Introducing the Microsoft Inclusive Tech Lab

Posted on by
1

As we all know, over the years Microsoft has already put in a lot of work towards the development of more inclusive solutions for all its customers. So when we talk about the Microsoft Inclusive Tech Lab, we’re not talking about something new but rather a significant update on the lab that had previously been at the center of this work. 

According to Microsoft, this new lab which is designed “to learn and develop specifically for people with various types of disabilities” will provide a facility that can greatly enhance the work being done to provide more inclusive solutions. In this blog, I will take an in-depth look at this new Microsoft Inclusive Tech Lab and what it could mean for inclusivity going forward. 

Why we need inclusive solutions

In this modern era that we live in, no one can deny the significance of technology in all our lives. Regardless of which sector we can look at. Whether it’s the health sector, education, engineering, etc. The applications of various types of technology are limitless in any sector.

And this is exactly why it’s important to ensure that technology can be accessible to everyone. So what do we imply when we say “inclusive technology?” Simply put, all this refers to is ensuring that the technology available is accessible to everyone including groups that may previously have had difficulty accessing it such as those living with disabilities.  

By having facilities such as the Microsoft Inclusive Tech Lab, we will witness significant strides being made in providing inclusive technology solutions for everyone. And this is something that would be crucial not just in the work environment but beginning in early education. 

This will help to provide all students with a similar platform for engaging with learning material and enhancing the learning experience. With a setup like this in place, we can expect to see the benefits of this go beyond the educational phase and into the work environment.  

Introducing the Inclusive Tech Lab

Arguably the most important aspect of the Microsoft Inclusive Tech Lab is that it not only develops inclusive solutions but that these solutions are made by people living with disabilities. As such, the objective for Microsoft is to show just how great the potential can be when you bring in people with disabilities in the development process. 

The facility itself is a representation of how committed Microsoft is to developing inclusive solutions. Especially when considering how sensitive a lot of individuals may be to their environment. This then creates the ideal environment where introductory tours and collaborative workshops can be held to further the work being carried out.

The lab gives you an opportunity to view just how Microsoft’s products as well as those of its partners can work together to good effect. Therefore, this is the place to go when searching for the best assistive solutions that Microsoft and its partners are putting together. 

This kind of work clearly demonstrates how Microsoft and its partners are determined to ensure that the fruits of all their development work can benefit all who require access. Expanding the realm of possibilities can significantly alter what the future of the technology industry can look like.

According to Microsoft:

The space is purpose-built to continue this work. It is highly modular and will adapt to specific needs over time and across different projects, allowing discussion and design sessions on products and services intended for home, the workplace, schools, and remote connections. It is a place designed to demonstrate what is possible when you intentionally and proactively include people with disabilities in the product-making process and strive to build products that are genuinely inclusive by design.

The Inclusive Tech Lab is intended to be an embassy for people with disabilities, not a space about them. It will include a showcase of Microsoft’s accessible hardware, software, and services, as well as experiences created by our partners. Primarily, however, it is an inclusive design incubator where Microsoft and disability communities can ideate and evaluate product design and direction. It is a space where our designers can challenge assumptions while learning to recognize the exclusions and constraints faced by people with disabilities. We harness that understanding to create new ideas, designing for “one” and extending to many.”

Inclusive involvement

The teams of individuals working on various projects are encouraged to use the ideas they have received from people with disabilities and find ways to apply them to the technologies they are working on. By providing teams with this lab and all its capabilities, the people here literally have the sky as the limit. They can imagine and work on ideas that are driven toward making a fully accessible environment for everyone across the globe. 

The full involvement of people with disabilities means that the Microsoft Inclusive Tech Lab seeks to do more than just create a product. As good as that may be, the project wants those working on solutions to be able to relate on a deeper level to those who they are designing products for and how it will affect their lives.  

Principles of Inclusive Design

So now that we’ve looked at why seeking to develop inclusive solutions is such an important objective, we can consider the principles that Microsoft will lean on during this endeavor. Firstly, we can talk about the recognition of exclusion. What this simply refers to is the fact that all of us, regardless of where we’re from, have our own inherent biases that determine how we view the world and therefore live our lives. 

The key then at Microsoft is to acknowledge that these biases exist and this gives you an opportunity to explore these issues. As you recognize what they are and how detrimental they’ve been, you can start engaging the affected communities and coming up with inclusive solutions to bridge all the necessary gaps.

Learning from diversity

The next principle that Microsoft looks at is that of learning from diversity. This is because there is an appreciation of just how different and divergent perspectives can positively impact a learning or work environment. We actually find that in some schools of thought, it is believed that within diverse work and learning environments cognitive skills and critical thinking can improve. 

What causes this is that the interactions that go on in these diverse communities can challenge you as an individual with different views and perspectives that you might not have previously considered. 

Therefore, Microsoft wants to have its Inclusive Tech Lab be a place that will promote learning from diversity. Especially considering the wide reach of its products and services across all continents.  

The last principle I’ll talk about is that of trying to solve challenges for one in a way that will extend to others. When looking at developing solutions from this perspective, the idea is that most people have abilities but as human beings there will always be limitations to those abilities. 

So, when we start considering creating inclusive technology solutions what we can ultimately come up with are systems that will enhance accessibility for people living with disabilities. However, we can also expect to see other users of these products being able to benefit as well. 

Microsoft’s Adaptive Accessories

At the heart of the work that Microsoft is doing with inclusive technologies are the adaptive accessories. These accessories, which have significant input from disability communities, are highly adaptable and have been designed with the intention of making them customizable to suit individual needs. The product line features an Adaptive Mouse, Adaptive Hub, and Adaptive Buttons. 

All of the accessories can be configured as necessary and will support everything. And so this includes first-party add-ons such as Thumb Supports or Mouse Tails, as well as custom 3D-printed add-ons that enhance the various use cases. These devices leverage the foundation that was laid by the Xbox Adaptive Controller and aims to eliminate the challenges that the disability community has faced with the traditional mouse and keyboard setup. 

Adaptive Hub

This product is designed to enable users to turn traditional keyboards into a central hub with several wireless buttons. It is in the form of a small, box-shaped device that is meant to enable the devices to offer accessibility. What this entails is that users can augment traditional keyboards and create custom inputs. You’ll notice that the Adaptive Hub has five 3.5mm ports, three USB-C ports, as well as a Bluetooth pairing button. The aforementioned ports are where you connect the adaptive buttons and switches. Furthermore, it can connect to your current assistive technology, such as third-party digital buttons and switches, through the 3.5mm ports.

Adaptive Mouse

This adaptable mouse is built to be accessible. You can personalize the device by attaching the Microsoft Adaptive Mouse Tail and Thumb Support. By leveraging these attachable parts, Microsoft offers users the chance to have a mouse that is designed to fit their unique needs. Also, I’m sure users will gladly discover that the adaptable and customizable attachments help to make the device lighter and more portable. Unlike other accessories, the Adaptive Mouse will connect directly to your PC. The two buttons that it has are easily clickable which adds to the ease of use. And it also features a similarly clickable scroll wheel. In addition, you get the option to configure the buttons and scroll wheel for action/function shortcuts and for both short presses and long presses. 

Adaptive Button

With the Adaptive Button, users will get a small, square-shaped wireless button. It is designed to give you eight digital inputs that can be uniquely customized in the Microsoft Accessory Center and an easy-to-press design. And each Adaptive Hub can connect with up to four Adaptive Buttons. In addition, because of the partnership with Shapeways (which is a 3D-printing company that creates other 3D-printed toppers), users can customize their devices by custom-printing their own button toppers. So, if the button toppers that Microsoft can offer you out of the box are not suitable for you then you can get something more personalized. The design of the button including its small size means that it’s relatively easy to hold and place according to your usage needs. 

Inclusive Design for Gaming

As already mentioned above, a significant amount of the work being done at the Microsoft Inclusive Tech Lab has to do with gaming consoles. There has been a growing realization of just how much need there is for inclusive solutions for gaming systems. 

For instance, the typical controller that comes with the vast majority of consoles requires two hands, two thumbs, and fine motor control for you to operate comfortably. Quite simply, this will mean the exclusion of a significant number of people who are living with disabilities. 

With this in mind, the teams of individuals working on the development of inclusive solutions need to recognize the exclusion that has existed with gaming consoles in the past. We can appreciate that these devices’ designers worked with certain assumptions about the users of these devices and how they would be using them. 

Unfortunately, that has created a scenario where plenty of potential users can use these devices but with great difficulty or may not be able to use them at all. So, Microsoft now appreciates that if users can’t use their products because of how they were designed then that creates a massive barrier. And this is what a lot of the work at the Inclusive Tech Lab is based around, developing solutions that can eliminate these barriers. 

Learning from diversity

Another important key area for gaming is learning from diversity. Microsoft has been able to do this over the years by engaging with the various gaming communities to seek their insights on a variety of issues. The teams working on these products have received feedback on the functionality of the devices, their ease of use, and any changes that users may want to see to improve accessibility. 

And all of this feedback combined with the development work being done has been central to the creation of inclusive gaming solutions such as the Xbox Adaptive Controller. Products like these will mean that can be something all users can potentially enjoy even more. 

Creating solutions that enhance inclusivity can be of great benefit to all. Why should individuals living with disabilities be restricted from the gaming experience that countless others across all continents get to enjoy? As Microsoft was working on the adaptive controller, there was a need to take into consideration the unique ambulatory abilities of users in the targeted communities. 

Not only that but looking at people’s situations such as Gamer, CareGiver, Maker, etc, allowed for the development of a product that could be tailored to address various needs. Going forward, we would fully expect the Xbox Adaptive Controller to play a key role in shaping inclusive solutions and significantly enhance the ease of use for all users. 

Inclusive Solutions

Microsoft has been working on several inclusive technologies for a while now. In fact, the Inclusive Tech Lab isn’t exactly something completely new. It’s something that the Xbox team has had in place since 2017 as they were working on the Xbox Adaptive Controller

Now, Microsoft has provided a designated space, extended the lab, and is looking to develop integrative design by working closely with the disability community. The work being done in this environment is producing a great variety of accessibility tools. In the table below we’ll go over some of the possibilities available.

