Intune – Migrate your Windows Defender Firewall GPO’s rules for use with Intune/Endpoint Configuration Manager
As you know, you can manage and configure your Windows Defender Firewall with Intune/Endpoint Configuration Manager, including rules.
2 min read
cubesys : May 31, 2021 12:00:00 AM
By now, you already know that Intune/Endpoint Configuration Manager is the Microsoft solution for managing devices (either Windows, iOS or Android) by deploying configuration policies (configuration profiles), deploying applications to the devices or protect your corporate data with application protection policies.
You may already know the Windows Virtual Desktop, the Windows 10 multi session solution running on Azure to deliver remote access to applications while simplifying deployment and management of the remote desktop infrastructure.
Well, good news, you can now enroll and manage Windows Virtual Desktop with Intune/Endpoint Configuration Manager.
At this time, user scope policies are not supported, only device policies are.
To be able to enroll and then manage WVD on Intune your Windows 10 multi session virtual machines must meet the following requirements:
NOTE
There is a known issue with Windows 10 2004 and later causing remote actions in Endpoint Configuration Manager to not work properly. Without the workaround, it may take up to 8 hours for the policies to be applied.
As workaround, ensure the following registry key is present prior to enrolling the device (you will need to reboot the device)
As you may understand, not all settings may apply to a Windows 10 multi session.
When creating a configuration profile (Settings Catalog), you need to use the filter option to get the only settings applicable to Windows 10 multi session
As you know, you can manage and configure your Windows Defender Firewall with Intune/Endpoint Configuration Manager, including rules.
Microsoft has made the deployment of Intune device configuration to Azure Virtual Desktop (AVD) multi-session virtual machines (VMs) generally...
As you know, Intune (aka Endpoint Configuration Manager) is a device management solution allowing you to apply configuration profiles, policies or...