sepago Spezialisten bloggen über Citrix und Microsoft

sepago IT-Experten sind ein aktiver Teil der Community. Sie knüpfen Netzwerke, teilen Wissen, gründen Meetups. Dieses Engagement begeistert uns und natürlich unterstützen wir die Aktivitäten unserer Kollegen gerne.

In den Trust in Tech Meetups dreht sich alles um Cyber Security. In Diskussionen fachsimpelt Ihr über die unterschiedlichen Sicherheitsansätze in der IT; in Workshops beschäftigt Ihr Euch mit den verschiedenen Security-Produkten, lernt sie kennen, testet sie.

In Orlando there have been many announcements as well as new functions in various cloud technologies regarding Microsoft Ignite. The announcement of Win32 App support was especially interesting for me. Until now it was possible to provide single MSI files for Windows 10 clients with Microsoft Intune, excluding .exe files. Unfortunately, only few hosts’ applications unpacked in MSI files exist. Also, the available .exe files could not be provided via MS Intune so far.

So far,

Recently I got some questions on how to work with my PowerShell module for OneDrive. Therefor, I put together some examples.

Remember: The OneDrive module is for OneDrive personal and doesn’t work with OneDrive business / Sharepoint.

First: Register an app (authentication) for OneDrive: https://www.sepago.de/blog/onedrive-powershell-module-new-version-with-improved-authentication/

Authenticate to OneDrive

Show files and folders

Create new folder in OneDrive

Copy files from local to OneDrive

Copy file from OneDrive to local disk

Delete file in OneDrive

Die it-sa hat sich zu einer der wichtigsten IT-Security Messen weltweit entwickelt. Hier treffen IT-Entscheider, Sicherheitsverantwortliche und Techniker auf innovative Entwickler und namhafte Anbieter relevanter IT-Security Lösungen.

Grund genug für sepago, in diesem Jahr vom 09.10. bis zum 11.10.2018 in Nürnberg mit dabei zu sein. Sie finden uns gemeinsam mit Microsoft in Halle 10.1 – 410.

Dem hohen Stellenwert, der Sicherheit heute für alle Unternehmen haben muss,

The Windows Autopilot, which was initially introduced by the Windows 10 Fall Creators Update (1703), enables IT departments to install a Windows 10 client for the staff’s usage. With Windows Autopilot users are able to arrange their computing devices just by a few clicks and administrators have no need to create custom Windows images any longer.

Some new features of the Windows Autopilot were added to Intune by the Windows 10 Update (1803).

In my last article I introduced the automatic ReDeployment of Windows 10 devices via enrollment page. This feature is still available after the Windows 10 Update (1803), but is complimented by the opportunity to trigger a remote reinstallation of Windows 10 devices with Microsoft Intune in Windows Insider Preview Build 17672 or higher. With Windows Autopilot reset personal applications, data, and settings are removed by the reinstallation of the Windows device. However, the user keeps the Azure AD-Join and the Microsoft Intune registration.

Azure OMS Log Analytics is often used by Azure services. Unfortunately, Azure AD audits and sign-ins are not configurable for log analytics now (I bet this will change soon). But for now, we must work around to archive this.

My favorite way is:

Sending audit logs and sign-ins to event-hubs -> collecting event-hub data from Logic Apps -> transferring data to Log Analytics

Step-by-step
Creating an Event Hub namespace

Create a new event hub namespace in Azure with the Azure Portal.

Sharing access across different tenants in one of the key benefits of Azure AD. My customers appreciate that they can provide azure-based solution to their cooperated users and to guest users as well. Cooperated users include users from the group and subsidiaries. They all can access resources with one identity – on-premises and in the cloud (Same-sign-on, single-sign on).

Guest users can be deployed manually via the Azure portal, via PowerShell or with a connector to another system (like SAP HR).

Der große Einsatz für die Community von Alexander Benoit und Marcel Meurer ist gestern mit dem MVP Award honoriert worden.

• Marcel Meurer ist bereits im zweiten Jahr in Folge MVP für Microsoft Azure
  Folgen Sie Marcel auf Twitter – @MarcelMeurer 
• Alexander Benoit hat seinen Fokus im vergangenen Jahr auf das Thema „Enterprise Security“ gelegt und das mit Erfolg. In diesem Jahr darf er den Titel MVP für Enterprise Security tragen.

Users can have different administrative roles in Azure Ad. Azure Portal can show these roles and members. Sometimes it can be favorable to get roles and members in a PowerShell object list.

To logon into your Azure AD tenant use:

Where xxx is your tenant id. The -TenantId is optional. But if your account member of different Azure ADs you can select the right one.

After login in with your credential you can show the different roles with:

Output:

Using PSCustomObject helps to build a list/array of custom objects to save all roles and users.