About Roy Klooster
I'm Roy Klooster, an M365 Solution Architect and Compliance & Automation Engineer at Inforcer. I've spent 8+ years designing modern workplace solutions with Microsoft 365, building compliance baselines, and creating automation tooling for enterprise and MSP environments.
My day-to-day work spans the full M365 stack: Intune endpoint management, Entra ID identity governance, Conditional Access policy design, Microsoft Defender for Endpoint, and PowerShell automation with the Microsoft Graph API. I focus on making security and compliance practical — turning complex configurations into repeatable, auditable baselines that scale across multiple tenants.
What I Write About
This blog covers the tools, techniques, and overlooked features I encounter in production M365 environments. The content falls into a few categories:
- Forgotten Features — A series spotlighting underused capabilities in Entra ID, Intune, and Conditional Access that solve real problems when configured correctly.
- The MSP License Ladder — A series for managed service providers on when and why to upgrade Microsoft license tiers, with working scripts to justify each step.
- PowerShell Tools — Open-source modules and scripts for M365 reporting, compliance auditing, and multi-tenant management.
Open Source
I maintain several PowerShell modules and tools, all available on GitHub:
- RKSolutions Module — Microsoft Graph reporting for Intune, Entra ID, and M365 license management.
- InforcerCommunity — Community-built PowerShell module for the Inforcer REST API.
- ASR Rule Inspector — Audit tool for verifying Attack Surface Reduction rule enforcement across endpoints.
- MaesterDiff — Compare Maester security baseline test results across tenants or time periods.