IMDM1MTMaster ClassMT-IMDM11.0<p>After completing this workshop, participants will have knowledge in the following areas:</p> <ul> <li>Setup and operation of hybrid Microsoft Entra ID environments for the Windows and macOS platforms</li><li>Implementation of various enrollment strategies for Windows and macOS</li><li>Automated device management with Windows Autopilot and Apple Business Manager</li><li>Extended compliance and conditional access strategies, cross-platform</li><li>PowerShell-based automation and community tools</li></ul><h5>Required:</h5><ul> <li>Sound Windows 10/11 Administration</li><li>Active Directory Domain Services experience</li><li>PowerShell basic knowledge</li><li>Basic understanding of network and PKI</li></ul><h5>Recommended:</h5><ul> <li>Microsoft 365/Microsoft Entra ID experience</li><li>Group Policy Management knowledge</li><li>SCCM/Configuration Manager Background</li></ul><ul> <li>IT professionals who want to manage end devices centrally with Intune</li><li>System Engineers with a focus on Modern Device Management</li><li>People migrating from traditional MDM solutions to Microsoft Intune</li><li>IT consultants who carry out Intune implementations in the desktop area</li><li>Mobile device managers who want to expand their desktop skills</li><li>This workshop is aimed at experienced IT professionals who want to master the desktop focus of modern device management.</li></ul><ul> <li>Microsoft 365 Tenant Setup for Desktop Management</li><li>Hybrid Identity with Entra Connect</li><li>Device Identity Strategien</li><li>Windows Autopilot Deployment</li><li>Windows Configuration Management</li><li>Application Deployment for Windows</li><li>Apple Business Manager Integration</li><li>macOS Enrollment and Management</li><li>Cross-Platform Compliance and Security</li></ul><h4>Tag 1: Foundation &amp; Hybrid Identity</h4><h5>Microsoft 365 Tenant Setup for Desktop Management</h5><ul> <li>Microsoft Entra ID Tenant configuration and licensing</li><li>Intune Service Setup and DNS-Integration</li><li>Integration with existing AD DS environments</li></ul><h5>Hybrid Identity mit Entra Connect</h5><ul> <li>Password Hash Sync vs. Passthrough Authentication</li><li>Microsoft Entra Connect Health Monitoring</li><li>Seamless SSO configuration for Windows and macOS</li><li>Troubleshooting synchronization problems</li></ul><h5>Device Identity Strategies</h5><ul> <li>Microsoft Entra ID Registration vs. Entra ID Domain Join</li><li>Hybrid Entra ID Join implementation</li><li>Device-based Conditional Access Policies</li><li>Kerberos authentication in hybrid scenarios</li></ul><h4>Day 2: Windows Management Basics</h4><h5>Windows Autopilot Deployment</h5><ul> <li>Hardware Hash Import and Device Registration</li><li>Self-Deploying Mode and User-Driven Deployment</li><li>Autopilot Reset and Reprovisioning</li><li>Windows Autopilot device preparation (Autopilot V2)</li></ul><h5>Windows Configuration Management</h5><ul> <li>Settings Catalog for Windows 11 specific settings</li><li>Security Baselines Implementation</li><li>Windows Update for Business Integration</li><li>Custom Configuration Service Provider (CSP) Policies</li></ul><h5>Application Deployment for Windows</h5><ul> <li>MSI, Store and Win32 App Deployment</li><li>PowerShell Script Deployment with Intune Management Extension</li><li>Microsoft Store App Management</li><li>App Installation Monitoring and Reporting</li></ul><h4>Day 3: macOS Management &amp; Cross-Platform Security Features</h4><h5>Apple Business Manager Integration</h5><ul> <li>Apple Business Manager Account Setup</li><li>Apple Push Certificates Management</li><li>Device Enrollment Program (DEP) Konfiguration</li><li>Volume Purchase Program (VPP) for app licenses</li></ul><h5>macOS Enrollment and Management</h5><ul> <li>Automated Device Enrollment (ADE) for macOS</li><li>User Enrollment vs. Device Enrollment Strategies</li><li>macOS Configuration Profiles</li><li>Shell Script Deployment for