Windows AutoPilot Deployment

Microsoft has announced that Windows AutoPilot Deployment – a new cloud service that enables IT professionals and partners to customize the Windows 10 out of box setup experience. It used cloud configuration, delivering a self-service deployment experience with new Windows 10 Pro devices. It is now available through CSP.https://blogs.windows.com/business/2017/06/29/delivering-modern-promise-windows-10/#7Y0FQE61FUq42yKb.97

For Windows AutoPilot Deployment feature overviews and demos please see below:

Advertisements

Microsoft Premier Workshop – EMS + S Technical Workshop

Microsoft Premier Workshop – EMS + S Technical Workshop

The four-day EMS + S Technical Workshop for Spark will provide members of the Spark technical support and delivery team the skills required to understand and successfully configure and support Spark’s EMS customer solution.

The topics included within this Workshop include

  • EMS Introduction
  • Managing client access
  • Defining and managing security & rights management
  • Implementing & applying user templates
  • Working with customer self-service options

In this Workshop, students will learn the tools used in EMS to help define and manage individual customer requirements within Sparks shared customer environment.  This Workshop contains Level 300 content.

Key Features and Benefits 

Each module is designed to provide participants with in-depth expertise, tools and experience in configuring and managing various EMS scenarios.  As an exclusive Spark event students, will be able to deep dive on the Spark solution to define specific customer requirements.  A series of User Scenarios will provide participants with the practical application of the features and functions they learn about.

Technical Highlights 

This Workshop will include the following topics

EMS Pre-Requisites 

  • The Solution
  • Connecting a customer

Intune

  • Mobile device management
  • Controlling conditional access – device and applications
  • Managing compliance rules
  • Applying exemptions
  • Mobile application rules

Rights Management (RMS)

  • Activating RMS
  • Invoking and managing file protection
  • Configuring templates
  • Applying templates
  • User experience

Azure Active Directory Premium (AADP)

  • Identity and access management – Single Sign-On to access cloud apps from Windows, iOS and Android devices
  • Data protection
  • Self-service for employees – password and group management
  • Password resets
  • Group management
  • Customized MyApps portal
  • Integration with On-premises

User Scenarios – practical experience in applying the learning of the Workshop

Microsoft Intune was not able to retrieve all the data

Microsoft Intune is setup and you are browsing through the Admin section. You notice the below message on a number of pages:

Microsoft Intune was not able to retrieve all the data

You save and review the log file. The second line reads:

Error occurred while retrieving JWT token, check that current user has an Intune license and try again.

Resolution

You need to assign a Intune A Direct license through the Office365 Admin Center. Ensure you have appropriate Administrative permission in Office 365.

Profit

 

Error Installing Intune Client – 0x80043010

So you have just joined your Windows 10 device to Azure AD with Azure AD Join and the device has auto enrolled into Microsoft Intune (MDM). We done.

Now you want to install the Intune Client to get all those Intune console features you seen and heard about.

Sorry, no go:

Device is registered to be managed by MDM service. Please unregister the device from MDM service before installing Microsoft Intune, 0x80043010

There are two different ways that Intune can manage a Windows 10 system:

  • Enroll it as “mobile device” using the MDM agent built into Windows 10. Use Policy configuration service provider (OMA-DM) Future technology.
  • Install the Intune client agent. All the cool configuration policies you see in the Intune console.

These are mutually exclusive though. Each has its pros and cons. The long term goal is for the built-in MDM agent to be the end-all be-all for managing Windows 10 and it does a good job today but it doesn’t cover everything like Defender management or software updates. The full Intune agent is generally preferred today because it does provide these things but it depends upon your scenario.