Intune – Additional permissions for the Endpoint Security Manager role

cubesys : Sep 21, 2020 12:00:00 AM

Endpoint Configuration Manager Intune

As you know, you can delegate permissions to allow certain administrative or management tasks using RBAC (Role Based Access Control) on Intune/Endpoint Configuration Manager.

Well, new permissions have been added to the Endpoint Security Manager role:

  • Initiate Configuration Manager action
  • Microsoft Defender ATP
  • Reboot now
  • Remote lock
  • Rotate BitLockerKeys (preview)
  • Rotate FileVault key
  • Shut down
  • Sync devices

If you are using the built-in Endpoint Security Manager role, you have nothing to do, except maybe some communication to the delegates.

If you are using custom role to delegate permissions, you may have to update your custom role to reflect these new permissions.

image_thumb

Intune – you can now get details about devices in co-management configuration

cubesys : Jul 31, 2020 12:00:00 AM

As you know, you can have System Center Configuration Manager (SCCM)/Endpoint Configuration Manager (on-premises) working in some sort of hybrid...

SystemCenter Endpoint Configuration Manager Intune
Read More

Intune – Migrate your Windows Defender Firewall GPO’s rules for use with Intune/Endpoint Configuration Manager

cubesys : Jul 20, 2020 12:00:00 AM

As you know, you can manage and configure your Windows Defender Firewall with Intune/Endpoint Configuration Manager, including rules.

Endpoint Configuration Manager Intune
Read More

Intune – You can now launch script from SCCM from the Intune portal

cubesys : Sep 24, 2020 12:00:00 AM

If you are using System Center Configuration Manager Current Branch (SCCM Current Branch) version 2006 in a co-management configuration with...

SystemCenter Endpoint Configuration Manager Intune
Read More