Forum Discussion
Devices Non-compliant : Due to maximum minutes of inactivity before password is required
Dear Everyone, Today in two of our tenant, many of the daily syncing devices automatically got non-compliant due to "Due to maximum minutes of inactivity before password is required" property of Dev...
I think I figured out the cause. The config policy to set the lock time was using an old ADMX based setting. I deleted that, and re-added using the setting catalog route. Once the setting started to route out to endpoints, they all started falling back into compliance.
https://www.anoopcnair.com/set-automatic-lock-screen-for-inactive-device-intune/
https://www.anoopcnair.com/set-automatic-lock-screen-for-inactive-device-intune/
I believe I have worked out what my issue was at least. I have a config policy set up as per the post above. It allows you to set the inactive time to any time you wish in my case this is 10 minutes. Under the compliance policy > compliance settings > system security > Maximum minutes of inactivity before password is required, this option only lets you select time from a drop down of 1min, 5min, 15min, 1 hour etc... . I have amended the time in the config to 15 minutes to match the compliance policy until there is an option to set 10 minutes as a compliance policy.