One of the most common challenges when implementing Conditional Access with “Require compliant device” is fear. Because of this, many organizations delay enforcing compliance for years.But it doesn’t have to be that way. A simple approach is to introduce compliance in phases, starting with visibility and moving towards […]

Introduction In this blog, I will explore how to leverage HardeningKitty in conjunction with Intune, enabling us to remotely audit our clients and ensure they meet our security baseline. By integrating HardeningKitty with Intune, we can automate the process of security auditing, streamline the management of audit reports, […]

Microsoft Defender on each client is a high important tool as it both are an Antivirus tool – but also deliver info to Defender for Endpoint as a sensor. Microsoft developed Tamper Protection that should make sure evil software/process not should be able to disable Microsoft Defender. But […]

When we talking about Windows 10 and Autopilot – we always recommend to make and agreement with the OEM partner, so they prepare the hardware to the Autopilot device list. But for existing hardware we need to onboard to Autopilot – can be another story. If you have […]

We got errors on our compliance policy after we enrolled them to Autopilot and I have the idea that the BIOS was correct configured. But instead of having the computer in hand. Together with a collegue we developed this script. The script can from Proactive Remediation, check all […]