Entra ID — Articles by Jannik Reinhard

How to create a custom SSO Teams bot

How to create a custom SSO Teams bot

How to create a custom SSO Teams bot

jannikreinhard

As GPT and other large language models revolutionize the way we communicate and how we can build custom solutions for companies, the demand for intuitive frontends to deliver these AI capabilities to end-users has never been higher. If you’re wondering whether there’s a seamless way to integrate a bot into Microsoft Teams, you’re in luck! In this blog, I’ll guide you through the process of building a custom SSO Teams bot tailored for Microsoft Teams and the bot framework from Microsoft, so you can ship a custom SSO Teams bot that calls Azure OpenAI with confidence.

Read More » How to create a custom SSO Teams bot
Reenrol devices without wipe

Reenrol devices without wipe

Reenrol devices without wipe

jannikreinhard3 Comments Reenrol devices without wipe

Looking to reenrol devices without wipe? Enrolled Intune devices occasionally face trust issues due to MDM or Microsoft Azure certificate problems, among other factors. While wiping and re-enrolling is a standard fix, it’s straightforward for regular devices, with minimal data loss thanks to services like OneDrive. However, this process is more complex for specialized field devices, particularly those with custom configurations and vendor-installed software, especially if the vendor no longer exists. Creative strategies are essential in these cases. This blog post delves into an experimental approach to seamlessly bring such devices back under management.

dsregcmd output showing the Azure AD device certificate status
Read More » Reenrol devices without wipe
Create and Fill AAD Group based on an local attributes

Create and Fill an Entra ID Group based on Local Attributes

Create and Fill an Entra ID Group based on Local Attributes

jannikreinhard9 Comments Create and Fill an Entra ID Group based on Local Attributes

There is often the need to create an Entra ID group (formerly Azure AD) based on a local registry key or another attribute to make more specific access decisions, to use this group for access rights to an application or many other use cases. Building an AAD group based on local attributes is the perfect way to do exactly that.

In this blog post I will show you how to create an AAD group based on local attributes with the help of Endpoint Analytics and Azure Automation. In my blog I show you how to do this with the example of device manufacturer; of course we already have this info in Intune, but it is just an example of how this works. Of course you can also do this with anything else you can read out on a client.

AAD group based on local attributes
Read More » Create and Fill an Entra ID Group based on Local Attributes
List all Intune assignments of an Azure AD Group

List All Intune Assignments of an Entra ID Group

List All Intune Assignments of an Entra ID Group

jannikreinhard5 Comments List All Intune Assignments of an Entra ID Group

All assignments in Intune are based on Microsoft Entra ID (formerly Azure AD) groups. If you have ever needed to list all Intune assignments of an Azure AD Group, you already know the pain: you want to find out to which Intune object a certain Microsoft Entra ID group is assigned, but there is no built-in way in the portal to surface this. To solve this problem I have written a PowerShell script that gives you exactly this output, so you can list all Intune assignments of an Azure AD Group in seconds.

List all Intune assignments of an Azure AD Group
Read More » List All Intune Assignments of an Entra ID Group
Map an Networkdrive with Intune

Map a Network Drive with Intune

Map a Network Drive with Intune

jannikreinhard

Map a network drive with Intune explains how to deliver a network-drive mapping from Microsoft Intune so users receive the correct shared drive without manual setup. The guide focuses on the practical Intune deployment steps, script behavior, and configuration details needed to map a network drive with Intune in a reliable way.

“Map a network drive with Intune” sounds like a 2009 problem, and yet — between hybrid file shares, M&A onboarding, line-of-business apps that hardcode UNC paths, and users who genuinely prefer drive letters to SharePoint URLs — it shows up in almost every modern endpoint project. Microsoft does not give you a clean GUI option for it, which is why a tiny PowerShell script delivered through Intune is still the most reliable answer. This post shows the exact pattern I deploy in production, including credential handling against on-prem AD, Hybrid Microsoft Entra ID vs Entra-only differences, and how to retire the mapping cleanly when the file share goes away.

In this blog I will show you a very simple way how to map a network drive with Intune.

Read More » Map a Network Drive with Intune