In the Modern Management scenario, Chrome’s best method of roaming settings is your Google Profile, tied to your google account.
For those of you for whom this is not a good option, allow me to present a simple and elegant alternative through OMA-URI. First, ensure you have loaded an ADMX backed template for Chrome and grabbed the Chrome MSI from Google.
Then, add a new Device Configuration Profile with two Custom OMA-URI’s:
Continue reading Roaming Chrome settings with Intune MDMIn the post-Onedrivemapper era where we have Files On Demand, there is still room for improvement in client side configuration of Onedrive for Business. Onedrive Known Folders isn’t up to par yet, doesn’t support any customization and there are situations where I want to be able to redirect local folders to other places than Onedrive like Teams or Sharepoint.
Therefore I present to you “Invoke-O4BAutoMount“; the ultimate Onedrive/Sharepoint/Teams sync and redirect solution in modern workplace scenario’s, no WebDav, just the NSG Onedrive Client and native Intune Management Extension:
Continue reading Ultimate folder redirection for Onedrive, Teams and SharepointThe Onedrive Per Machine install is the future recommended method of Microsoft to install and deploy Onedrive for Business.
Especially in multi-user / shared computer scenario’s Onedrive is much faster in Per Machine mode.
Here is a quick tutorial on deploying Onedrive in Per Machine mode to your Windows 10 Intune / MDM users, keep in mind:
For reference, these are my recommended Intune settings when deploying and/or managing Onedrive for Business.
Create a Device Configuration Profile
Continue reading Onedrive ADMX RecommendationsIntune does not have a native solution for logon scripts. The community has designed some interesting solutions to this problem using the Intune Management Extension, such as Nicola’s Azure storage based method, Michael Mardahl’s IME reset method and my own hidden vbscript scheduled task method.
The problem with all these solutions is that they rely on scheduled tasks. This is not the most reliable method as the user can easily influence it, and it usually does not support uninstalling or unassigning the script unless you write a specific script for that, assign it to the user, etc yada yada.
This solution can run at logon, at set intervals or both and supports ANY script you write in Intune. invoke-asIntuneLogonScript on Git
Upload to Intune as usual, and set the properties as follows and assign to your users:
Edit: doesn’t happen often that people create the same thing on the same day, but Michael wrote the almost exact same thing so he’s not using scheduled tasks anymore either 🙂