Powershell

Automate Public IP Address Change Notifications for Azure Services

Posted on May 4, 2023 by Trevor Jones in Azure, Network, Powershell, Reporting

In Azure, there are various ways to control and restrict the flow of traffic into, out of or between resources depending on the resource in question and the pricing tier used. A common scenario where you might want to restrict traffic is with an API flow where you may want some of your resources to … Continue reading Automate Public IP Address Change Notifications for Azure Services →

Managing HP Driver Updates with Microsoft Intune, Azure Log Analytics and Power BI – Part 2

Posted on March 31, 2023 by Trevor Jones in Azure, Drivers, Intune, PowerBI, Powershell, Reporting, Software Updates

In Part 1 of this series we looked at how we can report on missing driver updates for HP workstations using Intune Proactive remediations, Azure Log Analytics and Power BI. In Part 2 we'll look at how we can deploy driver updates to devices and use the information available in the Power BI report to … Continue reading Managing HP Driver Updates with Microsoft Intune, Azure Log Analytics and Power BI – Part 2 →

Granting delegated permissions to the Microsoft Intune PowerShell SDK for the Windows Update for Business Deployment Service

Posted on February 7, 2023 by Trevor Jones in Intune, Powershell, Software Updates

When working with Microsoft Graph in PowerShell I tend to use the REST API directly rather than cmdlets provided by Microsoft in their Graph modules - just personal preference I suppose. I found myself needing to query the Windows Update for Business deployment service using the Graph API, and this requires a specific permission - … Continue reading Granting delegated permissions to the Microsoft Intune PowerShell SDK for the Windows Update for Business Deployment Service →

Encrypting Sensitive Data for Transit or Rest with PowerShell

Posted on September 23, 2022 by Trevor Jones in Compliance, Powershell

This blog is about how you can use the .Net cryptography model to encrypt and decrypt sensitive information such as passwords with PowerShell. It is specifically for the encryption in transit and encryption at rest scenarios, where, for example, you may be sending data to a backend service and securely storing it in that service. … Continue reading Encrypting Sensitive Data for Transit or Rest with PowerShell →

Automate a Daily Activity Log Audit Report for an Azure Subscription

Posted on September 13, 2022 by Trevor Jones in Azure, Compliance, Powershell, Reporting

Yesterday I published a PowerShell script that retrieves activity log events for an Azure subscription. In this post, I will demonstrate how you could automate a daily email summary report of activities in your subscription using Azure automation. The email report looks something like this, with a summary of operations performed over the last 24 … Continue reading Automate a Daily Activity Log Audit Report for an Azure Subscription →

Audit Events in Your Azure Subscription with PowerShell

Posted on September 12, 2022September 13, 2022 by Trevor Jones in Azure, Compliance, Powershell, Reporting

Update! v.1.1 released fixing a bug where the most recent events were not being returned (2022-09-13) A quick post - I just published a new script for retrieving activity log events for an Azure subscription as the current options for searching and retrieving events didn't satisfy me. Azure Monitor has an activity log at the … Continue reading Audit Events in Your Azure Subscription with PowerShell →

DIY Windows Provisioning – a Solution Example

Posted on August 25, 2022 by Trevor Jones in Azure, C#, ConfigMgr, Intune, OS Deployment, PowerBI, Powershell, Reporting, WPF

Some time ago I created a custom solution to provision Windows workstations and in this blog I wanted to share how that solution works. This is not a community solution but simply an example of what can be possible with a little creativity and technical know-how! I work for an American company with a global … Continue reading DIY Windows Provisioning – a Solution Example →

Get Group Membership for Intune Managed Devices with PowerShell

Posted on June 30, 2022 by Trevor Jones in Intune, Powershell

Just a quick one - Microsoft just added the Device group membership report to Endpoint Manager (service release 2206) which is pretty handy: We can also get group membership with PowerShell. The function below lets you pass either a device name or Azure AD Id and it will return the group and transitive group membership. … Continue reading Get Group Membership for Intune Managed Devices with PowerShell →

Enhance Update Compliance Reporting with Azure Automation

Posted on June 7, 2022June 7, 2022 by Trevor Jones in Azure, Intune, PowerBI, Powershell, Software Updates

In my last blog I provided an Intune Proactive remediations script that can be used to gather additional Windows Update information from your managed Windows devices and send the data to an Azure Log Analytics workspace to enhance your Windows Update reporting together with Microsoft's Update Compliance solution. In this blog, I will provide an … Continue reading Enhance Update Compliance Reporting with Azure Automation →

Enhance Update Compliance Reporting with Microsoft Endpoint Manager

Posted on May 26, 2022 by Trevor Jones in Compliance, Intune, Powershell, Reporting, Software Updates

If you're using Windows Update for Business in Microsoft Endpoint Manager you're probably also using Microsoft's Update Compliance solution for reporting. Update Compliance contains some useful data and I know the team are working on additional improvements. A while back I created my own "Update Compliance" solution in part because I wasn't happy with the … Continue reading Enhance Update Compliance Reporting with Microsoft Endpoint Manager →