Intune – Additional permissions for the Endpoint Security Manager role

cubesys : Sep 21, 2020 12:00:00 AM

Endpoint Configuration Manager Intune

As you know, you can delegate permissions to allow certain administrative or management tasks using RBAC (Role Based Access Control) on Intune/Endpoint Configuration Manager.

Well, new permissions have been added to the Endpoint Security Manager role:

  • Initiate Configuration Manager action
  • Microsoft Defender ATP
  • Reboot now
  • Remote lock
  • Rotate BitLockerKeys (preview)
  • Rotate FileVault key
  • Shut down
  • Sync devices

If you are using the built-in Endpoint Security Manager role, you have nothing to do, except maybe some communication to the delegates.

If you are using custom role to delegate permissions, you may have to update your custom role to reflect these new permissions.

image_thumb

Intune – New administration role available

cubesys : Jan 14, 2020 12:00:00 AM

A new administration role for Intune has been made available – Endpoint Security Manager.

Intune
Read More

Intune – You can now define update locations for Windows Defender

cubesys : Jul 21, 2020 12:00:00 AM

As you know you can control some settings of Windows Defender through Intune/Endpoint Configuration Manager.

Endpoint Configuration Manager Intune Windows 10
Read More

Office 365 / Intune – Intune roles management is now integrated with the Office 365 administration portal

cubesys : Apr 30, 2020 12:00:00 AM

If you are using Office 365 and Intune/Endpoint Configuration Manager, you already know you had to manage administration roles from 2 different...

Endpoint Configuration Manager Intune Office 365
Read More