A major national association representing the largest network of craftsmen, builders, innovators and problem solvers was forced to shift to an all-remote workforce almost overnight because of the Covid-19 pandemic. They implemented a fleet of laptops without centralized management that greatly impacts security risks. After further examination of their existing infrastructure, Canalini determined that they were using Microsoft Endpoint Manager Configuration Manager (MEMCM) to manage on-prem workstations and already had a Microsoft Azure Active Directory (AD) tenant. Management of internet-only (cloud-based) was not possible with their existing toolset. More importantly, there was no way of ensuring these machines would receive critical Windows updates.