This month the Intune documentation got quite a bit of exposure by moving over the docs.microsoft.com platform, so they were getting splashed all over tech blogs around the world. The changes that are most relevant for my focus are the MAM without enrollment for policies for Skype for Business on iOS and Android, Teamviewer support for Remote Assistance on Intune agent based PCs, and notice around upcoming changes in the support of versions of iOS earlier than 8.0
Welcome to the preview version of docs.microsoft.com! This is a completely new, modern content platform designed to make it easier for you, our customers to understand and use Intune. To read about all of the new features, see Introducing docs.microsoft.com+
Service health information for Intune has been moved to a central location with other Microsoft services. You’ll now find this information in the Office 365 management portal under Service Health. For more information, see this blog post.+
End user toast notifications: End users will now see toast notifications from the Android Company Portal app when they are enrolling their devices or removing their devices from the Company Portal.+
Company Portal website: Device identification banner will provide more information to end users. End users can now more easily identify the device they’ve selected when they are using the Company Portal website. If the wrong device is selected, they will be able to select the correct device by tapping the Tap here link in the home page banner.+
Today, to target a notification rule to a group you created from the Microsoft Intune administration console, you would take the following steps:
In the Admin workspace, click Notification Rules > Create New Rule
In step two of the Create Notification Rule Wizard, select the device groups which the rule will target. This step, “select device groups”, is being removed from the Intune Console.
The preliminary timeline for this change is as follows:
A new guide for schools looking to deploy Windows 10 alongside Office 365 and Azure Active Directory Premium can be found at https://technet.microsoft.com/itpro/windows/plan/deploy-windows-10-in-a-school and it includes the following topics.
For anyone looking to set up a small test environment the instructions here will work equally well outside of a school as inside of a school environment.^ Scroll to Top
Since the AADDS preview started I’ve been questioned several times during demonstrations of AAD/AADS/EMS scenarios why my tenants are always in US West, not in AustraliaEast or AustraliaSouthEast, and the primary reason was because the AADDS preview wasn’t available in the local datacenters. In a post on the Active Directory Team Blog they mention Australian DC availability, as well as other enhancements that have rolled into the preview, including…
Check the links above for more details, but the Aus DC availability is something I’m extremely happy to see.^ Scroll to Top
Azure Site Recovery, a component of Microsoft Operations Management Suite, is now generally available in the Azure portal. Those familiar with Site Recovery from the Azure classic portal will be pleased with the new look, feel, and enhancements. Azure Site Recovery now includes support for Azure Resource Manager–based and classic deployments, as well as support for simultaneously protecting multiple virtual machines (VMs), in System Center Virtual Machine Manager to Azure, Hyper-V Site to Azure, and System Center VMM to System Center VMM using Hyper-V Replica. Additional changes included in this release:
|•||Azure Resource Manager support for all scenarios|
|•||First-class support for Cloud Solution Provider (CSP) subscriptions|
|•||Enhanced VMware to Azure
|•||Streamlined Getting Started experience for all Site Recovery scenarios|
|•||New Policy construct for flexible association and management|
|•||Functionality of Backup and Azure Site Recovery in a single vault construct|
If you try Operations Management Suite, you can get 31 days of free workload protection with Site Recovery.^ Scroll to Top
For those of you on Insider builds of Windows 10 or Windows 10 Mobile you can now start testing out the EDP capabilities. Note that you need one of the following management solutions in order to test it out – Intune, Config Manager 1511 (or later) or a 3rd party MDM solution.
^ Scroll to Top
While this hasn’t been a showstopper for most that need the service, having to ship to an overseas datacenter is something that can now be avoided when you want to use the Import/Export Service. The service allows you to ship up to 8TB 3.5 SATA II/III drives that have been prepared following the instructions that Microsoft provides.
If you need more information take a look at Use the Microsoft Azure Import/Export Service to Transfer Data to Blob Storage for more details.
