Azure (Public/Hybrid), Workshops

TMF01 Workshop: Going Cloud Native with Your Endpoint Management

11/22/2024

8:00am - 5:00pm

Level: Advanced

Jörgen Nilsson

Principal Consultant

Onevinn - Ccmexec.com

Jan Ketil Skanke

Security MVP, Enterprise Mobility MVP

COO and Principal Cloud Architect

CloudWay

This in-depth workshop covers the essential aspects of transitioning from on-premises client management to cloud native management with Microsoft Intune and Entra ID. We will also touch on the hybrid challenge.

Module 1: Intro to Cloud Native Management

  • Explain the shift from on-premises to cloud management using Microsoft Intune and Windows Autopilot
  • Entra Joined vs Hybrid Entra Joined
  • Enrollment / Groups / Targeting: Walkthrough on how devices are enrolled, creating groups, and targeting policies

Module 2: Configuring Windows with Intune

  • Device Configuration Profiles, Templates, Security Baselines and the Settings Catalog
  • ADMX-backed policies - Explain how to leverage existing policies and extend them with Intune
  • Group Policy Analytics and Migration
  • Windows Update for Business / Autopatch

Module 3: Endpoint Security features

  • Bitlocker: Cover device encryption and management with Bitlocker in Intune
  • Antivirus and Firewall: Explore how Intune handles antivirus and firewall settings
  • Endpoint Privilege Management: Discuss securing privileged access to endpoint
  • Cloud PKI

Module 4: Scripting in Intune (Close the gap)

  • Platform scripts: Introduce the use of PowerShell for custom configurations
  • Remediations: Discuss how to use remediations scripts
  • Custom Compliance with PowerShell

Module 5: Role Based Access Control and Delegation

  • Intune RBAC Configurations
  • Scope Tags
  • Multi Admin Approval for Apps and Scripts

Module 6: Application Management

  • Enterprise App Management
  • Win32 Apps
  • Store Apps (WinGet)

You will learn:

  • How to get started on the journey to Cloud Native Management
  • About configuring and securing your Windows Devices with Intune
  • About RBAC and Delegation in Intune