Vision

Adapt Windows to your vision

  • use the available color filters
  • change the color contrast
  • make Windows easier to see
  • use Magnifier to enhance the visibility of what’s on the screen
  • use color and contrast for accessibility in Microsoft 365

Listen instead of watch

  • use Narrator to hear text read aloud
  • use the screen reader with Microsoft 365 apps
  • listen to your Outlook email messages
  • listen to your Word documents
  • converting text to speech in Excel
  • seeing AI narration (hear descriptive audio everywhere)
  • Microsoft Soundscape (experience maps in 3D sound)

Use Immersive Reader

  • use Immersive Reader in Microsoft Edge
  • open Immersive Reader for Outlook
  • use Immersive Reader in Word
  • use Immersive Reader in Microsoft Teams
  • use Immersive Reader in PowerPoint
  • use Immersive Reader for OneNote
  • use Immersive Reader in Microsoft Forms

Improve the efficiency of keyboard use

  • take advantage of keyboard shortcuts for accessibility

Hearing

Adapt Windows to your hearing

  • with mono audio, you can hear all sounds in one channel
  • change caption settings
  • make notifications stick around longer
  • display audio alerts visually

Watch instead of listen

  • instead of listening to sounds you can use text or visual alternatives
  • you can autogenerate captions for videos
  • you can use captions and subtitles during Skype calls
  • in Microsoft Teams meetings you can make use of live captions
  • add closed captions and/or subtitles to media in PowerPoint

Improve the efficiency of keyboard use

  • take advantage of keyboard shortcuts for added accessibility
  • use the Search/Tell Me feature (find the command you want)

Neurodiversity

Adapt Windows to suit your needs

  • make the Start menu simpler
  • declutter your taskbar and make it clean
  • focus on a task by minimizing distractions
  • customize the taskbar

Improve reading comprehension and writing skills

  • enable text suggestions in Windows
  • make reading easier by downloading and using fluent fonts
  • customize text spacing
  • take advantage of learning tools in OneNote
  • use Microsoft Editor to polish grammar and more

Customize your reading experience and read without distractions

  • when using Microsoft Edge, take advantage of Immersive Reader
  • use Immersive Reader in Word
  • open Immersive Reader for Outlook
  • use Immersive Reader in PowerPoint
  • use Immersive Reader for OneNote

Maintain focus and organization

  • improve your PowerPoint slides
  • by keeping your Microsoft 365 files in OneDrive you can prevent the loss of your work
  • make use of the calendar board view to organize things according to your needs
  • go paperless with Microsoft Lens

Improve the efficiency of keyboard use

  • take advantage of keyboard shortcuts for added accessibility
  • use the Search/Tell Me feature (find the command you want)

Learning

Improve writing quality

  • you can use Microsoft Editor as your writing assistant in documents, mail, on the web, etc. Also, you can use it to check your grammar, spelling, and more in Word.
  • you can type with your voice to dictate documents, to talk instead of type on your PC, as well as for troubleshooting.

Reading comprehension and skills improvement

  • use the Immersive Reader
  • practice reading fluency with the Reading Progress tool
  • if you want to eliminate distracting content from the web you can make use of the Reading view
  • hear text read out loud

Improve math skills

  • you can benefit from inclusive math interactive training
  • you can use Microsoft 365 apps to write equations or formulas
  • use Microsoft Forms to create math quizzes
  • use OneNote to create math equations
  • use OneNote Math Assistant to help you solve equations, draw graphs, and more.
  • replay ink strokes in OneNote for Windows
  • draw straight lines or measure with the ruler in OneNote

Communicate confidently with inclusiveness

  • create an inclusive communication environment. You can do this with the use of Reflect in Microsoft Teams as well as live captions during Teams events.
  • create inclusive PowerPoint presentations. This can be done by doing this such as using the Accessibility Checker to enhance accessibility and making presentations with real-time, automatic captions or subtitles in PowerPoint, among others.
  • use Microsoft Translator

Configure Windows for effective learning

  • make the Start menu simpler
  • declutter your taskbar and make it clean
  • focus on a task by minimizing distractions (Turn off animation and transparency effects)
  • use Magnifier to enhance the visibility of what’s on the screen
  • customize the taskbar
  • block alerts and notifications by using Focus assist

Mobility

Configure Windows to meet your mobility needs

  • Make your keyboard, mouse, and other input devices easier to use. You can do this by controlling your mouse pointer with the numeric keypad or making use of the Filter Keys to set the sensitivity of the keyboard, among other things.
  • As an alternative to typing on the physical keyboard, you can use the on-screen keyboard.

Type and navigate with your voice

  • use voice recognition in Windows
  • Windows Speech Recognition commands
  • dictate your documents in Word

Control Windows and apps with your eyes

  • take advantage of eye control features to enhance ease of use

Improve the efficiency of keyboard use

  • take advantage of keyboard shortcuts for added accessibility
  • use the Search/Tell Me feature (find the command you want)

Mental health

Configure Windows to meet your needs

  • make the Start menu simpler
  • declutter your taskbar and make it clean
  • focus on a task by minimizing distractions (Turn off animation and transparency effects)
  • use Magnifier to enhance the visibility of what’s on the screen
  • customize the taskbar
  • block alerts and notifications by using Focus assist
  • enable text suggestions

Improve your focus

  • using Immersive Reader can help you work with fewer distractions
  • stay on track with your tasks by creating Outlook tasks in OneNote or using the Tasks app in Microsoft Teams.
  • customize the look and feel of Office to your liking
  • use Microsoft Viva Insights to help you develop more efficient work habits

Improve the efficiency of keyboard use

  • take advantage of keyboard shortcuts for added accessibility
  • use the Search/Tell Me feature (find the command you want)

Tactile Port Indicators

Having tactile indicators placed on devices can be a great feature that can enhance ease of use for countless people. And for an example of this, we can look at the work that Microsoft has put into devices such as the Xbox Series X game console, Microsoft Audio Dock, and the Surface Thunderbolt Dock among others to improve accessibility for the visually impaired. 

The reason this came about is that when we consider a lot of devices out there, ports like the USBA and the HDMI can feel pretty similar to the touch. And so people working at the Microsoft Inclusive Tech Lab have been seeking feedback from those who are visually impaired on how best to develop a system that can offer them greater ease of use.

How it works

So how does this work exactly? Well, what this new system is designed to do is provide little bumps over the various ports on these devices to aid with discerning what’s what without the need for sight. This means you will no longer have to feel for just the shape of the ports, but with this additional system, it should become easier to determine which port is which. As we can all imagine, the potential for what this could offer visually-impaired individuals across countless devices is massive.  

It’s no surprise when you consider the devices that Microsoft has been working on initially. Gaming is a huge part of the work that takes place at the Inclusive Lab.

However, this system is something that everyone out there should be looking at considering what it offers. The objective is for the idea to grow even more and become even better because it is not meant to work alone but help improve ease of use. And ideally, it would be great to see this applied to various other types of devices so they benefit as well. 

Surface Also Making Changes

The teams working on the various Surface products have also had to look at their products and consider how they could improve accessibility. Unfortunately, the reality is that a lot of products have been previously developed without any consideration of the needs of those living with disabilities. 

For example, on older Surface devices you’ll find that F4 and mute shared a key and the only indicator for FN lock was a light. When you consider the needs of those without sight you can quickly spot how this would present challenges. When screen reader users were trying to close an app, they could inadvertently mute their PCs and thereby leave them cut off from their devices. 

Fortunately, teams working on Surface products are now developing systems that will enhance the ease of use for visually-impaired individuals. By sitting down with the blind, listening to their experiences, and hearing their suggestions, Microsoft can now come up with more inclusive tech solutions for their products. 

Going forward, starting with the Surface Laptop 3, you will see changes such as the separation of mute and F4. Additionally, FN lock is going to be made accessible via Windows Narrator and tactile bumps will be added to the F4 and F8 keys to simplify keyboard navigation. These wonderful improvements will be made to all Surface keyboards in the future as part of an ongoing effort to provide better inclusive technology. 

More is yet to come and discussions with the visually-impaired community have also uncovered the need for customizable tactile indicators. With this in mind, Microsoft has been able to develop the Surface Adaptive Kit. This is something that should enable the development of even better solutions by looking to overcome the limitations on hardware with enhanced software, better accessories, and more. 

Wrap Up

For far too long technology did not do enough to address the needs of the disability community. Plenty of individuals faced significant barriers when it came to using technology comfortably. As a giant in the tech industry, Microsoft could not ignore the responsibility. Hence, we have the Microsoft Inclusive Tech Lab. This facility is doing phenomenal work that aims to take down barriers and provide solutions that are accessible to all. And the great thing about all this is that this is not a place that simply comes up with solutions for the disability community but it has members of the community greatly involved in development. Undoubtedly, the work going on here will massively enhance technology inclusiveness going forward.

Top 10 reasons Why Windows 365 is a great choice

Posted on by
2

Windows 365 is a great choice for your business. As the world becomes more digital, it is important to have the right tools to stay productive and competitive. Subsequently, with this Windows solution, you can take your desktop anywhere you go, work from any device, and access your files and apps from anywhere with an internet connection.
Here are the top 10 reasons why Windows 365 is a game changer for businesses of all sizes:

To expand on each topic, simply click on the item.

Each topic will be released over the next couple of weeks, stay tuned for updates

  1. Secure and reliable: Windows 365 is built on top of the Azure platform, which provides top-notch security and reliability for your business. Additionally, your data is stored in the cloud and protected by Microsoft’s advanced security protocols, so rest assured knowing your information is safe.
  2. Scalable: Windows 365 allows you to scale up or down your computing power as your business grows or changes. Consequently, this means you can quickly add or remove users, adjust your storage capacity, and scale your resources according to your needs.
  3. Always up-to-date: With Windows 365, you will always have the latest version of Windows and Office applications. Moreover, this means you won’t have to worry about updates, patches, or upgrades. You’ll always have access to the latest features and improvements.
  4. Flexible pricing: Windows 365 offers flexible pricing options that allow you to pay only for what you need. You can select different plans based on the number of users, the amount of storage, and the computing power you need.
  5. Accessible from anywhere: With Windows 365, you can access your desktop and files from anywhere with an internet connection. For example, you can work from home, on the go, or from a remote location without any interruptions.
  6. Easy to set up: Setting up Windows 365 is easy and straightforward. You can quickly provision virtual machines, assign users, and set up policies and permissions. Additionally, you don’t need any special skills or knowledge to get started.
  7. Simplified management: Windows 365 offers a centralized management console that allows you to manage all your users, devices, and applications in one place. You can easily monitor performance, track usage, and enforce security policies.
  8. Collaborative: Windows 365 makes it easy for your team to collaborate and share files. You can set up shared folders, access permissions, and collaborative tools that allow your team to work together in real-time.
  9. Support for legacy applications: Windows 365 supports legacy applications that may not be compatible with modern operating systems. For example, you can continue using your existing applications without any compatibility issues.
  10. Green computing: By using Windows 365, you can significantly reduce your company’s carbon footprint and contribute to a greener planet. Since your desktop is in the cloud, you don’t need to have a physical machine running all the time. This can help reduce your energy consumption and lower your carbon emissions.

