Windows / Azure – Reset password from all Windows

You may be already aware that you can provide the ability to your end-user to reset their password (Self Service Password Reset – SSRP) directly from the logon screen for Windows 10 Azure AD Joined device (see https://t.co/LW060QqgGV if you want to know more). Well, Microsoft has announced a major improvement for this feature as you can now use it for all Windows version (from Windows 7 to Windows 10…

Read More

Windows – Windows 10 1809 and Windows Server 2019 have been pulled out

Just few days after the release of Windows 10 1809 and Windows Server 2019, Microsoft has pulled out these releases from MSDN (and possibly Volume license) as well as paused the delivery through Windows Update. This follows reports of missing files and Microsoft is investigating (limited details available here https://support.microsoft.com/en-us/help/4464619/windows-10-update-history)

Read More

Windows – Windows 10 1809 and Windows Server 2019 are now available

UPDATE Oct, 6th – Windows 10 1809 and Windows Server 2019 have been pulled out for further investigation after issues reported (see https://t.co/WLZS6uC7Px) Windows 10 1809 update is being rolled out through WindowsUpdate and is already available using the Installation Media tool or MSDN. Windows Server 2019 is also available on MSDN or in evaluation, additional availability (volume licensing, Azure VM) will come within the next few days.

Read More

Azure/Windows 10 – You can use your Authenticator App to sign in

Going the same way than Windows Hello for Business, you can now use your Microsoft Authenticator app to sign in to your corporate resources protected by Azure AD (Azure, Office 365, Azure published apps…) You need off course few prerequisites: Running Windows 10, registered to your Azure AD tenant Have setup an authentication policy on your Azure AD Have register your Microsoft Authenticator app Setup the authentication policy on Azure…

Read More

Windows – Quick reminder: Windows Server 2008 and Windows Server 2008 R2 are reaching end of support in Jan 2020

It has been already reminded few times but as this is quite important as these versions are still use quite a lot you really need to start thinking to move on from Windows Server 2008 and Windows Server 2008 R2. They are reaching their end of support/end of life on January 14th 2020.You have few options available to move on: migrate your 2008/2008 R2 workloads on Azure; you will enjoy…

Read More

Azure – Windows Server 2019 Preview is available as VM image

Windows Server 2019 Preview (the next major release of Windows Server) is now available for Azure Virtual Machine. Just search for Windows Server 2019 when you create a new virtual machine Search the marketplace (https://azuremarketplace.microsoft.com/en-us/marketplace/apps/) for Windows Server 2019 Or access the marketplace directly from this URL https://azuremarketplace.microsoft.com/en-us/marketplace/apps/microsoft-hyperv.rs5_preview Enjoy

Read More

Windows – Windows 10 1803 ADMX files are now available

Few days after the release of the new Windows 10 build (1803, also known as April Update), the ADMX files to manage GPO settings for Windows 10 1803 are now available for download here https://www.microsoft.com/en-us/download/details.aspx?id=56880 NOTE for some reason, the files are not extracted to the defined target folder when running the MSI package (default “C:\Program Files (x86)\Microsoft Group Policy\Windows 10 April 2018 Update (1803)\”) but to C:\PolicyDefinitions. Even if…

Read More

Windows 10 – You can (finally) manage the bandwidth used by Windows Update

UPDATE May 6th, after the release of the ADMX file for Windows 10 1803, the GPO settings to manage these restrictions are available With the Windows 10 April Update (build 1803) you finally can manage the amount of bandwidth being used by Windows Update. To manage the limits (applicable to both download and upload [aka sharing with internet clients] – knowing that if you have already restrict the sharing with…

Read More

Windows – Windows Admin Center is now available in GA

Windows Admin Center (formerly known as Project Honolulu) is now available. You can get it from http://aka.ms/WACDownload Windows Admin Center (WAC) is a new web-based administration interface, centralizing all (or most of) administration consoles (MMC) you are using as a Windows servers administrator. WAC can be used to manage Windows Server 2012 to Windows Server 2016 – will also support the coming Windows Server 2019, as well as Windows 10.…

Read More

Intune – Enable Windows Redeployment from logon screen

Starting with Window 10 build 1709, it is possible for administrators to re-initialize Windows 10 devices to remove personal files and settings and revert the device to an original state, while keeping the device enrollment. Enable the policy To make Windows Automatic Deployment available from the logon screen, you must first enable the policy; which can be done either with Intune (or any MDM supporting CSP) or with a Windows…

Read More

Microsoft Deployment Toolkit (MDT) 8450 is now available

The latest and new release of Deployment Toolkit (MDT) for Windows is now available for download at ​https://www.microsoft.com/en-us/download/details.aspx?id=54259 This version supports Windows 10 build 1709 (Fall Creator Update) and SCCM current branch (1710), as well as includes some fixes like: Win10 Sideloaded App dependencies and license not installed CaptureOnly task sequence doesn’t allow capturing an image Error received when starting an MDT task sequence: Invalid DeploymentType value "" specified. The…

Read More

Windows Server – Honolulu technical preview

As you may know, Microsoft has announced a new Windows Server management experience to manage on-premises system with the Honolulu project. The Honolulu project delivers a more modern interface for managing on-premises system through a web interface with no cloud footprint (no dependency what so ever with Azure or other clouds services). In this post I will go through the setup of the technical preview – available for download at…

Read More

Windows 10 – Windows Defender Advanced Threat Protection

Windows Defender Advanced Threat Protection (ATP) is a security functionality built in Windows 10 to help detecting, investigating and protecting against threats, introduced with Windows 10 build 1607 (or known as Anniversary Build). In this post, I’m going to implement ATP integrated with SCCM Current Branch (you can request a trial for ATP here http://aka.ms/register-wdatp) Once you have requested the trial and get approved, you will receive an email to…

Read More

SCCM – Identify Azure AD Joined device

UPDATE this post has an updated version here https://t.co/W3AUonuSR9 Following my post to create an SCCM device collection for Windows Core (https://t.co/ZGdL91Vkht), I wanted to do the same to identify all Azure AD Joined device. So the first thing was to find how to identify an Azure AD Joined device; and the answer is with the following registry key which only exist if the device is joined to Azure AD:…

Read More