Event banner

Policy management with Microsoft Intune

Event Ended
Tuesday, Oct 25, 2022, 07:30 AM PDT
Online

Event details

You’ve seen all the exciting Microsoft Intune policy news at Microsoft Ignite, now it’s time to go deeper. Come join Julia and Mike as we share our top five Intune policy tips and tricks to help keep...
Heather_Poulsen
Updated Dec 27, 2024
Technical Takeoff
jteall's avatar
jteall
Copper Contributor
Oct 25, 2022
Since we are using GPO AD, I am looking for how to add as few Intune policies as possible while we figure out what is tattooed/not easily reversed. Any guidance in this area? Thanks
  • Mike-Danoski's avatar
    Mike-Danoski
    Icon for Microsoft rankMicrosoft
    Oct 25, 2022
    Hi Jennifer, thanks for the question. If you are referring to which settings are still around from GPO, if an MDM setting interacts with the similar GPO setting, the MDM setting will overwrite it. I'd also advise using the MDM wins over GP setting to set the resolution direction for most settings. One of the challenges here is that a machine may also have reg keys and other configs set once via script or policy that don't have reporting. My advice is to start basic with a small policy and start building towards a green fields AADJ only policy landscape based on requirements from security and productivity teams. Then you can either remove GP attachments to OUs and back out slowly, or start disjoining machines from the domain, if that is the direction you're headed. You can also use a TVM product for discovery and inspection.
  • HeyHey16K's avatar
    HeyHey16K
    Iron Contributor
    Oct 25, 2022
    Also interested in this 🙂
Date and Time
Oct 25, 20227:30 AM - 8:00 AM PDT