This is live for Australia East and Australia Southeast, so nobody needs to start arguments over which football code is better, instead you can focus on getting large chunks of data into the cloud.
^ Scroll to Top
Listed below are the details of the Intune updates for April 2016, and as per usual there are likely a few that are particularly applicable to your environment.
All of the April 2016 features are also supported for hybrid customers (Configuration Manager integrated with Intune).
Checked in: Indicates the policy was deployed to the user, and app was used in work context, and successfully received the policy.
Not checked in: Indicates the policy was deployed to the user, but app has not been used in the work context since then.
Android Company portal app
Users who have not enrolled their device in Intune and who do not have the correct certificate installed will not be able to sign in to the Android Company Portal app and will see the message, “You cannot sign in because your device is missing a required certificate.” The message includes a “How to resolve this” link that users can tap to see instructions for installing the certificate. To see the steps that end users follow to resolve the issue, see Your device is missing a required certificate.
Windows 10 Mobile and Windows Phone 8.1 Company Portal app
When end users are installing line-of-business apps, they will now see an improved app installation experience. If the app installation is taking a long time, users can manually sync their device to force the sync process to resume. To review the end-user instructions, see Sync your device manually to speed up app installations.
Company Portal website
When Windows 10 Mobile and Windows Phone 8.1 users are installing line-of-business apps, they will now see the following new statuses, which provide them with more detail about the status of their installation:
Before these statuses were added, users got confused if an app installation took a long time, because they saw only an “Installing” status, which might remain on the screen for hours. Adding the new statuses means that, instead of calling support, users can now tap the “Waiting for device to sync” link and follow the instructions to force the sync process to resume.
Changes to Device Enrollment Managers accounts. To improve performance and scale, Intune will no longer show all Device Enrollment Managers (DEM) devices in the My Devices pane of the Company Portal app. Only the local device running the app is displayed, and only if it is enrolled via the Company Portal app. The DEM user may perform actions on the local device, but remote management of other enrolled devices can only be performed from the Intune admin console. Additionally, Intune will deprecate using DEM accounts with either the Apple Device Enrollment Program or the Apple Configurator tool. Both these enrollment methods already support user-less enrollment for shared iOS devices. Only use DEM accounts when user-less enrollment for shared devices is unavailable.
Keep informed about upcoming developments for Intune with the Cloud Platform roadmap.^ Scroll to Top
Not something I’ll be joining live due to the time zone differences, this is definitely one I’ll watch when it is made available on demand.
Looking to use System Center Configuration Manager (SCCM) to automate deployment of Windows 10? Join experts Aaron Czechowski and Wally Mead as they step you through it. Windows 10 represents a major paradigm shift for Microsoft and the Windows ecosystem in general as we modernize the platform by introducing “as a service” capabilities. Hundreds of millions of devices are already running Windows 10 today. Businesses are beginning to evaluate the new capabilities of Windows 10, including Windows as a service, as part of their deployment plans. With Windows 7 recently transitioning into extended support, businesses need to begin planning for the future of their Windows operating system environment.
Although there are many aspects to consider in managing a Windows device, one of the essential early stages of the lifecycle is deployment. More than 70 percent of businesses use System Center Configuration Manager for PC management, and that market share continues to grow every quarter. SCCM is an industry leader, and the Operating System Deployment (OSD) feature is one of the most popular and frequently used. The product supports many traditional operating system deployment methods, in addition to newer Windows 10 deployment scenarios, such as in-place upgrade. Join us, and get your questions answered.
Note: Want a head start? Take a look at the free e-book from Microsoft Press, Deploying Windows 10: Automating deployment by using System Center Configuration Manager.
Aaron Czechowski is a Senior Program Manager with Microsoft in the Enterprise Client Management product team working on Microsoft System Center Configuration Manager, System Center Endpoint Protection, and the Microsoft Deployment Toolkit. He specializes in Windows deployment, Windows as a service, and ConfigMgr as a service.
