HardeningKitty: Audit Baseline with Intune

Introduction In this blog, I will explore how to leverage HardeningKitty in conjunction with Intune, enabling us to remotely audit our clients and ensure they meet our security baseline. By integrating HardeningKitty with Intune, we can automate the process of security auditing, streamline the management of audit reports, […]

Proactive Remediations – MS Defender

Microsoft Defender on each client is a high important tool as it both are an Antivirus tool – but also deliver info to Defender for Endpoint as a sensor. Microsoft developed Tamper Protection that should make sure evil software/process not should be able to disable Microsoft Defender. But […]

Onboard existing devices

When we talking about Windows 10 and Autopilot – we always recommend to make and agreement with the OEM partner, so they prepare the hardware to the Autopilot device list. But for existing hardware we need to onboard to Autopilot – can be another story. If you have […]

BIOS check from Endpoint Manager

We got errors on our compliance policy after we enrolled them to Autopilot and I have the idea that the BIOS was correct configured. But instead of having the computer in hand. Together with a collegue we developed this script. The script can from Proactive Remediation, check all […]

Collection of Remediation scripts

Since summer 2020 – Proactive Remediation has been available in the Endpoint Manager portal. This give the possibility to detect and remediate issues before the user see them. This also mean it is only the fantasy that sets the limitations og things you want to observe, change or […]

Cheatsheet for PSAppDeployToolkit

I have been using PSAppDeployToolkit for the last 3-4 years – and I dont make any software package without using PSAppDeployToolkit. If you dont know what I am talking about – please visit and download the wrapper here: https://psappdeploytoolkit.com/ After some years – I manage together with the […]