Just to further explain the question here are few reasons for the question: - The main reason is that we have many different people updating config profiles so if there is an issue, we would like to know what has changed so that we can quickly revert back to the previous version if necessary. - There are also instances where we need to know when a configuration setting was added months or even years back. We know this will occur from experience with GPOs although this is not common. - Lastly, we are an agile shop now and this would be helpful to keep track of work/changes being done in our Intune Environment.

Although not that user friendly, there is an audit entry when you modify a configuration profile, it lists the old and new settings when you make a change. not sure how long the audit log lasts

I'm in the same page. We use AGPM and the GPO team makes GPOs, and another group approves it once it goes through change management. Since there's a few people working on Intune & GPO, keeping track of changes is important, especially for larger organizations. People make mistakes and tracking changes is super important.

This tool linked below can be used to backup configurations if needed. I use the Description field on the policies almost as a change log which is helpful for when I look back on what has been updated https://github.com/almenscorner/IntuneCD

The panel is intrigued!! We'll follow up to learn more from you about your specific needs on this.

You might take a look at what's available with aka.ms/m365dsc. This can provide snapshots and monitoring of settings.

I saw something on twitter recently where someone used the Graph API to document your Tenant. If you ran this on a schedule, you could track changes. Available on Github I believe. Sorry don't have the link to hand.