We had two great speakers for the month of July. A thank you to Max Fritz and Ryan Ephgrave.

Notes from Max's presentation:

Max gave an overview of Azure AD and identity sync using AD Connect. AD Connect is the newest tool to sync a local on premise AD to Azure AD. You can read more about Azure AD connect here. Max went over some best practices when configuring and setting up the AD Connect. Although it is supported to install on a DC, you will want to install it on a separate box. Also, it is important to setup AD Connect as close as possible to a DC. When users are signing in via Azure AD, the further the AD Connect broker is from the DC will increase the amount of time it takes for the authentication to happen. AD Connect can be implemented with or without AD FS (federated services).

One of the benefits of using Azure AD is app integration. You have the ability to setup SSO (single sign-on) for cloud applications (SaaS), shared accounts, or on premise applications. Max gave a very good demo of integrating this with Twitter. Another benefit is Azure AD join which will allow you to join Windows 10 devices to Azure and have this sync back into your AD environment. Lastly, is the ability to have self service password resets for AD accounts.

Max also went over MFA (multi-factor authentication) which can be setup in Azure, on premise as a standalone solution, or as a hybrid solution. MFA is included in Azure AD premium but is free of Office 365 administrators. If you are an O365 administrator and you do not have this enabled on your account you should immediately set it up. MFA provides real time alerts for Azure access, third party application access, and location access. You can set this up either to be forced on for everyone or to enable users to sign up themselves.

Notes from Ryan's presentation.

Ryan did an awesome job going over Azure Automation and providing a deep dives into runbooks and webhooks. Remember, if you want to try out Azure Automation yourself you can setup free accounts either via OMS or Azure Automation.

To get started with Azure Automation there are three things that need to be in place first.

  1. AD User - service account
  2. OMS Hybrid Worker - needed to run code on premise. This hybrid worker will query Azure every minute or two for jobs.
  3. Automation Account(s) - you can have as many as you want. You should use one account for each thing you are doing as permissions to runbooks can only apply to accounts or resource groups.

Ryan has a great article here on how to set all of these up.

As mentioned during the demos, use the PowerShell ISE add-on for Azure to make creating the runbooks easier. Below are some links to Ryan's blog with a ton of information on Azure Automation.

Links:

Our August user group meeting will be on Thursday, August 18th, 2016 from 4:30 PM to 7:00 PM at Microsoft's Edina HQ building - 2nd Floor. Please register in advance so we can get a proper count for food and drink. Food and drinks will be provided.

Guest speaker Garth Jones (Enhansoft’s Chief Architect) will present ConfigMgr Reporting Tips. Garth is a Enterprise Mobility MVP and reporting savant!

In his presentation, Garth will show you how to map data within Configuration Manager to SQL views. He will also show you how to formulate a SQL query and how to use that query in a ConfigMgr report. Finally, he will demonstrate how to upload the report to a ConfigMgr website. Along the way, Garth will provide helpful tips and tricks that you can use when creating your own reports.

Parallels becomes a silver MNSCUG sponsor in August so we thank them for making this meeting possible. They are also a multi year sponsor!

Eventbrite - MNSCUG August 2016 Meeting

Fred took these notes

Notes from Kent's session:

  • The server needs access to specific internet sites in order to get the 1602 upgrade.
  • Make sure to preserve the account that was used to install 1511 / 1602.

 

Our next user group meeting will be on Wednesday, July 20th, 2016 from 4:30 PM to 7:00 PM at Microsoft's Edina HQ building - 6th Floor, Lake of the Woods room.  Please register in advance so we can get a proper count for food and drink. Food and drinks will be provided.

Our speakers for this month are Matt Fritz and Ryan Ephgrave.

Max Fritz will be presenting on Azure Active Directory! He'll be covering SSO, identity, MFA, and ATA. Max's bio: IT consultant with broad experience in messaging and collaboration tools. Self proclaimed geek. Can't stop talking about the technology I love. I am passionate about all things Office 365 and Azure Active Directory, especially in the education space and believe technology should be about simplifying and improving life for both end users and Administrators. I spend my days helping organizations make the best use of cloud technologies such as Exchange Online, OneDrive, SharePoint Online, Azure Active Directory, PowerBI, EMS, and more.

Ryan Ephgrave will be presenting on Azure Automation runbooks and integration into OSD task sequences! Ryan is systems consultant and author of the Now Micro Right Click Tools. He also runs the blog EphingAdmin.

Our sponsor this month is Concurrency!

 

 Eventbrite - February 2014 MNSCUG Meeting

 

See you there!

Our next user group meeting will be on Thursday, June 16th, 2016 from 3:00 PM to 7:00 PM at Microsoft's Edina HQ building - 6th Floor, Lake of the Woods room.  Please register in advance so we can get a proper count for food and drink. Food and drinks will be provided.

 

We have two great Microsoft MVPs presenting! We'll be covering all things EMS!

 

Jason Sandys, Enterprise Mobility MVP, has 20+ years of experience in a wide range of technologies, environments, and industries and extensive knowledge in implementing and supporting all things SMS and Configuration Manager beginning with SMS 2.0. He is a co-author for System Center Configuration Manager 2012 R2 Unleashed, System Center Configuration Manager 2012 Unleashed, a contributing author to System Center Configuration Manager 2007 Unleashed, and is a frequent presenter at Microsoft events, as well as various other community events and user-groups world-wide. Jason blogs atblog.configmgrftw.com and is active in the online support community.

 

Kent Agerlund, Coretech Global - Chief Technical Architect, Configuration Manager MVP. Microsoft Certified Trainer and senior consultant. Kent has worked with SMS since 1997 and as a trainer/consultant since 1992. Co-founder of System Center User Group Denmark in 2009.

 

Our sponsor this month is Coretech Global

With remaining time we'll take questions on anything else, including CM!

 

 Eventbrite - February 2014 MNSCUG Meeting

 

See you there!