Dave light – systems administrator – Lancaster-Lebanon IU13

Slides:



Advertisements
Similar presentations
Mobile Device Management Intune-Configmanager CHANDAN BHARTI PREMIER FIELD ENGINEER-MICROSOFT.
Advertisements

Plan Build Custom Image (Drivers, Apps, Updates) New Hardware In-Place (Refresh) WipeReimage New Windows Version or Major Image Revision.
MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 6: Configure and Troubleshoot Local User and Group Accounts.
Desktop virtualization Access & information protection Mobile device & application management Hybrid identity Simplified device enrollment and.
Using Active Directory for Authorizations CSG, September 2002.
RMsis – v Simplify Requirement Management for JIRA.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Page 1 System and Group Policies Lecture 7 Hassan Shuja 11/02/2004.
Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.
Configuration Manager and InTune Gemeinsam oder einsam?
Microsoft Virtual Academy Windows Intune for IT Pros Jump Start M05: Windows Intune Policies David Tesar Richard Harrison.
Module 10: Implementing Administrative Templates and Audit Policy.
Michael Niehaus Using the Windows Store for Business: New Capabilities for Managing Apps in the Enterprise WIN335.
Craig Pringle & Derek Moir
Identities and Azure AD Premium
Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.
How to build your own EMS Sandbox Frank C. Drewes III 2016 Redmond Summit | Identity Without Boundaries 24 May 2016 Senior Architect
Embracing the consumerization of IT There are four components to Microsoft’s strategy.
Enabling the Modern Workstyle with Windows 10 & Azure Active Directory Venkatesh Gopalakrishnan 2016 Redmond Summit | Identity Without Boundaries May 25,
SaaS apps.
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
ConfigMgr Discovering and Organizing Resources Mariusz Zarzycki, Phd, MCT, MCTS, MCITP, MCSE, MCSA.....
Managing Devices in the Enterprise: From EMS zero to Hero in only 60 minutes Ken Goossens Herman Arnedo Mahr.
Selecting the Management Platform Cloud-based Management Standalone Windows Intune No existing Configuration Manager deployment Simplified policy.
Pass4itsure Microsoft Dumps
Modern Device Management; Myth vs. Reality
Digital Partner of Record Overview
The time to address enterprise mobility is now
People-Centric Management
Deployment Planning Services
Manage Windows devices in the complex hybrid cloud world of today
Conduct a successful pilot deployment of Microsoft Intune
Windows 10 and the cloud: Why the future needs hybrid solutions
Azure AD for the client management guy (or gal!)
Mobile Device Management options in Office 365 and beyond
6/25/ :13 PM BRK1076 Make Windows devices more secure by taking them out of your existing infrastructure Chris Rhodes & Andrew Bettany MCTs & MVPs.
Everything Windows User Group Denmark 20 January 2016
Power BI Security Best Practices
VCE Questions Dumps
Windows 10 & Intune: A Modern Desktop Management Story Joe Crandall.
Windows 10 Subscription Activation
Everything Windows User Group Meeting, May 2016
9/13/2018 4:54 PM BRK How to get Office 365 to the next level with Azure Active Directory Premium Brjann Brekkan Program Manager Lead – Customer.
Dive deeper into Windows Store for Business
Digital Partner of Record Overview
Microsoft 365 Business Customer Targeting 2/6/18
Microsoft Intune MAM without Device Enrollment
Welcome! Microsoft Tech Talks - Charlotte, NC
Self Service Group Management (SSGM)
Real Microsoft Exam Questions and Answers
SVTRAININGS. SVTRAININGS Features of SCCM  Application management  Provides a set of tools and resources that can help you create, manage, deploy, and.
Digital Partner of Record Overview
System Center Configuration Manager: What’s New?
A beginners guide to Mobile Device Management
Endpoint Security and Conditional Access
Microsoft Ignite /20/2018 2:21 PM
Getting Started.
Microsoft Ignite NZ October 2016 SKYCITY, Auckland
Getting Started.
12/29/2018 8:46 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.
Using Active Directory for Authorizations
Doug Solutions and Product Manager, Now Micro
Evolve to Modern Management
Microsoft Virtual Academy
SCCM in hybrid world Predrag Jelesijević Microsoft 7/6/ :17 AM
Latest MS-101 Dumps Questions
Microsoft 365 Business Technical Fundamentals Series
Preparing for the Windows 8.1 MCSA
Microsoft 365 Business Technical Fundamentals Series
11/25/ :29 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.
Presentation transcript:

Dave light – systems administrator – Lancaster-Lebanon IU13 Intune for Education Dave light – systems administrator – Lancaster-Lebanon IU13

LLVS Program Currently domain bound Moving to Azure AD Joined Background LLVS Program Currently domain bound Moving to Azure AD Joined

Assign Licenses Enterprise Mobility + Security E3 Azure AD Licenses > Products > EM + Sec e3 > Licensed Groups PowerShell Get-ADGroupMember "CN=EMS License Group,OU=Role Groups,OU=Resources,OU=your,DC=domain,DC=here" | foreach { get-aduser $_.samaccountname | select userprincipalname } | Set-MsolUserLicense -AddLicenses “o365TenantDomain:EMS" https://docs.microsoft.com/en-us/intune/licenses-assign Get-ADGroupMember "CN=EMS License Group,OU=Role Groups,OU=Resources,OU=your,DC=domain,DC=here" | foreach { get-aduser $_.samaccountname | select userprincipalname } | Set-MsolUserLicense -AddLicenses “o365TenantDomain:EMS"

Enable in O365 Set the mDM Authority Setting Enable Device Enrollment – Windows – Automatic enrollment Configure MDM User scope Create CNAME records for windows enrollment - Intune Standalone -https://portal.azure.com/ Choose All services > Intune. Intune is located in the Monitoring + Management section. - Select the orange banner to open the Mobile Device Management Authority setting. - We have ours set to Intune – Intune – Device Enrollment – Top right corner – MDM authority Enable Device Enrollment – Windows – Automatic Enrollment - Azure AD – Mobility – Microsoft Intune Configure MDM User Scope – We have ours set to technology services – specifies which devices can automatically enroll for management with Microsoft Intune Create CNAME – in DNS, below https://docs.microsoft.com/en-us/intune/windows-enroll#simplify-windows-enrollment-without-azure-ad-premium

Setting up Groups AD Groups or Intune only groups Membership Type Assigned Dynamic User Dynamic Device Intune > Groups > All Groups > New Group

Setting up Admins Intune vs Intune for EDU Groups Intune > All Roles > Add Custom Enrollment Managers – Intune vs Intune for EDU Admin Groups > Intune vs Intune for EDU – Intune allows for role based access groups. Intune for EDU is more simplified. Intune > All Roles > Add Custom - Assign Permissions – Save then create Assignments – Set Admin Groups – Set delegated Group to Control Intune for EDU > Groups > Dave Test > Admins > Add Admins

Intune vs Intune for EDU Configure Policies Intune vs Intune for EDU Intune > Device Configuration > Profiles > Default Policies for EDU Intune for EDU > Groups > Settings > Windows Device Settings

Set Up School PC’s App Demo! Create the USB Drive Deploy to new computer Apply Policies Deploy Software

Windows 10 Automatic Re-Deployment Demo re-deploying from the lock screen. Show which policies need set to enable this. Demo

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.