210 questions with Microsoft Security | Intune | Compliance tags

Sort by: Updated
Updated Created Answers
1 answer

Blocking Emails Containing Credit/Debit Card Information in Office 365

I have an Office 365 Business Basic subscription, and I’d like to block all incoming and outgoing emails that contain credit or debit card information. Could someone guide me on how to set this up?

Microsoft 365 and Office | Development | Other
Microsoft 365 and Office | Install, redeem, activate | For business | Windows
Microsoft Security | Intune | Compliance
asked 2025-02-08T08:06:10.89+00:00
Parsian02 20 Reputation points
commented 2025-02-09T06:44:51.2+00:00
Vasil Michev 123K Reputation points MVP Volunteer Moderator
1 answer

Endpoint DLP still shows disabled even after onboarding the device in MDE

I've seen somewhere that onboarding the device in MDE won't be requiring to onboard the device to Purview portal for DLP to work but below image shows that my Endpoint DLP Status is disabled. Take note that these machines are non-domain joined. In the…

Microsoft Security | Intune | Compliance
Microsoft Security | Microsoft Purview
asked 2024-09-25T11:44:46.2933333+00:00
Bree 5 Reputation points
edited the question 2025-01-27T04:56:48.3166667+00:00
Anonymous
2 answers

Intune role permission to view 'Default Device Compliance Policy'

Hi, Please can someone advise which Intune role permission is required to allow visibility of the 'Default Device Compliance Policy' under the Device compliance page? I have a RBAC role (assigned to a scope tag), with Read and View reports allowed for…

Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2024-07-11T10:50:56.2133333+00:00
Phil 96 Reputation points
answered 2025-01-22T21:16:39.35+00:00
Laquerriere, Guillaume 1 Reputation point
1 answer

Intune Kiosk Mode Copy/Paste

Hello, We currently have a number of Single app Kiosks using Edge. It's been noticed that Copy/Paste is disabled by default. I havent seen this in any documentation. Is there any way to enable this even if its by a reg key rather than intune setting?

Microsoft Security | Intune | Security
Microsoft Security | Intune | Compliance
Windows for business | Windows Client for IT Pros | User experience | Other
Microsoft Security | Intune | Other
asked 2025-01-16T09:44:34.8933333+00:00
Craig Ramsey 0 Reputation points
commented 2025-01-20T04:22:31.19+00:00
Anonymous
3 answers

what solution has replaced microsoft Network Access Protection (NAP)

NAP is a client health policy creation, enforcement, and remediation technology. With NAP, system administrators can establish and automatically enforce health policies, which can include software requirements, security update requirements, and other…

Windows for business | Windows Client for IT Pros | Networking | Network connectivity and file sharing
Windows for business | Windows Client for IT Pros | Devices and deployment | Configure application groups
Microsoft Security | Intune | Security
Microsoft Security | Intune | Compliance
asked 2024-03-09T17:17:29.5033333+00:00
maxamuud maxamed 0 Reputation points
edited a comment 2025-01-09T20:55:31.99+00:00
Eduardo Mozart de Oliveira 0 Reputation points
1 answer

how to enable remote lock in Microsoft Intune ?

Hi Reader, I would like to know how to enable remote lock in Microsoft Intune ? The device which I need to lock remotely is compliant and that I have checked from the overview and the mentioned device is "Microsoft Entra Joined" also. However,…

Microsoft Security | Intune | Security
Microsoft Security | Intune | Configuration
Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2025-01-04T12:55:23.3+00:00
MindQuad | Dhruv Soni 0 Reputation points
commented 2025-01-09T02:24:11.8766667+00:00
Anonymous
1 answer

How to prepare clean-up rule in Intune to remove only Android and iOS non-compliant devices?

Hello, I want to know, how to create clean-up rule in Intune to only remove the "iOS and Android" non-compliant devices from Intune. Thanks!

Microsoft Security | Intune | Microsoft Intune iOS
Microsoft Security | Intune | Microsoft Intune Android
Microsoft Security | Intune | Configuration
Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2023-05-31T05:24:43.84+00:00
Khushboo Kumari 112 Reputation points
commented 2025-01-08T08:52:29.53+00:00
Gavrilovic Marko 0 Reputation points
2 answers

How to Enable Remote Lock in Microsoft Intune?

