External Users / Guests are able to bypass lobby – Microsoft Teams meeting

Microsoft Intune

Even after setting Automatically admit people to “Everyone in your organization and federated organizations” and Allow dial-in users to bypass the lobby to Off in the meeting policy, External Users or guests are able to bypass the lobby and are able to join the meeting straight through. I had to open a ticket with Microsoft after one week of troubleshooting and finally found the root cause of this and fixed it for the client. Hope this will help you too if you are facing a similar issue where third party vendor or external guest users are able to bypass the lobby even though the meeting policy is configured correctly. Below …

Read more

How to uninstall expressvpn application from Windows 10 systems using Microsoft Intune

Intune

Some of the apps are pre-installed with Windows 10 and not required by the end user. Therefore, these applications need to be removed. expressvpn 7.12.1.4 is one of the application. The below steps can be followed to uninstall any version of expressvpn installed on windows 10 systems. expressvpn app is not available from Microsoft store for business, therefore it cannot be synced from Microsoft Store for Business portal to Endpoint manager and target for un-installation. We need to create a Win32 app package to uninstall this app. Below process of uninstallation can be followed for applications other than expressvpn as well, just check the silent install / uninstall switches for …

Read more

The System administrator has set policies to prevent this installation

The System administrator has set policies to prevent this installation

I received an error while installation of an application with .msi extension. “The System administrator has set policies to prevent this installation“. Below screenshot is popped up from windows installer, even though i am logged on to the PC using local administrator credentials. Solution Right Click on Enforcement and click Properties. Select “All users except local administrators“. Click on OK to exit.

Deploying MSI Application on Windows 10 workstations using Microsoft Intune

Intune

There are numerous ways to deploy an app on Windows 10 workstation. I will be deploying an application using MSI Installer provided by the vendor. Download the application MSI Installer file from the Vendor web site and follow below process to deploy it on the target computers. I will be using Line of Business apps Deployment method of Microsoft Intune for this deployment. Line-of-business (LOB) apps and Microsoft Store for Business apps are the app types supported on Windows 10 devices. The file extensions for Windows apps include .msi, .appx, and .appxbundle. 1. Login to Microsoft Endpoint Manager admin center (https://endpoint.microsoft.com). 2. Go to Apps -> All Apps -> click …

Read more

Renew Apple MDM Push Certificate for Microsoft Intune Apple Enrollment

Intune

When you configure Apple enrollment on Microsoft Endpoint Manger (https://endpoint.microsoft.com), you must have configured Apple MDM Push certificate which is a prerequisites for configuration of Apple enrollment for Microsoft Intune. The certificate expiry is normally 365 days and when its near its expiry date you get notified 30 days and then 10 days before. If you do not renew the certificate and it gets expired then a new certificate will need to be generated and installed which will require all the apple devices to get re-enrolled. Therefore, its easier to just renew the certificate before expiry date. I will suggest to note down the certificate expiry date and add a …

Read more

Unable to change the Coexistence mode from Islands to Teams Only

Microsoft Intune

If you have upgraded your Skype for Business users to Teams and want to update the Teams co-existence mode to “Teams Only” so that users can only use Teams but still join meetings hosted in Skype for Business. To change the coexistence mode. Open Teams Admin Portal -> Org-wide settings -> Teams upgrade Change the co-existence mode to “Teams only”. You may get below error as we see in the below screenshot. There is not much information on this portal to troubleshoot this issue. However, we will try using powershell to set the co-existence mode to “Teams only” mode to see if we get more information on the console. Using …

Read more

Download Certificate from NetScaler in PFX Format

Once the certificate has been uploaded on the NetScaler in .crt and .key. Its very easy to download it back in the PFX format from the NetScaler. Please follow the below steps and download the certificate along with Private Key. Once Exported, you can save the Password Protected PFX in a secure location. Steps:

Exchange 2010 or Exchange 2013: Event ID 2142: Process STORE.EXE (PID=6276). Topology discovery failed, error 0x8007077f.

Issue Description Unable to start the Exchange 2010 or Exchange 2013 Services and it just gets stuck at the Starting status. You restart the Server multiple times but the status is still the same. Also, when you try to connect to the exchange management console, you are unable to connect and when trying from Exchange Management Shell you get below error in the screenshot. Well, your clue to fix the issue is in below screenshot as well which i have highlighted with yellow box which says 1. “The computer is not in a site.” 2. “WARNING: No Exchange servers are available in the Active Directory site. Connecting to exchange server in another …

Read more

Office 365 User Provisioning Issue [Unable to create user’s mailbox]

Issue Description When a new user is created in On-Premise active directory which is then synced to Azure AD and a license has been assigned to the user, you get the error: This user’s on-premises mailbox hasn’t been migrated to Exchange Online. The Exchange Online mailbox will be available after migration is completed. Also, you see that the Mailbox is not created for this user in Exchange Online(EXO). Solution: a) Remove msExchMailboxGuid attribute value from the On Premise Active Directory User. b) Remove msExchRecipientDisplayType attribute value. c) Remove msExchRecipientTypeDetails attribute value. d) Move the user to an OU in Active Directory which is not getting synced to Azure Active Directory and run Delta Sync. e) After the …

Read more