When you start with Drop Ship provisioning you have normally three scenarios: Device gets shipped to second touch facility (to start device and join the device to the local AD domain) No Active Directory – so a Workgroup client Azure AD in place In this article we are covering the local AD scenario but we
Today I received a question what happens if the device is already Workspace ONE joined and then the device gets joined to Azure AD. In this use case the customer had AAD Premium licenses and Intune was assigned as MDM provider to all users. So I started to install a workgroup client and installed the
We all know the different device status like “Enrolled”, “Unenrolled”, “Enrollment in Progress”….But ever heard of “Discovered”? After some investigations and help from Sergiu Constantin, we were able to reproduce the status and found the root cause. Basically the discovered status means, that the device was connected to UEM but now the device is blocked.
The Tunnel Client for Windows 10 is more and more growing there are some Custom Configurations that are not in the GUI for the Tunnel Profile as of the 21.05 UEM Release. So let us have a look on the most important Keys that are available in the Tunnel 2.1 Client, but not in the
One of the most underrated feature when it comes to SSO is to be able to automatically select the right certificate based on the domain, while there is mechanism in the SSL protocol to indicate which CA is requested, a device or a user may have multiple certificates depending on the scenario. This may lead
When using the Windows Firewall Profile, there is different options in the rules for configuring the protocol. All, TCP, UDP and CUSTOM. While the first 3 are quite obvious the last one when select offer to put a integer What to put in custom protocol The integer while not listed by Microsoft, are based on
When using the compliance for Azure conditional access, there is two sync buttons available. For more information about the compliance integration have a read on this article from Sascha Warno : Workspace One UEM 3rd party compliance integration – Microsoft Graph API “Sync Azure Services” Button This button is used when the administrator is making
The scenario is not quite “modern” but from time to time we have devices where no user is logged on and you still want to manage it. The list is based on HUB 21.02 and also tested on 21.05 – later versions might change the behaviour. First of all: only commands that are assigned to
We all know that the transformation from the good old SCCM/WSUS is hard and from time to time complicated. Of course there are a ton of guides how to manage Windows Update for Business (WUfB) – like this amazing article HERE. But not all customers are ready for the modern way of update management. In
Sometimes you need to add/modify something in a PPKG and you don’t want to create a new PPKG in the Workspace ONE console. Normally this is not supported since the Factory Provisioning Tool checking the PPKG for a “watermark”. This guid will show you how to create a custom PPKG with the Windows ICD and
Privacy & Cookies Policy
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.