This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 69%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
Hi
We can configure different kind of settings, in Endpoint portal, by using Security Baseline profiles, Configuration profiles and Endpoint Security profiles. All of these are equal so if there is two different configuration for same setting, these profiles will conflict.
Do we have any kind of way to scan these profiles for situations, where several profiles configures the same setting, either using the same configuration or conflicting configuration?
Sorry my bad as well - Endpoint Security contains baselines for Windows, Defender and Edge. These are prio 1 from MS point of view. Other features from Endpoint Security is up to you, but you probably want to manage Antivirus, Firewall and Bitlocker at least. It is important that whatever you do, you don't overlap same settings from multiple sources/profiles. Also, if you start using Defender for Endpoint, you will realize you might need ASR for example, to cover all security recommendations.
Hi
What about Endpoint Security profiles? We are using Endpoint portal to configure Defender settings (AV, EDR and so on).
Should we use the Endpoint Security profiles or is it recommended to instead use Configuration profiles/Settings Catalog settings?
Yea, Defender and Edge is similar to Windows Security Baseline, so you should configure them first. I have noticed, that Windows Baseline and Edge Baseline might contain same setting and some conflicts might come out of that. But as I heard one Microsoft's presentation this year, first you approach with all endpoint sec profiles and then continue with Settings Catalog. Basically, there is no need to touch security settings with Settings Catalog, only user experience and office behavior.
Sorry, got a bit confused..
First is to configure Endpoint Security profiles.
Second is to configure Configuration/Settings Catalog profiles.
Does this leave need or should I use Baseline profiles at all? Or should I check from Baseline profiles some succestions on how to configure Endpoint Sec and Configuration profiles?