10 Nov.
0

Bio-Key SideTouch USB for Windows Hello Review

I didn’t have too many things on my shopping list for trip to Redmond for the 2016 MVP Summit, but one of them was the Bio-Key SideTouch USB device from the Bellevue Microsoft Store. For anyone who has a Windows Hello compatible fingerprinter reader on their device already, you know the convenience, and moving forward, Windows Hello for Business will play an important role for many organisations deploying Windows 10. Bio-Key have a number of different devices available, here’s a picture of the one I chose.

sidetouch

Here are my initial impressions, based on having the device for less than a day.

Size

This was bigger than I was expecting. This isn’t a deal breaker, for me, my 2016 Dell XPS 15 isn’t a tiny, ultrathin device, but it’s large enough that I’m not comfortable with the idea of leaving it my laptop when I put it into a bag.

sidetouch3-png

Accuracy 

I’m still getting used to it, the angle that it sits at means that it’s a different experience to the reader on the Surface 4 Keyboard, or for the masses, TouchID on iPhones and iPads. It’s also not in a location where it would seem more natural, below the keyboard, alongside the trackpad. I’ve run through the fingerprint setup several times to improve accuracy if my finger lands at a different angle, and so far it’s working well.

sidetouch2

Setup

My setup experience was terrible. The device was recognised, but it wouldn’t download a driver. I went over to the Bio-Key website, and the driver was presented as a cab file. I checked the Microsoft Update Catalog.

sidetouch4

So far so good.

sidetouch5

But again, it’s a cab file. This meant that I needed to install 7Zip (other tools would work as well), because the native cab viewing features in Windows Explorer didn’t show the folder structure, or show the 32 vs. 64 bit drivers.

sidetouch6

After installing 7Zip, I was able to get what I wanted, and setup was successful.

sidetouch7

As you can imagine, this makes it hard to recommend to people who expect it to just work, especially considering this is a generic Windows 10 1607 build, not an Insiders build or similar. It could have just been my PC being fussy, but I’m not in a position to confirm that just yet.

 

 

 

^ Scroll to Top
 8 Nov.
0

Intune MAM With And Without MDM App List

Recently while discussing MAM with and without MDM with Microsoft Intune I mentioned that there was a page that gave the list of apps that supported the different options, which you can find here. Unfortunately it doesn’t give a table view of what options you have for the different apps, so I have created that table at the bottom of the page.

If you haven’t seen the MAM settings in the Azure Portal, here are a couple of screenshots for Android and iOS.

Android MAM only apps available through the portal.

iOS MAM apps available through the portal.

What  is obvious right now is that the 3rd part apps that work with Intune MAM are not available for standalone MAM, and the table below highlights this, with information taken from

MAM with MDM

MAM without MDM

Multi-Identiy

Acronis Access

iOS

Adobe Acrobat

Android

iOS

Box for EMM

iOS

Foxit Mobile PDF

Android

iOS

Microsoft Dynamics CRM

iOS

Android

iOS

Android

Microsoft Excel

iOS

Android

iOS

Android

iOS

Microsoft Intune Managed Browser

iOS

Android

iOS

Android

Microsoft OneDrive For Business

iOS

Android

iOS

Android

iOS

Android

Microsoft OneNote

iOS

iOS

Microsoft Outlook

iOS

Android

iOS

Android

iOS

Android

Microsoft PowerPoint

iOS

Android

iOS

Android

iOS

Microsoft PowerBI

iOS

Android

iOS

Microsoft Remote Desktop

iOS

Android

iOS

Android

Microsoft RMS Sharing/Azure Information Protection

iOS

Android

Microsoft SharePoint

iOS

Microsoft Skype For Business

iOS

Android

iOS

Android

Microsoft Word

iOS

Android

iOS

Android

iOS

Microsoft Work Folders

iOS

Android

Outlook Groups

iOS

Android

iOS

Android

SAP Fiori
Yammer

iOS

Android

iOS

Android

^ Scroll to Top
 30 Oct.
0

October Windows 10 development environment VMs available for download

For those of you who are constantly spinning up new VMs and installing a number of different developer tools and SDKs, these VMs act as a good base to starting on. The VMs are available for Hyper-V, VMWare, VirtualBox and Parallels users. There is a choice to get an eval version based on Windows 10 Enterprise 1067 which expires on January 17, 2017, or alternatively you can download the Windows 10 Pro 1607 based version and apply your own product key.

