Part 2 – Improve endpoint user experience with Microsoft Endpoint Analytics: Startup Performance

My previous blog post was a brief introduction to Microsoft Endpoint Analytics, what it is and how it relates to Microsoft productivity score. In this second blog post I will cover the startup performance, one of the three core features of Endpoint Analytics. How do you gain insight into device setup, startup & sign-in times per individual- as well as per device model and overall system performance as part of Endpoint Analytics startup performance.

Microsoft Endpoint Analytics startup performance page.
  • Startup performance, help IT get users from power-on to productivity quickly without lengthy boot and sign in delays
  • Proactive remediation scripting, fix common support issues before end-users notice issues
  • Recommended software, recommendations for providing the best user experience

Now we have set up Endpoint Analytics we are ready to collect data and gain insights how your endpoints performing. Are they in a good shape and fine tuned to provide the best in class end-user experience? Perhaps they do…but as always there might be some room for improvements out there!

Continue reading “Part 2 – Improve endpoint user experience with Microsoft Endpoint Analytics: Startup Performance”

Improve your endpoint user experience with ‘Insight driven IT’ Endpoint Analytics: A first impression!

Microsoft Endpoint Analytics overview page.

With Endpoint Analytics organizations are able to improve user productivity and reducing IT costs by giving you insights about device setup, startup- & sign-in times and overall system performance. Furthermore it provides intelligent endpoint management recommendations which enables IT to optimize the end-user experience with proactive support and detect regressions to the user experience by assessing user impact of configuration changes.

This initial release of Microsoft Endpoint Analytics focuses on three areas:

  • Startup performance, help IT get users from power-on to productivity quickly without lengthy boot and sign in delays
  • Proactive remediation scripting, fix common support issues before end-users notice issues
  • Recommended software, recommendations for providing the best user experience

In a series of blog posts I’ll show you the possibilities of endpoint analytics, where to start, how does it works and most important to get the most out of it for your end-users and (IT) organization. Stay tuned!

Continue reading “Improve your endpoint user experience with ‘Insight driven IT’ Endpoint Analytics: A first impression!”

Remote anything: Publish complex ‘full-path’ web applications with Azure AD Application Proxy

These days where households are rapidly turning into remote offices the need to make business applications available as if they were available from the office is on the rise. Azure AD Application Proxy lends perfectly to secure unlock on-premise web applications in an ease and safe manner.

In this post I’ll explain how successfully publish on-premise SAP instance with a complex home page URL, which seem challenging at first sight. After reading this post not anymore!

Continue reading “Remote anything: Publish complex ‘full-path’ web applications with Azure AD Application Proxy”

Microsoft Defender Antivirus: Catch(up) me if you can!

Update: Microsoft confirmed this behavior and will correct this in the next Microsoft Intune update release, most probably the March update 2003.

If you are using Microsoft Defender Antivirus and managing your Windows 10 clients via co-management (Microsoft Endpoint Configuration Manager (MECM) or Microsoft Endpoint Manager (MEM), this blog might be interesting for you.

The catch-up scan block results in the opposite configuration the UI implies.

During an end-to-end multi-platform migration (including Windows 10, macOS, Windows Servers and Linux) of a 3rd party AV solution to Microsoft Defender (ATP) we noticed some striking behavior.

Continue reading “Microsoft Defender Antivirus: Catch(up) me if you can!”

Troubleshooting: Endpoint Configuration Manager Device Collection Membership Synchronization

Device collection membership Synchronization to Azure AD security groups (aka Azure AD Group sync) is introduced since 1906 and offers a multitude of new management options. Meanwhile a lot has been written and resulted in some great blog posts by various community peers like Nickolaj Andersen, Nick Hogarth as well as by Microsoft Docs.

What these resources have in common is they all describe how to enable and configure Azure AD group sync. In this blog post I’ll go in to more details what’s behind the scenes, how device collection synchronization works and what actions you can take in the event of troubleshooting is desired.

Continue reading “Troubleshooting: Endpoint Configuration Manager Device Collection Membership Synchronization”

More control on Windows-as-a-Service with Microsoft Intune Feature Update Deployments

With the introduction of Feature Update Deployments, IT-administrators get more control over how Windows 10 feature updates are installed via Windows Update for Business. With Feature Update Deployments, they have the ability to choose a given feature update (e.g. 1803, 1809, or 1903) and stay there indefinitely*. It provides more granular and predictable control the way feature updates find their way to devices across your organization.

With Windows 10 feature updates, you select the Windows feature version that you want devices to remain at.

Continue reading “More control on Windows-as-a-Service with Microsoft Intune Feature Update Deployments”

Revise your OneDrive (Sync) restrictions when shifting to a Modern Workplace!

OneDrive client is unable to sync your folders.

What is a modern workplace these days without having your personal- or group data synced to OneDrive and taking the full advantage Microsoft’s cloud storage has to offer!? One of the most asked feature is silently configuring your OneDrive client to automatically synchronize your (personal) data. Continue reading “Revise your OneDrive (Sync) restrictions when shifting to a Modern Workplace!”

Microsoft keeps its Password-less promise and ships native FIDO2 support to Azure AD & Windows 10

Microsoft continues to deliver it’s password-less promise and introduces native FIDO2-based authentication to Windows 10 & Azure AD.

“There is no doubt that over time, people are going to rely less and less on passwords. People use the same password on different systems, they write them down and they just don’t meet the challenge for anything you really want to secure.”

Bill Gates, RSA 2004

Continue reading “Microsoft keeps its Password-less promise and ships native FIDO2 support to Azure AD & Windows 10”

Together, we achieve more. Great achievements in a Microsoft Modern Workplace era

Exiting times! Needless to say I’m proud and humble rewarded for the 5th consecutive year as a Microsoft MVP (EnterpriseMobility).

It’s a great honorand pleasure to be able to make a modest contribution for the Microsoft community and help others by inspiring and sharing your experiences. As mentioned, this is such a great way to help others getting them further.

Continue reading “Together, we achieve more. Great achievements in a Microsoft Modern Workplace era”