Forum Discussion
Solved
After Removing GPO, Intune Policies Not Applying
Part of our fleet remains Entra Hybrid Join (as computers are refreshed, they are Entra Joined instead). We apply Windows Security Baselines through both Group Policy and Intune. Recently, we evaluat...
AlexR91 have you tried applying a config refresh policy to some of these devices to see if this re-applies the policies? You can have this apply at 30min intervals for testing purposes.
Intro to Config Refresh – a refreshingly new MDM feature | Windows IT Pro Blog (microsoft.com)
Interestingly, config refresh did resolve this issue - once I ran the config refresh scheduled task, all the policies applied like they are supposed to. The problem here is that config refresh requires Windows 11. It should come as no surprise that most of the Hybrid joined computers this impacts run Windows 10 (if we upgrade to Windows 11, we reset and Entra join).
- I believe policies should have been refreshing every 8 hours by default and these endpoints were allowed to be in this state for 48+ hours without this issue resolving itself. That said, this may be a useful tool in troubleshooting this further. Thanks for sharing!
- It doesnt work with all policies though... only for the ones in the policcymanager.. but it could work indeed... depending if the intune policy is in the cache...