Conclusion

In conclusion, Windows 365 offers a secure, scalable, and flexible solution for businesses of all sizes. Moreover, it allows you to work from anywhere, collaborate with your team, and stay up-to-date with the latest technology. If you’re looking for a more effective way to streamline your business operations, improve your productivity, and reduce your costs, it’s definitely worth considering.

Check Autopilot Prerequisites – first update

Posted on by
1

Autopilot is an indispensable tool for managing and deploying Windows devices in the enterprise. Before deploying Autopilot, it is crucial to ensure that your environment meets the necessary prerequisites. This process can be time-consuming and prone to errors, which is why the Autopilot Prerequisite Checker has been introduced to automate the prerequisite checking process.

The Autopilot Prerequisite Checker is a PowerShell script that validates whether your environment meets the requirements for deploying Autopilot. The updated script now checks for the following prerequisites:

Tenant checks:

Check license requirements
Automatic Windows enrollment (MDM authority is set)
DNS records
Check user can join device to Azure AD
Check Enrollment Status Page
Check Windows Autopilot Deployment Profile
Check company branding

Device checks:

Windows OS version
Hardware hash uploaded to Intune
Check Windows Autopilot Deployment Profile assignment status
Updated with more devices check in version 1.0.1:
 - Windows InstallDate
 - Bios Version
 - Bios Status
 - Bios Serialnumber
 - OS Serialnumber
 - Hostname
 - Keyboardlayout
 - Timezone
 - TPM present
 - TPM Enabled
 - TPM ready

User checks:

User is licensed correctly

Network checks:

Required communication for Intune Autopilot is allowed
Updated with multiple in version 1.0.1 with more URLs

Using the script is a breeze. It can be run on any machine with PowerShell installed. Simply download the script, execute it, and wait for the results. The output will indicate whether your environment meets the necessary prerequisites for Autopilot.

Download the updated script 1.0.1

The advantages of using the updated script are numerous. It saves time by automating the prerequisite checking process, allowing you to concentrate on more crucial tasks. Additionally, it minimizes the risk of errors, ensuring that your Autopilot deployment is successful on the first attempt. Ultimately, it provides peace of mind by confirming that your environment meets the requirements for deploying Autopilot.

In summary, the Autopilot Prerequisite Checker is a robust script that simplifies the process of verifying the prerequisites for deploying Autopilot. Whether you are an IT administrator or a consultant, the Autopilot Prerequisite Checker is an essential tool for ensuring the success of your Autopilot deployment.

NOTE: THIS SCRIPT IS CONTINUALLY BEING IMPROVED – If you would like to suggest additional checks or improvements, feel free to reach out with your input.

Introducing a New Script to Check Autopilot Prerequisites

Posted on by
2

Autopilot is an essential tool for managing and deploying Windows devices in the enterprise. However, before deploying Autopilot, it’s important to ensure that your environment meets the necessary prerequisites. This can be a time-consuming and error-prone process, which is why we’re excited to introduce a new script that automates the prerequisite checking process.

The new script, called Autopilot Prerequisite Checker, is a PowerShell script that checks whether your environment meets the prerequisites for deploying Autopilot. The script checks for the following prerequisites:

Tenant checks:

  • Check license requirements
  • Automatic Windows enrollment (MDM authority is set)
  • DNS records
  • Check user can join device to Azure AD
  • Check Enrollment Status Page
  • Check Windows Autopilot Deployment Profile
  • Check company branding

Device checks:

  • Windows OS version
  • Hardware hash uploaded to Intune
  • Check Windows Autopilot Deployment Profile assignment status

User checks:

  • User is licensed correctly

Network checks:

  • Required communication for Intune Autopilot is allowed

The script is easy to use and can be run on any machine with PowerShell installed. Simply download the script, run it, and wait for the results. The script will output indicating whether your environment meets the necessary prerequisites for Autopilot.

Download the script

The benefits of using the script are numerous. First and foremost, it saves time by automating the prerequisite checking process, allowing you to focus on more important tasks. Second, it reduces the risk of errors, ensuring that your Autopilot deployment is successful the first time. Finally, it provides peace of mind by giving you the confidence that your environment meets the necessary requirements for deploying Autopilot.

In conclusion, Autopilot Prerequisite Checker is a powerful new script that simplifies the process of checking the prerequisites for deploying Autopilot. Whether you’re an IT administrator or a consultant, Autopilot Prerequisite Checker is an essential tool for ensuring the success of your Autopilot deployment.


NOTE: THIS IS A WORK IN PROGRESS – If would like me to add a check, just ping me the info 🙂

How Microsoft 365 Can Encourage Diversity & Inclusion

Posted on by
Reply

Microsoft is extending a commitment to diversity and inclusion. These efforts are promoted in a variety of ways, not the least of which is software development and the involvement of Microsoft’s Most Valuable Professionals (MVPs). As we look to a more technologically advanced and connected future, it hasn’t gone unnoticed that diversity and inclusion best practices must extend to include the technology and software we use. And Microsoft products, including Microsoft 365, can advance the efforts.

There has been a strong focus on diversity and inclusion in the workplace. And it’s a forefront discussion in society at large and especially in the preceding pandemic years. However, now it’s time to look seriously at what can be accomplished through software development and technology to further advance the efforts.

Conversations around diversity and inclusion in technology are only now starting to heat up. And there’s no denying that there are some unknowns and challenges. But one thing we can count on is for Microsoft to keep moving forward. The MS team continues with new features, patches, and updates that make their software more inclusive to people from all walks of life. And more importantly, it’s software blind to age, gender, race, disabilities, or otherwise. In many ways, the rest is up to us!

Microsoft 365, specifically, is an area of especial interest as applied to diversity and inclusion. One of the core reasons for this is because the suite of tools included in the package have remained cornerstones in Microsoft’s product line for a long time. And they remain a strong focus for the company.

Can Microsoft 365 help with diversity and inclusion? In this article, we look at:

  • What Microsoft 365 is
  • What diversity and inclusion through software looks like
  • How Microsoft is constantly making advancements in diversity and inclusion initiatives
  • How Microsoft 365 can promote diversity and inclusion
  • The benefits of diverse and inclusive software applications

What is Microsoft 365?

This bundle of cloud-based software didn’t always go by the name “Microsoft 365.” You may know it as Office 365. Of course, the product range has significantly changed (mostly updates) through the decades, especially as networks, internet, big data, and other advancements advanced.

Microsoft 365 is available for both home and business applications. There are two basic packages for home use, including Microsoft 365 Personal and Microsoft 365 Family. There are four packages for businesses, These include, Basic, Apps for business, Business Standard, and Business Premium. And they appeal to differing business needs. These are all available at slightly different price points, as well.

The range of software included depends on the plan, but is effectively made up of some combination of Word, Excel, PowerPoint, Teams, Outlook, Exchange, OneDrive, SharePoint, Access, Publisher, Intune, and Azure Information Protection.

Diversity & Inclusion Through Technology & Software?

The whole idea of diversity and inclusion through technology, and specifically Microsoft 365, may seem a little mercurial. After all, aren’t we essentially talking about word processors, spreadsheets, and presentation makers?

Indeed, software applications seek to handle specific digital tasks. And at first glance, they may not appear a shiny beacon for the future of humanity. 

There is a reason why there are different programs for different tasks, though. A piece of software that “does everything” sounds good in theory. But it’s impractical in reality because of the sheer scope of the project. It’s tough too, when considering the near infinite (if not infinite) possibilities that would need to be accounted for in each. This bird’s eye view of software may seem a little too zoomed out. However, it is important to understand as we look to zoom in on diversity and inclusion.

A more granular approach

Diversity and inclusion must take both broader and more granular factors into account. It’s not enough to make software that accomplishes a specific task. Developers must also be thinking about who is going to be using their software and what language or dialect they speak. Software needs to be conducive regardless of cultural or religious customs, personal beliefs, gender identity, or disability status, to be truly inclusive.

Moving forward, this will be a critical consideration for software developers. They will need to be mindful of how to ensure their software is inclusive and usable by the parties using it. As these practices become more common, and more documentation becomes available, more companies will be able to make the necessary pivots. And they’ll do so without investing more heavily in research and development. 

Until then, however, developers will need to be thorough in their research. They’ll look to, identify specific aspects of their software that need improvement, and be willing to offer ongoing support. It’s well worth documenting everything one discovers on the subject. Moreover, it could create a more holistic company manual in the future.

Microsoft is Always Making Advancements in Diversity & Inclusion Through Software

Obviously, the only way to know what’s going on behind the scenes at Microsoft is to be a Microsoft employee, or potentially a Microsoft MVP. You can look to the pillar pages on their website discussing the value they place on diversity and inclusion. Additionally, they do post the occasional update about making their software more accessible, usable, and inclusive as well.

Take for example their update from August 1, 2022, written by Aleš Holeček and titled: Promoting workplace equity through inclusive innovation: What’s new in Microsoft 365 accessibility for Summer 2022.

Here are the key points from this article:

  • Microsoft knows hybrid work (workplace/remote) is now the norm. And it will likely be the norm moving forward. They know, too, people are using video conferencing and hybrid meetings to keep their teams connected and on top of relevant work. As a result, they continue to make advancements by making Microsoft Teams meetings more inclusive to those with disabilities. At the time of the update, they added a Cameo feature in PowerPoint, for example. This feature allows users to insert a live feed into presentations. This update made it possible for everyone to connect more directly with the presenter as they’re sharing. They also added captioning and transcriptions across multiple platforms, along with multiple languages.
  • They also made some changes to Microsoft 365 allowing the creation, consumption, and collaboration of content easier and with more options. First, they made it so that Word, Excel, and PowerPoint files could be opened in the desktop app or web app, instead of inside Teams. Second, they updated dictation in Word, Outlook, and OneNote to make it easier for users to take advantage of speech-to-text and text-to-speech. They also added support for 25 new languages. Moreover, the team added a Data from Picture feature in Excel, and a Simple Markup View across a few different applications.

