S01E41 - Enabling Microsoft Defender Web Protection (Proxy) in the Defender Security Center (I.T)

Published: Jun 10, 2020 by Intune.Training

Steve and Ben drag Adam trough more security stuff. Adam is thrilled.

Microsoft released a new Web protection feature on securitycenter.microsoft.com which uses the 3rd party Cyren web proxy. This does require an E5 License.

00:00 - Intro
02:29 - Enable custom network indicators
03:19 - Connect to a partner
06:24 - Create web content filtering policy
08:43 - Create machine group
11:26 - Web content filtering with Microsoft Defender ATP now in public preview
https://techcommunity.microsoft.com/t5/microsoft-defender-atp/web-content-filtering-with-microsoft-defender-atp-now-in-public/ba-p/1132287
14:03 - Web content filtering
https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/web-content-filtering
20:53 - Wrap-up

Update: 7th July 2020 Web content filtering is now included with a Microsoft Defender ATP license. https://techcommunity.microsoft.com/t5/microsoft-defender-atp/an-update-on-web-content-filtering/ba-p/1505445

Looks like we might have forgotten to enable network protection which can be done either by policy from the Microsoft Defender ATP security baseline or the endpoint protection configuration profile. You can also do this using PowerShell with the following command: Set-MpPreference -EnableNetworkProtection Enabled https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection https://docs.microsoft.com/mem/intune/protect/security-baseline-settings-defender-atp?pivots=atp-april-2020#microsoft-defender

Nice blog post on this: https://emptydc.com/2020/01/27/block-it/

Prerequisites Before trying out this feature, make sure you have the following:

Windows 10 Enterprise E5 license Access to Microsoft Defender Security Center portal Machines running Windows 10 Anniversary Update (version 1607) or later with the latest MoCAMP update (for Network Protection on Internet Explorer, Edge, Chrome, or Firefox) Machines running Windows 10 May 2019 Update (version 1903) or later (for a better user experience from SmartScreen on Edge). Note that if SmartScreen is not turned on, Network Protection will take over the blocking A valid license with a partner data provider

Share

Latest Posts

S02E30 - What's new in Intune Reporting w/ Spencer Shumway - (I.T)

S02E30 - What's new in Intune Reporting w/ Spencer Shumway - (I.T)

00:00 - Intro
00:30 - Spencer Shumway introduction
https://twitter.com/spencershum
03:25 - Reporting in MEM
06:40 - Reporting the new way
19:36 - Log analytics
31:25 - S02E01 - Easily Create Power BI Reports with the Intune Data Warehouse - (I.T)
https://youtu.be/2ICPKRBIews
31:44 - Paging vs Export
36:54 - Deprecating application inventory in datawarehouse
https://docs.microsoft.com/en-us/mem/intune/fundamentals/in-development#intune-data-warehouse-updates
https://docs.microsoft.com/en-us/mem/intune/fundamentals/in-development#export-underlying-discovered-apps-list-data
41:07 - Available reports/data today
45:52 - Roadmap
47:02 - Useful resources
Initial reporting blog: https://techcommunity.microsoft.com/t5/intune-customer-success/new-reporting-framework-coming-to-intune/ba-p/1009553
2009 Reporting Blog Update: https://techcommunity.microsoft.com/t5/intune-customer-success/microsoft-endpoint-manager-reporting-blog-for-2009-release/ba-p/1685655
2011 Reporting Blog Update: https://techcommunity.microsoft.com/t5/intune-customer-success/introducing-new-policy-reports-amp-more-in-microsoft-endpoint/ba-p/1898027
Getting started with Intune and Log Analytics: https://techcommunity.microsoft.com/t5/device-management-in-microsoft/microsoft-intune-and-azure-log-analytics/ba-p/463145
Intune reporting export API documentation: https://docs.microsoft.com/mem/intune/fundamentals/reports-export-graph-apis
Ignite reporting session 2020: https://techcommunity.microsoft.com/t5/video-hub/microsoft-endpoint-manager-reporting-graph-apis-and-log/m-p/1681560
Intune Automated reporting Github: https://github.com/phmehta94/IntuneAutomatedReporting

Read more

S02E29 - Beginners Guide to Accessing On-Premises Resources with Azure AD Joined Devices - (I.T)

S02E29 - Beginners Guide to Accessing On-Premises Resources with Azure AD Joined Devices - (I.T)

Sorry about Adam’s keyboard noise and yes, this could be a very short video but we felt like there are people who could use a more in-depth discussion.

00:00 - Intro
00:10 - Jóhannes Geir Kristjánsson introduction
01:10 - Access on-premises resources from an Azure AD-joined device
https://docs.microsoft.com/microsoft-365/business/access-resources
02:36 - Windows admins discord
http://aka.ms/winadmins
04:31 - Migration process
06:40 - Blockers
10:24 - Lab environment
15:50 - Install Azure AD Connect
37:57 - Assign licences
52:40 - Enable single sign-on
1:03:38 - Internal websites and certificates
1:09:08 - Wrap up

Read more

S02E28 - First Look at Win32 Application Supersedence in Microsoft Intune - (I.T)

S02E28 - First Look at Win32 Application Supersedence in Microsoft Intune - (I.T)

00:00 - Intro
02:12 - S01E07 - Publishing Win32 Applications using Microsoft Intune
https://youtu.be/x-RMjhzGXxA
02:54 - Win32 Application Supersedence
https://docs.microsoft.com/mem/intune/apps/apps-win32-supersedence
08:54 - Create a Supersedence relationship in Intune
13:13 - Supersedence behavior
https://docs.microsoft.com/mem/intune/apps/apps-win32-supersedence#supersedence-behavior
14:33 - Supersedence limitations
https://docs.microsoft.com/en-us/mem/intune/apps/apps-win32-supersedence#supersedence-limitations
23:19 - Discussion
28:58 - Wrap up

Read more