Intune Enrollment Instructions

Microsoft released a Word doc that includes step-by-step instructions on enrolling a mobile device that can be customized and distributed by IT to mobile users.  It includes instructions for iOS, Android and Windows Phone.  This is a pretty common need for a new service to help educate end users and will save the team managing a rollout of Intune some time.

It’s available here for download.


New Containers Tech From Microsoft Announced

Nano Server, Hyper-V Containers and Swarm

Yesterday Microsoft announced a couple things, Nano Sever in Server vNext, which is available to partners and I would guess to the public at Ignite.  The other announcement which is more interesting is the Hyper-V containers, running on Nano Server of course.  They also kind of snuck in support for Swarm.

So What?

To put this in context, you can run containers on Windows Server (Nano), using Windows container and Hyper-V containers.  This would allow you to take advantage of Swarm to deploy containers into virtual or real operating systems.  And when you add the isolation that Microsoft has added to containerization this is the virtual server killer app.

Still, So What???

Instead of installing a server OS on your server, and then multiple virtual servers, all running their own OS on that hardware, this completely removes the need for any virtualized OS.  Instead you have a single OS running on your hardware and your apps / services / processes are virtualized without the overhead of the virtual OS.  And then add in hyper-scale.

Interesting Details

I recommend you read the full article as it has many interesting items in it that I don’t include below, but here are some of my favorites.

“we are taking containerization one step further by expanding the scenarios and workloads developers can address with containers:

  • Hyper-V Containers, a new container deployment option with enhanced isolation powered by Hyper-V virtualization.
  • Nano Server, a minimal footprint installation of Windows Server that is highly optimized for the cloud, and ideal for containers.”

“Microsoft will now offer containers with a new level of isolation previously reserved only for fully dedicated physical or virtual machines”

“Hyper-V Containers will ensure code running in one container remains isolated and cannot impact the host operating system or other containers running on the same host.”

“Windows Server Containers can be deployed as a Hyper-V Container without modification”

“Finally, we’ve added integration for Swarm, Machine and Compose into Azure and Hyper-V.”

“Nano Server, a minimal footprint installation option of Windows Server that is highly optimized for the cloud, including containers. Nano Server provides just the components you need – nothing else, meaning smaller server images, which reduces deployment times, decreases network bandwidth consumption, and improves uptime and security.”



Android Support Added to Workplace Join in Azure Active Directory

Microsoft added the ability to allow Android devices to register in Azure Active Directory.  This also allows them to take advantage of SSO for apps that use Active Directory Auth Library to AD.  In the article is also states that policy support for all Azure AD connected apps is in the works which then allows IT to setup conditional access across all devices.

Azure Active Directory Basic Available Now

Microsoft announced today the Azure AD Basic is available.  It includes four additional features not available in Azure AD Free version.

Company branding to match your internal LAN’s styling and logo.

Group-based application access for your cloud hosted apps.  With the ability to query your own directory to build and populate groups or build them in Azure.

Self-service password reset to allow users the ability to reset their own passwords without contacting IT.

SLA 99.9% (3 Nines) guaranteed uptime of 99.9%.  That equals: 1m 26.4s/day or 10m 4.8s/w or 43m 49.7s/mo or 8h 45m 57s/y.

Azure Active Directory Basic is now GA! - Active Directory Blog - Site Home - TechNet Blogs

Data Protection Manager Now Available as Azure IaaS


Azure IaaS workload protection using Data Protection Manager - System Center: Data Protection Manager Engineering Team Blog - Site Home - TechNet Blogs

The supported configuration is illustrated in the above diagram. The DPM installation prerequisites remain the same, as described in the TechNet documentation.

  • DPM is supported on any Azure IaaS virtual machine that is size A2 or higher.
  • DPM can protect workloads that run across multiple Azure cloud services that have the same Azure virtual network and Azure subscription.
  • The number of disks that can be used for the target storage (DPM storage pool) is limited by the size of the virtual machine (maximum of 16). For more information about size limits, see Azure Virtual Machines.

via Azure IaaS workload protection using Data Protection Manager – System Center: Data Protection Manager Engineering Team Blog – Site Home – TechNet Blogs.