Hier bloggen sepago Experten über: Cloud Solutions

The Windows Autopilot, which was initially introduced by the Windows 10 Fall Creators Update (1703), enables IT departments to install a Windows 10 client for the staff’s usage. With Windows Autopilot users are able to arrange their computing devices just by a few clicks and administrators have no need to create custom Windows images any longer.

Some new features of the Windows Autopilot were added to Intune by the Windows 10 Update (1803).

In my last article I introduced the automatic ReDeployment of Windows 10 devices via enrollment page. This feature is still available after the Windows 10 Update (1803), but is complimented by the opportunity to trigger a remote reinstallation of Windows 10 devices with Microsoft Intune in Windows Insider Preview Build 17672 or higher. With Windows Autopilot reset personal applications, data, and settings are removed by the reinstallation of the Windows device. However, the user keeps the Azure AD-Join and the Microsoft Intune registration.

Azure OMS Log Analytics is often used by Azure services. Unfortunately, Azure AD audits and sign-ins are not configurable for log analytics now (I bet this will change soon). But for now, we must work around to archive this.

My favorite way is:

Sending audit logs and sign-ins to event-hubs -> collecting event-hub data from Logic Apps -> transferring data to Log Analytics

Step-by-step
Creating an Event Hub namespace

Create a new event hub namespace in Azure with the Azure Portal.

Sharing access across different tenants in one of the key benefits of Azure AD. My customers appreciate that they can provide azure-based solution to their cooperated users and to guest users as well. Cooperated users include users from the group and subsidiaries. They all can access resources with one identity – on-premises and in the cloud (Same-sign-on, single-sign on).

Guest users can be deployed manually via the Azure portal, via PowerShell or with a connector to another system (like SAP HR).

Users can have different administrative roles in Azure Ad. Azure Portal can show these roles and members. Sometimes it can be favorable to get roles and members in a PowerShell object list.

To logon into your Azure AD tenant use:

Where xxx is your tenant id. The -TenantId is optional. But if your account member of different Azure ADs you can select the right one.

After login in with your credential you can show the different roles with:

Output:

Using PSCustomObject helps to build a list/array of custom objects to save all roles and users.

Azure is “my” cloud with a lot of platform services allowing user, programmers and DevOps building powerful and scalable solutions. One of my favorite ones is Azure OMS Log Analytics – a big data platform with a great query language and professional dashboards.

In the past I build a custom agent to collect data from Microsoft RDS and Citrix environment to provide a deep insight into the user experiences and resource usage http://loganalytics.sepago.com/.

Several months ago, I built a solution focused on monitoring the user experiences on remote desktop environments based on Citrix XenApp, XenDesktop and Microsoft RDS. Particularly RDS/RDP was imported because there is no solution from Microsoft.

End user computing environments are complex and not easy to monitor. The most common monitoring solutions are focused on typical server parameters like CPU and memory consumption, free disk space and so on. But administrators need more insight into the parameters responsible for the user experience like bandwidth,

Gemeinsam mit unseren Partnern Citrix und Microsoft veranstalten wir am 11. April in Hamburg ein Tagesevent zum Thema: „Citrix on Azure“.

Die fortschreitende Digitalisierung führt bei immer mehr Unternehmen zu wachsenden Herausforderungen, aber auch Chancen im Zusammenhang mit Produktivität und Skalierbarkeit. Zudem bringt die EU-Datenschutzgrundverordnung (EU-DSGVO, tritt im Mai in Kraft) eine Vielzahl von Veränderungen und neuen Anforderungen mit sich. Meistern Sie diese Herausforderungen mit der Cloud-Plattform Microsoft Azure, dem Komplettpaket Microsoft 365 für den modernen,

In these days I’m dealing with the automation of starting and stopping Azure virtual machines. I do this to avoid unnecessary costs for customers running Citrix or RDS workers on Azure. I translated a piece of my work into a PowerShell script to de-allocate the VM on which it is running.

Azure Instance Metadata Service

To get information about the running VM I use Azure Instance Metadata Service (https://docs.microsoft.com/en-us/azure/virtual-machines/windows/instance-metadata-service). This information contains the public ip address,

I often use Azure Web Apps to deploy tools and programs running serverlessly. A few weeks ago, I deployed an MVC web site with a controller to handle file uploads to an Azure Storage Account. For the client site I used jquery-FileUpload, which also allows to trigger a controller to delete a file. If a user tries to delete a file, jquery-FileUpload triggers the controller with the http-request method “DELETE”.

In my local environment this worked as expected but nothing happened in my Azure Web App deployment.