About Ayo Dada

Hello and Welcome to Ayo Dada’s Blog. I’m an Architect focusing and specializing in Microsoft Cloud Identity, Hybrid Cloud or Mobility and Security for Enterprise Infrastructure and cloud management. Lately, I have been focusing on Microsoft Azure Active Directory Premium and all its major features On-premises infrastructure integration, User accounts, Devices, Partner collaboration, Customer account management, Application integration, Administration. you will find my blog will show best practice set up. Specifically Microsoft Azure Active Directory Premium and all its major features On-premises infrastructure integration, User accounts, Devices, Partner collaboration, Customer account management, Application integration, Administration and SCCM 2012 R2 Infrastructure like Primary Site, Secondary Site, Distribution Points, Management points. My blog also focuses on best practice setup for SCCM OSD/MDT. I will also share notes from the field, working with applications and packages, Software Updates patch management solutions, Operating System Deployment like Windows 8.1 and Windows 10. Including SCCM cloud integration with Windows Azure and Windows Intune. Other areas like Active Directory, GPO, Windows Server 2012 R2, SQL Server tailor-made for Azure Active Directory connect, SCCM 2012 R2 will also be shown. I have been involved in several IT solutions centered around modernization, cloud Migration, and Deployment of OS and Applications during various transformation Projects in both the Public and Private Sector. I enjoy working in an environment where excellence is really expected. I believe what makes or creates that environment and truly makes it great is to be open when [the work] is not great. My best contribution is not settling for anything but good stuff, in all the details. That is my job — to make sure everything is great. I am a Microsoft Cloud Architect specialize in Cloud Identity, Hybrid Cloud or Mobility and Security for Enterprise Infrastructure and cloud management. I am passionate about technology and have an insatiable drive for learning. If you are thinking of implementing a Microsoft Cloud Identity, Hybrid Cloud or Mobility and Security solution for Enterprise Infrastructure and cloud management in your environment, let me help guide you to success!

SCCM Device Collections with Workgroup Servers or Workstations

For all Workgroup Windows Servers and workstation I used this queries below, the key thing is I queried the variable found in the resource Explorer Domain Role and Operating system Name & version %server% or %Workstation%.

The domain Role attribute class value classifies the status of the devices there are 5 classes please see list below.

Computer System – Domain Role

0              Standalone Workstation

1              Member Workstation

2              Standalone Server

3              Member Server

4              Backup Domain Controller

5              Primary Domain Controller

I have used SMS_G_System_COMPUTER_SYSTEM.DomainRole. The attribute class is Computer System and the attribute is Domain Role for Workgroup devices are Standalone Server but I also used SMS_R_System.OperatingSystemNameandVersion like to isolate the collection type with a %server% or %workstation% wildcard.

Capture

All Workgroup Windows Servers (Works)

select SMS_R_SYSTEM.ResourceID,SMS_R_SYSTEM.ResourceType,SMS_R_SYSTEM.Name,SMS_R_SYSTEM.SMSUniqueIdentifier,SMS_R_SYSTEM.ResourceDomainORWorkgroup,SMS_R_SYSTEM.Client from SMS_R_System inner join SMS_G_System_COMPUTER_SYSTEM on SMS_G_System_COMPUTER_SYSTEM.ResourceID = SMS_R_System.ResourceId where SMS_R_System.OperatingSystemNameandVersion like “%Server%” and SMS_G_System_COMPUTER_SYSTEM.DomainRole in (2)

All Workgroup Windows Workstation (Works)

select SMS_R_SYSTEM.ResourceID,SMS_R_SYSTEM.ResourceType,SMS_R_SYSTEM.Name,SMS_R_SYSTEM.SMSUniqueIdentifier,SMS_R_SYSTEM.ResourceDomainORWorkgroup,SMS_R_SYSTEM.Client from SMS_R_System inner join SMS_G_System_COMPUTER_SYSTEM on SMS_G_System_COMPUTER_SYSTEM.ResourceID = SMS_R_System.ResourceId where SMS_R_System.OperatingSystemNameandVersion like “%workstation%” and SMS_G_System_COMPUTER_SYSTEM.DomainRole in (2)

PowerShell is King – Building a Reference Image Factory (v 3.2)

The Deployment Bunny

The Image Factory has been re-worked and updated. It also has moved to GitHub https://github.com/DeploymentBunny/ImageFactoryV3ForHyper-V/

Concept and flow

The idea is the same, we use MDT, create refimages task sequences that runs without any questions. A PowerShell script will grab all enabled Task Sequences in a specified folder, create a VM for each of them. Grab the Bios Serial number from each om them, update customsettings ini with that information, start the VM’s (number of concurrent VM’s determine how many VM’s can run at the same time, wait until all VM’s are done and finally removes all VM’s for a cleanup process. You can run the script as is (if you store it in C:SetupImageFactoryV3ForHyper-V on you MDT server), or you can open it in ISE and run section by section to see what happens.

The XML file (C:SetupImageFactoryV3ForHyper-VImageFactoryV3.xml)

Is a control file for settings, pretty straightforward, just make sure…

View original post 128 more words

Ms Intune-New end-user experience: Conditional access for Exchange Online

Microsoft  updated the experience for iOS, Android, and Windows Phone 8.1 users who were blocked from accessing Exchange Online using native Exchange ActiveSync email clients because their devices are not enrolled or compliant with policy. When users are blocked, they will receive an email from Exchange with a link to open the Microsoft Intune Company Portal app (iOS and Android) or the Company Portal website (Windows Phone 8.1). The new guided workflow will take users through the steps for enrolling and addressing any compliance issues. This update won’t affect users who already have access to email.

You can read this blog update by Microsoft to Conditional Access for Exchange Online using Microsoft Intune

Previous blog post “Conditional Access for Exchange Online using Microsoft Intune” has now been updated to include the new improved user experience.