This evaluation virtual machines include:

If you just want to try out Windows 10 and UWP, use the free evaluation version of the VMs. This will expire after a pre-determined amount of time. However, if you want a VM that won’t expire, choose the licensed version and add your Windows license key. Don’t already have one? Buy a new Windows 10 Pro license (EN-US only).

The other option for spinning up VMs with these tools installed is to use the corresponding Windows 10 VM options in Azure if you have an MSDN subscription, or alternatively you can spin up Windows Server VMs with these tools preinstalled and ready to go.

 

^ Scroll to Top
 28 Oct.
0

Azure Active Directory Domain Services generally available

It’s been in preview for roughly a year, but Azure Active Directory Domain Services is now generally available. It definitely opens up some interesting integration between Azure IaaS and Azure AD, and is one of the considerations to take into account when planning out your Azure subscriptions and AAD namespace planning. It still currently is only exposed directly to classic virtual networks in Azure, but you can easily connect it to an ARM virtual network.

If you need more information on the virtual network requirements, take a look at Networking considerations for Azure AD Domain Services which covers Network Security Groups, subnets and port requirements, as well as having links to several other critical articles.

Now generally available, Azure Active Directory Domain Services general availability pricing will begin on December 1, 2016. The original pricing model, proposed during public preview, included three prices based on number of directory objects: 0–5,000, 5,000–25,000, and 25,000–100,000. Now we are combining the first two tiers into a single price point for all directories with under 25,000 objects and lowering the price by 25 percent. If your directory size is under 25,000 objects, you will continue to see usage listed against “S2 Domain Services Hours” on your invoice until December 1, 2016. After that, it will be renamed “S1 Domain Services Hours.” If your directory size is between 25,000 and 100,000 objects, you will see usage listed against “S3 Domain Services Hours” on your invoice until December 1, 2016, after which it will be renamed “S2 Domain Services Hours.” For more information, please visit the Azure Active Directory Domain Services Pricing webpage. To learn more about Azure Active Directory Domain Services, please visit the Azure Active Directory Domain Services webpage. Azure Active Directory Domain Services can provide scalable, high-performance, managed services such as domain-join, LDAP, Kerberos, Windows Integrated Authentication, and Group Policy support.

^ Scroll to Top
 2 Oct.
0

Register Now: Microsoft Enterprise Mobility + Security Technical Partner Training

Over the coming months I’ll be running several 4 day EMS training courses around the country for Microsoft.  These have been updated to include information on Azure Active Directory Connect Health, EMS E3 and EMS E5 and more. There are still some seats available, so register now if you are interested.

Details below from https://blogs.msdn.microsoft.com/auspartners/2016/10/02/register-now-microsoft-enterprise-mobility-suite-technical-partner-training/

 

In this 4 day deep technical Boot camp consist of instructor-led technical content and hands-on labs covering Hybrid Identity and Access Management (Azure Active Directory Premium), Microsoft Device and Application Management (Intune), Information Protection (Azure Rights Management Service), identifying security threats to the datacentre (Advance Threat Analytics), and data protection in the cloud (Cloud App Security).

Cost: The registration fee for attending this training is $499 per person.

You are responsible for arranging your own travel and accommodations, including all travel-related costs.

Who Should Attend: Solution architects, pre-sales technical, and deployment roles who have existing competencies in devices and deployment, access and identity, management and virtualization, Office 365 and Azure related competencies.

