Share via

Migrating GPO for server to Azure

RH 1 Reputation point
2024-08-22T07:53:36.7366667+00:00

Hey All, We are in the process of migrating our Group Policy Objects (GPOs) to Microsoft Intune. However, we've noticed that Intune does not currently support server-side policies. As we transition to a fully cloud-based environment, we're wondering where we can set policies to manage our servers in Azure.

Microsoft Security Intune Other
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Pauline Mbabu 840 Reputation points Microsoft Employee
    2024-08-22T12:03:20.39+00:00

    Hello RH,
    Thank you for reaching out.
    Unfortunately, Microsoft Intune does not support Server Management. You can find more details regarding this on a similar question https://learn.microsoft.com/en-us/answers/questions/1555354/intune-what-can-intune-manage-on-servers.
    You can use Azure Arc to manage your servers. Azure Arc simplifies governance and management by delivering a consistent multi-cloud and on-premises management platform. Find the documentation here https://learn.microsoft.com/en-us/azure/azure-arc/overview

    More doc for Azure Policy https://learn.microsoft.com/en-us/azure/governance/policy/overview

    0 comments
  2. ZhoumingDuan-MSFT 17,165 Reputation points Microsoft External Staff
    2024-08-23T02:35:07.02+00:00

    @RH,Thanks for posting in Q&A.

    Intune can manage Antivirus, Firewall, and Attack Surface Reduction (ASR) policies on servers that are onboarded to Defender for Endpoint. Here is a table list the profile support on windows server.

    Intune can manage Antivirus, Firewall, and Attack Surface Reduction (ASR) policies on servers that are onboarded to Defender for Endpoint. Here is a table list the profile support on windows server.

    User's image

    https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration#windows-10-windows-11-and-windows-server

    Here are some links that may help you.

    https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/how-to-manage-microsoft-defender-on-windows-server-via-intune/ba-p/3713195

    https://www.reddit.com/r/Intune/comments/xblesr/moving_to_intune_how_do_we_manage_servers/

    Non-official, just for reference.

    Also, you can refer the method @Pauline Mbabu mentioned to configure policies to manage servers on Azure.

    Hope above information can help you.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  3. RH 1 Reputation point
    2024-08-29T13:03:54.49+00:00

    Hey @ZhoumingDuan-MSFT Thank you for getting back to me, solution you provided is for the security policy, I am after configuring default domain policy, disabling ntvlmv1m, loopback policy etc...

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.