github KelvinTegelaar/CIPP v10.1.0
v10.1.0 - The Bulldog Smash
on GitHub

9 hours ago

I kissed a dog and I liked it

We've had some amazing times in the last couple of weeks; most of our team was at Right of Boom this month and we launched our first official CIPP training there. Seeing all the people that came to visit our booth and training was amazing; we had about 180 people following our session and teaching them about CIPP, about M365, about why Microsoft made specific choices and so much more.

Remember that this was only the first of many; our CIPP certification is coming to a location near you soon. Completely free M365 education brought to you from an MSP perspective. No funneling, no wanting you to buy products, just pure education.

Lets make ourselves a new cocktail The Bulldog Smash and look at the changes.

Custom Intune Application?! Oh my.

So for the longest time one of the requests we've had was "How can we add our own Intune Applications into CIPP?" and we had to find a way to make it possible. One of our contributors tried creating a custom app builder but it turned out to be pretty hard to use that with our infrastructure. Instead, we've chosen for a more industry standard solution: PowerShell. you can now add any Intune app, template it, and deploy it across all your tenants easily.

We're also adding templating, and an entire curated catalogue of applications for everyone to use in the next release. Want to check out how it looks? Here's a screenshot

image

BPA deprecation & log Retention Policies

So as we announced previously, we're deprecating BPA in favour of our tests - Tests are the replacement for custom BPA reports as they'll allow you to collect more information. We've created a new option under the settings menu to re-enabled BPA for if you're still using it, while being aware we're removing it in a later version.

You've also asked us to allow you to retain LESS of the logs, because of organizational reasons. We've introduced a settings menu to allow you to set a logbook retention policy.

Better GDAP and Direct Tenant onboarding

One of the comments in our Discord triggered us to look long and hard at tenant onboarding; the biggest complaint was that it was a lot of places you had to jump to, another was that people forgot to follow the instructions in our docs so we've tried to dive a bit more into how people think and do more actions for you.

So, onboarding has received quite a facelift. If you want to see it, we have a couple of storylanes for you to check here:

Executing the CIPP Setup Wizard First Time Setup → https://app.storylane.io/share/vxdbaztterzq
Adding a GDAP Tenant via the Setup Wizard → https://app.storylane.io/share/p6cyd3t8w8ru
Adding a Direct Tenant via the Setup Wizard → https://app.storylane.io/share/kcszcpgdcg6m

Graph Explorer

We've also upgraded our Graph Explorer, more functionality, more badass reports, and prettification:https://app.storylane.io/share/p0ljufhpgkmb

Universal Search returns

With the hard work of @rvdwegen we've made our universal search box on the dashboard come back. This now searches the entire database for users or groups so you can easily jump to the overview for these.

And so much more:

We've added:

  • View group page to the Groups section
  • View device page to the Intune section
  • DB manual refresh section in settings
  • Graph Explorer UX improvements
  • Universal search (DB-backed)
  • Win32 PowerShell app creation flow
  • Feature flags for opt-in BPA collection
  • Log retention policy (90-day default)
  • Scheduler backoff and retry for rate limits
  • Office Apps Licensing in PhishProtection Standard
  • MFA report improvements for internal guests
  • Ease of GDAP onboarding improvements
  • Docs/guidance on migrating CSP tenant in CIPP
  • Reuseable Intune settings by @MWG-Logan

We've fixed

  • Offboarding Wizard Step 3: user lists not refreshing on tenant switch (stale React Query cache key)
  • Offboarding reruns not working correctly
  • Custom roles preventing Chocolatey app deployment
  • NinjaOne/Hudu Device Sync issues
  • SAM user not being auto-added to GDAP groups during onboarding
  • Exchange user forwarding detection ambiguous with duplicate display names
  • Exchange info card render issue
  • Scripted alert errors creating excessive noise
  • Group template deployment missing alias validation
  • Conditional Access template import dropping uploads
  • Azure PowerShell onboarding blocked by error 50199
  • App approval templates missing default delegated scopes
  • DKIM rotate standard not updating both selectors
  • Standards save dialog saying 'every 3 hours' when backend runs every 4 hours
  • Manual remediation failures
  • Bug with bulk drift remediation actions payload

We've improved

  • Exchange calendar permissions now served via cache
  • DomainAnalyser pulls domains from DB instead of Graph
  • Intune standard runtime overhaul
  • Adjusted Exchange org management role check threshold
  • Renamed 'Classic' to 'Standards' for clearer Standards vs Drift messaging
  • Removed Quad9 DNS option
  • Refactored Backup Engine (New-CIPPBackup → New-CIPPBackupTask)
  • Refactored Drift Management Alignment Engine
  • Refactored NinjaOne Synchronization Pipeline
  • Clarified Group Template Username requirements
  • Fixed standards timing inconsistency in docs (3h → 4h)
  • Alert Comment improvements

Sponsors

We extend our gratitude to our supporters at https://renroros.no/, https://immy.bot/, https://oit.co/, https://ninjaone.com/, Huntress at https://huntress.com/, https://halopsa.com/, https://www.deskdirector.com/, https://hudu.com/, our friends at https://www.meetgradient.com/, https://rewst.io/ https://augmentt.com/ and newly added Domotz and Guardz!

New Contributors

Full Changelog: v10.0.0...v10.1.0

New Contributors API

Full API Changelog: KelvinTegelaar/CIPP-API@10.0.9...10.1.0

Check out latest releases or
releases around KelvinTegelaar/CIPP v10.1.0

Don't miss a new CIPP release

NewReleases is sending notifications on new releases.

Get notifications