Sunday, November 19, 2017

Monday, November 13, 2017

Microsoft 365 Application Management for Windows 10 mappings

I wrote a previous article that showed the mapping from the Microsoft 365 Business Windows 10 Device Configuration settings to those in the Intune console in Azure. You can read that article here:

Microsoft 365 Windows 10 Device Management settings

What I am now going to cover is the Application Management for Windows 10 policy. That is the software and information that resides on Windows 10 devices.


Start by navigating to the Admin center in your Microsoft 365 Business tenant.


Locate the Device policies tile and select it.


You may see a number of policies here but one should be named Application Management for Windows 10 as shown above. Select this.


If the policy doesn’t exist you can create a new one. When you do you will see the above settings.

If you expand the display for each option you should see a list of all the options and their status as shown above.

The question now is, how do these map to settings in Intune?

To view the settings in Intune you’ll need to login to the Azure portal for that tenant and then navigate to the Intune option.


The easiest way to find the Intune settings is to do a search in the top right and then select Intune from the results.


You should see the Intune console displayed as shown above.


From the menu, under the Manage section, select Mobile apps.


From here select the App protection policies option under the Manage section. This should display a policy on the right that matches the one you have in the Microsoft 365 Business console (here Application Management for Windows 10). Select the policy name to continue.


You will notice that when you create a new Application Management for Windows 10 policy that you have the option to set Encrypt work files to be on or off.


However, after you set it to on and save the policy you can’t change it to off as shown above. Thus, once Encrypt work files is set to on, it stays and can’t be changed.


This setting maps to the Windows Information protection mode in the Required settings of the Application Management policy in Intune as shown above.


When Encrypt work files is set to on, the option in Intune is set to Block. This basically prevents Office 365 data from being used in non Office 365 applications on Windows 10. Thus, you can’t save an Office 365 file to a consume storage platform like Google Drive.


When Encrypt work files is set to off, the option in Intune is also set to off as shown above. Thus, Office 365 files can be shared with any application.


If the option to Prevent users from copying company data to personal files and force them to save work files to OneDrive for Business is set to on, then I can ‘t see how this is enforced by the policy as there doesn’t appear to be any settings for this like there is with iOS and Android policies. I’ll need to investigate this one further.


The next setting is Manage how users access Office files on mobile devices.



If the Require a PIN or fingerprint to access Office apps is set to on, the use Windows Hello for Business as a method of signing into Windows in the Access section of the Advanced Settings of the policy is also set to on as shown above.



The Microsoft 365 Business policy options Reset PIN when login fails this many times and Require users to sign in again after Office apps have been idle for settings are located at the bottom of this same policy as shown above.


The next option Recover data on Windows devices appears to map to the Data protection area of the Intune policy.


I haven’t quite worked this setting out yet. I’m unsure whether you need to upload your certificate BEFORE you apply the policy to machines or you can do it at any time AFTER the policy has been applied. One would think that you need to do it BEFORE and retain the certificate to decrypt files later. However, I need to dig deeper here and do a follow up article.



The Protect additional network and cloud locations in Microsoft 365 Business option maps to the following areas in Intune policy.


The final option, Files used by these apps are protected


map to



the Protected Apps area of the policy as shown above.

Remember, there is a similar policy for both iOS and Android that I’ll cover soon. There are also a few things here I need to do more research on but you should now have a better idea of how the Microsoft 365 Business settings map to Intune.

Also, as I understand it, you can’t make changes to the policies in Intune, they all need to be done via the Microsoft 365 Business console.

So, when you create a Application management for Windows 10 policy in Microsoft 365 Business, these are the mapping that occur to Intune under the covers.

Saturday, November 11, 2017

Lest we forget

One hundred years ago today, in 1917, the Australian troops fighting on the Western Front had just emerged from the blood bath of Passchendale. These battles had cost over 38,000 Australian lives and achieved very little. In 1917 alone, Australian losses totalled around 55,000.

Since the 31st of July the British Forces in France (including the ANZACS) had suffered 448,615 casualties for only 130 square kilometres of ground, while only inflicting 217,700 German casualties. By the end of November 1917 the Boshevik revolution had played out and ultimately led to the withdrawal of Russia from the war allowing Germany to focus all eastern front armies at France. These would fall upon the British lines in March 1918 and wipe away most of the prior gains secured by the Allies. Times were grim.

In fact, early 1918 would stretch the Allied armies to breaking point as Germany attacked but ANZAC troops would once again distinguish themselves in a town called Villers Bretonneux. This small village in northern France has never forgotten what the Anzacs did in turning the German tide and neither should we.

