Settings Catalog
Patching Gaps in the CIS Windows 11 Benchmark - Level 2 Windows 11
Intune
Windows 10 and later
Security
Center for Internet Security (CIS)
Custom Profiles
Settings Catalog
Remediation Scripts
PowerShell
This is the last part in the series around the CIS (Center for Internet Security) benchmark for Windows 11, and we’d like to say that we’ve saved the best post for last, but we’d be lying. Surely the Level 2 settings can’t be worse than the Level 1?
Microsoft Intune and the Curious Case of the Converting Firewall Rule Policy
Intune
Windows 10 and later
Settings Catalog
Security
Firewall
Endpoint Security
PowerShell
When did Microsoft go all covert ops (maybe don’t answer that question) and start making changes to your very own Firewall Rule policies in Microsoft Intune without letting anyone know? Or did they?
Patching Gaps in the CIS Windows 11 Benchmark - Level 1 Windows 11
Intune
Windows 10 and later
Security
Center for Internet Security (CIS)
Endpoint Security
Remediation Scripts
PowerShell
Settings Catalog
Custom Profiles
The impact of the CIS settings on BitLocker and Windows Autopilot now done and dusted, we should broaden our horizons and start to look at what other problems the CIS level 1 benchmark brings to Windows 11 as a whole. Are there any? Will it be smooth sailing? Yeah, no.
Patching Gaps in the CIS Windows 11 Benchmark - Level 1 Windows Autopilot
Intune
Windows 10 and later
Security
Center for Internet Security (CIS)
Windows Autopilot
Windows Hello
Settings Catalog
PowerShell
With the CIS BitLocker and associated DMA settings reviewed and updated, now is time to delve into the Windows 11 specific settings that exist in the CIS Level 1 benchmark. What issues do they bring to Windows Autopilot, what solutions can we find? Honestly, who knows.
Patching Gaps in the CIS Windows 11 Benchmark - BitLocker
Intune
Windows 10 and later
Security
Center for Internet Security (CIS)
Custom Profiles
BitLocker
Direct Memory Access
Settings Catalog
Endpoint Security
Everyone loves a security benchmark, and with the imminent move to Windows 11 for everyone, the Center for Internet Security released version 3.0.1 of theirs, including a build kit for Microsoft Intune, but what does this build kit break for BitLocker encryption?
Creating Reusable Groups of Firewall Settings for Microsoft Online Services
Intune
Windows 10 and later
Security
PowerShell
Graph API
Settings Catalog
Firewall
Automation
Endpoint Security
It’s time to remove another manual process, this time the creation of Microsoft 365 network endpoints for Windows Firewall Rules in Microsoft Intune, because nobody should be creating these manually.
Modernising Microsoft Intune Firewall Rule Policies
Intune
Windows 10 and later
PowerShell
Graph API
Settings Catalog
Security
Firewall
Automation
Endpoint Security
If you’ve ever experienced the joys of migrating Group Policy and in particular Windows Defender Firewall rules away from Group Policy to Microsoft Intune, you’ve probably encountered the Rule Migration Tool, and for now this tool has worked well. So what’s the catch?
Managing Settings Catalog Profile Assignments in Microsoft Intune
Intune
Settings Catalog
Assignments
Graph API
PowerShell
Automation
Ever wanted to the ability to re-assign all of your Setting Catalog profiles in Intune to additional device and user groups without having to painstakingly go through each one manually? Well this post is for you.
Automating Endpoint Privilege Management Policies with PowerShell
Intune
Windows 10 and later
Security
Settings Catalog
Endpoint Privilege Management
Graph API
PowerShell
Automation
Endpoint Security
So you’re interested in Endpoint Privilege Management in Microsoft Intune and in you’re excitement you’ve gone and deployed a new policy to audit using the Reporting Scope options, all elevations across your managed Windows 10 and later devices. Now what?