I wondering if you can use the info for filtering or dynamic group, like all devices that has BIOS version X. And it would be nice to see if Secure Boot is enabled, the compliance policy is sometimes inaccurate.
agree 100% would be nice if Secure Boot is enabled or not was visible under the BIOS node. My take on Intune and groups is that Dynamic Groups are nearly worthless, I create static groups and make them dynamic by running PowerShell scripts and read MS Graph and update based on attributes, in this case Device Inventory attributes. That is my planned next long series of videos on this channel also, using API/MS Graph to do some cool stuff, but going very slowly and explain all steps easily for those who never used it.
Oh that is very interesting. I checked 4 random DLLs in C:\Program Files\Microsoft Device Inventory Agent\InventoryService and all were signed, could you please let me know one DLL you found that was not signed?
super useful! looking forward to more great videos!!!!!
Thanks a lot for your comment and more videos are coming in January for sure, see if more in December, depends on time :)
Nice! Thank you for the info!
Thanks a lot for taking time to comment
Super Sir, Thank you :)
Thank YOU so much for taking time to watch and comment
I wondering if you can use the info for filtering or dynamic group, like all devices that has BIOS version X. And it would be nice to see if Secure Boot is enabled, the compliance policy is sometimes inaccurate.
agree 100% would be nice if Secure Boot is enabled or not was visible under the BIOS node.
My take on Intune and groups is that Dynamic Groups are nearly worthless, I create static groups and make them dynamic by running PowerShell scripts and read MS Graph and update based on attributes, in this case Device Inventory attributes. That is my planned next long series of videos on this channel also, using API/MS Graph to do some cool stuff, but going very slowly and explain all steps easily for those who never used it.
Since we activated Device Inventory, WDAC has been going crazy. Tons of unsigned Microsoft .dlls. :/
Oh that is very interesting. I checked 4 random DLLs in C:\Program Files\Microsoft Device Inventory Agent\InventoryService and all were signed, could you please let me know one DLL you found that was not signed?