How Microsoft 365 is Leading the Way with Diversity & Inclusion in Technology

No doubt you can come to some of your own conclusions about how Microsoft is making progress in the arena of diversity and inclusion. We can only speculate on what’s coming next. But based on what we’ve been seeing, as well as what we know, here are some of the many ways Microsoft 365 is leading the way with diversity and inclusion in software.

Increased Accessibility

Accessibility in software means ensuring there are no barriers to accessing and using the application or suite of applications in question.

The internet, of course, makes it possible for people to access and share an array of information. And with cloud-based projects, like Microsoft 365, it has never been easier for individuals and companies to share relevant documents, data, and information with their teams or community. Anyone with an internet-connected device can utilize the software.

With Microsoft 365, the developer accounts for a variety of accessibility factors, including vision, hearing, neurodiversity, learning, mobility, and mental health.

For the vision impaired, there are screen readers and keyboard compatibility and Tell Me (which lets you access commands without using the command ribbon.) There’s also MailTip in Outlook (which lets you notify your coworkers of your preference for accessible content) and Office Lens, which can read aloud a printed page.

Users with hearing disabilities, can use real-time subtitles and captions for videos.

For the neurodiverse, there are features like Immersive Reader (which reads words aloud while highlighting them on screen), and files auto saving to OneDrive.

They also continue to develop Editor (which can spot spelling, grammatical, and writing style issues and errors), speech-to-text, automated design recommendations, themes, MyAnalytics (for keeping track of how you’re spending time at work), and more.

What we’ve covered here is only scratching the surface of the many ways Microsoft has, and is, supporting diversity and inclusion through their software.

Increased Usability

Usability is all about ensuring your software can accomplish a specific task, preferably in an efficient, satisfactory, and safe manner. Sometimes, the terms “accessibility” and “usability” are used interchangeably, or are bundled together. And form a holistic perspective, there is value in viewing these as an interconnected whole. To be fair, there is quite a bit of overlap, as you’re about to see.

Microsoft’s dedication to usability is clear from their frequent updates and usability testing alone. But there are also some features built into their software that make them more usable. Some of the built-in usability features in Microsoft 365 include.

  • Accessibility Checker. The Accessibility Checker analyzes text in your document that’s hard to read.
  • Design Ideas. Available in PowerPoint. This feature comes with built-in slide layouts that are easy for anyone to view and read.
  • Tell Me. A text field for entering what you want to do next. This feature lets you access commands without having to menu surf.

Enhanced Communication

Communication affects virtually every aspect of life, be it relationships, business, work, or otherwise. Microsoft knows this, and many of their recent software updates and enhancements focus on improving communication between an array of people.

Broadly, communication occurs synchronously and asynchronously. And communication tools like Teams and Outlook facilitate all types of communication that needs to take place between employees, at the times it needs to occur.

Again, Accessibility Checker is clearly an accessibility or usability tool. It can be used to make your content and documents easier to read and understand. And this can improve communication between various parties as well.

The aforementioned August 2022 update talked about how one can show their face while giving presentations over video conferencing. With hybrid work becoming the norm, these types of features encourage more connection and inclusiveness among presenters and viewers.

Improved Collaboration

With better accessibility and usability, as well as enhanced communication, it’s only natural that collaboration through software would also experience a revolution. Accessibility and usability makes it easier for people to understand each other and complete their projects with greater efficiency. Better communication leads to clarity around everyone’s responsibilities as well as what they’re taking on in a project. It can lead to better accountability, too.

With files stored in the cloud, users can access files from anywhere, at any time, assuming they have an internet connection. This makes it possible for globally distributed teams to make progress on the project. And they can do so without worrying about when the last change was made, or having to communicate at times that do not work for each other. They can complete their work at their convenience.

Video captions and transcripts also assist with globally distributed teams. These are helpful for those who need to communicate with synchronous or asynchronous video content.

There’s a broader talent pool on a global scale. So why should teams be limited by location, language, time zone, or other factors? With the right tools, collaborative projects can be created, managed, developed, and completed across the world. And this creates a more diverse and inclusive world, too.

Benefits of Diverse & Inclusive Software

There are many benefits to focusing on diverse and inclusive software that may not be immediately apparent. Having the entire world be empowered to use your software is a worthy ideal already, but furthering inclusivity and diversity best practices can result in many added benefits for the individual and organization. Microsoft 365 is well poised to create and enjoy many if not all of the following benefits. And their software can set you up for success in this area too.

Improved Training & Development

In fast changing industries, training and development is a constant. Employees must be brought up to speed on the latest processes, procedures, policies, and more. This can be time consuming and expensive, and there can even be pushback from employees who resist change (it’s only human.)

What if this training could be even more efficient? Diverse and inclusive software makes this possible. Present necessary information in an efficient, easily understandable format that works for everyone. Technologies like Teams are helpful to relay the information through video conferencing. Remote or hybrid workers can get the information they need without having to go to the office for a training session. These are but a few examples of what’s possible.

While it’s somewhat metaphysical, diversity and inclusion training can also be part of a company’s broader scope of training and development programs. This inspires team members to be mindful of diversity and inclusion in their own surroundings.

Increased Productivity

Diversity and inclusion isn’t just a value held by Microsoft. Increasingly, there are more and more people who feel strongly about including everyone, no matter their age, race, gender, identity, disability status, or otherwise. And this trend will only continue to grow.

When a workplace is truly diverse and inclusive, everyone on the team feels welcome. When people feel appreciated, their satisfaction in the workplace increases. And they also become more engaged in the company’s broader scope of activities.

You may know the names of your team members, but not their talents, skills, expertise, experience, perspectives, or working styles. Getting to know your team and having them be a part of meetings, projects, and decision making can lead to new insights and innovation (more on this later.) Facilitating their specific working styles can also lead to better output.

When everyone is given the opportunity to contribute and share, it can also give rise to friendly competition among your team members. This drives up output, as well.

Effectively, all factors mentioned contribute to increased productivity, something most leaders want for their teams.

Better Decision Making

More eyes on a project means more opportunities to identify potential pitfalls, issues, problems, and challenges that may end up cropping up down the line. Early detection of these issues means earlier resolution. And this leads to fewer headaches later.

This isn’t just theory. Cloverpop found that diverse and inclusive teams make better business decisions 87% of the time.

While it may seem like asking for more feedback on a project would slow down the decision making process, to the contrary, it accelerates it. And most projects can benefit from different ways of thinking, varying perspectives, and various skill sets.

Technology makes it easy to gather thoughts, opinions, and ideas from your team and collate them in a convenient location, whether in an Excel spreadsheet, Word document, or otherwise.

Increased Creativity & Innovation

Technology is at the forefront of innovation. Amazon and eCommerce weren’t even possible before the internet. Renting your home out to strangers was an obscure idea before Airbnb. Taxis were your only mode of transportation if you were in a bind, until smartphones made it more convenient to book an Uber.

With Microsoft constantly updating their software with new features, various individuals and companies are taking on projects with increased complexity, sophistication, and scope that were once unimaginable. 

Technology becomes more accessible and usable, It means more and more people will be creating at a level that was impossible just years ago.

Employee Engagement

With hybrid and remote work becoming more prevalent, many companies are now pondering how to improve employee engagement. It’s not just a matter of ensuring they are doing the work assigned and keeping productivity levels high. Turnover, onboarding, and training can also be very expensive. Dissatisfied employees also sometimes lead to negative press or toxic work environments. And this is never a good color on a company that holds diversity and inclusion as a key value.

With Microsoft 365’s suite of tools, hosting virtual events is a cinch. These can offer valuable opportunities for your team to connect and bond. They are also great opportunities to acknowledge and recognize your team members. Reward them and incentivize them, too.

Community Outreach

Companies benefit greatly from having an outward focus on community. Not that community outreach programs are the sole responsibility of companies. Of course, individuals can take initiative and make a difference in their locality and even globally, too.

Either way, the use of technology in fundraising campaigns or volunteering activities is such a given that most people don’t even think about it anymore. But from keeping track of funds raised using Excel, or writing letters using Word, or sending emails via Outlook, there are many ways to put Microsoft 365 to use in fulfilling community outreach programs. Plus, you can keep it all organized inside Teams.

Community outreach is a form of diversity and inclusion unto itself. Again, metaphysical, perhaps, but it goes to show the prevalence of software and how it can ultimately be used for the better of humanity.

Conclusion about Windows 365

Moving forward, it will not be enough for companies to pay lip service to diversity and inclusion. Actions must be taken to ensure there is an inclusive and welcoming environment in one’s organization for people from all walks of life. Not just employees, but customers and clients too.

Microsoft 365’s suite of tools can assist in a variety of ways, whether video conferencing, text-to-speech, data collection, or otherwise. You can put confidence in Microsoft’s products knowing that they were developed with diversity and inclusion in mind. And that takes a lot of guesswork out of the equation.

This article is but the tip of the iceberg. There are so many projects, initiatives, and programs that could be created using Microsoft 365 to encourage and promote more diversity and inclusion. Especially since the software is being developed with intentionality around inclusive principles. There’s plenty of room left for creativity and innovation. It’s simply a matter of applying yourself to a more diverse and inclusive future.

Encouraging Diversity & Inclusion Through Microsoft’s MVP Program

Posted on by
Reply

Diversity and inclusion have never been more critical in all facets of culture. That includes IT, technology experts, and the technological infrastructures at large. Even the technology itself needs to take diversity and inclusion into consideration.

Microsoft’s Most Valuable Professional program recognizes some of the greatest evangelists of their products and services, and helpers of the community of users at large. MVPs are proven experts in their fields. They go above and beyond in this capacity, with a  willingness and passion to help those seeking to better understand the technologies they’re using. And they’re advancing diversity and inclusion efforts for companies.

Microsoft also recognizes the critical importance of diversity and inclusion. They have it as their mission to use their influence on the world to encourage positive change in the workplace and in communities everywhere. They are leveraging their demonstrated history as innovators to look at diversity and inclusion in new ways, so that companies of the future always hold it as one of their key values and act on it too.

There is also a connection between the MVP program and Microsoft’s diversity and inclusion efforts. Here, we’ll be looking at exactly what the MVP program is, what it offers, and how it connects to diversity and inclusion initiatives at large.