Hi Reader, I would like to know how to enable remote lock in Microsoft Intune ? My aim is to Remotely lock any Entra id connected device (through work or school account) in my organization through microsoft intune of the Global Admin. The device which I…

Microsoft Security | Intune | Security
Microsoft Security | Intune | Configuration
Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2025-01-02T09:03:48.9+00:00
MindQuad | Dhruv Soni 0 Reputation points
commented 2025-01-07T01:27:15.27+00:00
Crystal-MSFT 54,181 Reputation points Microsoft External Staff
1 answer

How to Enable Remote Lock in Microsoft Intune?

Hi Reader, I would like to know how to enable remote lock in Microsoft Intune ? The device which I need to lock remotely is compliant and that I have checked from the overview and the mentioned device is "Microsoft Entra Joined" also. However,…

Microsoft Security | Intune | Security
Microsoft Security | Intune | Configuration
Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2025-01-02T09:09:40.04+00:00
MindQuad | Dhruv Soni 0 Reputation points
commented 2025-01-07T01:25:42.7966667+00:00
Crystal-MSFT 54,181 Reputation points Microsoft External Staff
2 answers

2024 and still receiving 2016345612(Syncml(500)

had a user reinstall win 11 on a laptop with a new m2 drive 2 tb storage installed. we only use windows defender and with rea-time protection, our other devices ran through intune did not experiance these problems, this laptop seems to be a problem child…

Microsoft Security | Intune | Compliance
asked 2024-03-11T16:48:56.5933333+00:00
AdamTerry427 0 Reputation points
commented 2025-01-03T16:31:23.8133333+00:00
Sherin Stephen 0 Reputation points
1 answer

Device compliance in multitenant for CSP

Hello all, I have two existing tenants: TenantA - Work tenant, containing all my data and services and my work account TenantB - Admin tenant, containing our tools for our IT activity toward our customers and my admin account. Let say work@tenantA…

Microsoft Security | Intune | Compliance
Microsoft Security | Microsoft Entra | Microsoft Entra ID
Microsoft Security | Intune | Other
Microsoft Security | Microsoft Entra | Other
asked 2023-07-14T07:42:47.2633333+00:00
Adrien Maugard 121 Reputation points
commented 2024-12-17T05:15:11.3333333+00:00
Crystal-MSFT 54,181 Reputation points Microsoft External Staff
2 answers One of the answers was accepted by the question author.

Microsoft O365 Group Mailbox only retention

Hi, I need to create a retention policy to delete emails older than 1 month from O365 group email. Already created a retention policy in Purview and changed the application attribute Like this from Powershell --> Set-RetentionCompliancePolicy…

Exchange Online
Exchange Online
A cloud-based service included in Microsoft 365, delivering scalable messaging and collaboration features with simplified management and automatic updates.
6,698 questions
Microsoft 365 and Office | Install, redeem, activate | For business | Windows
Microsoft Security | Intune | Compliance
asked 2024-12-03T15:59:38.95+00:00
lmgmcg 130 Reputation points
commented 2024-12-05T09:01:28.6566667+00:00
lmgmcg 130 Reputation points
1 answer

2016281112 Remediation failed

Hello everyone, I have the problem, that only a few of our companies devices get marked as noncompliant with a "2016281112 (Remediation failed)" for the system account. It's only for the minimum password length as well. Most other devices work…

Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2024-03-19T14:16:33.0233333+00:00
Von Bandel, Kai 0 Reputation points
commented 2024-12-03T05:53:05.8833333+00:00
Kha Zhun Wong 0 Reputation points
1 answer

Implementing EPAC (ISO 270001) using Terraform

Hello Everyone , My company is using CAF to manage policies on Azure infrastructure. Now they want to switch to EPAC for better policy management. This is our first time for implementing EPAC. Have below queries for which need suggestion. How to decide…

Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
1,121 questions
Microsoft Security | Intune | Compliance
asked 2024-10-28T07:27:35.66+00:00
Heena Alawadhi 0 Reputation points
commented 2024-11-28T09:22:49.86+00:00
Shikha Ghildiyal 6,805 Reputation points Microsoft Employee Moderator
1 answer

Restricting Access to a Web Application Based on Device Compliance with Intune and Azure AD

I am currently using Microsoft Intune to manage access to a third-party web application that has been registered as a web link app type. I have successfully added the application in Intune, and it appears in the Company Portal. However, users can share…

Microsoft Security | Intune | Microsoft Intune iOS
Microsoft Security | Intune | Microsoft Intune Android
Microsoft Security | Intune | Application management
Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2024-11-04T09:53:45.36+00:00
Mohan s 20 Reputation points
commented 2024-11-26T06:05:47.5+00:00
ZhoumingDuan-MSFT 17,345 Reputation points Microsoft External Staff
1 answer

Conditional access for mobiles: Android and iOS

Hi everyone, I am asking for support, When I try to add a business account in a native application such as gmail on an unregistered cell phone, after specifying only the business email address and domain password = access is not possible (correct…

Microsoft Security | Intune | Security
Microsoft Security | Intune | Microsoft Intune iOS
Microsoft Security | Intune | Microsoft Intune Android
Microsoft Security | Intune | Compliance
Community Center | Not monitored
asked 2024-11-06T09:29:40.34+00:00
Mateusz Michalak 0 Reputation points
commented 2024-11-21T07:22:33.92+00:00
ZhoumingDuan-MSFT 17,345 Reputation points Microsoft External Staff
1 answer

How to Restrict Access to a Web Application Based on Device Compliance Using Intune and Azure AD?

I am currently using Microsoft Intune to manage access to a third-party web application that I have registered as a web link app type. I’ve successfully added the application in Intune, and it appears in the Company Portal. However, I am facing an issue…

Microsoft Security | Intune | Microsoft Intune iOS
Microsoft Security | Intune | Microsoft Intune Android
Microsoft Security | Intune | Application management
Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2024-11-04T09:59:18.2+00:00
Mohan s 20 Reputation points
commented 2024-11-21T07:21:02.85+00:00
ZhoumingDuan-MSFT 17,345 Reputation points Microsoft External Staff
1 answer

What API or PowerShell cmdlet can be used to collect Microsoft compliance manager score data?

To collect Compliance Manager score data, you can utilize the Microsoft Graph API or PowerShell with appropriate cmdlets.

Microsoft Security | Intune | Compliance
Microsoft Security | Microsoft Graph
Microsoft Security | Microsoft Purview
asked 2024-09-27T06:47:01.2733333+00:00
Ajay m 0 Reputation points
answered 2024-11-19T21:04:38.65+00:00
Nick Eckermann 606 Reputation points
1 answer

Encryption of data storage on device error 2016345612

Hello, We are using the Windows Security Compliance policy and we are noticing quite a few devices are erroring on the "Encryption of data storage on device" section with the following State details: 2016345612(Syncml(500): the recipient…

Microsoft Security | Intune | Compliance
Microsoft Security | Intune | Other
asked 2024-11-12T16:39:27.29+00:00
Dean Egan 50 Reputation points
commented 2024-11-15T02:47:37.65+00:00
Crystal-MSFT 54,181 Reputation points Microsoft External Staff
1 answer

How create a alert when login or access the mailbox of a user?

Director tells me that someone has login in your email account. It's possibly created an alert to specify the user mailbox and alerts via send a email to admin groups.

Exchange Online
Exchange Online
A cloud-based service included in Microsoft 365, delivering scalable messaging and collaboration features with simplified management and automatic updates.
6,698 questions
Outlook | Windows | Classic Outlook for Windows | For business
Microsoft 365 and Office | Install, redeem, activate | For business | Windows
Microsoft Security | Intune | Compliance
asked 2024-03-22T20:12:07.2133333+00:00
Daniel Torres 1 Reputation point
commented 2024-10-23T13:23:53.8466667+00:00
Nick Monreal 0 Reputation points