PowerShell Functions to Invoke an Intune Remediation Script on Demand and View Remediation States

Posted on July 12, 2023July 13, 2023 by Trevor Jones in Intune, Powershell

!! Updated 2023-07-13 - added additional versions of the functions using the Microsoft Graph PowerShell SDK (v2), as well as adding paging support to the original two functions. Microsoft recently released a preview capability in Intune to run Remediations (formerly Proactive remediations - stop changing the name of things, Microsoft, really!!) on demand, which is … Continue reading PowerShell Functions to Invoke an Intune Remediation Script on Demand and View Remediation States →