Blog Posts

New tool – Base64 Converter

Posted on February 21, 2023February 22, 2023 by Trevor Jones in Applications, C#

I found myself doing a number of Base64 conversions recently - I usually use PowerShell for this, but I decided it would be handy to have a tool to do it, so I created one! Not something that hasn't been done before or can't easily be done online, but it's always nice to create your … Continue reading New tool – Base64 Converter →

Consolidated Feature Update Reporting for Microsoft Intune

Posted on February 10, 2023 by Trevor Jones in Intune, PowerBI, Reporting, Software Updates

If you're deploying feature updates using feature update profiles in Intune you're probably familiar with the Windows Feature Update Report available in the endpoint manager portal: As is often the case with these canned reports though, I find myself wanting to report things differently - in this case I wanted to see a consolidated view … Continue reading Consolidated Feature Update Reporting for Microsoft Intune →

Granting delegated permissions to the Microsoft Intune PowerShell SDK for the Windows Update for Business Deployment Service

Posted on February 7, 2023 by Trevor Jones in Intune, Powershell, Software Updates

When working with Microsoft Graph in PowerShell I tend to use the REST API directly rather than cmdlets provided by Microsoft in their Graph modules - just personal preference I suppose. I found myself needing to query the Windows Update for Business deployment service using the Graph API, and this requires a specific permission - … Continue reading Granting delegated permissions to the Microsoft Intune PowerShell SDK for the Windows Update for Business Deployment Service →

Encrypting Sensitive Data for Transit or Rest with PowerShell

Posted on September 23, 2022 by Trevor Jones in Compliance, Powershell

This blog is about how you can use the .Net cryptography model to encrypt and decrypt sensitive information such as passwords with PowerShell. It is specifically for the encryption in transit and encryption at rest scenarios, where, for example, you may be sending data to a backend service and securely storing it in that service. … Continue reading Encrypting Sensitive Data for Transit or Rest with PowerShell →

Create Compatibility Collections in ConfigMgr for Windows 11 22H2

Posted on September 23, 2022 by Trevor Jones in ConfigMgr, OS Deployment, Reporting, SCCM, Software Updates

When Windows 11 was first released I published some resources for creating collections in ConfigMgr containing workstations in their various "update readiness" states, such as whether they are capable for upgrade, if they are blocked by the common blockers like CPU family or by a safeguard hold, for example. Here I am publishing the same … Continue reading Create Compatibility Collections in ConfigMgr for Windows 11 22H2 →

Automate a Daily Activity Log Audit Report for an Azure Subscription

Posted on September 13, 2022 by Trevor Jones in Azure, Compliance, Powershell, Reporting

Yesterday I published a PowerShell script that retrieves activity log events for an Azure subscription. In this post, I will demonstrate how you could automate a daily email summary report of activities in your subscription using Azure automation. The email report looks something like this, with a summary of operations performed over the last 24 … Continue reading Automate a Daily Activity Log Audit Report for an Azure Subscription →

Audit Events in Your Azure Subscription with PowerShell

Posted on September 12, 2022September 13, 2022 by Trevor Jones in Azure, Compliance, Powershell, Reporting

Update! v.1.1 released fixing a bug where the most recent events were not being returned (2022-09-13) A quick post - I just published a new script for retrieving activity log events for an Azure subscription as the current options for searching and retrieving events didn't satisfy me. Azure Monitor has an activity log at the … Continue reading Audit Events in Your Azure Subscription with PowerShell →

DIY Windows Provisioning – a Solution Example

Posted on August 25, 2022 by Trevor Jones in Azure, C#, ConfigMgr, Intune, OS Deployment, PowerBI, Powershell, Reporting, WPF

Some time ago I created a custom solution to provision Windows workstations and in this blog I wanted to share how that solution works. This is not a community solution but simply an example of what can be possible with a little creativity and technical know-how! I work for an American company with a global … Continue reading DIY Windows Provisioning – a Solution Example →

Get Group Membership for Intune Managed Devices with PowerShell

Posted on June 30, 2022 by Trevor Jones in Intune, Powershell

Just a quick one - Microsoft just added the Device group membership report to Endpoint Manager (service release 2206) which is pretty handy: We can also get group membership with PowerShell. The function below lets you pass either a device name or Azure AD Id and it will return the group and transitive group membership. … Continue reading Get Group Membership for Intune Managed Devices with PowerShell →

Enhance Update Compliance Reporting with Azure Automation

Posted on June 7, 2022June 7, 2022 by Trevor Jones in Azure, Intune, PowerBI, Powershell, Software Updates

In my last blog I provided an Intune Proactive remediations script that can be used to gather additional Windows Update information from your managed Windows devices and send the data to an Azure Log Analytics workspace to enhance your Windows Update reporting together with Microsoft's Update Compliance solution. In this blog, I will provide an … Continue reading Enhance Update Compliance Reporting with Azure Automation →