Category: IT

Moving Windows Recovery Partition Correctly

Recently I needed to expand a disk on a Windows 10 VM and a Windows Server 2022 VM, but I couldn’t because the Recovery Partition was in the way. When searching for a way to do this I discovered that the internet is full of posts about simply deleting the Windows Recovery Partition. I am…

Microsoft 365 Enable Organization Customization

Right out of the box the initial configuration of Microsoft 365 (aka Office 365) isn’t bad, but there’s a lot more you can do to harden it and to make it fully yours. By default all Microsoft 365 tenants are in a state that is called dehydrated. Microsoft places all the tenants in this state…

Intune Silently Enable BitLocker

When you are managing devices with Microsoft Intune aka Microsoft Endpoint Manager it’s great to control BitLocker but silently enabling BitLocker for all devices is even better. Here is everything you need to know to silently enable BitLocker with Intune. Disk Encryption Policy Profile First up we need to create a disk encryption policy profile…

Onyx (MLNX-OS) BIOS Password Reset

Recently I’ve been playing with some Nvidia/Mellanox switches specifically the SN2410. An issue that I ran into was that I didn’t have the BIOS password. All of the documentation says that the default BIOS password is admin. That password did not work on my switch. You can absolutely use the switch even without the BIOS…

Intune Dynamic Device Groups

Intune aka Microsoft Endpoint Manager can be extremely powerful but as it always goes with great power comes great responsibility. To make sure I’m only targeting the devices I want, I like to make a few dynamic device groups that I’ll use for various Intune policy targeting. The dynamic device groups I create are: By…