MicrosoftJulia_Idaewor thank you very much for this latest update, I will check it out the coming weeks.
Another question about the Microsoft 365 Apps Security Baseline for "cloud-only" devices (managed Intune only).
In another blog I asked what is the Microsoft best practice to deploy M365 Security Baseline, but no answer.
- Deploy "Security Baseline" via Intune, the new Security Baseline set, like the Windows/Edge Security Baseline. (device group assignment is possible, also device policies)
- Cloud Policy, with the "config.office.com" (M365 portal), these policies are User Target only, but will also reach unmanaged devices. (only user policies, no device policies)
Testing both, seems to be working together, if there's a conflict, it seems to be that "Cloud-Policy" will Win.
But you have to maintain the Security Baseline on 2 places...
What do you think?
