March 2023 – Tech Journey with Mishra

Dynamic group

Dynamic group is the group which adds and removes group members automatically using membership rules based on member attributes.

We can create complex attribute-based rules to enable dynamic memberships for groups.

Dynamic group membership reduces the administrative overhead of adding and removing users.

To create a Dynamic Security Group, follow the below steps:

Log into Azure portal (https://portal.azure.com/) or Intune portal (https://endpoint.microsoft.com/)

Go to Groups, Click New group.

Choose Security as group type.

Give the security group a Name, and a Description (Optional)

Choose Dynamic device as Membership type

Click the Add dynamic query tab

Choose attribute (Ex: enrollmentprofilename) in the first drop down list (Property)

Choose condition (Ex: match) from the second drop down list (Operator)

In the third field (value) enter the Value (ex: enrollment profile name)

Click Add query – click Save

Click on Create and your Group will be created.

Members will get automatically added/removed as per membership rules.

Few examples of Dynamic Menmbership rule syntax –

user.department -eq “Sales“,

user.country -eq “value“,

user.objectId -ne null,

(user.objectId -ne null)
-and (user.userType -eq “Member”),

device.objectId -ne null,

Note: We can create a dynamic group for devices or for users, but we can’t create a rule that contains both users and devices.

We can’t create a device group based on the device owners’ attributes. Device membership rules can only reference device attributes.

Details and reference link – https://docs.microsoft.com/en-us/azure/active-directory/enterprise-users/groups-dynamic-membership

Dynamic group Read More »

User Creation in Azure Active Directory

1 Comment / Azure AD, Intune / Mritunjay Mishra

Let’s learn to create new user in Azure active Directory in very simple steps. Also we will learn to assign License to the user.

To Create User in Azure Active Directory

Log in to Azure Portal (portal.azure.com)

Open Azure Active Directory

Click on Users.

Now Go to All users (preview), Click on New user-> Create New user

Now fill all the required details and click on Create

You can view or search the newly created user in All users view

Once we have created the new User, the next step is to assign required License/s to the user.

To Assign the License

Go to All users (preview), Open the User’s Profile by clicking on Users Name

Go to Licenses, Click on Assignments,

Select the License and click on Save

Now you can see that the License has been assigned.

Note: Location must be selected, to assign the license to the user.

User Creation in Azure Active Directory Read More »

Microsoft Intune – Introduction

3 Comments / Intune / Mritunjay Mishra

Microsoft Intune is the SaaS solution provided by Microsoft. Microsoft Intune is a cloud-based desktop and mobile device management tool. This supports Mac-OS, iOS, Android, and Windows 10. This cloud solution is used as a modern management tool

Microsoft Intune is a cloud-based service that focuses on mobile device management (MDM) and mobile application management (MAM). It helps you protect your workforce’s corporate data by managing devices and apps. You control how your organization’s devices are used, including mobile phones, tablets, and laptops. … Intune is part of Microsoft’s Enterprise Mobility + Security (EMS) suite

Microsoft Intune launched in 2011 as Windows Intune. The name change to Microsoft Intune was announced in 2014.

Eight years later, in 2019, Microsoft decided to join its Intune unified endpoint management (UEM) platform with its Configuration Manager (ConfigMgr), enabling users to access both with just one interface.

A new service called “Microsoft Endpoint Manager” brings together System Center Configuration Manager (SCCM) and the Microsoft Intune mobile management service.

Intune is available: As a stand-alone Azure service. Included with Microsoft 365 and Microsoft 365 government. As Mobile Device Management in Microsoft 365, which consists of some limited Intune features.

Microsoft Intune – Introduction Read More »

Microsoft Intune test tenant creation and initial console set up

Intune / Mritunjay Mishra

Create a free subscription of Microsoft Intune

Prerequisites-

You must have a personal email account.

Creation of Intune test Tenant

We have 2
options to get the free trial Intune test tenant.

Option 1 – Free Trial Tenant for 30 days

Option 2 – Free Trial Intune tenant for 90 days.

This option is available mainly for partners. We can log into this portal with Company Email address and get the access to this tenant for 90 days.

To create Intune account with option 1 (Free trial for 30 Days) –

Open https://go.microsoft.com/fwlink/?linkid=2019088

Put your Personal email ID, click on Next.

Click on Set up Account.

Fill the required details and click on Next.

Select one of the Verification Method and click on Send verification Code.

Put the Verification code received on your mobile phone and click on Verify.

Now you will be asked to put the User Name and Password.

Note- You can keep the same user name as you given in previous step or you can modify it as this will be your Global Admin ID.

You can also change your Domain name here as by default it will take your Company Name as Domain Name or you change it later with your own custom domain.

Click on Next, after making the required changes

Now Confirm the filled details and put few more details (ex:- Address) and click on Save

Note: You can change your Contact number here

Now Enter the PAN Number and click on Save.

Now you will get a confirmation for your Trial Subscription

Click On Get Started or on Manage Your Subscription, It will take you to MS365 Admin Center (Subscriptions – Microsoft 365 admin center) where you will be able to see your Subscription product