How did the Microsoft Most Valuable Professional program get its start?

In 1993, developer Calvin Hsia created a list of the “Most Verbose People,” ranking the most active users in a CompuServe technology support forum. This list exists in fun to recognize the most active users. And Hsia didn’t necessarily expect anything to come of it.

But because at the time Microsoft offered a great deal of technical support to CompuServe, they took notice of Calvin’s List and those offering support of their own volition. Noting the difference these champions of technology were making for the community, they saw it as an opportunity to recognize and acknowledge their contributions in a more formal capacity.

We can guess with a fair bit of certainty that Microsoft also saw this as an opportunity to identify and leverage a talent pool, of which they weren’t previously aware.

Speculation aside, Calvin’s List identified the first ever 34 Most Valuable Professionals. The MVPs were invited to the first-ever Orlando TechEd conference. There, they could be recognized for their efforts in supporting Microsoft customers and promoting Microsoft products.

The initial list of 34 MVPs, including Hsia, got letters from Microsoft indicating their status as MVPs. This was the official beginning of the MVP awards program. Hsia would eventually join Microsoft and was also honored at the 20th Anniversary MVP Global Summit as a vital supporter of the program.

How many people are in the MVP program?

There are currently over 4,000 MVPs across 90 countries and regions – United States, Australia, Indonesia, Germany, Netherlands, India, Japan, Croatia, China, Sri Lanka, Sweden, and many, many others. This makes for a perfect environment for diversity and inclusion efforts, too.

Microsoft’s website is home to “Find an MVP” and “MPV Reconnect” portals, addressed later in this article.

What is a Microsoft MVP?

A Microsoft Most Valuable Professional refers to a technology expert who is passionate about what they do and freely shares their knowledge and expertise with the community, something they do in a “pro bono” or voluntary capacity.

MVPs are always “plugged in,” staying on top of new technologies and trends.They also have a deep understanding of Microsoft products and services. Most importantly, they are always willing to help others, a quality that can only stem from a passion for community.

One does not become an MVP, however, without demonstrating expertise in a variety of ways. MVPs must also demonstrate efforts in helping others through multiple channels (we’ll be covering what this might look like in a moment).

How to become a Microsoft MVP

The process to becoming a Microsoft MVP remains somewhat mercurial. Or, it may be better to say, it remains intentionally vague. Microsoft obviously applies their own criteria to identifying and finding potentials. However, visibility is obviously a big factor. So one must be able to create a public track record of productive technical support to others.

In Microsoft’s own words: “Be an expert, do lots of what you love, and let us know!”

More than anything, Microsoft is looking for people with a track record of engaging and supporting the community independently and voluntarily over the course of 12 months. This is difficult to accomplish without staying up to date with Microsoft products and continually educating yourself. So, if you’re looking to improve diversity and inclusion within your workplace, start with education.

There are a variety of activities to improve your chances of MVP recognition. For example:

  • Contributing to blogs, podcasts, and books
  • Helping users on forums and social media
  • Participating in user groups
  • Attending conferences and giving speeches
  • Building open-source software

Becoming an MVP, however, you will likely need to engage in a variety of activities. Focusing in one area often isn’t enough.

If you’re wondering where to put your energy and focus as a potential MVP, it would be good to know that Microsoft prioritizes the following award categories (this is where to put your focus):

  • Microsoft Azure
  • Windows development
  • M365 development
  • Developer technologies
  • Data platform
  • AI
  • Internet of Things
  • Cloud & datacenter management
  • Enterprise mobility
  • Windows & devices for IT
  • M365 apps & services
  • Business applications
  • Security
  • Mixed reality

However, there is a formal, defined process to getting on the map. To become an MVP, one must also receive a nomination referral by a Microsoft Full Time Employee (FTE) or Microsoft MVP. Having the right connections does make a difference.

How does The MVP program benefit IT Professionals?

People love recognition for their efforts. Of that there is little doubt!

Recognition as a Microsoft MVP can have a dramatic impact on one’s career. For example, employer, potential employer, and peer perceptions and reputations matter. But there’s so much more to it than perceptions alone. Being recognized as a cut above is just the tip of the iceberg.

IT professionals also benefit from:

  • Early access to Microsoft products.
  • Access to product teams.
  • Access to the Global MVP Summit.
  • Relationship with local Microsoft teams.
  • An executive recognition letter.
  • Visual Studio technical subscription.
  • An Office 365 subscription.

And these benefits continue to see improvements and augmentations by Microsoft, as they continue to look to the future of the MVP program.

And while these may be some of the “direct” benefits of becoming an MVP, MVPs enjoy a variety of other intangible and leveraged benefits we’ll be looking at momentarily. These include diversity and inclusion initiative advantages.

Find an MVP

Microsoft’s website features a Find an MVP portal where you can see:

  • The MVP’s picture
  • The MVP’s name
  • Their award category
  • Their country or region

If you know who you’re looking for, you can filter by keyword, award category, and country or region. You can also sort the entire list by award category, last name, first name, and country or region.

Additionally, you can learn more about each individual by clicking on their names. The amount of information on each MVP varies. But here are some of the tidbits you can expect to find on the Microsoft website:

  • Name
  • Country or region
  • Job title
  • Award category
  • The first year they achieved MVP
  • Number of MVP awards
  • Language(s) they speak
  • Certifications they’ve earned
  • Social media links
  • Biography
  • A timeline of recent activities

Anyone looking to reach out to a specific MVP for comment can learn something about them first by perusing this portal.

This portal also has a positive impact on the career of the MVPs as it gives them more visibility overall.

MVP Reconnect

There is a place for former MVPs as well. And it’s called the MVP Reconnect program. As with the Find An MVP function we just explored, you can search a database of more than 3,600 former MVPs who remain part of the greater MVP community using the MVP Reconnect portal.

What does it look like to be a Microsoft MVP?

Becoming an MVP takes commitment and hard work. But achieving this status opens the doors to valuable experiences, lucrative opportunities, support and collaboration, and a great deal more.

These are some of the ways MVPs benefit from the program and what their experiences are like:

  • MVPs are often the latest to hear about new developments in Microsoft. They also get to offer input and feedback on existing or new products. And if they have a stable of their own clients who are using Microsoft products, MVPs can offer timely, valuable, and specific guidance to them.
  • Some MVPs enjoy networking, sharing ideas, and collaborating with other MVPs. This should not come as a surprise, since MVPs have the answers to just about any question one might have about Microsoft products.
  • Being an MVP opens the door to new opportunities. The MVP program has a strong reputation. And anyone associated with it experiences a boost in their careers. Opportunities that may not have otherwise been available to them become available.
  • MVPs get to be on the cutting edge. The public isn’t privy to the latest developments at Microsoft, especially those not publicly announced. This gives MVPs the opportunity to build their awareness around new product features and incorporate them into their workflow.
  • Relocation matters. Some MVPs seek to establish themselves in new regions or communities. And with assistance from the MVP community, are able to find new jobs, homes, and more.
  • Getting answers quickly. In the MVP program, you have unprecedented access to like minded professionals with a tremendous amount of experience and knowledge in their respective fields. MVPs get access to other MVPs, who can offer guidance.
  • Access to a larger community. Besides the current roster of MVPs, Microsoft also has the MVP Reconnect program, which gives way to the greater MVP community, consisting of over 3,600 members.

Wasn’t The MVP program canceled?

Microsoft ostensibly canceled the MVP program on October 22, 1999. There are speculations and different reasons circulating, too. At the time, AOL newsgroup leaders sued AOL because they felt they should have been paid for their work. And the cancellation of the MVP program may have been Microsoft’s response to this backlash for independent, unpaid help.

But it seems people felt differently about the MVP program, as there was an outpouring of support for it. Many emails were even sent directly to Bill Gates and Steve Ballmer. And the program was reinstated only three days later.

Having made the decision to keep the awards program, Microsoft then worked out the finer details and logistics of the program. This increased levels of success in the ensuing years.

Microsoft periodically evaluates the MVP program and considers what it might have in store for the future. Most new developments, however, center on additional benefits for MVPs.

How can MVPs support diversity and inclusion?

There are both obvious and less obvious ways MVPs can support (or are already supporting) diversity and inclusion.

Consider this broad overview of the many ways MVPs can (or already do) promote diversity and inclusion.

The MVP program already represents a very diverse group of people from across the globe

IT talent exists everywhere. Whether it’s Japan or Argentina, there are highly-skilled individuals within their roles. They enjoy their work and are passionate about helping the users who are in need of assistance.

While it may be too “obvious” a thing to say, the MVP program already represents diversity and inclusion in many ways. Whether male, female, young, old, or otherwise, there are established experts representing every possible demographic and ethnicity imaginable.

Promoting the MVP program promotes diversity and inclusion of its own accord, and it can have a very positive impact on companies everywhere, who will need to hold diversity and inclusion as a key tenant of their operations moving forward.

MVPs can use their status as influencers to share about diversity and inclusion

MVPs don’t simply enjoy recognition from Microsoft. They earn recognition within the communities they support. As they answer questions and solve problems for others, their faces earn additional respect. They experience increased recognition and appreciated for their efforts. Additionally, their participation in a community elevates them to influencer status.

Their influence represents an opportunity to create conversations around diversity and inclusion and broach the subject in a considerate, congruent, and tactful way. They can share meaningfully about their own experiences. And they share what diversity and inclusion means to them and why they value it.

MVPs have a built in platform already. They’ve been serving the community and have gained the favor of others by being of service to them. This gives them the platform they need to speak to matters of greater importance.

MVPs make Microsoft products more accessible to anyone

MVPs may be influential in their own right. This platform isn’t to be abused or disrespected. Instead, it should be a primary tool in affecting people positively in a variety of ways.

One of the very practical ways an MVP can promote diversity and inclusion is by doing what they already do best – helping a variety of people in different regions, even underrepresented people, better understand and utilize Microsoft products.

People can connect through technology. Technology is also empowering. People who may not have found a way to bring their projects to fruition may discover new approaches through technology. People who may not know what their passion is can find a new passion in software. And people who may have found it hard to find a job in the past may be able to find new work by becoming IT professionals themselves.

MVPs can empower a variety of people through their ongoing, tireless support work.

