Make sure you have a $ in the account for the group managed sevice account in Defender for Identity and you can run this on the server
Category: Research
Research Undertaken
How to automatically upgrade Out of Date VPN clients in Intune
Palo Alto Networks GlobalProtect App | endoflife.date Download and install FortiClient VPN with winget Cisco AnyConnect Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure […]
Cloudflare workers to Disable Unsecure TLS Ciphers
Cloudflare workers to Enable A+ for Security Headers on https://securityheaders.com/
Package Intune app with Powershell as .intunewin file
Install-Module -Name IntuneWin32App $SourceFolder = “C:\Users\pwell\Downloads\DetectAndRemm\Powershell”$SetupFile = “InstallTeamviewer.ps1”$OutputFolder = “C:\Users\pwell\Downloads\DetectAndRemm”New-IntuneWin32AppPackage -SourceFolder $SourceFolder -SetupFile $SetupFile -OutputFolder $OutputFolder -Verbose
Mac Essential 8 Intune Policies
Application Control Configuration settings Edit Gatekeeper Allow apps downloaded from these locations Mac App Store Do not allow user to override Gatekeeper Yes User Application Hardening Chrome […]
Disable MDM from mac
Go to https://skipmdm.com Run the below in recovery mode You can verify the contents with curl https://raw.githubusercontent.com/skipmdm-phoenixbot/skipmdm.com/main/Autobypass-mdm.sh | cat For my Ventura Mac , I have to use Disk […]
Third Party Applications Updates
Great Review -> https://andrewstaylor.com/2023/11/06/comparing-package-managers/
Proactive Remediation to Disable all Local Admins on a PC that’s not the LAPS user for Azure AD devices
See Detection here https://pariswells.com/blog/research/powershell-script-to-get-all-active-local-administrators-on-the-pc/
Intune AutoPilot
Find out where your device is registered Powershell Script for AutoPilot Setup AutopilotBranding/AutopilotBranding/AutopilotBranding.ps1 at main · mtniehaus/AutopilotBranding · GitHub Create AutoPilot Group (device.devicePhysicalIDs -any (_ -contains “[ZTDID]”)) […]