Migrating GPO for server to Azure

RH 1 Reputation point
2024-08-22T07:53:36.7366667+00:00

Hey All, We are in the process of migrating our Group Policy Objects (GPOs) to Microsoft Intune. However, we've noticed that Intune does not currently support server-side policies. As we transition to a fully cloud-based environment, we're wondering where we can set policies to manage our servers in Azure.

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,970 questions
0 comments No comments
{count} votes

3 answers

Sort by: Most helpful
  1. Pauline Mbabu 90 Reputation points Microsoft Employee
    2024-08-22T12:03:20.39+00:00

    Hello RH,
    Thank you for reaching out.
    Unfortunately, Microsoft Intune does not support Server Management. You can find more details regarding this on a similar question https://learn.microsoft.com/en-us/answers/questions/1555354/intune-what-can-intune-manage-on-servers.
    You can use Azure Arc to manage your servers. Azure Arc simplifies governance and management by delivering a consistent multi-cloud and on-premises management platform. Find the documentation here https://learn.microsoft.com/en-us/azure/azure-arc/overview

    More doc for Azure Policy https://learn.microsoft.com/en-us/azure/governance/policy/overview

    0 comments No comments

  2. ZhoumingDuan-MSFT 12,415 Reputation points Microsoft Vendor
    2024-08-23T02:35:07.02+00:00

    @RH,Thanks for posting in Q&A.

    Intune can manage Antivirus, Firewall, and Attack Surface Reduction (ASR) policies on servers that are onboarded to Defender for Endpoint. Here is a table list the profile support on windows server.

    Intune can manage Antivirus, Firewall, and Attack Surface Reduction (ASR) policies on servers that are onboarded to Defender for Endpoint. Here is a table list the profile support on windows server.

    User's image

    https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration#windows-10-windows-11-and-windows-server

    Here are some links that may help you.

    https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/how-to-manage-microsoft-defender-on-windows-server-via-intune/ba-p/3713195

    https://www.reddit.com/r/Intune/comments/xblesr/moving_to_intune_how_do_we_manage_servers/

    Non-official, just for reference.

    Also, you can refer the method @Pauline Mbabu mentioned to configure policies to manage servers on Azure.

    Hope above information can help you.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


  3. RH 1 Reputation point
    2024-08-29T13:03:54.49+00:00

    Hey @ZhoumingDuan-MSFT Thank you for getting back to me, solution you provided is for the security policy, I am after configuring default domain policy, disabling ntvlmv1m, loopback policy etc...


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.