MVPs can share relevant issues with their communities

Whether it’s blog subscribers, a social media following, a forum or message board, email list, some combination thereof, or otherwise, MVPs are already in the know with their various communities. They’ve demonstrated their passion for their work and their willingness to add value to others.

Again, being mindful of when and where to share is critical to one’s success, but as relevant issues arise, MVPs can share these with their communities and open them to discussion. Usually, it’s about promoting more conversations. And by staying current with the issues, MVPs can bring a lot of value to the conversations as they unfold.

MVPs Encouraged to participate in community initiatives & speak at events

To become an MVP, an IT professional must support the community at large. These opportunities only grow as they are awarded and recognized for their efforts, and MVPs are often invited to speak at events too.

Every community initiative and speaking engagement represents an opportunity for an MVP to share on topics of value and interest. It would be unwise for an MVP to shoehorn a message about diversity and inclusion into a speech where it doesn’t belong, but in environments where it’s appropriate, it would be a good opportunity to promote diversity and inclusion.

Sometimes, the events themselves are held to promote diversity and inclusion, in which case the angle is baked into the initiative.

MVPs can contribute their expertise to creating & developing products that can be used by anyone

MVPs have access to development teams and first looks at products. They’re also the first to learn about new changes and features. Additionally, they’re afforded the opportunity to give their input and feedback on Microsoft products.

MVPs can leverage this knowledge in helping Microsoft develop products that are inclusive to all. MVPs can offer input on issues development teams may not be present to, and help them course correct so that their products and services aren’t exclusive or offensive to specific people.

Conclusion About MVP and Diversity and Inclusion Efforts

The Microsoft MVP program represents a significant opportunity to promote diversity and inclusion through multiple channels. The program itself is made up of a variety of people from across different regions, different ethnicities, at different ages and different genders too.

Beyond that, though, MVPs have access to Microsoft, its teams, and its projects to an extent no one else has (save for Microsoft employees). This means they can help steer the direction of projects and ensure everyone is included.

Thanks to their deep working knowledge of Microsoft products and services, MVPs can also impart their knowledge to underrepresented minorities and empower them with new skills, opportunities, careers, and more.

MVPs can also speak directly to their own following and communities, touching on relevant, current subjects as appropriate.

Finally, MVPs also take part in community initiatives and are invited to speak at various events. Some of these events represent good opportunities for them to speak out about relevant issues, especially if they have specific experiences to relay. It has never been more critical for companies to evaluate how people can connect through technology, and how this can encourage inclusion and diversity more broadly.

Azure Virtual Desktop’s Latest Capabilities

Posted on by
3

Using virtual desktop services enables you to have secure access to work applications and other organizational resources from remote locations. This is something that vastly increases your capabilities beyond the traditional desktop in the office. Microsoft offers Azure Virtual Desktop (AVD) as a desktop and app virtualization service that runs on the cloud.

And as the work environment consistently evolves, desktop virtualization services are becoming an integral part of the way that organizations operate. It can make it easier to have employees working remotely without worrying about the security of your network.

Unlike in the past when running a virtual desktop environment would have been an extremely complex and expensive undertaking, AVD simplifies the process and also makes it affordable. Additionally, you can expect guaranteed, regular updates and new capabilities that continuously improve the service.

Azure Virtual Desktop main features

Azure Virtual Desktop comes with a lot of capabilities, designed to optimize the use of virtual desktops. By using this service, you can have an environment that perfectly meets the needs of your organization, is scalable when necessary, and is flexible. Below are the key capabilities that you will benefit from:

  • You can create a full desktop virtualization environment in your Azure subscription. And you can do so without having to run any gateway servers.
  • You can publish host pools as you need so that you can adequately accommodate your various workloads.
  • Allows you to have your own image for production workloads or test from the Azure Gallery.
  • The availability of pooled, multi-session resources is something that will help you to lower your costs. You can see this even more with the new Windows 10 and Windows 11 Enterprise multi-session capability that will enable you to cut down on the number of virtual machines as well as the operating system overhead costs without having to make compromises about the resources that your users have. (This capability is exclusive to Azure Virtual Desktop and Remote Desktop Session Host (RDSH) role on Windows Server).
  • Users can get individual ownership through personal (persistent) desktops.
  • You can manage costs further by leveraging autoscale to handle the automatic increasing or decreasing of capacity and this can be based on time of day, specific days of the week, or changes in demand.

For the deployment and management of virtual desktops:

  • You can do it through the Azure portal, Azure CLI, PowerShell and REST API for the configuration of host pools, the creation of app groups, the assignment of users, and the publishing of resources.
  • From a single host pool, it’s possible to publish full desktop or individual remote apps. You can also create individual app groups for different sets of users, and you could even cut down on the number of images by assigning users to multiple app groups.
  • You can gather diagnostics that will help you understand the various configuration or user errors by taking advantage of the built-in delegated access when assigning roles.
  • Troubleshooting errors is easier when using the new Diagnostics service.
  • The infrastructure will not require any managing, only the image and virtual machines will. Unlike with other Remote Desktop Services, you won’t have to personally manage the Remote Desktop roles. You only need to manage the virtual machines in your Azure subscription.

Assigning and connecting users to your virtual desktops is also something you can do:

  • Once assigned, users will be able to launch any Azure Virtual Desktop client to connect to their published Windows desktops and applications. Conveniently, you can use any device to connect and you can do so through the native applications on your device or you could use the Azure Virtual Desktop HTML5 web client.
  • Opening any inbound ports is not necessary because you can securely establish users through reverse connections to the service.

New multi-session capabilities

The features I’ve gone over above are key in delivering a virtualization experience that eliminates the complexities of traditional virtual desktop solutions. However, Microsoft is adding to those capabilities to give users an even better Windows experience by introducing Azure Virtual Desktop multi-session with Microsoft Intune.

With this addition, you’ll now be able to use Microsoft Intune to manage Windows 10 or Windows 11 Enterprise multi-session remote desktops in the Microsoft Endpoint Manager admin center the same way as you would for your regular shared Windows 10/11 client device.

Consequently, you can now manage these virtual machines using either device-based configurations meant for devices or user-based configurations meant for users. Windows 10 or Windows 11 Enterprise multi-session is a new Remote Desktop Session Host and it is exclusive to AVD on Azure. It has some very attractive features:

  • You can have several concurrent user sessions.
  • It offers users a familiar Windows 10 or Windows 11 experience.
  • It delivers great convenience by allowing you to use existing per-user Microsoft 365 licensing.  

Microsoft has introduced user configuration in Microsoft Intune for Windows 11 multi-session VMs and this will mean that:

  • You’ll be able to use the Settings catalog for the configuration of user scope policies and then assign them to groups of users. To simplify this, there is a search bar that you can use to locate all the configurations with scope set to “user”.
  • You can configure user certificates and then assign them to users.
  • You’ll also be able to configure PowerShell scripts. These are installable in the user context and then assigned to users.

Pre-requisites

  • For Windows 10 multi-session, you need to be running version 1903 or later, or you should be running Windows 11 multi-session.
  • Your Azure Virtual Desktop agent needs to be version 1.0.2944.1400 or later.
  • You need to have the right Azure Virtual Desktop and Microsoft Intune license if the user is benefitting whether directly or not from the Microsoft Intune service. This includes access to the Intune service through a Microsoft API.
  • You’ll need to set up the VMs as remote desktops in pooled host pools. And deployment is through Azure Resource manager.
  • The VMs should also be Hybrid Azure AD-joined, as well as enrolled in Microsoft Intune via the methods below:
  • Configuration done with Active Directory group policy and then set to use Device credentials. Also, be sure to set credentials to enroll devices that are Hybrid Azure AD-joined automatically.
  • Configuration Manager co-management.
  • In addition, the VMs should also be Azure AD-joined and enrolled in Microsoft Intune by enabling Enroll the VM with Intune in the Azure portal.

You’ll need to remember that Windows 10 or Windows 11 Enterprise multi-session VMs are essentially different editions of the OS. Therefore, you can expect some Windows 10 or Windows 11 Enterprise configurations that aren’t supported for this edition. However, using Intune won’t interfere with AVD management of that VM nor does it depend on it.

Create the configuration profile

The Settings catalog in the MEM admin center is what you are going to have to use for configuring the configuration policies for Windows 10 or Windows 11 Enterprise multi-session VMs. Additionally, the following device configuration profile templates receive support for the Windows 10 or Windows 11 Enterprise multi-session VMs:

  • Trusted certificate – when targeting devices, it’s Device (machine) and when targeting users, it’s User.
  • SCEP certificate – when targeting devices, it’s Device (machine) and when targeting users, it’s User.
  • PKCS certificate – when targeting devices, it’s Device (machine) and when targeting users, it’s User.
  • VPN – Device Tunnel only

Except for the template above, the rest of the existing device configuration profile templates won’t have support. Unsupported templates will not be delivered to multi-session devices. And they will appear as Not applicable in reports.

Also, you’ll need to set the workload slider for Resource Access Policies to Intune or Pilot Intune. This applies if you use co-management for Intune and Configuration Manager. This is a necessary step that will enable Windows 10 and Windows 11 clients to begin the process of requesting the certificate.

Policy configuration

  • Navigate to the MEM admin center and sign in. Then, proceed to select Devices > Windows > Configuration profiles > Create Profile.
  • Next, you’ll want to choose Windows 10 and later for Platform.
  • For Profile type, you should select Settings catalog. However, you’ll need to select Templates as well as the name of the supported template if you’ll be deploying settings with a template.
  • Select Create.
  • Next, you’ll get to the Basics page where you need to give a Name and (optionally) Description > Next.
  • And when you get to the Configuration settings page, choose Add settings.
  • Next, we get to the Settings picker . Here you need to select Add filter and then pick the options below:
  • Key: OS edition
  • Operator: ==
  • Value: Enterprise multi-session
  • Select Apply. With this done, all the configuration profile categories that support Windows 10 or Windows 11 Enterprise multi-session will now appear on the filtered list.
  • You can now choose the categories that you want from this filtered list.
  • Every category you select will require you to choose the settings. These settings will apply to your new configuration profile.
  • In addition, you need to pick the value that you want for this configuration profile for each of your chosen settings.
  • After you’ve finished adding all the settings you want, select Next.
  • When you get to the Assignments page, you have to select the Azure AD groups that have the devices to which you want this profile assigned > Next.
  • Additionally, on the Scope tags, you have the option to add the scope tags you want > Next.
  • With all the above configured, you’ll then go to the Review + create page and select Create to create the profile.