We should not forget the sacrifice these, and all Australians who go into harms way, make to protect us. Some pay the ultimate price and never return. Others return but live with the horrors of war for the rest of their lives. Luckily, most of us will never have to experience this because someone else had the courage to do it for us.

On the 11th hour, of the 11th day of the 11th month we pause and remember them. We thank them for their sacrifice. Without them, we would not live in the lucky country.

Lest We Forget.

For more information on the Australian battlefields of World War One wish my webite

Wednesday, November 8, 2017

Thoughts on being a modern IT Professional

Here’s a presentation that I gave recently on being a “Modern IT Professional”.

The skills required to successfully manage IT have been shifting for a number of years now. Do you know what major expertise will be required to successfully support customer IT systems in the future? How do you go about not only acquiring these, but also maintaining them in the fast paced, ever changing, environment of tomorrow? This session will arm you with the technical and personal capabilities you'll need to master into the future to ensure you have a long, fruitful, successful and most importantly, profitable career.

Tuesday, November 7, 2017

So you wanna buy Bitcoin?

A lot of people have become very interested in Bitcoin thanks to its recent run up in price. Many are also interested to dip their toe into this new world of the ‘Internet of money’. So how do you go about actually buying (and potentially selling Bitcoin)?

You are going to start out wanting to exchange your dollars for Bitcoin. This means you’ll need to take some money out of your own personal wallet and look for someone to sell you Bitcoin. You could wander the street looking for someone to sell you some Bitcoin but the chances of you finding someone are pretty slim. That means you’ll need to go to an exchange which brings buyers and sellers of commodities (in this case Bitcoin) together.

Of course all of this exchange stuff is now done electronically, so the first step is that you’ll need to sign up to a Bitcoin exchange.

There are lots of exchanges around the world that will allow you to purchase Bitcoin however my choice is:

I like them because they are local here in Australia and are part of the Australian Digital Commerce Association. You can of course choose any exchange you wish but my advice would be to do some searches for reviews on the Bitcoin exchange before you sign up. Remember, that although Bitcoin exchanges are ‘like’ normal stock exchanges in the functions they perform, they are not as regulated and consumers are not as well protected. Don’t overlook what happened at the Mt Gox exchange a few years ago. So, as with anything Bitcoin, do your homework first.

The above video will show you the process of setting up and account and buying Bitcoin via BTC markets. The process will be very similar on whatever Bitcoin exchange you choose.

When you set up an account at an exchange you’ll need to:

1. Provide proof of you identity. This can be done via submitting a utility bill that contains your details which will then be reviewed by a real person.

2. Set a login and password. Make sure that both of these are strong and that you record these somewhere safe. It is also recommended that you enable two factor authentication on your login to increase its security. Two factor simply means you’ll need to enter your password and typically a randomly generated code from an app on your phone to gain access to your account. This means if your password is ever stolen access till won’t be granted unless the code generator is also available. Again, make sure you copy everything you do here to a safe location.

You’ll next need to transfer funds into you new Bitcoin exchange account so you can buy Bitcoin on the market. There are various way to do this but some form of electronic transfer from your bank account is probably the easiest and cheapest. Also keep an eye on the cost of these transfers as they can eat into you funds, especially if you are only starting out with a small investment (which is recommended).

So now you should have a Bitcoin exchange account as well as some funds in that account. Next step, is to actually purchase Bitcoin. To do this you basically place an order on the Exchange to buy Bitcoin. You can purchase Bitcoin up to the amount of funds you have in the exchange.

There are typically two ways to order on an exchange. ‘At Market’ means you will simply purchase Bitcoin at whatever the market is willing to sell it to you for. These trades are usually executed immediately and happen at the current trading price of Bitcoin. ‘At Limit’ means you set a price at which you are willing to buy Bitcoin. Until someone is found willing to sell you Bitcoin for this amount a trade will not execute.

Thus, think of an ‘at market’ purchase as an immediate buy order and ‘at limit’ as waiting for a set price. Most people will execute ‘at market’ so they can obtain Bitcoin as soon as possible.

All things going well, the exchange will match a Bitcoin seller with your request to buy Bitcoin and the trade will be made. There will also typically be a small transaction fee associated with this trade (a commission for the exchange to facilitate the process).

Now your exchange account will have the funds you deposited withdrawn (and sent to the Bitcoin seller) and you will receive an amount of Bitcoin in return (from the Bitcoin seller). Congratulations, you are now the proud owner of Bitcoin. Welcome to the Internet of Money.

