Thant Zin Phyo

 You can use custom images (also referred to as a golden image) if desired. To do so, you need to pre- load your images via Azure as a Managed Image or the Shared Image Gallery. To learn more about creating custom images with Windows 365, see https://learn.microsoft.com/en-us/windows-365/ enterprise/add-device-images. To get the benefits, like simple and unified management options of modern management, we strongly recommend using the gallery images included in Windows 365 and using Intune to install applications. While in VDI, you may have updated your image on a weekly basis, using a gallery image eliminates the challenge of repeatedly updating your custom image whenever a single component changes. All images will be updated monthly by Microsoft at patch Tuesday. We recommend customers use Win- dows Autopatch to simplify Windows Updates in conjunction with Windows 365. Figure : Selecting Windows 365 images Thant Zin Phyo@Cracky (MCT, MCE, MVP)

 Microsoft Intune is an integrated solution that simplifies management across multiple OSs, cloud, on-premises, mobile, desktop, and virtualized endpoints including Cloud PCs, and it lowers the Total Cost of Ownership (TCO). It empowers organizations to provide data protection and endpoint com- pliance that supports a Zero-Trust security model. This unified management tool brings together device visibility, endpoint security, and data-driven insights to increase IT efficiency and improve user experiences in any work environment. Figure : The path to modern IT Thant Zin Phyo@Cracky (MCT, MCE, MVP)

 In this article, we will see how to create enrollment restrictions for Windows devices: 1.  Sign in to the Microsoft Intune admin center (intune.microsoft.com).  2.  Select Devices | Enrollment device platform restrictions: Figure : Admin center – Enrollment device platform restrictions 3.  Create a restriction. Enter Device type restriction – HR as the name: Figure : Admin center – enrollment restrictions 4.  Select the block and allow both for MDM and personally owned devices to allow or block Windows enrollment. If you are allowing Windows (MDM) platform enrollment, you can block personal devices; see the following section to understand what blocking personal Windows devices means. Allow min/max range for the OS version only blocks devices on enrollment and has no effect on devices already enrolled into Microsoft Intune; enrollment restriction is only validated on enrollment. Figure : Command Prompt – ver 5. For the Assignments step, select HR Departmen...

Name resolution scenarios and options DNS servers host records that translate human-readable domain names into machine-readable IP addresses (used by computers to communicate with each other). For example, Figure shows the DNS server for the azurecourses.xyz domain zone, which has a single A record that translates the www.azurecourses.xyz hostname into the IP address 1.2.3.4. Clients that want to communicate with the web server called www.azurecourses.xyz can make a DNS request to their DNS resolver to translate the name into an IP address. The DNS resolver will then go through an iterative process to make a record request to the DNS server. Figure – DNS server and name resolution To facilitate network communications, there are two name resolution scenarios that we will cover: Internal name resolution: Providing name resolution for private/internal clients hosted in our virtual networks External name resolution: Providing name resolution for public/internet clients that need to access ...