Arsen Bandurian: Technical Blog
Digital Workspace, End User Computing, Enterprise Mobility, AutoID, WLANs, OSes and other technical stuff I happen to work with
Microsoft has recently released a major update to the Windows Update catalog back-end, adding crucial information such as CVEs (Common Vulnerabilities and Exposures) addressed by the update and the CVE Score directly info API. This information is essential for Threat and Vulnerability Management decisions as well as Patch management and many organizations pay $$ for... Continue Reading →
I am back and the titles are getting longer! If you are an Intune admin, you will probably be happy to know that one of the most required features has landed: Uninstall Win32 and Microsoft store apps using the Windows Company Portal. One thing you need to be aware of, is that this feature is... Continue Reading →
Wow, it's been a while! A customer of mine recently wanted a detailed report that should include info such as how many weeks is the Windows on the machine behind the latest available Security Update. We've found to a way to combine Intune Data Warehouse and PowerBI to pull data that allows to identify the... Continue Reading →
Today I wanted to enable the Personal Vault feature on my Home PC. While following the wizard I got an error 0x8031000a "Your organization requires your device to join the domain before you can use the Personal Vault". What does this have to do with MDM. GPO and BitLocker troubleshooting? Here's some quick Friday entertainment!... Continue Reading →
Apple has an option to encrypt the MDM profile payloads (both iOS and macOS). But then when you try to view the profile XML in the console (ex. migrating payloads between UAT and Production environments, working with custom profiles) - they are encrypted! Turns out, there is a way to view the XML w/o having... Continue Reading →
If you think my titles are wordy, check the official title of good old Robinson Crusoe! Anyway, today we will look at two important things: Using Managed Google Play feature called Closed Tracks to control app versions and update cycles in two scenarios:Multiple "deployment rings" for different device groupsDeveloper having customers with different update cyclesImportant... Continue Reading →
When dealing with non-GMS Android devices (specialized rugged devices, devices in China) one big challenge is actually enrolling them, since the code that enrolls a Fully Managed device is not part of AOSP. As I mentioned in my post about China, only a few vendors took care of this. In this post we you will... Continue Reading →
We know about the changes to Android 11 COPE, and how they affect the EMMs. One aspect that was slightly overlooked though, is what happens to Internal apps, which many organizations are still employing. We have recently released a KB, which caused a bit of panic between customers and colleagues. Let’s dive deeper and see... Continue Reading →
The title says it all! The feature has been available for a while in a closed preview status, but with 2008 it has moved to Public Preview! Similarly, Microsoft moved the APIs on their side to Public Preview as well, listing VMware Workspace ONE as the ONLY (currently) supported EMM. Needless to say, we are... Continue Reading →
After I published the article regarding the enrollment of Android devices in closed networks, the hottest question was how to apply it for China. The answer is as usual “it depends”. If you want to know more – read on! What’s the problem?What options are available?What is the optimal approach? What’s the problem? Problem is... Continue Reading →
Arsen Bandurian: Technical Blog 