This post is mostly sourced from https://techcommunity.microsoft.com/t5/itops-talk-blog/step-by-step-migrating-active-directory-certificate-service-from/ba-p/2328766, along with some helpful notes, screenshots, and code samples from my own experience. It’s mostly here for my
Author: Anthony J. Fontanez
Trusted Certificate profiles in Intune are great. Unfortunately, the only certificate stores you can access with these are the Trusted Root and Trusted Intermediate stores.
Part I Alright, now on to where things get more complicated, WinRM connections to and from Azure AD joined clients. I’m going to use two
After a number of conversations with Adam Gross in Discord voice on WinAdmins about this topic, which initially started on Twitter a while back, I
2023-03-14 Update: The following post is now considered deprecated, as the updates released on 2023-03-14 offer a much better solution that does not involve workarounds.
I’ve recently worked through a number of different situations involving upgrading ConfigMgr infrastructure away from older version of Windows Server and SQL Server. In this
If you’re crazy like me, you go all out when running a homelab. Multiple domain controllers, role-based access, separate servers per role (for the most
Disclaimer: I recommend utilizing pure-AAD join in 99% of use Autopilot use cases. Hybrid join is excellent for getting existing domain-joined devices into Intune, with
I recently added a second site system server to my lab environment, in order to migrate all of the client facing ConfigMgr roles off the
Kiosks can present an interesting challenge: how to keep the account credentials at least somewhat secure. In the past, we’ve typically utilized group policy to