![]() Instead, use Intune to deploy policy for Defender for Endpoint to your devices. When a device is managed by Intune (enrolled to Intune) the device won't process policies for Security Management for Microsoft Defender for Endpoint. This scenario extends the Microsoft Intune Endpoint Security surface to devices that aren't capable of enrolling in Intune. The device's status is available in the Microsoft Intune admin center When a device receives a policy, the Defender for Endpoint components on the device enforce the policy and report on the device's status.A device that isn’t already present in Azure Active Directory is joined as part of this solution Devices get the policies based on their Azure Active Directory device object. ![]() You use the Microsoft Intune admin center to configure endpoint security policies for MDE and assign those policies to Azure AD groups.When devices are managed through this capability: With this capability, devices that aren’t managed by a Microsoft Intune service can receive security configurations for Microsoft Defender for Endpoint directly from Intune. This capability is known as Security Management for Microsoft Defender for Endpoint. With Microsoft Defender for Endpoint (MDE), you can now deploy security configurations from Microsoft Intune directly to your onboarded devices without requiring a full Microsoft Intune device enrollment.
0 Comments
Leave a Reply. |