Posts Tagged ‘Intune’

GPO and PowerShell support in #AzureAD and #Intune? Tech Preview released – #EnvokeIT Workspace Client

February 9, 2017 Leave a comment

Finally… we’re pleased to announce that we now have released the Tech Preview of the EnvokeIT Workspace Client service!! 🙂

What is this and why did we build this SaaS device configuration service?

Have you also tried to roll-out Windows 10 with Azure AD and potentially also Microsoft Intune and lack capabilities like Group Polices to control registry and files or to run PowerShell scripts?

We’ve solved that for you! The EnvokeIT Workspace Client is a device configuration client built on the cloud and for the cloud! Now you have all the capabilities that you require to deliver a modern Windows 10 Out-of-the-box delivery using Azure AD!

Have a look at our “quick” overview video or just sign up for a free Tech Preview tenant and you’ll be up and running within minutes!

The service is built for Windows on Azure and leverages the latest technology to ensure that you can adopt the Windows and Azure AD architecture without lacking what you need from good old Group Policies!

Here are some examples of what the service can solve for you:

  • You want to remove the Windows “bloatware” for all your Windows 10 devices, no problem
  • If you want to specify and ensure that all your users have the same company background, you can do that!
  • If you need to configure application settings for all users, no problem!
  • Do you need to have an updated User Guides or other material easily pushed to your users desktop, no problem!
  • If your web applications require that they are put in Local Intranet or Trusted Sites in your browsers, then you can push that out!
  • Does your Windows application require specific local settings files to be pushed to the clients, no worries we’ve got you covered there as well!
  • Do you need to push out Microsoft Edge policies you can do that as well! For a complete list of built-in Group Policy objects that you can configure see this list.
  • If you need to do special configuration of the OS, applications or user settings you can do that through PowerShell scripts, you write the scripts and our agent makes sure it’s run in user or system context. Configuration possibilities are endless with PowerShell script support!

Read more at the site or sign up for your own trial tenant!

And if you need any assistance in your Windows 10, Office 365 or Enterprise Mobility Project just contact us at EnvokeIT: or send an email to me directly: richard.egenas at


Azure AD Premium a visionary in Gartner IDaaS Magic Quadrant! I love it! – #Azure, #AzureAD, #IDaaS

This is awesome! I just love what Microsoft is doing with all the cool Azure offerings! That’s also why I’ve been digging deeper into this area lately and also took the Microsoft Specialist – Architecting Microsoft Azure Solutions exam and been playing around with Azure AD, DirSync and ADFS a lot.

Now with the whole release of Windows 10, Azure AD, Intune, ADFS and System Center we’re going to have a lovely story going forward with how to do client management going forward, just take a Windows 1o device, join it through Azure AD, Intune and federation and then sign in using your on-premise AD credentials. On top of that you can also then leverage Azure AD or federation with it for your SaaS apps as well and with SSO, and why not use the Azure connector to make your on-premise web apps available on the Internet with authentication as well!

Microsoft and Azure rocks!

Now also with the magic quadrant from Gartner that shows how well Microsoft is doing! It look very promissing, and just think about combingin all this also with Citrix Workspace cloud going forward! So great! 🙂

Gartner just released their Magic Quadrant for Identity Management as a Service (IDaaS) and after only ~10 months in market, Azure AD premium was placed in the “Visionary” quadrant, far to the right of our competitors for our completeness of vision and our ability to execute, only slightly below companies with established, multi-year track records.

If you are a Gartner client, you can find the report here. We will have a complimentary copy to share soon, so please check back.

We’re really pleased with this result. We believe it validates our vision of providing of a complete solution for hybrid identity management, a solution that includes not just a directory and employee identity management, but full suite of identity capabilities, an integrated device management offering (Microsoft Intune), leading edge information protection (Azure RMS) and a robust set monitoring and security capabilities.

I am especially delighted by this validation because it says a lot about our customers, implementation partners and ISV partners who have worked together with us. They have been awesome about sharing their time and energy every day, to make sure that the products and services we build meet their needs and are helping them position their companies to thrive in the emerging world of cloud and devices.

This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Microsoft.
Gartner does not endorse any vendor, product…

Continue reading here!


Microsoft Intune May updates – #Intunes, #EMM, #MDM, #Mobility, #EnvokeIT

Thsi week Microsoft is going to roll out some new updates like Android Wrapping Tool and new features for iOS, Android and Windows Phone to Microsoft Intunes.

