Policies & Profiles Flashcards
<p>Traditional Management</p>
<p>Modern Management</p>
What is CYOD?
Choose your own device
Allowing users to select a device from a list of devices you provide
How do you configure Co-Management Precedence?
Within SCCM:
Administration -> Cloud Services -> Co-Management -> Properties
What is Pilot Intune?
A UAT group for Intune use for testing
To configure precedence, which tab do we use in Co-Management?
Workloads
Group Policy vs MDM, who wins!?
In 1709 Group Policy will override MDM Policies
in 1803+, there is a new Policy CSP setting called ControlPolicyConflict that includes the poolicy of MDMWinsOverGP
To ensure that MDM settings win out over GP settings, which value should MDMWinsOverGP receive?
1
What is Conditional Access
Control access to resources for:
User attributes, devices, application, location, risk
What are the two types of conditional access?
Device-based
App-based
Is there conditional Access in Azure AD?
Yes after you navigate to Azure AD then Coditional Acess
Where can you create Device compliance policies in Intune?
Device compliance -> Policies -> Create policy
What can you do what a device does not meet compliance?
Remediate
Quarantine
What are the three Compliance Policy settings for devices?
Mark devices with no compliance policy assigned as…
Enhanced jailbreak detection
Compliance status validity period (days)
How do you configure profiles for Intune devices?
Intune -> Device Configuration -> Profile
Yes or No?
Will the OneDrive Known Folder Move Group Policy objects won’t work if you previously used Windows Folder Redirection Group Policy objects to redirect the Documents, Pictures, or Desktop folders to a location other than OneDrive?
No
You have to remove the Windows Group Policy objects for these folders before you enable the OneDrive Group Policy objects
Which status of a device compliance policy is displayed if a device failed to apply one or more device compliance policy settings. Or, the user hasn’t complied with the policies?
In-grace period
Which status of a device compliance policy is displayed if a device failed to report its device compliance policy status because its offline or failed to communicate with Intune or Azure AD for other reasons?
Device not synced