Administrative templates

Administrative Templates for Windows 10 or Windows 11 are supported for Windows 10 or Windows 11 Enterprise multi-session through the Settings catalog. Addtionally, there are some limitations worth noting.

  • There are certain policies not available in the Settings catalog. However, ADMX-backed policies do have support.
  • ADMX-ingested policies also have support. And this includes the settings for Office and Microsoft Edge that are available in the administrative template files of both Office and Microsoft Edge. It’s also important to note that not all ADMX-ingested settings are applicable to Windows 10 or Windows 11 Enterprise multi-session. You can view the complete list of ADMX-ingested policy categories in the Win32 and Desktop Bridge app policy configuration.
  • At the time of writing, ADMX-ingested policies are supported for user targeting, only on Windows 11.

Compliance and Conditional access with Azure Virtual Desktop

Protecting your Windows 10 or Windows 11 Enterprise multi-session VMs will be of great importance to everyone. And to secure these VMs, you can go to the Microsoft Endpoint Manager admin center. There, you can configure the appropriate compliance as well as Conditional Access policies. Below is the list of compliance policies, supported on Windows 10 or Windows 11 Enterprise multi-session VMs:

  • Minimum OS version
  • Maximum OS version
  • Valid operating system builds
  • Simple passwords
  • Password type
  • Minimum password length
  • Password Complexity
  • Password expiration (days)
  • Number of previous passwords to prevent reuse
  • Microsoft Defender Antimalware
  • Microsoft Defender Antimalware security intelligence up-to-date
  • Firewall
  • Antivirus
  • Antispyware
  • Real-time protection
  • Microsoft Defender Antimalware minimum version
  • Defender ATP Risk score

These are the only policies you can use. And those not on this list will not be applicable.

Endpoint security

Without a doubt, endpoint security is one of the greatest concerns for most organizations today. Cyberattacks are growing in number and sophistication meaning that endpoints can easily become the weak point in your network. For multi-session VMs, you’ll have the ability to configure profiles under Endpoint security by choosing Platform Windows 10, Windows 11, and Windows Server. Any Platform that you will find unavailable will be for a profile that does not have support on multi-session VMs.

Deployment of applications

Having access to the applications that you need is essential to maintaining productivity and working efficiently. So naturally, I would want to know whether Windows 10 or Windows 11 apps will work for multi-session. Fortunately, all Windows 10 or Windows 11 apps are deployable to Windows 10 or Windows 11 Enterprise multi-session. However, it does come with certain limitations:

  • You should install the configuration of the apps within the system/device context. And aim to target specific devices. Additionally, web apps won’t apply to multi-session VMs because of how by default they always apply in the user context.
  • The next requirement involves the configuration of all the apps. They must indicate Required or Uninstall app assignment intent. As far as the Available apps deployment intent goes, it’s not going to have support on multi-session VMs.       
  • For any Win32 apps with configuration to install in the system context, and have dependencies relationships on any apps configured, to install in the user context, their installation is not possible. Instead, you’ll need to create a separate instance of the system context app if you intend to apply to a Windows 10 or Windows 11 Enterprise multi-session VM. Alternatively, you must verify all the app dependencies are configured to install in the system context.
  • At present, there is no support in Microsoft Intune for MSIX app attach and Azure Virtual Desktop RemoteApp.

Script deployment

When it comes to script deployment, those configured to run in the system context, with assignment to devices, will have support on Windows 10 or Windows 11 Enterprise multi-session.

To configure this, navigate to Script settings and turn the Run this script using the logged on credentials to No. On the other hand, scripts configured to run in the user context and with assignment to users, will have support on Windows 11 Enterprise multi-session. Similarly, you can configure this by going over to Script settings. But this time, turn the Run this script using the logged on credentials to Yes.

Windows Update for Business

Managing the Windows Update settings for quality (security,) updates for Windows 10, or Windows 11, Enterprise multi-session VMs uses the settings catalog. Finding the supported settings that are necessary is pretty straightforward. You’ll first need to configure a settings filter for Enterprise multi-session. After that, you can expand the Windows Update for Business category. See the settings you can find in the catalog below:

Remote actions

When it comes to Windows 10 or Windows 11 remote actions, there are several that will not be supported. As a result, they will appear grayed out in the UI as well as disabled in Graph for Windows 10 or Windows 11 Enterprise multi-session VMs. These remote actions are as follows:

  • Autopilot reset
  • BitLocker key rotation
  • Fresh Start
  • Remote lock
  • Reset password
  • Wipe

Retirement

If you decide to delete certain VMs, then you can do so. But the device records will still remain in the Microsoft Endpoint Manager admin center. However, depending on the cleanup rules configured for the tenant, they will still automatically clean up.

Security baselines

Although security baselines are currently not available for Windows 10 or Windows 11 Enterprise multi-session, it’s still a good idea to go over those available. Having done that, you can then go to the Settings catalog and configure the recommended policies and values. This is vitally important as Windows security baselines intend to reinforce security for users and devices.

Using security baselines means that you can leverage the best practices and recommendations for enhanced security. And even though these security baselines come as groups of pre-configured Windows settings, you get the option of customizing each baseline that you deploy to enforce only the settings and values needed.

This is particularly important because the vast majority of the time the default settings in the security baselines are very restrictive. So, it would be good practice to adapt the baselines to meet your needs so that they do not conflict with any of your other pre-existing settings or features.

Unsupported configurations

There are some additional configurations that are not supported on Windows 10 or Windows 11 Enterprise multi-session VMs. Hopefully, this will change sooner rather than later. But currently Out of Box Experience (OOBE) enrollment isn’t available nor does it have support.

The unavailability of this option means that both Commercial OOBE and Windows Autopilot are not supported. And the same also applies to the Enrollment status page. Furthermore, as for the China Sovereign Cloud, Windows 10 or Windows 11 Enterprise multi-session is not as yet supported.

Troubleshooting common issues

Enrollment IssuesDetail
Failure to enroll hybrid Azure AD-joined virtual machineNormally, auto-enrollment is set up to use user credentials. However, for Windows 10 or Windows 11 Enterprise multi-session virtual machines, the enrollment requires using device credentials. You need to use an Azure Virtual Desktop agent that is version 2944.1400 or later. Another issue is having more than a single MDM provider, which isn’t supported. You’ll also have issues with Windows 10 or Windows 11 Enterprise multi-session VMs configured outside of a host pool. This is because Microsoft Intune only supports VMs that are provisioned as part of a host pool. If your Azure Virtual Desktop host pool hasn’t been created through the Azure Resource Manager template, then that will present a problem. 
Failure to enroll Azure AD-joined virtual machineIt could be as simple as you using an Azure Virtual Desktop agent that is not updated. You should be using an agent that is version 2944.1400 or later.If your Azure Virtual Desktop host pool hasn’t been created through the Azure Resource Manager template then that will  present a problem. 

More about configuration

Configuration issuesDetail
Failure of Settings catalog policyStart by verifying whether the VM is enrolled using device credentials because at present enrollment with user credentials is not supported for Windows 10 or Windows 11 Enterprise multi-session.  
Configuration policy didn’t applyWith the exception of Certificates, know that templates aren’t supported on Windows 10 or Windows 11 Enterprise multi-session. Therefore, the creation of all policies must be done via the settings catalog.
Configuration policy reports as Not applicableIt’s not all policies that are applicable to Azure Virtual Desktop VMs.
When applying the filter for Windows 10 or Windows 11 Enterprise multi-session edition, the Microsoft Edge/Microsoft Office ADMX policy is not showing upThe application of these settings is dependent on having those apps installed on the device, not on the Windows version or edition. In addition, the removal of filters applied in the settings picker may be necessary if you want to add these settings to your policy.  
App configured to install in system context didn’t applyStart by checking that the app doesn’t have a dependency or supersedence relationship on any of the apps configured to install in the user context. As of yet, Windows 10 or Windows 11 Enterprise multi-session doesn’t support user context apps.
Update rings for Windows 10 and later policy didn’t applyAt the time of writing, Windows Update for Business policies aren’t yet supported.

Availability of FSLogix Profiles

Another exciting new feature recently announced, is the availing of FSLogix Profiles for Azure AD-joined VMs for hybrid users in Azure Virtual Desktop. You can make use of Azure AD Kerberos with Azure Files to access file shares from Azure AD-joined VMs. This means you can then use to store your FSLogix profile containers. This new feature is going to provide you with the following capabilities:

  • You can now configure Azure Files with Azure AD Kerberos by using only a single checkbox.
  • Azure AD-joined Session Hosts can now achieve configuration with Azure AD Kerberos.
  • You can leverage Azure AD Kerberos to store FSLogix profile containers in Azure Files shares.
  • Access permissions for hybrid users, managed in Active Directory are also configurable.
  • The network line-of-sight from the Session Host to the Domain Controller can now be removed.

Getting started with Azure Virtual Desktop

This new release will be available on Windows 10, Windows 11, and Windows Server 2022 session hosts. Before you proceed, you first need to check the requirements to configure Azure Files with Azure AD Kerberos authentication.

A network line-of-sight from the session host to the domain controller is not necessary for FSLogix profiles in Azure Virtual Desktop. It will still be a requirement for configuring the permissions on the Azure Files share.

Configure your Azure storage account and file share

You will need to follow the steps given below to store your FSLogix profiles on an Azure file share:

  1. Start by creating an Azure Storage account if you don’t already have one.
  2. Next, you go to your storage account and create an Azure Files share where you can store your FSLogix profiles.
  3. To enable access from Azure AD-joined VMs you need to enable Azure AD Kerberos authentication on Azure files.
  • For the configuration of the directory and file-level permissions you need to go to Configure the storage permissions for profile containers. And go through the recommended list of permissions for FSLogix profiles.
  • It’s possible for users to accidentally delete the user profile or access the personal information of different users. This is common if you do not put in place adequate directory-level permissions. Such mishaps are costly and need to be avoided by ensuring all users have the proper permissions.

