We moved away from standalone MBAM and are now using MECM to encrypt an store bitlocker recovery keys.

We store our bitlocker keys in AD and starting to store in Azure AD. Is there going to be integration for Azure AD?

Patching for third party apps would be a nice to have. It would elminate the need for patch my pc or manage engine.

I have implemented a LAPS solution that is connected to our Azure AD instance. The steps to implement this are shown here: https://www.lieben.nu/liebensraum/2021/06/lightweight-laps-solution-for-intune-mde What would be great would be to integrate...

I'd like to be able to view what BIOS version each computer has when pulling up the Security Tools. There's a lot of BIOS/UEFI information such as TPM and secure boot, but adding a BIOS version will easily let us know if they're needing to be upda...

Map a list of known vulnerabilities to the software inventory and hardware firmware so you can pull a report of vulnerable software installed on clients/servers.

It would be very helpful if we can perform a BIOS upgrade (firmware upgrade) on client workstations. We mostly use Dell and some HP hardware.

We just implemented the following solution: https://www.lieben.nu/liebensraum/2021/06/lightweight-laps-solution-for-intune-mde/ Our implementation does not include password encryption, as it did not work for us, no matter what we tried. We would l...

All of our clients have RDP disabled (security policy) but it is useful to sometimes RDP to them. This means starting the remote registry service either via psservice \\machineName start "Remote Registry" or Computer Management -> Connect to an...

Currently using Windows Defender/SCCM for endpoint protection. Looking for quicker methods to force a Full Scan to workstations on demand, then get detailed reporting on the status of the scan on each workstation using RCT. Would also like to see ...