Recreate Desktop and Start Menu shortcuts #ASRmageddon

It's just a beautiful Friday 13th, due to a Windows Defender update that removed shortcuts from many machines with Attack Surface Reduction enabled for Macros. (Work-around "Setdefender ASR rule 92e97fa1-2edf-4476-bdd6-9dd0b4dddc7b to audit only unit issue is resolved.") This blog post describes how you can recreate the missing shortcuts and deploy this using Intune or run it manually on the affected system(s).

Read IntuneManagementExtension logs using PowerShell

Reading logs is always something you just have to do, but the Intune logs are not easy to read without tools like CMTrace on the user's device. (The formatting is not that nice without it) In this blog post, I will show you an easy way to read one or two specific logs, or all the logs at once, and each in its own Out-Gridview console for easy filtering when searching for keywords.