With the update of Intune yesterday (27 August 2018), you can now assign a user to a single Autopilot device.
Admins will also be able to give friendly names to greet the user when setting up their device with Autopilot.
Applies to: the most recent Windows Insider build (while in preview).
With the release of Intune yesterday (27 August 2018), it is now possible to run the Company Portal in Single App mode if you authenticate a user through the Company Portal instead of Setup Assistant during DEP enrollment.
This option locks the device immediately after Setup Assistant completes so that a user must sign in to access the device. This process makes sure that the device completes onboarding and is not orphaned in a state without any user tied.
I have seen many users creating a passwords using common local words such as a school, sports team, or famous person, which let them easy to guess. Within Azure AD you can create a custom banned password list, which will allow you to add strings to evaluate and block, in addition to the global banned password list from Microsoft, when users and administrators attempt to change or reset a password.
How to create a banned password list
Before you can configuring the custom banned password list you must have an Azure Active Directory Premium P1 or P2 license.
- Sign-in to the Azure portal and browse to Azure Active Directory -> Authentication methods -> Password protection (Preview)
- Set the option Enforce custom list to Yes
- Add strings to the Custom banned password list, one string per line
- The custom banned password list can contain up to 1000 words
- The custom banned password list is case-insensitive
- The minimum string length is four characters and the maximum is 16 characters
- The custom banned password list considers common character substitution
- Example: “o” and “0” or “a” and “@”
- When you’re done, click Save
When you try to reset a password to something that would be banned, you’ll see the following error message:
Unfortunately, your password contains a word, phrase, or pattern that makes your password easily guessable. Please try again with a different password.
National Cyber Security Centre has updated their guidance for secure configuration of Windows 10 1803 “April 2018 Update”.
This guidance has been updated to cover the 1803 “April 2018 Update” of Windows 10 Enterprise. It builds on the previous Windows 10 ALPHA Mobile Device Management (MDM) guidance.
The guidance can be found here
Next month I will host a webinar about Azure Information Protection in Microsoft 365, as it seems to be quite a hot topic.
I will talk about how you classify and protect sensitive information across devices, apps, and services with Azure Information Protection.
Join my webinar September 12 at 19:00 to 20:30
Join the Data Loss Prevention Webinar on Skype