Forum Discussion
Device Configuration Profile Exclusion Group Not Working
There is a device configuration profile that is set up to push two local security policies to machines through Azure/Intune: Interactive Logon Message Text For Users Attempting To Log On Interactiv...
Is the exclusion not working or the policy settings remain configured? Both are 2 different things. Once a device is no longer targeted, Intune will stop targeting the device for that specific policy. Which means if it was applied earlier, the setting will remain configured. To revert the setting you will need to create another policy with the settings that you want to be removed and target the existing devices meant to be excluded.
Hi,
If the policy revert to original state depends on the csp what has been used.
Check Microsoft doc:
https://docs.microsoft.com/en-us/mem/intune/configuration/device-profile-troubleshoot#what-happens-when-a-profile-is-deleted-or-no-longer-applicable
If the policy revert to original state depends on the csp what has been used.
Check Microsoft doc:
https://docs.microsoft.com/en-us/mem/intune/configuration/device-profile-troubleshoot#what-happens-when-a-profile-is-deleted-or-no-longer-applicable
- Thanks for the share. Although in my experience this is a hit or miss and the behavior is not consistent.