Hello Aran
Yes, you can achieve this functionality using Intune by utilizing the Endpoint security settings.
One way to prevent unauthorized wiping of devices and make them unusable is by enabling the "Device Lock" feature in Intune. Device Lock can prevent anyone from performing a factory reset on the device or wiping the device remotely. This can help ensure that even if a device is wiped, it cannot be reused by the user without the necessary credentials or actions from the IT administrator.
To enable Device Lock in Intune:
1. Sign in to the Microsoft Endpoint Manager admin center.
2. Go to Devices > Configuration profiles > Create profile.
3. Select the platform for the devices you want to configure (e.g., Windows, iOS, Android).
4. In the profile settings, look for options related to device security or security policies.
5. Enable the setting for Device Lock or Factory Reset Protection, depending on the platform.
6. Configure the policy settings to enforce Device Lock on the devices.
7. Assign the policy to the devices or groups of devices that you want to secure.