Skip to Content
Contact
Support
Cameroun
Gabon
Congo
Cote d'ivoire
Togo
Benin
DRC
ZH EN FR
Home
About Us
Mission Teams Partners Quality STD University Jobs Videos Sustainable Development
Services
Artificial Intelligence Cybersecurity Training Collaborative Work Transformation Studio Digital Transformation Consulting
Cloud
Sovereign Cloud Partner Cloud The CloudStore Cloud Expertise
Datacenters
The Datacenters Certifications Colocation Connectivity Security Multimedia Visit
Clients
References Success Stories
News
Events News Press EDA Newsletter

What's new in April 2024 [Intune]

June 18, 2024 by
KOUMBA MAVOUROULOU MAUD ANDRÉ
Microsoft has just announced the availability of a new set of features for Microsoft Intune.


The following features are added:


General


  • [General] Public Preview of Copilot in Intune, generative AI at the service of administrators for:
  • Provide information on settings when creating a strategy
  • Summarise an existing strategy to understand its essence
  • Provide all key information about a device
  • Compare two devices
  • Analyse an error code
  • Get information more generally directly from the prompt page in Copilot for Security


Device management


  • [Android] When you create an OEMConfig policy that exceeds 500 KB, the following error is displayed in the Intune admin center: Profile is larger than 500KB. Adjust profile settings to decrease the size. Previously, OEMConfig policies that exceeded 500 KB were displayed as pending.


Device configuration


  • [Windows] Microsoft proposes a new strategy for BIOS configuration [Windows] Microsoft proposes a new BIOS configuration policy and other settings for OEMs. Administrators can use this new policy to enable or disable various BIOS features that secure devices. In the Intune device configuration policy, you add the BIOS configuration file, deploy a Win32 application, and then assign the policy to your devices. This means it is possible to use the Dell Command tool to create the BIOS configuration file and add it to this policy.
  • [Windows] Microsoft adds a very large number of settings for Microsoft Edge, including the configuration of WebView2.


Device Security


  • [General] New integration with a Mobile Threat Defense (MTD) partner solution for CrowdStrike Falcon. You can control mobile device access to company resources using risk-based conditional access in your compliance policies.
  • [Windows] Windows has changed the way the Firewall Configuration Service Provider (CSP) enforces rules from atomic firewall rule blocks. The CSP behavior change now enforces firewall rules on an all-or-nothing basis from each atomic rule block. Previously, a device's CSP would iterate through the firewall rules in an atomic rule block — one rule (or setting) at a time — with the goal of applying all rules in that atomic block, or none of them. If the CSP encounters an issue when applying a rule from the block to the device, it not only stops that rule, but also ceases processing subsequent rules without attempting to apply them. However, rules that were successfully applied before a rule failure would remain applied to the device. This behavior could lead to a partial deployment of firewall rules on a device, since rules applied before a rule failure are not rolled back. With the CSP change, when a rule in the block fails to apply to the device, all rules from that same atomic block that were successfully applied are rolled back. This behavior ensures the implementation of the desired "all-or-nothing" behavior and prevents partial deployment of firewall rules from that block. For example, if a device receives an atomic block of firewall rules containing a misconfigured rule that cannot be applied, or a rule that is not compatible with the device's operating system, the CSP fails all rules in that block and rolls back all rules that were applied to that device. This change applies to the following versions: Windows 11 21H2, Windows 11 22H2, Windows 10 21H2


Application Management


  • Atom Edge by Arlanto Apps.
  • Asana: Work in one place by Asana, Inc.
  • Freshservice for Intune by Freshworks, