You will get Intune configured to manage your corporate Windows devices
You will get Intune configured to manage your corporate Windows devices
Configuration of the foundational policies to secure corporate Windows devices.
- Delivery time 15 days
- Number of Revisions 2
- Remote Connection Support
- Documentation
Project details
As detailed in the project steps below, I'll ensure the fundamental configurations are in place in your Intune instance. I will enable features with Microsoft-recommended best practice settings to secure your devices for use in an enterprise environment. The project will enable the following:
Azure AD configuration to support Intune
Windows Autopilot configuration- Zero Touch Provisioning
Automatic OneDrive Configuration
Remove Pre-installed Bloatware
Windows 10/11 Update Rings to keep devices patched
Bitlocker Configuration to encrypt the device
Windows Hello for Business Configuration
Defender Anti-Virus configuration
Microsoft recommended security baselines for Windows, Edge, and M365 Apps
Compliance and conditional access policies to secure access to corporate resources
Automatic installation of M365 Apps
Documentation & Knowledge Transfer Session
Support & IT Services
Cloud ServicesDevice
Desktop/LaptopOperating System
WindowsCloud Platforms
Microsoft Azure- Delivery time 15 days
- Number of Revisions 2
- Remote Connection Support
- Documentation
Frequently asked questions
SO
FS
TB
AK
PW
RW
About Christian
Certified Microsoft Cloud Architect / MDM with Intune SME
I'm a certified Azure Architect with over 17 years of experience in the medical and transportation, and logistics fields within Fortune 500 companies and startups. This experience includes architecting and implementing device management solutions to manage Windows 10 devices using the modern, cloud-based solution Microsoft Endpoint Manager (Intune). I've also architected cloud-based system integration solutions using the latest integrated-Platform-as-a-Service (iPaaS) technologies from Azure.
I have extensive experience onboarding organizations looking to leverage Intune for the management of corporate and personal devices. Areas of expertise include:
-Deep knowledge of the critical configurations required in Azure Active Directory and Intune to support device enrollment during provisioning
-Configuration to support Windows Autopilot when provisioning devices from vendors
-Experience with installation and management of Microsoft 365 apps and the software security profiles required to implement a robust data loss prevention strategy
-Knowledge of the Microsoft-recommended Windows 10 configuration settings to ensure an Enterprise-grade device for the organization. These settings are based on the Security Baseline profile provided by Intune
-Utilization of Compliance Policy Profiles to check the security health of devices by ensuring specific settings and software are enabled. Standard settings require Bitlocker, secure boot, code integrity, antivirus, antispyware, Microsoft Defender, and real-time protection to be enabled. Configuration of Actions to revoke access to corporate systems for non-compliant devices.
-Leverage Windows 10 Update Ring Profiles to ensure devices get the latest security updates and features quickly without interruption to user productivity
I also have extensive experience with Azure integration solutions based on modern REST-based microservices and API architectures. My architected solutions have leveraged event-based architectures that take advantage of messaging strategies and patterns, such as establishing an Enterprise Service Bus and API gateway. I have participated in various ERP migration projects looking to leverage Azure integration Platform-as-a-Service solutions as the middleware.
For any modern cloud architecture to be successful, it must consider how DevOps principles and automation factor into the design. I have extensive experience in leveraging DevOps best practices and infrastructure-as-code tools to automate Azure components' deployment and configuration. I've also worked with open-source DevOps tools like Hashicorp's Terraform to deploy Azure infrastructure and have expert-level experience with Windows PowerShell.
Steps for completing your project
After purchasing the project, send requirements so Christian can start the project.
Delivery time starts when Christian receives requirements from you.
Christian works on your project following the steps below.
Revisions may occur after the delivery date.
Configure Azure Active Directory
Allow users to join devices to Azure AD. Enable MFA for registering devices. Configure auto-enrollment of devices. Optionally, add additional local administrators on all Azure AD joined devices. Create an Azure AD security group for the devices.
Device enrollment features
Enable Autopilot profile and Enrollment Status Page. Configure Intune to allow for a more seamless provisioning process with your vendor by allowing them to register devices with Intune before they are shipped to you or directly to your users.