Windows 10

Using Azure Storage Account to publish Enterprise Mode List

When migrating your environment to Window 10, you would also be introduced to Edge. I like Edge, don’t get me wrong, but that’s not always the case with your old web applications.

The rescue squad in this case is something called Enterprise Mode
https://technet.microsoft.com/en-us/itpro/microsoft-edge/emie-to-improve-compatibility

Configuring the Enterprise Mode list is quite straight forward when using the Enterprise Mode Site List Manager, so I won’t cover that one in this post.

The next step after getting the configuration right, is to make it available for all clients, and what’s better than a server less infrastructure to handle that part.

In this case I’ve chosen to host the file in a Azure Storage Account, which makes it highly available with a decent SLA, and it’s really fast to get started if you have a Azure Subscription.

  1. Start by creating an Azure Storage Account in a datacenter near you.
  2. Create a container, and set the Access type to Blob
  3. Upload your generated XML file.

There is just one caveat that I want to highlight. That’s the Cache-Control of your blob. If you don’t remove that one, the file will be cached on the client and it takes time to get new configuration rolled out.

Luckily, solving it is simple. Open Microsoft Azure Storage Explorer, browse to the file you have uploaded, and edit the Properties. In the CacheControl field, add “public, no-cache” , and click Save.

xmlfileproperties

This ensures that the file isn’t cached on the client, and therefor also updated fast when you change it. For details on how to configure the perfect CacheControl for your environment, have a look at the following document: https://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.9

 

Finding your Bitlocker Recovery Key in Azure AD

When you Azure AD join your device and activate Bitlocker, you get the option to store the Recovery Key in Azure AD.

If you ever wonder where to find them, they are all available from the Details Window for your registered devices in the Azure AD Management Portal.

A few easy steps to get there

  1. Open Azure AD in the Management Portal
    https://manage.windowsazure.com
  2. Open the Users tab and search/browse for the account you need to find recovery key for, then open it.
  3. Go to the Devices tab, and in the View box, select Devices.
  4. Select the affected device, and click View Details.
    All registered keys should be visible