Endpoint DLP still shows disabled even after onboarding the device in MDE
I've seen somewhere that onboarding the device in MDE won't be requiring to onboard the device to Purview portal for DLP to work but below image shows that my Endpoint DLP Status is disabled. Take note that these machines are non-domain joined. In the…
2016345612(Syncml(500) - Intune Compliance Policy Error
We have had this recurring issue for a long time now, and despite searching the error all over the place, there seem to be a lot of other IT professionals in the same boat, but no obvious answers. The error is on the Anti-Virus setting on the default…
What API or PowerShell cmdlet can be used to collect Microsoft compliance manager score data?
To collect Compliance Manager score data, you can utilize the Microsoft Graph API or PowerShell with appropriate cmdlets.
Intune Devices failing Default Windows Compliance Policy, Encryption of data storage on device error
I have a large number of devices with this error. I have not been able to figure out how to resolve it in order to bring these devices into compliance.
Feature request device compliance reports
I would like to see at Reports > Device Compliance, to not see only the devices that are not compliant, but also see the reason why the device is not compliant. Now i have to navigate to every single device to see what the reason is why it is not…
Intune ios device shows not evaluated on overview but shows compliant in device compliance
We recently setup Intune and have enrolled a couple of devices using the webenrollment method. The devices will enroll but they remain Not Evaluated on the overview page. When I go to device compliance it shows the default device compliance policy as…
unable to create work profile in my Oneplus-Nord 2T mobile phone
I am facing problem while setting 'company portal work profile'. My phone model- Oneplus Nord-2T, Android 14 version, Oxygen OS. While setting the app it is showing '' we are unable to create your work profile. Your device might not support work profile…
Intune for Ubuntu - Access Denied to Office 365 Files Despite Device Compliance
Hello, I'm facing an issue with Microsoft Intune on my Ubuntu device. Until yesterday, everything was working fine. However, now I’m unable to access files on Office 365 (e.g., SharePoint and OneDrive). I keep receiving an "Access Denied"…
Prevant Offboard Devices get ip from DHCP Server
Hi, There is a way to prevent offboard device or non-compliance device to get ip from dhcp server? Even add the mac address to deny list when there is a non-compilance device (on the computer is not installed microsoft defender for endpoint) I would…
How to send notification to admin, when device goes non-compliant?
Hi Is it possible to create a notification to admin, when some device goes non-compliant in Intune? I can only find a way to send notification to end user..
Policy for Updating google chrome
I needed to create a policy in Intune to always update Google Chrome to the latest version automatically on all my registered devices. Is this possible?
can you tell me the difference between the GovCON and GCC High licenses? When is it appropriate to quote GovCon licenses versus GCC High licenses?
can you tell me the difference between the GovCON and GCC High licenses? When is it appropriate to quote GovCon licenses versus GCC High licenses?
Conditional access policy not able to validate if an AVD machine is compliant after logging in and generating MFA prompts due to CAPs not satisfied
I have a set of users whose logs show the DeviceID and compliance details when logging in to those AVD machines. However immediately after getting access, any further activity from that machine does not show Device ID and compliance details which then…
Pipeline is not getting updated/removed from Compliance Governance in Azure DevOps
Hi team, We have are tracking Compliance governance in dev.azure.com. One of our pipeline showed up in compliance governance stating that one of the package either needs to be updated or removed. We have already deleted the pipeline and went to…
How to temporarily block / quarantine corp Android device?
Hi, We're trying to find a way of temporarily blocking / quaranting individual devices remotely. e.g. After x days, we enable this feature, so that a user has to contact our Service Desk to request it be removed. This is a per device feature, so if they…
Will the "Detection of rooted devices" function be migraed to Android Enterprise on compliance policy of Intune?
Hi All, I found "Detection of rooted devices" is not on the "Android Enterprise Compliance function", but the "Android device administrator" do. Will the "Detection of rooted devices" function on "Compliance…
How to create a compliance policy for "Crowdstike"?
Hi All, My boss asked me to create a compliancy policy for below conditions. Condition 1: If a laptop have not a "Crowstrike". Condition 2: If the "Crowstike" is not up-to-date. Action: Drop the device to "non-compliance…
How to create a compliance policy for "If a Windows device is not joined to a specific domain, then the device will be dropped to non-compliance list".
Hi All, I want to create below compliance policy, is it possible? "If a Windows device is not joined to a specific domain (not Azure AD, just a windows server AD), then the device will be dropped to non-compliance list". Thanks.
Min OS version
Hello, We have configured an app protection policy for Windows BYOD. We have set a minimum OS version with the oldest Windows 10. Do we need to set another minimum version for Windows 11, or will setting the minimum version with Windows 10 take into…
MS Security compliance baseline Windows 11 23 H2 Login Problems
Hi, I am implementing MS security baseline as highlighted in the following screenshot. After implementing the baseline, I am NOT able to login to the user account. This account is a local account and I was signed in using this local account. Any…