Wally Mead is a Principal Program Manager at Cireson. He works in the Partner and Community Enablement (PACE) team, which helps prepare Cireson partners to be successful with the Cireson products. He also focuses on the improvement and development of products, and he drives further innovation between Configuration Manager and Cireson apps. In addition, Wally continues to provide education for the community through presenting webinars and speaking at conferences, such as TechEd, System Center Universe, and Midwest Management Summit. He also conducts training courses and assists the community on the Microsoft TechNet forums.
Below you will find the details of all of the updates for Intune for March 2016, but I’ll call out some of the ones that will have an immediate impact for me.
Manage the Microsoft Outlook app with MAM policies for devices not enrolled in Intune – any additional Office mobile app support with MAM without relying on MDM enrollment is a good thing as far as flexibility in deployment is concerned.
Find, manage, and distribute Windows Store for Business apps for Windows 10 devices from the Intune administrator console – this has the side benefit of blocking access to the consumer oriented Windows Store, while still allowing access to the business store.
Read on to see what else has changed this month.
This approach has two main benefits:
The following changes have been made to the Company Portal in this release.
Android Company Portal app
iOS Company Portal app
Build 2016 is coming up this week, so I thought I’d review the session list to bring you the list of the sessions I’ll be watching as they become available on MSDNs Channel 9 video site. I’ve picked sessions that are related to things I’m personally interested in, but I’m sure once you look at the full list you will probably find a few more sessions that you will want to take a look at. I’ve included some sessions that cover Windows on the desktop, Windows Server 2016, Azure solutions, IoT as well as some that are entertainment focused for those of you on the gaming and media playback side of things, as well as the one and only HoloLens.
Microsoft continues to focus on enabling developers to do amazing work as businesses and industries transform in support of the shift to a cloud-first, mobile-first world. At Build 2016 we will present the latest tools and technologies and how they can help today’s developers be their most creative and productive.
Windows 10 is seeing great momentum in the enterprise. What does it mean for you as either an IT Professional or Enterprise Developer? Rob Lefferts will look at the things you should know about Windows today and how you should think about it in your organization going forward.
Windows Defender Advanced Threat Protection (ATP) is a new service built into Windows 10 enabling enterprises to detect, investigate, and respond to advanced attacks on their networks. Windows Defender ATP adds a new “post-breach” layer of protection to the Windows 10 security stack. Combining client technology with cloud-based analytics, Windows Defender ATP is able to detect attackers and threats that have evaded other defenses, and enables enterprises to investigate the potential scope of breach across endpoints, and providing relevant Threat Intelligence and response recommendations. In this session we will show you an end-to-end demo, starting with an attack and investigating the attack using the Windows Defender ATP portal.
No description yet for this one, but as someone who runs two thirty inch 4K displays off my main PC, this is one I’m keen to see.
There’s no description for this one yet, but anyone who has to spend time in the command line usually welcomes any changes, so fingers crossed this one brings something that helps make your life easier.
The Windows Store is more than just a consumer app store. Join the Store team and TeamViewer as we discuss how the Windows Store for Business can help you reach new users in the SMB and prosumer space.
Windows 10 offers new solutions for building, selling and deploying apps to organizations. The Windows Store for Business enables apps to be acquired in bulk and the ability to publish LOB apps to your own organization or another organization. The Windows Store for Business also offers multiple licensing and deployment options to enable organizations of any size to use your app. In this session, learn how to maximize the capabilities of the store whether you develop in-house apps or are targeting your app to be sold to organizations. We will show the app lifecycle, including publishing, acquisition, deployment, and the best practices when building enterprise apps.