Where & When:

  • Perth 24th – 27th October 2016
  • Brisbane 14th – 17th November 2016
  • Sydney 5th – 8th December 2016
  • Melbourne 12th – 15th December 2016

Questions

Do you have a question? We would love to answer it please email msaupr@microsoft.com

REGISTER HERE

^ Scroll to Top
 15 Sep.
0

New release of Windows 10 Deployment and Management Lab Kit available now

One of my favourite Windows 10 downloads has been refreshed again.  I’ve been advised that there is ongoing work to further update some of the included components, so I’ve got my fingers crossed that another update will be available soon.  These labs expire on November 23, 2016, and new ones should be available prior to that date, I’d love to speculate as to what will be included next time round, but it would just be that, speculation…

The Windows 10 Deployment and Management Lab Kit provides you with a hands-on lab environment for evaluating the latest Microsoft products and tools available for managing your Windows 10 deployment. The kit includes:

Lab environment

The lab includes the latest evaluation versions of:

  • Windows 10 Enterprise, Version 1511
  • System Center 2012 Configuration Manager 1511
  • Assessment and Deployment Kit for Windows 10
  • Microsoft Deployment Toolkit 2013 Update 2
  • Microsoft Application Virtualization 5.1
  • Microsoft BitLocker Administration and Monitoring 2.5 SP1
  • Windows Server 2012 R2
  • SQL Server 2014

Step-by-step lab guides

Illustrated lab guides take you through multiple deployment and management scenarios:

  • In-Place Upgrade
  • Image Creation
  • Lite-Touch Deployment
  • Zero-Touch Deployment
  • Managing Windows 10 with Configuration Manager
  • Code Integrity
  • Windows 10 Provisioning
  • Application Compatibility
  • Application Virtualization
  • Microsoft BitLocker Administration and Monitoring
  • Credential Guard

Windows 10 Deployment and Management Lab Kit system requirements

The lab supports the 64-bit editions of Windows 10 RTM and Windows Server 2012 R2. It must be imported to set up a lab once Hyper-V is installed.

The Hyper-V Host on which the Windows 10 PoC Lab needs to be imported must meet the following minimum specifications:

  • Hyper-V role installed
  • Administrative rights on the device
  • 300 gigabytes of free disk space
  • High-throughput disk subsystem
  • 32 gigabytes of available memory
  • High-end processor for faster processing
  • An External virtual switch in Hyper-V connecting to the external adapter of the host machine for internet connectivity named External 2
  • A Private virtual switch in Hyper-V for private connectivity between the virtual machines named HYD-Corpnet

The required hardware will vary based on the scale of the provisioned lab and the physical resources assigned to each virtual machine.

Lab expires November 23, 2016. A new version will be published prior to expiration.

Things to Know

This lab kit contains evaluation software that is designed for IT professionals interested in evaluating Windows 10 deployment and management products and tools on behalf of their organization. We do not recommend that you install this evaluation if you are not an IT professional or are not professionally managing corporate networks or devices. Additionally, the lab environment is intended for evaluation purposes only. It is a standalone virtual environment and should not be used or connected to your production environment.

^ Scroll to Top
 25 Aug.
0

Innovation Days Agenda – September 17, 2016

In a recent post I mentioned the Innovation Days event that is happening in Sydney on September 17. If you haven’t registered yet, head on over to the registration site and reserve your place. Check out the session agenda here, and make sure you come along to my session at 4:10pm to hear more about the latest updates to Windows 10 and the Enterprise Mobility + Security suite.

^ Scroll to Top
 24 Aug.
0

Windows Server 2016 Launch Breakfast Event

Windows Server 2016 Launch

Please join us at the Windows Server 2016 Launch Breakfast Event.

As organisations move to the cloud at their own pace, Windows Server 2016 supports them through their transition. Whether running traditional workloads or the latest cloud-native apps and technology, users get added availability and new layers of security from the same OS that powers Azure.  With the 2016 wave of hybrid datacentre solutions, new and enhanced features will help you make the most of your existing resources while delivering you the latest innovation.  From enhanced security features, software-defined datacentre to the application platform, Windows Server 2016 offers new investments in cloud technology that will benefit your organisation today.

In addition, come learn how you can manage your on premise and cloud environments via a single pane of glass with Microsoft’s new System Center 2016 and Operations Management Suite

Mark O’Shea, Microsoft MVP will guide you through the hybrid discussion and how you can transform your datacentre today.  Mark has been working with server technologies at Microsoft for over 20 years.  His current focus is driving hybrid solutions with Windows Server and Azure.  We look forward to you joining Mark and the Microsoft local team at this local event to discuss how next generation hybrid solutions can help your business.

It’s a session not to miss!  Presentations and discussions will be illustrated through live demos, so make sure not to miss this opportunity!

