Great content! For the "Consumer VPN" bypassing Trusted Locations, appears you need to have Apps deployed with CA App Control. Any chance you can expand on that in a video in terms of covering the M365 Apps as opposed to custom apps?

Their is two different between mf and mfa

Thank you for the Conditional Access content.

Rod Trent's share sent me here. This was such an informative video. Thank you so much!

Great video. Does the "Block Downloads" for the Conditional Access App Control policy work for all applications which it is scoped for? (outside of M365 ecosystem)

Excellent video. Very helpfull to begin the migration from Unknown devices (BYOD) to allow only corporate devices. as suggestion if possible, can you cover the portion to enroll the new BYOD to Intune, what could be the MUST to have compliance policy to evaluate the BYOD device? the Intune compliance policy should be different between corporate devices Vs. BYOD Then, if I plan to block all Unknown devices (for me is BYOD), however, I need to do an exception to accept one device as BYOD, can you please explain how can I use the Intune feature: "Corporate device identitiers" thansk for your sharing knowledge to the community.

Very good content! Love it

Can we do for restart and shutdown a device for defender for endpoint using live response

Great video

9.W#=555:019/6

great vido useful info

ya.. uh... okay now explain it to me like i'm 4

Would the first policy have the same effect as ticking require device to be marked as compliant and hybrid joined and granting access? Thanks

Excellent content, I'll delve deeper into it...

Hi Ru. Can you share the information about the console tool with you was using during the presentation? Will be possible to see the login details for windows hello login?

great video - do windows hello for business too!

Great video mate

What if- Literally saved my sanity

Brilliant presentation of TAP... Foundamental concept, How to enable, How to implement and live end-user experience. excellent video, very helpful to put in action this Microsoft feature. Thansk for sharing your knowledge with the community. 😁😁😁😁

when i try with TAP in out of the box experience OOBE it does not take the TAP password. would it be required with OOBE to first set up the security key on another devie and then configure OOBE with autopilot?

great video thank you

Excellent, thanks

Amazing video Ru. Just a question about the VPNs, are you saying consumer VPNs are not evaluated or considered in location based CA policies? And so, in your UK example, if a user from the UK was connected to a VPN to access streaming video from the USA for example, they wouldn't be blocked by the CA policy? Hence the MDA policy requirement. Or are you saying a bad actor can use a VPN to appear to come from Ireland for example, when they are in fact in the far east and without the MDA policy would be able to sign in?🤕

Amazing video. Very informative and captivating content.

Interesting thoughts, but not really addressing the video title "How to Secure Local Admins with Intune EPM"....

Another professional from the Entra ID group shared this video and I'm subbed! Excellent video! As an aspiring Cybersecurity Analyst, I appreciated the multi-layered approach to conditional access, especially where the principle of Least Privilege was illustrated. Also found the Conditional Access for Zero Trust Framework exciting, particularly where he addressed the multiple exclusions by naming conventions thru 'personas'. Thanks for sharing! 👍

The content is amazing expecti9nal the, but the background color that green background needs to be changed .we need new modern look

Really good video covering many common gaps

Terrific video, That is a high level security for Conditional access.

Your tutorials are amazing, but...PLEASE, STOP USING VOCAL FRY. IT'S ANNOYING.

Mde tester naw. Mda tester yeahh

You got a sub. I'll be back. BTW your mic 🎤 is a little crunchy making you a little hard to understand.

❤

any demo how to simulate?

I would add to Colin's point that "if something goes wrong in IT, nobody dies, if something goes wrong in OT, someone might die". There are also examples in IT where that's the case too - example being Healthcare

User Voice type sites tend to be where feature requests go to die - how do Microsoft combat that?

Can you put link to test exe file for testing?

Compared with microsofts recommended templates (CA001-CA016 set with the base being MFA for all on all apps) this persona approach is not doing much then adding more confusing to the customers. You want the amount of CA rules to remain low, with a good namingconvetion (CAxxx - BLOCK/GRANT - <app> - <condition> - <identity>. example: CA004 - GRANT: All apps - MFA - All users). Having 8 personas will round it of around 40 CA rules if you use all licensing and recommended security CA's vs the old 10-16. Dont get me wrong, persona is good! but its not an easy feat and the administration required just to do the memberships lifecycle is a MASSIVE task (could even require a team which most customers dont have - its easier to require MFA for everyone instead and create app/role based CA that has higher requirements, such as FIDO etc).

How do you change the information shown on the pop-up notification the end user get when the device gets isolated? For us the only thing the user sees is a notification telling them that an administrator has isolated the device. Would be sweet to customize that message with information/instructions for the end user

or just avoid fucking cloud shit

how to switch to other drives when on live response? it seems that theres only C: drive?

Promo sm ❗

Hi, I tried to implement this yesterday but it still doesn't seem to be working for my organisation. We have all machines connected to AzureAD, intune licences, 365 Premium business licences & Endpoint trial. All of the options you have do show up but it just doesn't seem to want to work across the devices? Is there anything I might be missing? Thanks

Good description. Increasingly challenging challenges will result in developing and innovative products to be able to offer solutions and products to these challenges

This has been the bane of my life at work. Users going on AL and not informing anyone. Next thing we get are alerts for users being seen connecting (normally via Teams and Outlook or desk booking app on their mobiles) from foreign countries, alarms ringing and hackles rising. We expect to see users checking their emails on their mobiles and teams etc, but have been looking at a complete block for 99% of countries, so having this would be a much better way to manage this. Thank you for highlighting this. Amazed I didn't realise that we could do this via this approach.

Hello, could you please advise on this, actually we isolate a device and the status will stay pending. Status just says “Action is pending for completion” and "Release from isolation" is grayed out.

Hey, any way to bock without generating alert? there is no permission to edit the response action for the IOCs added by Cloud Apps

mate you are boring AF ???!!!! NO REPLY READ.

Thank you for the video. I have checked on my system but it is just working for edge, how I will do for chrome and any other web browser

😉 𝓅𝓇𝑜𝓂𝑜𝓈𝓂