Email: helpdesk@telkomuniversity.ac.id

This Portal for internal use only!

All Categories

All Categories

Search

0 Wishlist

Cart

Categories
More Categories Less Categories

iconTicket Service Desk

All Categories

All Categories

Search

0 Wishlist

Cart

Menu
Home/Microsoft/Policy assignment question

Policy assignment question

/ 2024-05-20 / Microsoft

Hi. I have a question about the most efficient way to assign intune security policies for Defender for endpoint. This customer has intune joined Windows 10 devices and also Azure VMs with a combination of Windows Server OSs and Windows 10 workstations they use as SERVERS that are Intune MDE joined.

 

My question is what’s the best way to handle the assignments for policies. I created two antivirus policies one for workstations and another one for servers. For the the servers, I can’t do dynamic assignment to target server OS only because they also use workstations with Windows 10 as servers. And for the workstations policy I can’t do All Devices or Windows 10 only because of their Windows 10 “servers”.

 

I was thinking going manually assigned for the servers policy. And for the workstations policy use All Devices but create an exclude group that contains the servers and windows 10 “servers”, but I’m not sure this is the best option. I was also thinking if I should leave the Azure VMs alone, and don’t turn on the MDE tenant option and manage polices with gpo for those.

 

Any feedback would be much appreciated. TIA

​Hi. I have a question about the most efficient way to assign intune security policies for Defender for endpoint. This customer has intune joined Windows 10 devices and also Azure VMs with a combination of Windows Server OSs and Windows 10 workstations they use as SERVERS that are Intune MDE joined. My question is what’s the best way to handle the assignments for policies. I created two antivirus policies one for workstations and another one for servers. For the the servers, I can’t do dynamic assignment to target server OS only because they also use workstations with Windows 10 as servers. And for the workstations policy I can’t do All Devices or Windows 10 only because of their Windows 10 “servers”. I was thinking going manually assigned for the servers policy. And for the workstations policy use All Devices but create an exclude group that contains the servers and windows 10 “servers”, but I’m not sure this is the best option. I was also thinking if I should leave the Azure VMs alone, and don’t turn on the MDE tenant option and manage polices with gpo for those. Any feedback would be much appreciated. TIA  Read More

Tags:

Related posts

From questions to discoveries: NASA’s new Earth Copilot brings Microsoft AI capabilities to democratize access to complex data
2024-11-14

From questions to discoveries: NASA’s new Earth Copilot brings Microsoft AI capabilities to democratize access to complex data

Microsoft introduces new adapted AI models for industry
2024-11-13

Microsoft introduces new adapted AI models for industry

IDC’s 2024 AI opportunity study: Top five AI trends to watch
2024-11-13

IDC’s 2024 AI opportunity study: Top five AI trends to watch

Leave a Reply

Your email address will not be published. Required fields are marked *

Adobe
Google for Education
IBM
Matlab
Microsoft
Wordpress
Visual Paradigm
Opensource

Portal Application Package Repository Telkom University, for internal use only, empower civitas academica in study and research.

Information

Contact Us

Copyright © Telkom University. All Rights Reserved. ch