Hello, Another question. With Intune, if we have two Configuration Profiles that manage the same setting, and in one policy the setting is set to enabled, and in the other policy that setting is set to disabled, it's our understanding that the setting will not be set, becuase there is this conflict, and there is no such thing as last one wins, like we have in Group Policy land. Does MSFT have any plans to change this behavior, to include something like link order for managing priority? It would be nice to have a built-in report of which policies are conflicting. It would also be nice to see a way to generate a settings report, that is similar to the Resultant Set of Policies (RSoP) we have in policy land, which tells us from which policy the setting is being managed from. We use RSoP quite a bit in troubleshooting, and we don't have this for cloud only devices.

Bump: Preferences I think will be our biggest challenge - we are working with a lot of major clients with GPO Analytics, but preference migration isn't straight forward just yet. Some community tools are making it possible but would love to see them supported in the GP Analytics import tool.

Hello, I'm curious if MSFT is looking to use Intune to manage Security Baseline Policy for both cloud as well as hybrid joined clients? Is this idea on the road map? As far as I know there are a lot of DNS domain type policy settings that were left out and not available from within an Intune Security Baseline or Intune Configuration Profile, and MSFT did this on purpose. Over time though we've seen a lot of new settings being added to Intune. Is it the intent that we will continue to use GPOs to manage MSFT Security Baseline settings for Hybrid joined devices? Thanks, Ed

Naming it Group Policy Analytics is a bad idea. Gives people the idea of migrating GP to Intune. Should rename it to Settings Analytics so people don't think that way 🙂

Steve, that phone looks like Windows Phone did... lol

We have imported all our GPO into the Group Policy Analytics tool in Intune and most fall into No MDM Support. Is there any plans to add more policies from GP to Intune in the near future or is there different ways to add these? An example are the policies in Windows Components/Search

I've been pulling my hair out trying to extract what settings are set in each GPO and output nice format (csv, Excel or whatever) and there is no way of doing this easily. I've attempted using PowerShell trying to parse the XML report to no avail. Is there a tool/script for this??

In working with clients on GPO migration, it would be very helpful if Group Policy Analytics had a filter to filter our domain/hybrid join settings. A lot of policies have CSP mappings, but do not really apply in a AzAD only world.