![]() $templates = Invoke-RestMethod -Method Get -Uri "" -Headers $authHeader ![]() $authHeader = "Bearer $($auth.AccessToken)"} Now that we’ve got our authentication token, let’s first have a look at what policy “templates” we have available to us. TenantId = '' #replace with your tenantId or FQDN $authParams = 'd1ddf0e4-d672-4dae-b554-9d5bdfd93547' #well known intune / graph application Now let’s use it to authenticate to Graph. Install-Module -Name MSAL.PS -scope CurrentUser -Force There’s a module available for us to auth, so let’s grab that. I will say however, that as I’ve been working predominantly with PowerShell 7, I’ve had to move away from the ADAL libraries and over to the new MSAL libraries. Let’s pop open PowerShell and start building things.įirstly we need to authenticate to Graph - This has been discussed ad-nauseum over the last few years, so I wont go into how to do this. This interface is a marked improvement from the original portal!Īlright, enough of graphical user interfaces. The 5 settings displayed above are literally all we need for most scenarios to encrypt devices. ![]() So let’s dive in and learn how to create some security policies in the new endpoint portal.įirstly, I created a reference policy, using Disk Encryption as the policy type to show what we will be creating. To work with them, all we need to do is create an “instance” of a template and add the settings to the new policy. Turns out I was right - all of these new policies exist as what Microsoft are calling “templates”. This got me to thinking - if these policies aren’t visible in the original portal, then there must be some new Graph API endpoints for me to play with. More importantly, the policies that you configure in the new admin portal don’t seem to appear in the previous portal. Stepping through the new policy options shows that configuring policies is a significantly streamlined experience than in the previous management portal. Īlong with this change to the new and improved management portal, about a week ago, I noticed some changes to the UI around device management and how device configuration policies are configured and managed. It truly pays to read the “ What’s new in Microsoft Intune” on a regular basis.Ĭase in point, late last month, Microsoft announced an updated URL for the Microsoft Endpoint Manager Admin Portal -, previously. Keeping up with the rapid momentum of everything in the modern management world is a full time job. Published: File under: Azure, Intune, PowerShell
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |