New Endpoint Security Windows Baseline

Endpoint Manager, Intune 1 Minute


image

Microsoft have released an updated Endpoint Security Baseline for Windows 10 and later.

image

I have updated my Best Practices repository to include the new template JSON file here:

https://github.com/directorcia/bp/blob/main/Intune/Policies/Endpoint/Baselines/win.json

and the older JSON file here:

https://github.com/directorcia/bp/blob/main/Intune/Policies/Endpoint/Baselines/Archive/win.json

I have also found that the Graph endpoint to which these two policies are applied is also different.

The new Security Baseline for Windows 10 now has an enormous area under Administrative templates. It also has a LAPs setting.

You can’t upgrade the older policy to the newer one, you need to create a completely new Security Baseline using the new policy.

This is going to take some time to work through all the new options that have been added, and there are many!

image

Luckily, I can put Copilot for Security to work to help me!

Unknown's avatar

Published by directorcia

Published

2 thoughts on “New Endpoint Security Windows Baseline

  1. Pingback: Copilot for Security – The low down for SMB – CIAOPS
  2. Pingback: [m365weekly] #156 – M365 Weekly Newsletter

Leave a comment