Your Bitcoin funds reside inside a digital wallet at the exchange. This wallet is provided to you generally free of charge by the exchange. It is however best practice to transfer your Bitcoin from the exchange wallet to a wallet you control.

As with Bitcoin exchanges, the range of Bitcoin wallets is vast. Again, it is important to do your research here and find a digital wallet that suits you. My choice was:


The reason I chose two is that I wanted one wallet on my desktop (Exodus) and one on my mobile devices (Airbitz). Some wallets support both environments, some don’t. At the end of the day you can have as many wallets as you wish and transfer funds between them as you see fit.

I won’t cover setting up a digital wallet here because it is generally pretty straight forward. However, what I will say is make sure you document EVERYTHING about the setup of the wallet and understand how to BACKUP and RESTORE it because once your funds are in that personal wallet you are solely responsible for the safety of that wallet. Lose access to that wallet and you lose access to your funds. So, backup, backup and backup again.

The main reason I wanted my own wallet is so that I am in full control of my funds and also that exchange wallets are a honey pot for those trying to steal money. If an exchange has lots of customers, most of whom leave their money in exchange wallet, then that is a very juicy target for hackers. Again, lessons from history see Mt Gox.

Your personal digital wallet will have a string of digits like so:


that is the transfer address you use to move you funds from the exchange wallet to your personal wallet. Make sure you get that transfer address correct because once you transfer any funds, even incorrectly, they are GONE. Remember, because this is still new technology, there are not a lot of default safety nets here. The emphasis falls on YOU to check everything. In theory, this default protection is what you pay for when you use the traditional banking system but why should you pay for that if you can do it yourself?

After a few minutes you should see that your personal digital wallet has the funds you transferred form the exchange wallet. Be patient, the transfer can take 10 or so minutes to complete.

If you wish to buy more Bitcoin you add more funds to you exchange account, go to the market and purchase more. To sell Bitcoin, you transfer from your personal wallet back to the exchange and then sell on the market.

All of this is a little technical but it is certainly getting much easier. In summary then you need to:

1. Set up an account on a Bitcoin exchange

2. Transfer funds into your exchange account

3. Buy Bitcoin on the market at the exchange

4. Transfer the Bitcoin to your own personal digital wallet (recommended)

Hopefully, that will get you started in the world of cryptocurrency. make sure you do your research when it comes to both exchanges and wallets before you proceed. I’ll go into more depth on all of these topics soon so watch out for more articles from me on Bitcoin, blockchain and cryptocurrency.

Monday, November 6, 2017

CIAOPS Need to Know Azure Webinar–November 2017


We’ll cover the usual news and updates from everything Azure and then do a deep dive into Azure Virtual machines. Of course, you can bring along all your questions as well and I’ll do my best to answer them for you.

You can register for free at:

November Azure Webinar Registrations

The details are:

CIAOPS Need to Know Azure Webinar – November 2017
Friday 1st of December 2017
2pm – 3pm Sydney Time

All sessions are recorded and posted to the CIAOPS Academy.

There of course will also be open Q and A so make sure you bring your questions for me and I’ll do my best to answer them.

The CIAOPS Need to Know Webinars are free to attend but if you want to receive the recording of the session you need to sign up as a CIAOPS patron which you can do here:

or purchase them individually at:

Also feel free at any stage to email me directly via with your webinar topic suggestions.

I’d also appreciate you sharing information about this webinar with anyone you feel may benefit from the session.

CIAOPS Need to Know Office 365 Webinar–November 2017


November is once again super busy but I’m still going to give my monthly webinar focused on Office 365. I am scheduling this month’s free Office 365 webinar on Friday the 1st of December from 11am – 12pm. There is lots of news to cover (especially from the upcoming Microsoft Summit in Sydney) and we’ll also be doing a deep dive into SharePoint best practices. Not a session to miss.

You can register for free at:

November Webinar Registrations

The details are:

CIAOPS Need to Know Webinar – November 2017
Friday 1st of December 2017
11am – 12am Sydney Time

All sessions are recorded and posted to the CIAOPS Academy.

There of course will also be open Q and A so make sure you bring your questions for me and I’ll do my best to answer them.

The CIAOPS Need to Know Webinars are free to attend but if you want to receive the recording of the session you need to sign up as a CIAOPS patron which you can do here:

or purchase them individually at:

Also feel free at any stage to email me directly via with your webinar topic suggestions.

I’d also appreciate you sharing information about this webinar with anyone you feel may benefit from the session.