S02E12 - OMA-Goodness w/ Jeff Gilbert - How to Configure CSP & OMA-URI in Microsoft Intune - (I.T)
Вставка
- Опубліковано 21 лип 2024
- 00:00 - Intro
00:50 - Jeff Gilbert - Microsoft - Senior Customer Engineer, Azure & Endpoint Management
/ jeffgilb
www.jeffgilb.com
03:30 - Custom OMA-URI policy
www.jeffgilb.com/custom-micro...
05:18 - OMA-DM - aka.ms/oma-dm - en.wikipedia.org/wiki/Open_Mo...
06:47 - SyncML - aka.ms/syncml
08:20 - CSP - aka.ms/oma-uri
20:38 - Configuration service provider reference
docs.microsoft.com/en-us/wind...
22:34 - Policy CSP
docs.microsoft.com/en-us/wind...
27:53 - RestrictedGroups policies
docs.microsoft.com/en-us/wind...
31:41 - Policy discussion
38:46 - Custom XML
39:28 - Creating custom OMA-URI policy
43:15 - Administrator members
47:33 - Intune events
52:47 - Creating MDM wins over GP policy
docs.microsoft.com/en-us/wind...
1:01:20 - Creating allow SSPR on the login screen policy
docs.microsoft.com/en-us/wind...
1:16:26 - Wrapping up
CSP Cheat Sheet
github.com/tabs-not-spaces/Co...
Visit our websites and social media for more or to get in touch with us
Steve Hosking - Microsoft MMD Team
/ onpremcloudguy
steven.hosking.com.au/
mvp.microsoft.com/en-us/Publi...
github.com/onpremcloudguy
Adam Gross - Microsoft MVP - Enterprise Mobility
/ adamgrosstx
www.asquaredozen.com
github.com/AdamGrossTX
mvp.microsoft.com/en-us/Publi...
Ben Reader - Microsoft MVP - Enterprise Mobility
/ powers_hell
www.powers-hell.com/
github.com/tabs-not-spaces
mvp.microsoft.com/en-us/Publi...
Adam it's funny you did this video and it has been a problem for a few of us to get our heads around As i'm new to intune and just beginning to figure out the different things we can do with powershell and workarounds . You my find this script a friend and i put together to solve this OMA-URI problem for us. As i'm always spending more time figuring out what to put on those lines.
github.com/SobreroD/MIcrosoft-Endpoint-Managment/blob/main/Tools/OMA-URI_FromAMDX/Get-Intune_OMAFromAdmx2.ps1
If you like it give us a shoot out. :)
Good stuff! Tweeted it out. Thanks for sharing.
twitter.com/adamgrosstx/status/1322310345550110725?s=21
Great video, crafting OMA URIs always drive me a little crazy. This is a great guide.
love these videos
Great Video! We are in the early stages of planning a move to modern management. Thanks for sharing! Liked and a subscribed!
great video.
Thanks this is great
Where are these policies found or set? The reason I ask is we run CIS checks and devices are failing some of the checks because it is looking specifically for GPO value set, but we've set some of the CIS settings via device profiles or config profiles.
Would love some help with the "restrictedgroups" attempting to add local admins to systems.
ive configured the configuration to a T, the SID actually do show up in the group of systems they are assigned to, but NONE of the users have admin access. when they attempt to run as admin, or even run as a different user from within those groups they get a "username and password are incorrect"
there are no errors in the backend, configuration shows success, all the correct version of windows , im stumped as to whats happening
Roled on the floor laughing about Azure CSP question.
For cloud or hybrid?
I tested the old video for cloud but it failed after a while and I need to do more testing. For hybrid I am using a script as an app, there is a article in the web for that
Do you have a solution for an Azure AD registered device to change the password of a local admin account created through an OMA-URI?
You can use Windows LAPS.
@@IntuneTraining That only works with AD joined devices, not AD registered devices.
i need a good video about bitlocker without remedation failed like all bitlocker settings i try. I tried your old video about it but its not complete.
What are you looking for exactly?
@@IntuneTraining a step by step bitlocker policy explanation video. I followed multiple manuals now and still getting remediation failed. On reddit many people have this issue
@@ronald0122 yes i have the same issue with clients coming back saying that it has failed. I have tried this with device configuration and in the endpoint section still no good
@@IntuneTraining if we do get you guys to tried that to see what you able to come up with will be wonderful
@@ronald0122 Remediation failed is most likely just the computer needing to reboot, Bitlocker status is checked on boot, so once the drive is bitlocked, reboot and the Remediation Failed error should go away
Developer mode for intune ???? how do you get there
They're talking about opening the developer tools in the browser (F12 Edge/Chrome) - I'd refer to the Power BI Reports episode (S02E01) where they poke around to expose some cool bits and hoohas.
Woah woah woah. No one exposed any hoohas. This is a family show!
Soooo.... Why move the Teams window in and out of the viewport, while having video of each and one of you blocking the OMA-URI description :p
Please try not to be funny here. rest others are good
Being funny rules.
-- Ben