Policy configuration shouldn’t be an ai wizard, it should be a dsc configuration and reports to show devices failing to meet the desired state. There should be policy templates that actually align to benchmarks like cis, just like Open Intune Baseline, but produced and delivered by Microsoft. Not the impossible to maintain baseline policies.

This all feels cart before the horse. We’ve got AI, how can we use that in Intune? As an example, you are pushing it to do reporting. In most cases reports are “static”, we run them every week, I don’t want or need generative ai to do such reporting. I do want good quality build it reports, and tooling to modify such reports. AI is not a golden bullet to fill in gaps in the current tooling, poor UI choices, or missing reports. There are so many gaps and opportunities to improve Intune, the core product, and only few of these require any kind of AI. I get you want to sell me the new shiny, extract more cash, but Microsoft seem to be neglecting good old fashioned product design and engineering. Why are there 2 Autopilots? Why aren’t there proper reliable Secure Boot reports for the new certs? Built in policy to push deployment? Yes, there are some secure boot tools coming, but they are buggy and months late to the party. Why is the device inventory information not available in reports or accessible through graph? Why are there no built in conflict discovery and remediation tooling built in? 

Thanks for joining today’s session on “The AI-powered admin: emerging trends in endpoint management” at Microsoft Technical Takeoff. Q&A will remain open through Friday so keep your comments and questions coming! Up next: Eliminating NTLM in Windows.

Welcome to “The AI‑powered admin: emerging trends in endpoint management” at Microsoft Technical Takeoff. Q&A is open now and throughout the week. Please post any questions or feedback here in the Comments. [Note: If your organization’s policies prevent you from seeing the video on this page, you can also tune in on LinkedIn.]