Chris Johnson

@mongkonsrisin @1Password @keepersecurity this would be a great feature

It’d be great if @1Password had a dedicated Recovery Codes section with: • Codes displayed individually (clearly separated) • One-tap copy per code • Ability to mark a code as “used” • Optional description on how/when to use recovery codes

@Shoehorner @DanielatOCN Yes it does, I just did this myself recently without issue. As you have them hybrid joined they use PRT tokens by default.

You should disable Seamless SSO in Microsoft Entra Connect as soon as possible! Here is how to do so safely > ourcloudnetwork.com/why-you-should… Seamless SSO enables single sign-in for Active Directory joined devices. It is now legacy and relies on Kerberos tickets being sent to Entra ID, where they can be decrypted to issue tokens. For organisations taking security seriously, SSO should and will be delivered by Primary Refresh Tokens on your Entra Registered or Joined devices. While these take precedence over Seamless SSO, don't forget to return to your Entra Connect configuration to disable it, removing yet another lateral movement technique between your Active Directory and Cloud Directory. #Entra #Microsoft

@AdamGrossTX Following, as we're getting a lot of failures or stuck on 0% downloading recently. For both 10 to 11 24h2 and 11 23h2 to 24h2.

This may be a silly question but does anyone know if #Microsoft may have paused the #Windows 11 #24H2 Feature Update? I'm trying to get some stragglers updated and every machine I log into is able to get other updates from WUFB and some even show that they've attempted and failed 24H2. When I check for updates, I get other updates but 24H2 never shows up. Since it's been on every computer, I'm wondering if the update has been paused or something. @ariaupdated @JenMsft @IntuneSuppTeam @bdam555

@alitajran Technically still in preview and not generally available.

Microsoft PassKeys is now AVAILABLE! A passkey is a simple and secure way to sign in without having to enter a username or password. It also adds an extra layer of security to protect your account. Learn how to set it up: o365info.com/passkeys-micro… #Microsoft365 #EntraID

@gwblok @HP @MSCSK12 Sounds exciting, thanks. I'll check both out!

@gwblok @HP @MSCSK12 Hi @gwblok, do you have any recommendations for those that are unable to take advantage of HP Connect due to lack of licensing for Intune "Proactive" Remediations? We have both Intune & SCCM but not the Windows Enterprise license.

This is what I get for trying to buy test equipment on ebay. Hey @MSCSK12, I just emailed, if you'd please provide me the BIOS Password & remove the devices from your Autopilot enrollment, that'd be great. And if you marked them stolen, I'd be happy to provide the seller contact

I knew that I wasn't making it up, I managed to find the announcement. techcommunity.microsoft.com/t5/microsoft-e…

Hi @merill, I was talking to a colleague today about registering Fido2 keys for users. I could have sworn that we now have the ability to bulk register keys on behalf of users but can't find any information about it. Is that true or have I just confused it with something else?

@BenSjavik @SwiftOnSecurity Looks like there is a way xdaforums.com/t/guide-root-u…

@SwiftOnSecurity Hope getting vanilla android running on these is easy. I'm looking for something cheap my daughter can use the Loog guitar app on.

$30???? Lenovo ThinkSmart View for Microsoft Teams - $27.99 computers.woot.com/offers/lenovo-…

@fesshole My God! I didn't come here to feel!

I got promoted this week. Worked so hard for years and made it to a level I never thought I'd achieve. All I want to do is tell, my Mum but she died recently. She'd have been so excited and babbling down the phone and then telling all her friends. I hope I made you proud Mum.

@MHimken Hi @MHimken have you got any tips on how to deal with drives that won't shrink to expand the recovery drive even when there is lots of free space?

Still struggling with the January #WinRe update(s)? I just updated my script to help with recovery partition/agent issues. v3.2 will - Support more part. configurations - Handle odd reagent.xml configurations and - ISE legacy path issue - (read changelog) github.com/MHimken/WinRE-…

@magnus133 @MEM_MVP I'm currently testing this github.com/MHimken/WinRE-…

@MEM_MVP We have the issue, someone found a remediation script to deploy from Intune to fix it?

Anyone seeing failures for KB503441 installs on Win 10 22H2? " *FAILED* [80070643] Deployment job Id 0CD83AB7-5D0B-476C-A2F9-419178A4B0FA : Installing for Top level update id 576B0DD6-57CC-457B-A5EC-E888491B395D.200, bundled update id EED9AB71-0201-4448-ABC3-74799F5EE23D.200 [CUpdateDeploymentJob::DeploySingleUpdateInternal:2800]"

@SwiftOnSecurity I lost my big toe nail after fixing my Mam's friend's computer (the old 'oh my son is really good at computers he'll look at for you'), whilst trying to carry the great big heavy thing to her car. Slipped, then corner of the case dropped on the nail so precisely, it flew off!

The blood price of early PC builds when manufacturers were rando firms building industrial solutions hot off a machine press where nobody spent time rounding edges. People went to the hospital installing RAM.

To celebrate over 10 million players exploring in #Starfield, we're giving away another custom AMD GPU + CPU! Follow and repost to enter - a winner will be selected in one week! Rules: beth.games/3PLE1gi

@Nicholas_Tri @DanielatOCN Haha don't feel dumb it was a bit of a learning curve for me as well. Glad you're all sorted.

@zeceej @DanielatOCN …ohhhhhh now I feel dumb lol

Graph PowerShell users, do you just connect with the default app? (now that there is more permission control). Or do you create new app registrations for specific tasks? In this blog I look at using Conditional Access to Protect MS Graph PowerShell access ourcloudnetwork.com/protect-micros…

@Nicholas_Tri @DanielatOCN Connect-mgraph -scopes <defined scopes> powershellcenter.com/2022/06/13/und…

@DanielatOCN I hate how much time I’ve seen figuring out how the heck to just connect to run a few random commands without needing to do an app registration or something????

Blog Post: Deploying & Updating @HP MIK Client via #ConfigMgr CI garytown.com/deploy-hp-mik-… MIK Client inventories results from HPIA and pulls them back into ConfigMgr, giving you dashboards and central reporting of your devices. @Geodesicz @nkofahl @dan_felman @zeceej #PowerShell

@gwblok @HP @Geodesicz @nkofahl @dan_felman I'll give it a bash today and will come back to you

@zeceej @HP @Geodesicz @nkofahl @dan_felman Would you mind testing this out, then I'll get it blogged github.com/gwblok/garytow…

Do you have #ConfigMgr & @HP Devices? Did you know that MIK allows you to inventory your devices Drivers / BIOS / HP Software and provides nifty reporting & remediation! If you're using MIK, give me your feedback. If you're not, why not? @Geodesicz @nkofahl @dan_felman

@gwblok @HP @Geodesicz @nkofahl @dan_felman Oooh yes please!!!

@zeceej @HP @Geodesicz @nkofahl @dan_felman Right, you'd need to install the MIK Client, as it creates all of the WMI Classes needed. I just wrote a CI that deploys the MIK Client & Keeps HPIA updated (embedded in MIK), let me know if you're interested, I'll blog it quick. (Requires CMSL on endpoint for deployment)