Like I create a policy with Firewall restricted. Now I like to push the policy to the devices. So when on a device the Firewall is manualy turned of it will automaticaly turened the Firewall on (through the policy).
I want to use Inune policy like a AD group policy.
My understanding is the Configuration policy push the configuration down to the machine and make the changes (Enforce the config). Then the Compliance policy would provide the alerting to let the admins/system know if the configuration was successful (Report). Followed by the Conditional access that takes Action based on what the Compliance policy reported (Allow/Block)?