Intune: Device Compliance Policy assignments

Question

ECE91331 D2F7 46D4 9736 68CBC347CBF7 - HTMD Forum - Welcome to the world of Device Management! This is community build by Device Management Admins for Device Management Admins❤️ Ask your questions!! We are here to help you! - Intune: Device Compliance Policy assignments
We have an Intune/MEM ‘Windows 10 Device Compliance’ policy and assigned to a collection containing only devices.
Eventhough only devices should report back, but we also see equivalent number of UPN’s. So for each we see both computer and user reporting back.
Most of the time all is good but a lot computers reporting an error about Firewall or Bitlocker issues in details. There is a UserVoice reporting this exact problem but no real answer from Microsoft.  So our question remains, is it obvious that we should only target devices or should we switch to Users since users.
The problem with targetting to users is that a user can logon to different kind of computer configuration, say a Kiosk, a reception or a regular office computer. So a system policy targetting to a device seems more logical to us.
So question remains, how to you configure and do you experience same issue as our enviroment

Answers ( 4 )

    0
    2021-05-10T22:26:13+05:30

    Thank you. That is a comprehensive knowledge article. I will certainly read it.

    Meanwhile, the issue is resolved with Intune support team guidance. It is the third party firewall which happen to block Intune beeing able to query default Windows Firewall and giving Bitlocker encryption policy also trouble. By disabling WF requirement things are looking more green now.

    Best answer
    0
    2021-05-06T23:11:14+05:30

    Hello, Here you check Joy explained about behind the scene logics.

    Intune Policy Assignment Classification Easy Secrets of using Graph API with PowerShell

    + https://www.anoopcnair.com/intune-policy-assignment-classification/

      0
      2021-08-13T04:35:15+05:30

      When using thirdparty proxy or antivirus intine cannot verify those and so it will report back as nom compliant. We had to disable checking lf those firewall and antivirus to make cosmetic error disappear.

Leave an answer

Sorry, you do not have permission to answer to this question .