Windows Server 2016 is a radical transformation of the server application platform and developer experience. The Windows Server 2016 SDK targets a super lightweight platform enabling applications to scale better and utilize just enough OS for their needs, while containers enable rapid development and deployment making for a very developer focused Windows Server release. This session will take you through the new development pipeline: developing apps targeting Nano Server, packaging apps as Windows Server App‘s (WSA), configuring apps using Desired State Configuration (DSC), deploying apps and their dependencies using Package Management, testing apps using Pester, securing apps using Just in Time (JIT) and Just Enough Admin (JEA) and running apps in Containers, VMs, or on the host. Come hear how this transformation is going to provide you with the platform and components you require for building modern server apps both on-premises and in the cloud.
During this session you will learn what spatial audio is, how to best author sounds for spatial audio , and how to add spatial audio to your app, game, or experience. We will go through a number of demos and code which demonstrate the different spatial audio experiences you can enable on a wide variety of devices.
Learn about how Dev Center helps you reach customers on all Windows devices including Xbox. Discover new ways to engage your customers with bundles, add-ons, and pre-orders. Simplify your development lifecycle with APIs to automate the publishing process and new capabilities to test your app or game in production . Dev Center’s easy-to-use, powerful tools will set your apps and games up for success in the Windows store.
Learn more about building great Universal Windows Platform (UWP) apps for Xbox.
All apps built for Microsoft HoloLens run on the Universal Windows Platform (UWP). That also means that all UWP apps built for phone and desktop can work on HoloLens too. We call these 2D apps since on HoloLens they are rendered and projected on 2D surfaces. In this talk we’ll cover everything you need to know about making a 2D UWP app that works great on HoloLens. This includes how the gaze-gesture-voice interaction model works with 2D apps, design considerations for HoloLens’ interactions and display, adapting as needed for the HoloLens platform, and how to publish 2D apps in Store so they are available on HoloLens.
Microsoft is all in on IoT. Come and learn the latest on both Azure and Windows offerings for IoT and where they are going. Microsoft has great offerings for both operating systems and cloud solutions in the incredibly exciting Internet of Things space.
Mark will cover best practices, tips and lessons learned in Azure to help developers avoid making the same mistakes with their cloud-scale deployments using IaaS and PaaS. This will include a look behind the scenes at some of Azure’s internals, too.
The AzureCAT team works with the largest projects across the world being built on the Azure platform. This session will share the learnings and provide guidance based on those experiences.
All you ever wanted to know about how to connect IoT devices to Azure and make the most out of all the data coming from sensors leveraging smart data analytics, machine learning and other Azure goodness. We’ll introduce our open source SDKs and show you how to use our open source SDKs use them to connect devices running various OS or platforms to Azure IoT. At the end of the session you should have a good understanding of what Azure IoT Hub and Azure IoT Suite are, and how developers can use our SDKs to build tomorrow’s killer IoT solution on Azure.
Develop scalable and open source PaaS solutions on Azure. In this session we go through some of the latest innovations for open PaaS on Azure. Build an open PaaS infrastructure with VM Scale Sets, deploy Cloud Foundry based OSS PaaS apps.
With Windows 10, your phone can work like your PC. Continuum for phone enables you to connect a Windows mobile device to any external display with the new Microsoft Display Dock, USB-C, or Miracast. Users can leverage a keyboard and mouse and other peripherals to get the productivity and entertainment value of a PC with the portability, cost, and convenience of a single device. Come see Continuum in action!
With Windows 10, your phone can work like your PC. Continuum for phone enables you to connect a Windows mobile device to any external display with the new Microsoft Display Dock, USB-C, or Miracast. Users can leverage a keyboard and mouse to get the productivity and entertainment value of a PC with the portability, cost, and convenience of a single device. To support Continuum, developers need only develop an adaptive Windows 10 app on the Universal Windows Platform (UWP). Beyond building a UWP app, the combined screens will enable you to create unique experiences to reach new users. Learn about best practices for building UWP apps which adapt and transition seamlessly from phone to a connected display. Understand the key scenarios and interactions enabled by Continuum.
So, that’s a few different topics to get your teeth into.
^ Scroll to Top