Apr 28 2020 02:26 AM
Hi Tech community.
I have 2 questions, related to some work I am doing with a customer who's devices are Azure Hybrid AD joined and using Windows 10 1909.
1. The windows 10 devices do not have a compliance policy set......yet however I am seeing a mixture of machines where it reports its compliance as success however when I dig into the policy settings I am seeing:
Enrolled user exists - Compliant
Has a compliance policy assigned - Error - 65001 (Not applicable) Error code 0xfde9.
Is active - Compliant
The error is picking up a default device compliance policy. Is there anyway this can be ignored or removed?
2. The customer is also using Defender Security centre and are leveraging the Threat and Vulnerability dashboard which reports the state of security patching for Windows, Office, IE, Edge across the estate. The customer is using Windows update for business to manage this however we are finding it's taking a long time for data to be refreshed in Defender ATP for example if the latest quality update has been applied. Intune is stating it has been installed but this isn't being reflected in DATP. Is this expected?
Many Thanks
R
May 01 2020 01:01 AM
Aug 24 2020 09:03 AM
Please be clear. This error 65001 (not applicable)
1. means something or means nothing
2. This statement of yours: 'Mark devices with my compliance policy assigned as', yours will be set to 'non-compliant'. Seems to indicate that devices with a compliance policy assigned will be marked "non-compliant." This seems contradictory. Please explain tis logic.
I have this issue as well, and I've not found a satisfactory explanation on line at all. Thanks for your help.
Aug 25 2020 03:54 AM
Feb 08 2021 07:00 AM - edited Feb 08 2021 07:01 AM
What I think, you need to go into properties of specific machine and assign a category also check which policies has been assigned to machine, thanks.
Jun 06 2023 04:22 AM
anyone having issues with Windows 365 Boot Shared PC Device Configuration Policy