Hello,

We’ve started to rollout Windows Defender for our customers. Some of our customers devices are not Intune enrolled users login with local profiles. The devices are showing as managed by MDE. In the security portal we’ve enabled, Use MDE to enforce security configuration settings from Intune. In the Intune portal we created AV, Firewall and Attack Surface Reduction policies but some of the policies are reporting as not applicable and not applying to the devices. We created an ASR rule to block child processes but it’s reporting as not applicable for all devices. We are also testing a block usb access policy and this is showing as not applicable on that test device. Same with an AV rule we have one created to control security center UI. The policies are being applied to a dynamic security group that targets OStype Windows.

When I view the report to check why it’s not applicable it doesn’t show me anything. Can someone tell why the policy would be reporting as not applicable?

​Hello,We’ve started to rollout Windows Defender for our customers. Some of our customers devices are not Intune enrolled users login with local profiles. The devices are showing as managed by MDE. In the security portal we’ve enabled, Use MDE to enforce security configuration settings from Intune. In the Intune portal we created AV, Firewall and Attack Surface Reduction policies but some of the policies are reporting as not applicable and not applying to the devices. We created an ASR rule to block child processes but it’s reporting as not applicable for all devices. We are also testing a block usb access policy and this is showing as not applicable on that test device. Same with an AV rule we have one created to control security center UI. The policies are being applied to a dynamic security group that targets OStype Windows.When I view the report to check why it’s not applicable it doesn’t show me anything. Can someone tell why the policy would be reporting as not applicable?  Read More

​