Microsoft Antimalware for Azure is Now in Preview

Microsoft Antimalware for Azure Cloud Services and Virtual Machines is a new cloud service that detects and remove viruses, spyware, and other malicious software. Administrators can configure alerts to detect when malicious software attempts to install or run on a Microsoft Azure workload. The service is currently in preview.

I was really excited when I heard this new service announced at TechEd North America. Microsoft Antimalware for Azure addresses a major gap in the market. There is a legitimate need to protect IaaS and PaaS workloads running on Azure from viruses and other malware.… [Keep reading] “Microsoft Antimalware for Azure is Now in Preview”

Windows Intune Features and Policies for Samsung KNOX

Microsoft and Samsung have announced a partnership whereby Samsung KNOX devices can be managed by Windows Intune using both Direct Management and Exchange ActiveSync.  ​Windows Intune now supports direct configuration of Samsung KNOX devices.  This feature allows IT administrators to manage Samsung KNOX mobile devices via the Windows Intune administration console.  Samsung KNOX devices are designed to be used in high security environments.


Here are the list of Windows Intune policies which are available today for managing Samsung KNOX devices:

Security / Password Require a password to unlock mobile devices
Security / Password Password quality
Security / Password Minimum password length
Security / Password Number of repeated sign-in failures to allow before the device is wiped
Security / Password Minutes of inactivity before screen turns off
Security / Password Password expiration (days)
Security / Password Remember password history –> Prevent reuse of previous passwords
Security / Encryption Require encryption on mobile device
Device Capabilities / Hardware Allow camera


If you are looking for assistance managing your corporate owned or personally owned mobile devices, please contact Kloud Solutions using the following URL:

Bulk Enroll iOS and Android Devices With Windows Intune vNext

​The current version of Windows Intune is designed for managing devices for knowledge workers.  Knowledge workers generally own more than one device.  Moreover, they rarely share their device with another user.  Knowledge workers want a mobile device which is customized according to their personal preferences.

By contrast, task workers generally do NOT own their own devices.  They use devices which their employer provides.  These devices are typically designed to be used for a specific purpose.  A common examples of a task worker device would be a handheld scanner for a package delivery service. … [Keep reading] “Bulk Enroll iOS and Android Devices With Windows Intune vNext”

New Windows Intune Features and Policies for Windows Phone 8.1

The latest release of Windows Intune provides new MDM features and policies for Windows Phone 8.1.

The new features include:

  • device configuration settings
  • software installation (sideloading) enhancements
  • selective wipe
  • support for Web Authentication Broker (WAB) enrolment
  • automatic MDM certificate renewal


Here are the new Windows Intune Policies for Windows Phone 8.1:


Group Policy
Security / System Allow screen capture
Security / System Allow diagnostic data submission
Applications / Browser Allow web browser
Applications / Apps Allow application store
Device Capabilities / Hardware Allow camera
Device Capabilities / Features Allow copy and paste
Device Capabilities / Features Allow Bluetooth
Device Capabilities / Features Allow Wi-Fi tethering
Device Capabilities / Features Allow NFC
Device Capabilities / Features Allow Wi-Fi
Device Capabilities / Features Allow Wi-Fi hotspot reporting
Device Capabilities / Features Allow automatic connection to free Wi-Fi hotspots


If you are looking for assistance managing your corporate owned or personally owned mobile devices, please contact Kloud Solutions at the following URL:… [Keep reading] “New Windows Intune Features and Policies for Windows Phone 8.1”

When Will Microsoft Drop “Windows” from the Name of Windows Intune?

It has been a pleasure to observe a truly significant change in the thinking at Microsoft.  Slowly, Microsoft is realizing that not everything is about Windows anymore.  I say this as someone who is a former employee of Microsoft.  I am a regular user of Windows.  I personally think that Windows is a terrific product and brand.  I run Windows 8.1 Update 1 on my notebook.  I also run Windows VMs.


But we live in a world of BYOD now. … [Keep reading] “When Will Microsoft Drop “Windows” from the Name of Windows Intune?”

Windows Intune vNext Coming Q2/Q3 2014

Here is a summary list of features for the next version of Windows Intune which Microsoft has indicated will release in Q2/Q3 2014:

Flexible Deployment

  • Full MDM parity in Windows Intune standalone
    • Email/Wi-Fi Profiles, VPN and Certificates
  • Bulk IT enrolment of devices and device targeting
  • Cloud-only scalability

Device Configuration Management

  • Windows Phone Enterprise Feature Pack support
  • Application Whitelist/Blacklist
  • Customizable IT Terms of Use
  • Start Screen in Windows 8.1
  • Windows Azure AD Premium Integration in Company Portal 

Email Configuration and Protection

  • Access to email only if device is managed


  • Family Safety in Windows 8.1
  • URL Filtering 

Device Data Protection

  • Application restriction policies for iOS
  • Enterprise Wipe of Email (iOS) and access controls via certs
  • TPM cert enrolment
  • MFA support for Intune enrolment

New Windows Intune MDM Features for iOS and Android

The January 2014 release of ODS includes a number of new features to extend and enhance the MDM capabilities of the service. ODS uses a direct management method to manage iOS and Android devices. There is no longer a requirement to have an Exchange Server or Exchange ActiveSync. iOS and Android devices can be managed via the ODS cloud service with no on-premises infrastructure required.

Here are some of the ODS features available for iOS and Android device management:

•Retire or remotely wipe a device that is lost or stolen
•Remotely lock a device
•Remotely reset the passcode
•Detect if a device has been jail broken
•Proactive alerting to identify problems with the health of the device
•Hardware inventory
•Enforce policies and settings for:
◦password management
◦device security
◦documents and data
◦web browser
◦device hardware
◦voice assistant

If you are looking for a way to manage and secure iOS and Android devices in your home or office, please contact Kloud Solutions using the following URL:

Windows Intune Agent Update Coming April 23rd, 2014

Windows Intune will be releasing an update to the anti-malware agent beginning on 23/4/2014. The service regularly releases anti-malware platform updates to guarantee consistency in protection, performance, robustness, and usability in a malware landscape that is constantly changing.

Since this is an agent update, computers may have to be restarted after the update is applied; in most cases however, a reboot is not required.