Category: Windows
-
PowerShell DCR Log Analytics for Windows Endpoints Part 1.0: Device Inventory Overview
Introduction: This is the start of something big. Those familiar with my work on Log Analytics probably have realized I seem to know a lot but haven’t put out a ton of useable items yet. Those familiar with the work my work is based on, that being Jan Ketil Skanke of MSEndpointMGR team and his…
-
Automating the Conversion of Intune Group Tags for Windows 11 Upgrades Part 1: Overview
I have a fun one to talk about today. This is the first part in a three-part series which covers the use of PowerShell and an Azure Function App to automatically change over Windows 11 devices to a new group tag post upgrading from Windows 10. This is something I have had cooking for a…
-
Intune Win32 Apps: Running them at System Startup
Here is a scenario: You might need to update an app, say a very critical app like a VPN application, and make sure you do it at a time that won’t interrupt the user. Unfortunately, Intune is not really capable of scheduling app deployments. You won’t be able to say “install this app only between…
-
Murdering Windows 11 Performance by Disabling Windows Defender – What Not to Do.
This is the story of how a rather innocent seeming policy, a policy which many other blogs “suggest” (to one degree or another), can absolutely destroy Windows 11 performance. This issue can slow the machine down by an order of magnitude – under the right conditions. This issue took me the better part of a…
-
Autopilot ESP Bug: Office C2R Teams Installer Resulting in MSI Collision Nightmares
The title here says a lot. Through no short amount of pain, I have uncovered an unfortunate ESP bug related to the Teams Machine-Wide Installer specifically when deployed through Intune using the Microsoft 365 Apps (Windows 10 and later) app type. This article makes for a direct follow up to my ESP App Failure Troubleshooting…
-
PowerShell Intune Win32 Apps – Avoiding a busy MSI Installer
Scenario & Background: Sometimes when you’re packaging apps to deploy via Intune, things need to be a little more complicated than just directly calling an MSI to install. You might need to install a series of MSIs or install an MSI and then copy files around. The easiest solution to make this all happen in…
-
Auditing Other Logon/Logoff Events for Log Analytics
Some of my up-and-coming PowerShell based Log Analytics guides make use of Windows Event logs for data gathering. While the Event Log has a ton of useful information by default, some events only log when enabled via additional policy. One such policy is the Auditing of Other Logon/Logoff Events. This policy enables a multitude of…
-
Windows 11: Automating the Removal of Personal Teams with Intune
I got reminded of this topic recently and realized there are a lot of people who might want this. This is how you can remove Microsoft Teams Personal from Windows 11 devices and keep it gone, as best as possible as of today at least. There was at one point a registry key one could…
-
PowerShell Querying User Password Expiration Information From Local AD
Security requirements are obviously a large player in the IT landscape. One of the biggest topics in that realm are passwords. While us IT dreamers have hopes of a password-less MFA covered landscape, most organizations have yet to embrace that. For most organizations account passwords are supposed to be subjected to certain expiration and change…
-
Bug: Windows 11 and the Inability to Script Enabling Notifications for Apps
In this post I hinted to the fact I had found a pair of bugs inside Windows 11 pertaining to notifications while working on this project.This is the story of the other bug. As soon as I solved my problem with the Notifications menu, I ran face first into this problem. As of February 2023,…
Azure to the Max 