Recently I implemented Windows Virtual Desktop (WVD) for a customer. This customer has the policy that you always needs to get challenged by Multi-Factor Authentication (MFA) before you get access to a Remote Application or Desktop, except when connecting from a managed device. To achieve this with Windows Virtual Desktop, an Azure Conditional Access policy must be created with session settings...
Tag - Azure AD
Azure AD Domain Services, Azure Virtual Desktop (AVD)
How to implement and manage Azure AD Domain Services (Azure AD DS) for a fast Windows Virtual Desktop (WVD) PoC deployment
I recently visited a customer who wanted a Windows Virtual Desktop PoC. And although it is customary for me to implement a Windows Virtual Desktop PoC within the current production environment and take it in production after a successful PoC right away, this customer wanted the PoC to be in a completely separate environment. The customer even wanted to implement this Windows Virtual Desktop PoC...
Azure AD, Enterprise Mobility + Security, Intune
How to setup Android Enterprise – Corporate-owned dedicated devices with Microsoft Intune
Earlier I wrote about how to configure Android Enterprise – Work Profile. This Android Enterprise mode is designed for personal-owned mobile devices. For corporate-owned devies there are two Android Enterprise modes, one for dedicated devices and one for fully managed user devices. In this blog I will show you how to configure Android Enterprise – Corporate-owned dedicated device mode...
Azure AD, Enterprise Mobility + Security, Intune
How to Enable Android Enterprise and configure Personal devices with a Work Profile in Microsoft Intune – The ultimate Step-By-Step Guide
This year Google will stop with the support of Android Device Admin API’s with the release of Android 10. This means that the traditional way to manage Android devices is no longer possible with new Android 10 devices or older Android devices that are upgrading to Android 10 (or higher). Android Enterprise is the new way to manage Android devices. With Microsoft Intune you can manage Android...
Azure AD
How to install the Application Proxy Connector and publish an on-premise web application or website in Microsoft Azure
In Microsoft Azure Active Directory you can publish web based (SaaS) applications and websites in a few different ways. The easiest way is via the Azure App Gallery, in that case you have added the application in just a few steps. If the application is not available in the Azure App Gallery you can add it manually. When adding the application manually you can either add cloud hosted web apps and...
Azure, Windows 10/11, XenMobile
How to integrate Citrix XenMobile with Azure AD for auto enrollment with AutoPilot or Azure AD Join
In my previous blog I took you through the steps to configure Windows AutoPilot in combination with Microsoft Intune. In this blog, I want you to show that it is also possible to use Windows AutoPilot or Azure AD Join with other MDM/EMM solutions, like in this case, Citrix XenMobile. In this scenario, after the Windows 10 out-of-box-experience (OOBE) setup, the Windows 10 device is...
Enterprise Mobility + Security, Intune, Windows 10/11
How to setup Windows AutoPilot and add existing devices the quickest way
UPDATE (Dec, 2 2020) : There is now an even faster way of adding devices to Autopilot. Step 3 of this blog can be replaces with new steps described in this blog : How to add Windows 10 devices to Windows Autopilot even faster Windows 10 Modern Management is hot. More and more companies are looking for the possibilities to manage Windows 10 devices with their Enterprise Mobility Management (EMM)...
In the last few years I have mostly implemented ShareFile Enterprise as part of the XenMobile Enterprise edition and therefor configured the XenMobile server as a SAML identity provider for ShareFile SSON. In the last few months I also see some companies that were only interested in the Citrix ShareFile solution without XenMobile. In this case there are some alternative ways to provide users...
About Robin Hobo
I work as a Senior Solution Architect with focus on the Modern Workspace. I am specialized in Azure Virtual Desktop (AVD), Windows 365 and Microsoft EM+S (including Microsoft Endpoint Manager - Microsoft Intune).
For my full bio, check the About Me page.
Instragram
How to deploy Windows #Autopatch with #Microsoft Endpoint Manager – #Intune https://robinhobo.com/how-to-deploy-windows-autopatch-with-microsoft-endpoint-manager-intune/ #MSIntune #MEMPowered #M365 #ModernManagement #MVPBuzz
#Microsoft will permanently disable basic auth in all tenants beginning Oct 1, 2022, regardless of usage, except for SMTP Auth.
Keep this in mind & disable legacy auth for all apps.
You can quickly determine if legacy auth is in use with these 4 steps #Azure #Identity #Security
How to add or remove system apps in the Android Enterprise Work Profile with Microsoft Intune (like camera and gallery) https://robinhobo.com/how-to-add-or-remove-system-apps-in-the-android-enterprise-work-profile-with-microsoft-intune/ #MSIntune #Microsoft365 #Intune #EnterpriseMobility #MVPBuzz #MEMPowered