Microsoft Portals
      Back to home
      1. Help Center
      2. Microsoft Portals

      What is Managed by Devicie Automation

      Overview

      This document explains Devicie's automation tool, designed to streamline Intune environment management while ensuring security and stability. Below is a quick overview of its functionalities.

      Automated Deployment and Customization

      Devicie creates an optimized environment that meets corporate standards while integrating key customization elements:

      • Branding elements: Custom color themes, backgrounds, and lock screens.

      • Corporate assets: Office templates, fonts, and personalized welcome messages.

      • Browser configurations: Extensions for Chrome, Edge, and other supported browsers; home screens and policy customizations.

      • File management: OneDrive folder redirects for seamless storage integration.

      • Start menu and taskbar layouts: Custom shortcuts for desktop apps and web links.

      • Networking setups: Wi-Fi profiles and printer configurations.

      • Security and access: Certificate installations to ensure secure device connections.

      • Microsoft Office personalization: Organization-wide templates and macro security configurations.

      Local Test Environment for Deployment Validation

      Before full-scale implementation, a local test environment allows for controlled deployments, ensuring alignment with organizational needs:

      • Role-based access management: Define and assign attributes to role groups.

      • Pilot testing and deployments: Structured trials with organizational role groups.

      • Application inventory: License rationalization and continuous assessment.

      • Office Personalization and Macro Security: Distribution of templates via SharePoint, enabling automatic mapping of template libraries for Microsoft Word and PowerPoint.

      Zero-Touch Device Deployment with Intune Autopilot

      Leverage Intune Autopilot for automated provisioning and configuration:

      • Devices can be prepared by either the manufacturer or the organization.

      • Upon first use, the corporate login appears, followed by automated installation of files, applications, and secure access to company resources.

      Role-Based Management and Enhanced User Experience

      • Aid in automated end-user onboarding with defined role-based access.

      • Ensure a systematically repeatable deployment process for consistency across all devices.

      • Provide a ticketing system for ongoing updates to the SOE, including:

        • Branding and aesthetic changes.

        • Configuration updates.

        • New deployment features.

        • Technology advancements.

        • Software updates.

      Security Compliance and Corporate Template Distribution

      • Office Personalization and Macro Security adhere to established macro security protocols, including the Essential 8.

      • Facilitate corporate-wide distribution of templates for standardized document creation across all employees.

      Verifying Automations Executed by Devicie

      To confirm whether an automation was processed by Devicie, follow these steps:

      1. Check device logs – Review system event logs to identify execution timestamps and relevant automation processes.

      2. Monitor deployment dashboard – Use the organization's deployment interface to track configuration changes and software installations managed by Devicie.

      3. Validate policy settings – Inspect policy configurations (e.g., browser settings, certificate installations, group assignments) that align with automated provisioning workflows.

      4. Verify template deployment – Ensure Microsoft Office templates and SharePoint mapping have been distributed correctly under automation policies.

      5. Confirm Autopilot enrollment – Check if devices were enrolled in Intune Autopilot, reflecting Devicie’s deployment framework.

      Application Management

      Back Catalog Applications

      Uploads and assignments handled by Devicie automation.

      • Check the Notes section in the application properties. If it contains a GUID, it is part of the back catalog and managed.

      Bespoke Applications

      Custom-built applications designed for specific needs.

      • These are not managed automatically, so updates and assignments will not be reversed.

      Intune and Winget Applications

      Managed by Devicie automation.

      Configuration Profiles

      Config type Managed by Devicie Automation
      Settings Catalog Yes
      Custom Yes
      Delivery Optimization Yes
      Device restrictions Yes
      Kiosk Yes
      Update rings Yes (excluding Pause/Resume) quality updates
      Wi-Fi Yes (WPA-PSK only)
      Certificates No
      Compliance policies No
      VPN No

      Endpoint Security

      Type Managed by Devicie Automation
      Antivirus Yes
      Disk encryption Yes
      Firewall Yes
      Endpoint Privilege Management (EPM) No
      App Control for Business No
      Attack surface reduction (ASR) Yes
      Account protection Yes
      Device compliance No
      Conditional Access No

      Other Settings

      Type Managed by Devicie Automation
      Autopilot profiles Yes
      Enrolment status page (ESP) Yes
      Platform scripts Yes
      Remediation scripts No