Microsoft Deployment Toolkit (MDT) 8450 is now available

The latest and new release of Deployment Toolkit (MDT) for Windows is now available for download at ​https://www.microsoft.com/en-us/download/details.aspx?id=54259 This version supports Windows 10 build 1709 (Fall Creator Update) and SCCM current branch (1710), as well as includes some fixes like: Win10 Sideloaded App dependencies and license not installed CaptureOnly task sequence doesn’t allow capturing an image Error received when starting an MDT task sequence: Invalid DeploymentType value "" specified. The…

Read More

Office 365 – It is time to move from TLS 1.0 and 1.1

In order to improve the security, Office 365 services are going to stop supporting Transport Layer Security (TLS) 1.0 and 1.1 If you are in hybrid scenarios (either with Exchange or Skype for Business) and/or if you use AD FS for your authentication services, you need to ensure your on-premises services supports TLS 1.2 Starting March 1st, 2018 if you did not upgrade to TLS 1.2, online services will not…

Read More

Azure – Another security problem with Azure AD Connect

It has just been published (December 12th, 2017), a new potential security hole in Azure AD Connect (at least version 1.1.649.0, the advisory bulletin does not specify the impacted version(s)) which could leads the Azure AD Connect service account with insufficient restriction when Azure AD Connect automatically creates it. See the advisory bulleting available at https://docs.microsoft.com/en-us/security-updates/securityadvisories/2017/4056318 for more details and additional actions to lockdown the service. You are also invited…

Read More

Exchange Online – Clutter end of life date

This has been announced some time ago already (July 2016); Clutter is going to be deprecated and eventually removed and replaced by Focused Inbox. Now, we have an official end of life date for Clutter: this will be January 31, 2020. So you still have some time to communicate to your end-users, update your support team and training documentation. You may also have to deployed Outlook build 16.0.8730 Version 1711…

Read More

SCCM – You can now easily identify devices with pending reboot

UPDATE additional information and screenshots after Patch Tuesday This has always been a nightmare for sysadmins, identifying devices with pending reboot. Now with SCCM, it becomes easier. The latest update for SCCM Current Branch (build 1710) has a new column to use in the Console\Devices to identify such devices with pending reboot To get this information, access the Assets and compliance workspace from the SCCM console and go to Overview\Devices.…

Read More

Office 365 – Get translated messages in Message Center

This update will probably be more interesting for non-English customer. An update is currently being deployed to get messages from Message Center translated in a different language than the English one, as messages in Message Center are written only in English. To check/change your language settings, open the Gear menu from the Office 365 administration portal and update your language/time zone settings to match your language As soon as you…

Read More

Office 365 – ATP is available for SharePoint and Teams too

Office 365 ATP (Advanced Threats Protection) is an advanced protection solution provided by Office 365, already available for Exchange Online and for few months on Office Click To Run (see to learn more about ATP https://support.office.com/en-us/article/Office-365-Advanced-Threat-Protection-e100fe7c-f2a1-4b7d-9e08-622330b83653?ui=en-US&rs=en-US&ad=US) The solution is used to deeply analyzed URL’s and attachments before letting end-users accessing it. Now, Office 365 ATP is also available (through Office 365 E5 [enterprise and education] or additional Office 365 subscriptions…

Read More

Teams – You can define who can post in the General channel

Each Team is created with a General channel. By default everyone can post in this channel. Now you can define with 3 different levels who can post in this channel: Everyone can post (the default setting) Everyone and display an alert that everyone in the Teams will be notified Just the Teams owner To define this setting, you need to go (as the Team owner) to the Team settings (Manage…

Read More

Exchange Online – Easier Office 365 Groups recovery

You may already know that you can recover a deleted Office 365 Groups using PowerShell during the 30 days retention period. This does not change but it is becoming a bit easier by using Exchange Online ECP. As for the restore with PowerShell, the following is recovered when the deleted Office 365 Group is recovered: Azure Active Directory (AD) Office 365 Groups object, properties and members Group SMTP address Exchange…

Read More

Azure – Launch of the Azure Migrate preview

This has been announced at the Ignite Conference earlier and in private preview for quite some time now. Today, Azure Migrate is launched in public preview – everybody can try it to migrate on-premises VM’s workloads to Azure VM’s. To start using Azure Migrate to help you identify if a workload can be migrated to Azure and what are the dependencies, logon to your Azure ARM portal and search for…

Read More

Azure – Get notified when an Azure incident impacts you

You already know you have access to the Azure Health Dashboard to have a look on all your Azure resource and if there is any incident or advisory. But this is more a reactive situation than pro active. You can now create a service alert to be notified immediately when an incident occurs. To create a notification, just logon to your Azure Service Health Dashboard and click on the Create…

Read More

SCCM – Update – Create Azure AD Joined device collection

You may have already read my post on how to create an SCCM device collection to get Azure AD Joined devices (https://t.co/uJ5eBAtutT). This post is an update, so you can now forget the first one. With one of the latest SCCM update (sorry did not notice earlier – but at least the last update 1710) you can update your device collection membership rule to use the Out of the Box…

Read More

Azure – Group Based Licensing bug

As you may already know you can use security groups to automatically assign licenses to users member of the groups. Keeping in mind this feature is still in preview (so basically beta), there could be some glitch and here is one… So you setup a universal security group synced to Azure AD and then use Azure AD Group Based Licensing to automatically and dynamically grant the license to the group…

Read More

SCCM – Customize options available in Software Center

With the latest update of SCCM Current Branch (1710) you can define which options (Applications, Updates, Operating Systems, Installation Status, Device Compliance or Options tabs) are displayed in the SCCM Software Center. To configure it, open your SCCM console and access the Administration workspace. Then access the Client Settings and edit the client setting (either the default one or the custom one) to enable/disable the various options available in the…

Read More

Azure – Customize Azure Advisor to your need

You can now customize Azure Advisor to get advice tuned to your need. To do so, access your Azure ARM portal (https://portal.azure.com) and access the Azure Advisor (keyword Advisor) blade You can also use this direct link http://aka.ms/AzureAdvisor Then access the Configure section (button on top) Then for each subscription, you can select for which resource you want to receive advice by checking/unchecking it You can also adjust the rules…

Read More