Configure the session hosts

Configuring the session hosts is required for you to be able to access Azure file shares from an Azure AD-joined VM for FSLogix profiles. To do this, you can follow the steps below:

  1. You first need to enable the Azure AD Kerberos functionality and there are a few methods you can use to do this:
  2. Configure this Intune Policy CSP and apply it to the session host Kerberos/CloudKerberosTicketRetrievalEnabled.
  3. You can also configure the Group policy and use it for the session host: AdministrativeTemplates\System\Kerberos\Allow retrieving the Azure AD Kerberos Ticket Granting Ticket during logon
  4. Lastly, you can create the following registry value on the session host: reg add HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Kerberos\Parameters /vCloudKerberosTicketRetrievalEnabled /t REG_DWORD /d 1 
  • If you want to use Azure AD with a roaming profile solution such as FSLogix, then the credential keys in Credential Manager should be from the currently loading profile. Having it set up this way means that you’ll be able to load your profile on many different VMs. By simply running the command below, you can create a new registry value. This enables the setting: reg add HKLM\Software\Policies\Microsoft\AzureADAccount /v SLoadCredKeyFromProfile /t REG_DWORD /d 1   

Configure FSLogix on the session host

  • Configuring a VM with FSLogix is possible by following a set of instructions whenever you configure a session host. You have several options available to make sure that the registry keys are set on all session hosts. These images can be set in an image or you could configure a group policy. See the steps for configuring FSLogix below:
  • If necessary, start by updating or installing FSLogix on your session host. In instances where you want to create the session host using the Azure Virtual Desktop service, you’ll need to have FSLogix already pre-installed.
  • To create the Enabled and VHDLocations registry values you should follow the instructions in Configure profile container registry settings. The value of VHDLocations should be set to: \\<Storage-account-name>.file.core.windows.net\<file-share-name>

Test your deployment

The final step, after completing the necessary steps for the installation and configuration, is to test the deployment. This allows you to verify everything is working properly. You can do this by signing in with a user account with assignment to an application group on the host pool.

Before you sign in, make sure that the account that you are going to use has the necessary permission to use the file share. For any users that have previously signed in, you’ll find available existing local profiles that the service is going to use during the session.

If you don’t want to create a local profile, then you can create a new user account to use for your tests. Alternatively, you can enable the DeleteLocalProfileWhenVHDShouldApply setting by using the configuration methods that you can find in Tutorial: Configure profile container to redirect user profiles.         

With these steps complete and the user sign-in successful, you can go ahead and check the profile in Azure Files.

Directions

  • Navigate to the Azure portal and sign in with an administrative account.
  • Next, go to the sidebar and choose Storage accounts.
  • You’ll need to then select the storage account that you had configured for your session host pool.
  • Once again, go to the sidebar and this time choose File shares.
  • Find the file share that you configured to store the profiles and select it.
  • What you should now see depending on whether everything has been configured correctly is a directory with a name formatted in the following manner: <user SID>_<username>.   

In addition to testing your deployment, you may occasionally encounter issues with FSLogix products. Below is a table demonstrating some actions you can take, should you encounter challenges.

Issues

IssueActions you can take
Profile ContainerPerform a comparative analysis between the data from this documentation and the current values of Status, Reason, and Error. Identify non-zero codes by looking at the log files. Verify you’ve met all requirements. The FSLogix Profiles product can only work properly if this patch is installed for users of Windows 7 or Windows Server 2008 R2. Additionally, check that the Enabled setting is set to 1. Check the ‘VHDLocations’ setting for a valid file system location. Check on the file server to see if the user has the necessary permissions to the VHD(X). Verify that the user is on the local FSLogix Profiles Include group rather than the Exclude groups there a pre-existing local profile for the user?
Office ContainerPerform a comparative analysis between the data from this documentation and the current values of Status, Reason, and Error. Check for non-zero codes being returned by looking at the log files. Check that you’ve met all requirements. Check that the Enabled setting is set to 1. Check the ‘VHDLocations’ setting for a valid file system location. Verify that the user is on the local FSLogix ODFC Include group rather than the Exclude group. You should expect to NOT see OneDrive icons when using Windows Server 2016 as this is intended. When FSLogix is virtualizing Outlook Search you should also expect to NOT see Outlook in the windows indexing options.
Application MaskingCheck that the rules have been moved to the Rules folder. Using sc query frxsvc and sc query frxdrv verify that the service and driver are running.  Check for non-zero codes being returned by looking at the logs. Verify in the assignment files that the user is included in the assignment: Open the rule in the rule editor. Next, click the manage assignments button. Check that the concerned user is on the list and that the rule applies. In cases where folders or files are hidden from an excluded user then check that the Apply Rules to System button is not clicked.
Java Version ControlVerify that rules are loading properly by checking the IE Plugin for errors. From Tools > Manage Add-ons, check that FSLogix Internet Explorer Plugin is installing and enabling. Also, check that the rules move to the Rules folder. Additionally, check that you’re using 32-bit Java. Ensure that the Service and Driver are running.

Wrap Up About Azure Virtual Desktop

Organizations are witnessing a rapid change in the work environment as well as the preferences of employees. And as the popularity of cloud-based solutions grows organizations are having to invest in technology that supports a hybrid working model. This has plenty of potential benefits for any organization. Also, these include employee satisfaction garnered from some now preferring to work from home when possible.

By leveraging Azure Virtual Desktop, you can get a secure and cost-effective solution that eliminates the complexities of legacy virtualization infrastructure. This means no more fretting over managing licensing, RDS gateways, load balancing, and more.

In addition to the already extensive list of capabilities, Microsoft is now introducing Azure Virtual Desktop multi-session with Microsoft Intune and FSLogix Profiles for Azure AD-joined VMs. These new capabilities are going to further enhance the user experience and potentially increase productivity. Users will get an improved experience that gives them the familiar Windows 10 or Windows 11 experience. Without a doubt, these new features will help your organization to have a more efficient hybrid environment.

Windows Autopilot to enroll hybrid Azure AD-joined error

Posted on by
Reply

I came across this issue where joining the on-premise Active Directory failed during Windows Autopilot.

The full error message from the event viewer of the machine where the Intune Connector is installed.

Intune Connector event viewer error:

RequestOfflineDomainJoinBlob_Failure: Failed to generate ODJ blob
RequestId: 9d1e4614-3217-4d7c-87ef-df7fceb648c9
DeviceId: 83c83fd7-10c8-49c8-9c15-8489ff126eed
DomainName: Mydomain.LOCAL
RetryCount: 0
ErrorDescription: Failed to call NetProvisionComputerAccount machineName=AutoP-PFv5HetaE
InstanceId: C07C1188-586C-44BD-93C1-F236A633DA9B
DiagnosticCode: 268435455
WinErrorCode: 8557
DiagnosticText: We are unable to complete your request because a server-side error occurred. Please try again. [Exception Message: “DiagnosticException: 0x0FFFFFFF. We are unable to complete your request because a server-side error occurred. Please try again.”] [Exception Message: “Failed to call NetProvisionComputerAccount machineName=AutoP-PFv5HetaE”]

The Intune Connector for your Active Directory creates Microsoft Autopilot-enrolled computers in the on-premises Active Directory domain. The computer that hosts the Intune Connector must have the rights to create the computer objects within the domain.


Microsoft Autopilot error details continued…

Follow the guide to delegate control to the computer account hosting the Intune Connector. It solved the issue in this case, as the rights was misconfigured.

  1. Open Active Directory Users and Computers (DSA.msc).
  2. Right-click the organizational unit to use to create hybrid Azure AD-joined computers > Delegate Control.The Delegate Control command.
  3. In the Delegation of Control wizard, select Next > Add > Object Types.
  4. In the Object Types pane, select the Computers > OK.The Object Types pane.
  5. In the Select Users, Computers, or Groups pane, in the Enter the object names to select box, enter the name of the computer where the Intune Connector is installed with Windows Autopilot.The Select Users, Computers, or Groups pane.
  6. Select Check Names to validate your entry > OK > Next.
  7. Select Create a custom task to delegate > Next.
  8. Select Only the following objects in the folder > Computer objects.
  9. Select Create selected objects in this folder and Delete selected objects in this folder.The Active Directory Object Type pane.
  10. Select Next.
  11. Under Permissions, select the Full Control check box. This action selects all the other options.The Permissions pane.
  12. Select Next > Finish.

Conclusion, Windows Autopilot

Review the full prerequisites: https://learn.microsoft.com/en-us/mem/autopilot/windows-autopilot-hybrid

Script to add a Windows 365 Cloud PC User – Add-CloudPCUser.ps1

Posted on by
4

Script prerequisites for Windows PowerShell:

1. A minimum Windows PowerShell version of ‘7.2’ is required to run this script. The script automatically checks for and installs module if needed.

2. Windows 365 Cloud PC Management PowerShell Module must be installed on local machine. The script automatically checks for and installs module if needed.

3. Microsoft Graph PowerShell Module must be installed on local machine. The script automatically checks for and installs module if needed.

4. An Azure AD user that has an admin consent permission, if needed, to approve the following permissions in Microsoft Graph application in Azure AD apps:

CloudPC.ReadWrite.All, DeviceManagementConfiguration.ReadWrite.All, DeviceManagementManagedDevices.ReadWrite.All, Directory.Read.All

.PARAMETER Username

Username to add to Windows 365 Cloud PC

.PARAMETER UsersListPath

CSV file path containing a list of users to add to Windows 365 Cloud PC. Sample file contents:

———- Windows PowerShell Continued

upn

[email protected]

[email protected]

[email protected]

[email protected]

.PARAMETER Group

Azure AD group name to add users to

.EXAMPLE

.\Add-CloudPCUser.ps1 -Username [email protected] -Group IT -Verbose

.EXAMPLE

.\Add-CloudPCUser.ps1 -UsersListPath c:\temp\users.csv -Group Sales -Verbose

Direct link: Add-CloudPCUser.ps1
Github – https://github.com/ThomasMarcussen/assortedScripts/

Download all OneDrive files for a user using PowerShell

Posted on by
Reply 
Powershell script to download a users OneDrive content.

New and improved: Download-OD4BAccount.ps1

.Example 
.\Download-OD4BAccount.ps1 -Username [email protected] -Destination "D:\OD4B" -ThreadCount 3 -Verbose

Script prerequisites:

1. Microsoft Graph PowerShell Module installed on local machine. The script automatically checks for and installs module if needed.

2. An Azure AD user that has an admin consent to approve the following permissions in Microsoft Graph application in Azure AD apps:
   Organization.Read.All, User.Read.All, Directory.Read.All

This was inspired by Adnan's script, which i have used on multiple occasions.
But when downloading very large OneDrive data structures, Multi-Threads seems to work faster and smoother.