MDM Security Baseline vs Intune Profile

%3CLINGO-SUB%20id%3D%22lingo-sub-907994%22%20slang%3D%22en-US%22%3EMDM%20Security%20Baseline%20vs%20Intune%20Profile%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-907994%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20all%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20am%20testing%20currently%20the%202%20profiles%20in%20the%20Security%20Baselines%20in%20default%20configuration.%3C%2FP%3E%3CP%3EAs%20they%20are%20now%20checked%20against%20the%20endpoint%20there%20is%20one%20Error%20in%20the%20Per-settings%20status%3A%3C%2FP%3E%3CP%3E%3CSPAN%3EType%20of%20system%20scan%20to%20perform%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EProblem%20is%20now%20-%20I%20cannot%20see%20anything%20configured%20in%20the%26nbsp%3BMDM%20Security%20Baseline%20for%20May%202019%20the%20setting%20itself%20in%20the%20Intune%20profile%20is%20configured.%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EAny%20idea%3F%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%3EBest%20regards%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3EMiguel%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-907994%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EDefender%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EIntune%20MDM%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1024527%22%20slang%3D%22en-US%22%3ERe%3A%20MDM%20Security%20Baseline%20vs%20Intune%20Profile%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1024527%22%20slang%3D%22en-US%22%3EI%20have%20the%20same%20problem.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1052768%22%20slang%3D%22en-US%22%3ERe%3A%20MDM%20Security%20Baseline%20vs%20Intune%20Profile%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1052768%22%20slang%3D%22en-US%22%3E%3CP%3EYep%20same%20problem%20here.%26nbsp%3B%20Both%20%22Type%20of%20system%20scan%20to%20perform%22%20and%20%22Security%20Intelligence%20update%20interval%20(in%20hours)%22%20I%20have%20conflicts%20for%20from%20the%20MDM%20baseline%20over%20my%20Defender%20configuration%20policy.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECan't%20find%20reference%20to%20either%20of%20these%20settings%20in%20the%20MDM%20policy.%26nbsp%3B%20Either%20they're%20not%20there%2C%20or%20like%20everything%20else%2C%20they're%20named%20something%20completely%20different.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESide%20note%20-%20Please%20Microsoft%2C%20name%20these%20settings%20with%20the%20same%20naming%20conventions%20you've%20used%20everywhere%20else.%26nbsp%3B%20Matching%20names%20up%20with%20new%20ones%20is%20not%20fun%20or%20a%20good%20use%20of%20our%20time.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1127619%22%20slang%3D%22en-US%22%3ERe%3A%20MDM%20Security%20Baseline%20vs%20Intune%20Profile%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1127619%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F171872%22%20target%3D%22_blank%22%3E%40Rich%20Mawdsley%3C%2FA%3E%26nbsp%3B%20try%20this%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-intune%2Fevery-single-computer-reporting-type-of-system-scan-to-perform%2Fm-p%2F376422%22%20target%3D%22_blank%22%3Ehttps%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-intune%2Fevery-single-computer-reporting-type-of-system-scan-to-perform%2Fm-p%2F376422%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Contributor

Hi all,

 

I am testing currently the 2 profiles in the Security Baselines in default configuration.

As they are now checked against the endpoint there is one Error in the Per-settings status:

Type of system scan to perform

 

Problem is now - I cannot see anything configured in the MDM Security Baseline for May 2019 the setting itself in the Intune profile is configured.

 

Any idea?

 

Best regards

Miguel

3 Replies
Highlighted
I have the same problem.
Highlighted

Yep same problem here.  Both "Type of system scan to perform" and "Security Intelligence update interval (in hours)" I have conflicts for from the MDM baseline over my Defender configuration policy.

 

Can't find reference to either of these settings in the MDM policy.  Either they're not there, or like everything else, they're named something completely different.

 

Side note - Please Microsoft, name these settings with the same naming conventions you've used everywhere else.  Matching names up with new ones is not fun or a good use of our time.