Forum Discussion
ElieAT
Sep 07, 2022Iron Contributor
Compliance
Hello,
Kindly if its possible to give me the concept of the below image:
Regards,
- If a device has no Compliance policy assigned, AD Registered devices mostly, then it will be marked as compliant. (Registered devices can't be scanned for compliance because they are not Intune enrolled. If you have Conditional Access rules stating a device should be compliant to access 365 services, then this could a bad idea
- ElieATIron ContributorSo what i have to do with this configuration sent?
- Move the top slider so that devices without a compliance policy assigned are marked as not compliant for security reasons (If all of your devices are enrolled with Intune). By doing so, you can use Conditional Access rules with the setting that devices should be compliant to use services.
- KurtBMayerSteel Contributor
Also Configure Device Compliance Policies per this procedure and deploy them to a group: Use compliance policies to set rules for devices you manage with Intune.
Please like or mark this thread as answered if it's helpful, thanks!
- ElieATIron ContributorThanks for your help