We are excited to share with you the next set of Intune features that will be released between May 19 and May 26.  With our monthly release cadence, we continue to focus on providing you with best-in-class experiences that help keep your users productive while protecting your company’s sensitive data. You can expect to see the following new Intune standalone (cloud only) features in this release:

  • Ability to extend application protection to your existing line-of-business apps using the Intune App Wrapping Tool for Android (Intune App Wrapping Tool for iOS made available in December 2014)
  • Ability to assign help desk permissions to Intune admins, filtering their view of the Intune admin console to only provide access to perform remote tasks (e.g. passcode reset and remote lock)
  • RSS feed notification option added for Intune admin to subscribe to be alerted when new Intune service notifications are available for their service instance
  • Improved end user experience in the Intune Company Portal app for iOS with step-by-step guidance added on how to access corporate email by enrolling for management and validating device compliance
  • Updated Intune Company Portal app for Windows Phone 8.1 to provide enhanced status notifications for app installations
  • New custom policy template for managing new Windows 10 features using OMA-URI
  • New per-platform mobile device security policy templates for Android, iOS, Windows, and Windows Phone, in addition to new Exchange ActiveSync policy template
  • Ability to deploy Google Play store apps that are required/mandatory to install on Android devices

Also, as announced last week, several new hybrid features are now…

Contact us at EnvokeIT if you like assistance with Intunes or continue reading the blog post here.


Microsoft Ignite 2015 summary – #MSIgnite, #EnvokeIT, #Azure, #Office365, #OneDrive, #EMM, #PaaS, #IaaS

Hi all,

We at EnvokeIT participated and collaborated at Microsoft Ignite 2015 in Chicago. And it was one of the most intense events I’ve visited in years with a lot of happening in the business and Microsoft really showed that they are the leading innovator in many areas!

I hope that you enjoy my report and that it gives you a condensed overview of what happened and please contact us at EnvokeIT if you want assistance within any area below! And thank you Microsoft for such a great event and also all you bloggers out there that I’ve linked to in this material.

I must say that this event was positive and a bit scary at the same time. Microsoft is for sure pushing as visionairies and innovators in a lot of areas, and I think that competitors will have a hard time competing in the coming years.

These are the areas where A LOT have been released already and where Microsoft according to my oppinion will increase its market share significantly:

  • Cloud and Mobile services, and with this I don’t mean IaaS service for just running a VM in their public Azure cloud or building a hybrid cloud with connectivity to on-premise datacenters. They are delivering so many capabilities now as PaaS and SaaS services. Just look at the sections below, it’s everything from Enterprise Mobillity Management (EMM), Business Intelligence, Database, Storage, Web Apps/services, Service Availability services (DR, Monitoring/Reporting, Backup etc.), Development, Source Control, Visual Studio Online etc. It’s amazing!!
  • Open Source/Linux support – It’s so cool how much Microsoft have shifted to become an adopter to support more open source technologies and way of thinking than just a couple of years ago! Just have a look at all the Linux support they have in Azure, the Linux support they now have in System Center, Docker support to deliver more DevOps capabilities and all the other services in Azure. It’s amazing and so fun! So now both Microsoft have opened their eyes and realized that they can’t ignore this anymore just like Citrix has with their addition of XenDesktop for Linux with SuSE and RedHat support!

The first day kicked off and was a bombarding of product announcements aimed at helping IT pros secure and manage the new Universal Windows Platform.

CEO Satya Nadella presided over a three-hour keynote, which focused on how Microsoft’s new wave of software and cloud services will enable IT and business transformations that are in line with the ways people now work. Nadella talked up Microsoft’s focus on “productivity and platforms” and how it’s tied with the shift to cloud and mobility. He also highlighted the need for better automation of systems and processes, and better management of the vast amounts of data originating from new sources such as sensors and other Internet-of-Things-type nodes.

As mentioned there where a lot of updates and below I’ve tried to gather these and I hope it gives you a good insight on the infromation we received and also guidance on how you can get more information about the topics.

Included below are links to detailed overviews of each of the demos (from Microsoft blog post) – including information about how to use them, where to learn more, and what you’ll need to get started.

The following picture is a sketch of the keynote and is also quite good at summarizing the message of Mobile and Cloud first!


vNiklas also created a great powershell script that automates the downloading of all MS Ignite content with PowerShell and Bits from Channel 9 that you can find here!