macOS</li></ul><h5>Cross-Platform Compliance and Security</h5><ul> <li>Unified Compliance Policies for Windows and macOS</li><li>Conditional access for both platforms</li><li>BitLocker and FileVault Management</li><li>Certificate-based Authentication (SCEP/PKCS)</li><li>Microsoft Defender for Windows and macOS</li></ul>After completing this workshop, participants will have knowledge in the following areas: - Setup and operation of hybrid Microsoft Entra ID environments for the Windows and macOS platforms - Implementation of various enrollment strategies for Windows and macOS - Automated device management with Windows Autopilot and Apple Business Manager - Extended compliance and conditional access strategies, cross-platform - PowerShell-based automation and community toolsRequired: - Sound Windows 10/11 Administration - Active Directory Domain Services experience - PowerShell basic knowledge - Basic understanding of network and PKI Recommended: - Microsoft 365/Microsoft Entra ID experience - Group Policy Management knowledge - SCCM/Configuration Manager Background- IT professionals who want to manage end devices centrally with Intune - System Engineers with a focus on Modern Device Management - People migrating from traditional MDM solutions to Microsoft Intune - IT consultants who carry out Intune implementations in the desktop area - Mobile device managers who want to expand their desktop skills - This workshop is aimed at experienced IT professionals who want to master the desktop focus of modern device management.- Microsoft 365 Tenant Setup for Desktop Management - Hybrid Identity with Entra Connect - Device Identity Strategien - Windows Autopilot Deployment - Windows Configuration Management - Application Deployment for Windows - Apple Business Manager Integration - macOS Enrollment and Management - Cross-Platform Compliance and SecurityTag 1: Foundation & Hybrid Identity Microsoft 365 Tenant Setup for Desktop Management - Microsoft Entra ID Tenant configuration and licensing - Intune Service Setup and DNS-Integration - Integration with existing AD DS environments Hybrid Identity mit Entra Connect - Password Hash Sync vs. Passthrough Authentication - Microsoft Entra Connect Health Monitoring - Seamless SSO configuration for Windows and macOS - Troubleshooting synchronization problems Device Identity Strategies - Microsoft Entra ID Registration vs. Entra ID Domain Join - Hybrid Entra ID Join implementation - Device-based Conditional Access Policies - Kerberos authentication in hybrid scenarios Day 2: Windows Management Basics Windows Autopilot Deployment - Hardware Hash Import and Device Registration - Self-Deploying Mode and User-Driven Deployment - Autopilot Reset and Reprovisioning - Windows Autopilot device preparation (Autopilot V2) Windows Configuration Management - Settings Catalog for Windows 11 specific settings - Security Baselines Implementation - Windows Update for Business Integration - Custom Configuration Service Provider (CSP) Policies Application Deployment for Windows - MSI, Store and Win32 App Deployment - PowerShell Script Deployment with Intune Management Extension - Microsoft Store App Management - App Installation Monitoring and Reporting Day 3: macOS Management & Cross-Platform Security Features Apple Business Manager Integration - Apple Business Manager Account Setup - Apple Push Certificates Management - Device Enrollment Program (DEP) Konfiguration - Volume Purchase Program (VPP) for app licenses macOS Enrollment and Management - Automated Device Enrollment (ADE) for macOS - User Enrollment vs. Device Enrollment Strategies - macOS Configuration Profiles - Shell Script Deployment for macOS Cross-Platform Compliance and Security - Unified Compliance Policies for Windows and macOS - Conditional access for both platforms - BitLocker and FileVault Management - Certificate-based Authentication (SCEP/PKCS) - Microsoft Defender for Windows and macOS3 jours3290.003290.003290.003290.00