Thant Zin Phyo

 Automatic MDM enrolment means when a Windows device joins Entra, the device will automatically be enrolled into Intune with the MDM enrollment flow. To configure automatic Windows enrollment, follow these steps: 1.  In the Microsoft Intune admin center, go to Devices | Windows | Windows enrollment followed by Automatic Enrollment: Figure : Microsoft Intune admin center – Windows automatic MDM enrollment User enrollment can also be scoped to a group of users, if all your users have an Intune license assigned. The best option is to leverage Intune enrollment restriction to configure which Windows devices a user can enroll. 2.  Make sure to select All for MDM user scope: Figure : Microsoft Intune admin center – MDM user scope Here’s what all the options for MDM user scope mean:                •  None: MDM automatic enrollment is disabled.                •  Some: Select the gr...

  Introduction In this blog post, I will cover one remaining AWS service, AWS Inspector, for native vulnerability management. The Terraform resources for Inspector are a bit quirky, so I will show some slightly more advanced techniques to keep the configuration neat and configurable. With that said, let's review the objective. About the use case Amazon Inspector  is a vulnerability management service that continuously scans AWS workloads for software vulnerabilities and unintended network exposure. Supported compute services include Amazon EC2 instances, container images in Amazon ECR, and AWS Lambda functions. Similar to other AWS security services, Inspector supports  managing multiple accounts with AWS Organizations  via the delegated administrator feature. Once an account in the organization is designated as a delegated administrator, it can manage member accounts and view aggregated findings. Since it is increasingly common to establish an AWS landin...