TVM Baselines and Intune

Copper Contributor

Hi All,

 

I've deployed the CIS baseline in TVM to our workstations that are all AAD joined and Intune managed. After leaving it a couple of days for the results to come in, it now looks like the baseline only reports based on the reg keys used in Group Policy. Obviously Intune isn't using these keys so it all shows as non-compliant. 

Can anyone else confirm this behaviour and if there are any plans to provide an Intune version of this baseline? Other than that, how are people managing this, other than getting Intune to create the keys a GPO normally would.

1 Reply
https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/mde-vulnerability-management-...

I hope there will be more flexibility added to CIS management in MDE+VM add-on.