@Alain Diaz Quesada, Thanks for posting in Q&A. Based as I know, it is possible to apply security baselines from Intune to Azure VM resources. You can use Azure Policy and Microsoft Intune to enforce security configurations on Azure resources.
Azure Policy allows you to define and enforce policies for resources in your Azure subscription. You can use built-in policy definitions to ensure compliance with security baselines, or you can create custom policies based on your organization's unique security requirements. For example, you can use the built-in policy definition "Audit Windows VMs that do not use managed disks" to ensure that all Windows VMs in your subscription are using managed disks for improved security.
Microsoft Intune allows you to create and deploy Windows security baselines to Azure VMs. You can create a security baseline in Microsoft Intune that includes the security policies you want to enforce, such as password policies, firewall settings, and encryption requirements. You can then deploy the security baseline to a group of Azure VMs to ensure they are all configured according to the same security standards.
It's important to note that Azure Policy and Microsoft Intune can work together to provide comprehensive security management for your Azure resources. You can use Azure Policy to enforce compliance with security standards, and use Endpoint Manager to configure the specific security settings on your VMs.
Additional Resources:
- Use Security Baselines to configure Windows devices in Intune
- Apply Azure security baselines to machines
- Azure Policy documentation
- Microsoft Endpoint Manager documentation
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.