User Profile
AhmedSHMK
Brass Contributor
Joined 2 years ago
User Widgets
Recent Discussions
Playbooks with MDCA
I am attempting to integrate MDCA alerts with freshdesk as per the e.g. https://learn.microsoft.com/en-us/defender-cloud-apps/flow-integration I have E5 without teams licenses. I created the flow, Once from playbooks in MDCA portal and once in power automate directly and went to create a policy to test it out but the option "Sent to power automate" from the policy is always greyed out. Alerts are not automatically detected in the flow unless the action in the policy is set to send to power automate which again is greyed as option in the policies. Also playbooks tab in the MDCA portal does not show the flows I created before, It shows empty, Seems link is broken between MDCA and PowerAutomate. Any reason for this, Any Idea about this? Thanks in advance.Cloud PKI SCEP
Hello All, I have setup steps to utilise cloud PKI to issue SCEP certificate to users so they can be used for email security (SMIME). Root and intermediary setup in cloud PKI successfully and configuration profiles for both setup and both are deployed successfully to test devices. When it comes to the SCEP profile, It has also been deployed but no success status showing yet in the report and issuing certificate not showing any leaf certificates. No errors are currently showing and report just says pending. Any Idea what is causing the delay or how to investigate? Thanks in advance.Vacation/Leave tracker
Hi All, I am creating a Leave tracker, Basically what I have done so far is. -Create a form for leave submission. -Link it to approvals so it basically retrieved manager details and sends approval request via Outlook/Teams. -Create a SPO list item to update and save requests. -Once approval is received the SPO list item is updated to have a status approved. -This triggers email notification to the requestor. -A calendar event is updated in a shared calendar. What I would like to add/Improve is: -Check before sending approval request to see if balance has enough days for the leave requested. -Tracking for vacation balance. i.e. deduct approved days from balance. -For Calendar events to cover all days of the leave in case it is more than one days. Current Create event, Creates only one day. I tried multiple methods that did not work, Any Idea how to achieve this??Re: MS Loop Task Reminders
Hi Ankido, It is very limited unfortunately. You can create a date range so if due date is within this range an alert is created. You can create it if due date is greater than a certain date: However this is not very helpful dynamically as if you need to set it to trigger 2 days before any due date, It won't work. This is the current challenge.Intune Alerts
I would like to create alerts in Intune to trigger for different events. For e.g. Device is enrolled in Intune. Device is encrypted/decrypted from bitlocker. Device is Enrolled Hybrid Entra Join Device is enrolled in Defender Intune policy, etc..... and all others. How can this be done and what licenses are required If any?MS Loop Task Reminders
Hi All, We would like to setup Microsoft Loop so that reminders are sent to people assigned tasks in loop one or two days, etc....before task due date. Either by syncing to Planner * which does not happen* automatically despite some online sources. Or though Power Automate... Any Ideas?Re: CA policy for corporate devices
Multiple Filters were tested, Instead of compliance, I used ownership and set it to company for corporate devices to be excluded. Device is indeed compliance. And sign in works fine from Desktop apps. Issue is only in the browser. Wondering if SSO in the browser has something to do with it, Or maybe certain versions of chrome/firefox is not supported.Blocking Bluetooth file transfer
We have created a policy to block Bluetooth file transfer. The policy was created through Attack surface reduction -> Device Control. 1-This seems to "Dim" the option to add a Bluetooth device in windows. Which is not what is needed. Only file transfer is to be blocked. How can this be achieved? 2-In allow Bluetooth, You get the following description: Allows the user to enable Bluetooth or restrict access. Note This value is not supported in Windows Phone 8. 1 MDM and EAS, Windows 10 for desktop, or Windows 10 Mobile. If this is not set or it is deleted, the default value of 2 (Allow) is used. Most restricted value is 0. There is another option "Reserved" There is no documentation for this option, Any Idea?Re: CA policy for corporate devices
-Regarding the option to unblock browsers, It is not possible because we need to block login to browsers too, It is not an option at least at the moment to use network as condition as some users might come into office to sign in then leave, etc.... -This is filter I used:CA policy for corporate devices
I would like to create a conditional access policy to block all non corporate devices from accessing Office 365 resources. I created a policy: Applies to -> User Group Applies to -> all resources Applies to -> Win 10 Filter for devices exception-> Ownership: company & trust type: Entra Hybrid joined. Action: block The above works fine for office desktop login, i.e. blocks non corporate devices and allows corporate devices. However, a side effect is that sign ins from browser on a corporate device is still blocked.
