Security: How to enable sign-in with FIDO2 security keys on Windows 10 Devices and Azure AD

FIDO2 security keys are an unphishable standards-based passwordless authentication method that can come in any form factor. Fast Identity Online (FIDO) is an open standard for passwordless authentication. FIDO allows users and organizations to leverage the standard to sign in to their resources without a username or password using an external security key or a platform key built into a device. Read the post to see how you can enable this for your Azure ad and windows 10 devices.

Intune: Setting custom wallpaper and lockscreen on Windows 10 devices with PowerShell and Azure Storage Blobs

Many organizations want to deploy custom branded wallpapers and lockscreens on corporate managed devices. Doing this with Microsoft Intune is natively limited to Windows 10 Enterprise and Education. Follow this guide to see how you can do this with Intune and PowerShell toghether with Azure Storage Blobs.

Office 365 Splash

Office 365: Hvordan be om flytting av dine 365 data til Norge.

april ble det mulighet for å ha Office 365 kjernedata lokalisert til Norsk lokasjon hos Microsoft.
Dersom du har 365 tjenester idag, så er disse ved annen lokasjon i Europa, og dersom du ønsker det, kan du nå be om å få dette “tidlig” flyttet til Norge.
Ett begrenset opt-in vindu er nå tilgjengelig i 6 måneder for å be om tidlig migrering. Etter dette vil det være betydelig vanskeligere å få gjennomført migrering til Norge. Les mer for å se hvordan du ber om flytting.

Microsoft Server 2019: No window border/allwhite issue

In windows server 2019 and windows 10. There is an issue in the RDS world where the windows overlapping each other appears to have no border (its all white) Making it hard to distinguish the various windows from each other. This can be fixed with the steps in this post.

Microsoft Server 2019: NPS Firewall issue

Just a quick heads up for those seeing this.

There seem to be issues with the Windows firewall on Server 2019, especially around NPS and port 1812.
(I have not checked other ports, but the issue may also apply elsewhere, so give me a heads up if you find other similar issues)

[…]

Intune – Publishing win32 applications with Intune

So, you got licenses for Microsoft Intune, and want to roll out some applications to your devices.
If you are new to this you may be faced with some issues, especially regarding what kind of applications you can publish, and how to do so.
There are numerous formats for applications to manage these days – you got the Windows store applications (appx) from Windows 8>>, Line of business apps in the form of MSI installers, and win32 apps.
I will not go into detail on MSI and Windows store here, as these are rather easy to deploy via the information in the web gui.

[…]

User setup guide for Azure MFA on 365/Azure AD account

Setting up Mulitfactor is an important security task on all externally available services whether its for facebook aswell as services from work. If you are using services inside Microsoft Azure like Office 365 the option exists for everyone, but is not turned on for the users by default. Each user can do this by themselves Read more about User setup guide for Azure MFA on 365/Azure AD account[…]

Office 365 Splash

Why you need Office 365

It’s no secret that Microsoft is doing good when it comes to their subscription-based Office 365 package, it’s also not a secret that this is the preferred way for Microsoft to sell the Office package for their customers, as prices for volume based licensing are on the rise. But why should you opt in to Read more about Why you need Office 365[…]

Limit Group Policies to specific OUs, users or computers

Using GPO’s to apply settings to users and computers have always been a great way to make administration and deployments more seamless for admins and users. Working with many different customers, where IT has various experience with this, I see a lot of misconfigured Group Policies, so why not write a post about it. Group Read more about Limit Group Policies to specific OUs, users or computers[…]