Breakfast will be served on arrival. Please advise us in advance of any dietary requirements you may have. We look forward to seeing you there! Please RSVP early and forward to your colleagues:

Register now!

 

Select your location:

 

Melbourne – 11th October Time: 7:45 AM – 11:00 AM Address: Vibe Savoy, 630 Little Collins St, Melbourne VIC

Canberra – 12th October Time: 7:45 AM – 11:00 AM Address: QT, 1 London Circuit, Canberra ACT Sydney – 13th October Time: 7:45 AM – 11:00 AM Address: The Grace Hotel, 77 York St, Sydney NSW

Perth – 18th October Time: 7:45 AM – 11:00 AM Address: Four Points, 707 Wellington St, Perth WA

Adelaide – 19th October Time: 7:45 AM – 11.00 AM Address: Sage Hotel, 208 South Terrace, Adelaide SA

Brisbane – 20th October Time: 7:45 AM – 11:00 AM Address: Hotel Urban, 345 Wickham Terrace, Spring Hill QLD

^ Scroll to Top
 19 Aug.
0

Plan for Change: New Grouping and Targeting Experience Coming to Intune

Based on your feedback to have one grouping and targeting experience across Enterprise Mobility + Security, Microsoft is converting Intune Groups to Azure Active Directory (Azure AD)-based Security Groups. This new unified group management experience will keep you from having to duplicate groups between services, introduces dynamic grouping for Intune device properties, and provides extensibility using PowerShell and Microsoft Graph.
How does this affect you? A preliminary timeline and a high-level list of what to expect follows. While Microsoft knows many of you are looking forward to this new experience, the timelines shared below may shift. See the documentation page linked below for up-to-date information. Existing Intune customers will see no changes until they start group migrations in November.

In September, some newly provisioned Intune service accounts will start seeing user-based group management and later device-based group management workflows from Azure AD integrated into their Intune console.
In November, they plan to start migrating existing customers to the new Azure AD based integrated grouping experience. They won’t start group migrations until they can minimize any impact to your day-to-day work and expect no end-user impact. They will also provide notice prior to your tenant’s migration. Once migrated, you’ll still be managing groups, just in Azure AD instead of Intune.
Documentation and updated migration timelines will be kept current on the grouping docs page. If you have questions or concerns please contact the migration team at intunegrps@microsoft.com or support.

New service functionality being introduced includes:

Azure AD security groups will be supported in Intune for all types of deployments. Prior to this change, you may have used Intune groups for some and Azure AD groups for other types of deployments.
Azure AD security groups will support grouping of devices along with users, such as ‘all of IT’s test users and devices’ or ‘all of marketing iOS devices’.
Azure AD Security Groups will support dynamic groups with Intune device attributes, such as ‘put all iOS 8.0 devices into a group’ to get a specific policy.
‘Intune Service Administrator role’ added in Azure AD to allow Intune service admins to perform group management tasks in Azure AD.

In addition to changes in group management, the following functionality will be deprecated:

Excluding members or groups while creating a new group in Intune. Note that Azure AD dynamic groups will allow you to use attributes to create advanced rules to exclude members.
‘Ungrouped Users’ and ‘Ungrouped Devices’ groups
Service administrators’ ability to manage group access through Intune
Grouping of EAS devices. ‘All EAS Managed Devices’ group will be converted from a group to a report view.
Pivoting with groups in reports
Custom group targeting of notification rules

What do you need to do to prepare for this change?

Clean up any unwanted groups in your Intune environment.
By November or by the time you are migrated, discontinue use of the functionality being deprecated.
Familiarize yourself with how group management works in Azure AD by reviewing the more information link below.
If you have Intune admins who do not have permissions to create groups in Azure AD, request that your Azure AD administrator add them to a new Azure AD role called ‘Intune Service Administrator’.

Link to more information, including up-to-date information: http://aka.ms/new_grouping_experience

^ Scroll to Top
 9 Aug.
0

August 2016 Evaluation Windows Developer Virtual Machines

The latest build of the Windows 10 developer evaluation VMs are available for download, and contain the following.

These VMs run until 31/10/2016 and are available for VMWare, Hyper-V, VirtualBox and Parallels, and are approximately 20GB in size.

^ Scroll to Top

%d bloggers like this: