Automating Azure PIM role activation secured with FIDO2/Passkey with PowerShell
Or any other Azure service requiring special authentication strength
Dec 11, 20256 min read
Command Palette
Search for a command to run...
Latest articles
Automatic Windows VM Image update for Azure Local (HCI)
If you are using Azure Local (HCI), you might find the following PowerShell script AzureLocalVMImageUpdater.ps1 useful. What is it good for? The code replaces the Windows VM images in the specified Azure Local cluster(s) with the latest compatible ve...
Oct 27, 20251 min read
Fixing Autopilot devices' hash-mismatch issues using Intune on-demand remediations
Problem It happens that the hardware hash of your Autopilot device gets changed. Thanks to the replacement of the motherboard or some other issue. This can lead to future problems when your users need to reinstall the operating system, but the Autopi...
Oct 24, 20253 min read
Supercharge Your Azure API Calls: Master Azure Resource Manager batching with PowerShell
Learn how to use undocumented Azure APIs for massive performance gains
Aug 1, 20259 min read
Exporting BitLocker, LAPS, and FileVault Keys from Intune using Azure DevOps pipeline
Keeping a secure, version-controlled backup of your Intune-managed device data, including BitLocker, LAPS, and FileVault keys, is a best practice for any modern IT team. In this post, I’ll guide you through an Azure DevOps pipeline that automates the...
Jul 28, 20254 min read
How to use Microsoft Graph Api Batching to speed up your scripts
Graph Api batching is a great way to improve the performance of your Graph API-related scripts dramatically. It enables parallel execution of up to 20 Graph API calls, which is fantastic, but there is one tiny little problem. You have to write your o...
Jun 15, 20258 min read
Comparing Intune Security Baseline settings
I've released a new PowerShell function called Compare-IntuneSecurityBaseline in my IntuneStuff module. This function allows you to easily identify the differences in settings between two Intune Security baselines. For instance, when Microsoft introd...
Mar 28, 20252 min read
Identify employees using the free version of GitHub Copilot for Visual Studio Code (VSC) within your company environment
You should carefully consider whether you allow your employees to use free GitHub Copilot. This way they can potentially leak some sensitive company data and nobody wants that 🙂 Below is a short PowerShell script to identify the usage of the free G...
Feb 26, 20251 min read
Fix for mismatch between Intune and Azure device compliance status
It happened to us several times that Azure showed company devices as non-compliant, but Intune showed them as compliant. And this wasn’t fixed over time. This is quite a problem in case, you require device compliance in your Azure Conditional policie...
Feb 21, 20255 min read