You're reading from Microsoft Intune Cookbook Over 75 recipes for configuring, managing, and automating your identities, apps, and endpoint devices

Product type Paperback

Published in Jan 2024

Publisher Packt

ISBN-13 9781805126546

Length 574 pages

Edition 1st Edition

Languages

PowerShell

Tools

Android

Concepts

Cloud Security

Author (1):

Andrew Taylor

View More author details

Table of Contents (17) Chapters

Preface

1. Chapter 1: Getting Started with Microsoft Intune FREE CHAPTER

2. Chapter 2: Configuring Your New Tenant for Windows Devices

3. Chapter 3: Securing Your Windows Devices with Security Policies

4. Chapter 4: Setting Up Enrollment and Updates for Windows

5. Chapter 5: Android Device Management

6. Chapter 6: iOS Device Management

7. Chapter 7: macOS Device Management

8. Chapter 8: Setting Up Your Compliance Policies

9. Chapter 9: Monitoring Your New Environment

10. Chapter 10: Looking at Reporting

11. Chapter 11: Packaging Your Windows Applications

12. Chapter 12: PowerShell Scripting across Intune

13. Chapter 13: Tenant Administration

14. Chapter 14: Looking at Intune Suite

15. Index

Why subscribe?

16. Other Books You May Enjoy

Deploying a Windows compliance policy

There are two ways to configure compliance policies for Windows devices. Both will be covered in this chapter, but we will start with the easier of the two, which is GUI-driven.

Getting started

As mentioned earlier, before we start creating our policy, we should look at the available settings and what they do.

Compliance settings

We will start with the available compliance settings.

Custom compliance

We will cover this in a later recipe (Configuring and deploying a Windows custom compliance policy), but to summarize, you can deploy a custom PowerShell script to monitor anything on the device and feed it into a compliance policy.

Device Health

Device health rules use the Device Health Attestation service. One important thing to note is that they require a reboot to report back as they are querying the BIOS, among other things. Therefore, if you set these settings, make sure you do not set devices as non-compliant immediately...

The rest of the chapter is locked