MDE + intune comanagment for Defender settings (not all users have intune licenses)

Brass Contributor


Not all my users have intune.

If i want MDE to manage defender settings and Intune for the ones enrolled in intune, how do i target the settings in the AV section only to MDE devices and the security baseline to Intune managed devices? Right now my intune is linked with security center so all policies will come from the intune console, from what i understand non intune managed devices can get a whole baseline but not windows security settings, the defender settings in the AV section or ASR section however should work for non intune licensed devices.


I dont want to use static groups


1 Reply

@danc186 if you want to keep the assignments different then you can create a dynamic group for devices with management type as mssense and other as mdm