Event details
41 Comments
- Is there a holostic way to identify conflicts before deploying and chasing down why doesnt somehting work?
- Any tips on importing Windows Firewall rules from GP to Intune? What happens to the domain profile for AADJ only devices? Is there still the concept of a domain (or trusted network profile) where our WF domain rules would be imported to?
- Any chance settings that conflict with AutoPilot can just apply after AutoPilot is done? I ran into issues with passwords and device guard that were causing issues when applying to devices. When applied to users, it worked fine. We would like to apply to both Devices or Users. Instead of just failing, or running into errors, give the option to apply a policy after it's built.
- Looking to start moving policies from GP to Intune. Have mdmwinsovergp set, but we want to clean up group policy at the same time. How long should you let a policy saturate before removing the group policy?
"Have mdmwinsovergp set" --> "J" would have his opinion about this one 😛 and I guess I do also... In my opinion its a "bad one". Would love to hear Danny (or anyone else) 🙂 talk about this.
- I'd like to hear more thoughts on it, including Rudy's (thanks for the blogs, etc). My thought is to just leave the GP in place for a few months before removal, but don't want to cause confusion.
- Heather_Poulsen
Community Manager
Welcome to Unpacking Endpoint Management. Let's get started! Please post your questions in the chat. We’ll be here until 9:00 a.m. Pacific Time!
- Preferences I think will be our biggest challenge - we are working with a lot of major clients with GPO Analytics, but preference migration isn't straight forward just yet. Some community tools are making it possible but would love to see them supported in the GP Analytics import tool.
- Hopefully you are also going to address the parts after the migration... making sure the old gpo's arent in conflict, how to spot they are in "conflict" and how to solve it /fix it without using the trash csp: mdmwinsovergp 🙂
- I've got another item that I hope might be able to be covered in the session. We're a very large enterprise (600K devices, 300K users) and we've started the process of migrating GPOs to Intune and I'm wondering does Microsoft make any documentation available that provides guidance for large enterprises to make the move from on-prem settings management to cloud based management. For example, for on-prem much of the GPO management (where they're linked) is based around the AD structure (in our case across 33 domains), how do you translate that to Intune/Azure AD which has no structure that mimics the on-prem structure.
- I'm not a Microsoft Expert, but much of the Azure and 365 cloud is based on groups. So, policies you would apply to everyone at a site would be assigned to one group, and settings that should be assigned to a working group (IT or accounting) would be assigned to another group. The user or device would then be put in both groups. It's essentially like role-based access control.
- Will you cover what the difference is between Settings Catalog and Templates? For example when would you one vs. the other?
- Setting catalog has still limits. For example number of allowed extensions in edge can be configured up to 600,now. But few mounts before only 200