Enterprise Mobility Management (EMM) – MDM, MAM, MCSM/MIM etc…

Microsoft’s next chapter in Enterprise Mobility, great blog post on where Microsoft is going etc. in-enterprise-mobility.aspx …

Windows 10 Continuum – this is cool, think about docking your smartphone to your external screen, keyboard and mouse! That’s try mobility of youre device, this looks really cool and something that I’d like to try out once released!

Have a look at the feature demo at Ignite in the video below.

What’s New and Upcoming with Microsoft Intune and System Center Configuration Manager | Microsoft Ignite 2015

This session outlines the latest enhancements in enterprise mobility management using Microsoft Intune and System Center Configuration Manager. See the newest Microsoft Intune improvements for managing mobile productivity without compromising compliance, and learn about the futures of Microsoft Intune and Configuration Manager, including new Windows 10 management scenarios.

Microsoft Intune and Configuration Manager, including new Windows 10 management scenarios.

In the CloudEnterprise Mobility Management table of content:

Office 2016 public preview available!

Over the last 12 months, we’ve transformed Office from a suite of desktop applications to a complete, cross-platform, cross-device solution for getting work done. We’ve expanded the Office footprint to iPad and Android tablets. We’ve upgraded Office experiences on the Mac, the iPhone and on the web. We’ve even added new apps to the Office family with Sway and Office Lens. All designed to keep your work moving, everywhere. But that doesn’t mean we’ve forgotten where we came from. While you’ve seen us focus on tuning Office for different platforms over the last year, make no mistake, Office on Windows desktop is central to our strategy.

In March we introduced an IT Pro and Developer Preview for the 2016 release of our Office desktop apps on Windows, and now—as a next step—we’re ready to take feedback from a broader audience. Today we’re expanding the Office 2016 Preview, making it available to Office users everywhere in preparation for general availability in Fall 2015.

Office 2016 previewers will get an early look at the next release of Office on Windows desktop, but more importantly they’ll help to shape and improve the future of Office. Visit the Office 2016 Preview site to learn more about the Preview program and if it’s right for you.

New in Office 2016

Since March, we’ve shared some glimpses of what’s to come in Office 2016. Today, we’d like to give a more holistic view of what customers at home and work can expect in the next release. In Office 2016, we’re updating the Office suite for the modern workplace, with smart tools for individuals, teams, and businesses.

Read more…

Today is the RTM for #Windows Server 2012 R2! – #Microsoft

Microsoft blog post about the RTM release of Windows Server 2012 R2:

As noted in my earlier post about the availability dates for the 2012 R2 wave, we are counting the days until our partners and customers can start using these products. Today I am proud to announce a big milestone: Windows Server 2012 R2 has been released to manufacturing!

This means that we are handing the software over to our hardware partners for them to complete their final system validations; this is the final step before putting the next generation of Windows Server in your hands. 

While every release milestone provides ample reason to celebrate (and trust me, there’s going to be a party here in Redmond), we are all particularly excited this time around because we’ve delivered so much in such a short amount of time. The amazing new features in this release cover virtualization, storage, networking, management, access, information protection, and much more.

By any measure, this is a lot more than just one year’s worth of innovation since the release of Windows Server 2012!

As many readers have noticed, this release is being handled a bit differently than in years past. With previous releases, shortly after the RTM Microsoft provided access to software through our MSDN and TechNet subscriptions.  Because this release was built and delivered at a much faster pace than past products, and because we want to ensure that you get the very highest quality product, we made the decision to complete the final validation phases prior to distributing the release.  It is enormously important to all of us here that you have the best possible experience using R2 to build your private and hybrid cloud infrastructure.

We are all incredibly proud of this release and, on behalf of the Windows Server engineering team, we are honored to share this release with you.  The opportunity to deliver such a wide range of powerful, interoperable R2 products is a powerful example of the Common Engineering Criteria that I’ve written about before.

Also of note: The next update to Windows Intune will be available at the time of GA, and we are also on track to deliver System Center 2012 R2.

Thank you to everyone who provided feedback during….

Continue reading here!


Windows #Intune – Toyota rolls out to more than 3000 clients

Automotive Retailer Avoids $1.3 Million in IT Costs with Cloud-Based PC Management Tool

Toyota Motor Europe (TME) had no tools to manage 3,500 car-diagnostic PCs running outside the corporate domain at 3,000 dealerships. TME chose Windows Intune to manage the PCs remotely from a web-based console. It can standardize software deployments to ensure consistent customer service and enhance the security of managed computers to reduce downtime at dealerships. Remote assistance capabilities will also help reduce on-site support costs.

Business Needs
Toyota Motor Europe (TME) manages a network of 30 national marketing and sales companies (NMSC) across Europe. These organizations oversee more than 3,000 dealerships.

In early 2012, TME replaced its stand-alone car-diagnostic tool called IT2 with 3,500 new PCs running more up-to-date software, including Tech Stream and Picoscope. The PCs also store technical documentation. Mechanics attach the PCs to a Vehicle Information Module that connects to a vehicle’s engine to provide critical maintenance information, such as how to reprogram and update a vehicle’s computer chip. The PCs were installed by an external company. The computers are not joined to the domain and operate outside the corporate firewall.

TME did not have a management solution for these 3,500 computers. “We wanted everyone to use the new tools, but we had no visibility into how the dealerships were working with the PCs,” says Niels Svaerke, Manager, Business Process Office, After Sales at Toyota Motor Europe. 

NMSC staff downloaded diagnostic software to the PCs from a Toyota intranet site. However, there was no way for headquarters to verify that all dealerships received and installed the software updates concurrently. “It was difficult to ensure that everyone was providing the same level of service by using the same corporate systems and auto diagnostics,” says Dirk Christiaens, Manager of Enterprise Architecture at Toyota Motor Europe. “Also, the head office had no way of knowing if the dealerships deployed an antivirus solution for their PCs, a worrying scenario as they were connected directly to the Internet.”

NMSC employees performed on-site support for mechanics, which often entails travel time. Sometimes, NMSC staff called an external company to reinstall all the software on the PC. Either scenario incurred wasteful downtime at the dealerships.

To solve these issues, Toyota Motor Europe decided to evaluate Windows Intune, the cloud-based PC management service from Microsoft. Staff at the NMSC can use the web-based Administration console in Windows Intune to run PC management tasks remotely, including software distribution. All that is required is a standard Internet connection, a browser running Microsoft Silverlight, and the Windows Intune client software installed on the PCs at the dealerships. The client returns information on the PC, including software and hardware inventory, and endpoint protection and update status to the Administration console.“We wanted to move into cloud computing, so Windows Intune met our needs perfectly,” says Christiaens. “Windows Intune had a more flexible, pay-as-you-go model, with no additional bandwidth or server costs.”

Read the whole case study here!


Windows Azure Active Directory (AD) has reached General Availability!

April 9, 2013 1 comment

This is cool! And I think that it’s a great step in the right direction for many companies! 🙂

Windows Azure Active Directory

Windows Azure Active Directory (Windows Azure AD) is a modern, REST-based service that provides identity management and access control capabilities for your cloud applications. Now you have one identity service across Windows Azure, Microsoft Office 365, Dynamics CRM Online, Windows Intune and other 3rd party cloud services. Windows Azure Active Directory provides a cloud-based identity provider that easily integrates with your on-premises AD deployments and full support of third party identity providers.

Use Windows Azure AD to:

Integrate with your on-premises active directory

Quickly extend your existing on-premises Active Directory to apply policy and control and authenticate users with their existing corporate credentials to Windows Azure and other cloud services.

Offer access control for you applications

Easily manage access to your applications based on centralized policy and rules. Ensure consistent and appropriate access to your organizations applications is maintained to meet critical internal security and compliance needs. Windows Azure AD Access Control provides developers centralized authentication and authorization for applications in Windows Azure using either consumer identity providers or your on-premises Windows Server Active Directory

Build social connections across the enterprise

Windows Azure AD Graph is an innovative social enterprise graph providing an easy RESTful interface for accessing objects such as Users, Groups, and Roles with an explorer view for easily discovering information and relationships.

Provide single sign-on across your cloud applications

Provide your users with a seamless, single sign-on experience across Microsoft Online Services, third party cloud services and applications built on Windows Azure with popular web identity providers like Microsoft Account, Google, Yahoo!, and Facebook.

Read more about the service here!


Access Control

Access Control is available at no charge. Historically, we have charged for Access Control based on the number of transactions. We are now making it a free benefit of using Windows Azure.


The base directory, Tenant, User & Group Management, Single Sign On, Graph API, Cloud application provisioning, Directory Synchronization and Directory Federation, is available at no charge. Certain additional capabilities such as Azure AD Rights Management will be available as a separately priced option.

Read more about pricing here!


%d bloggers like this: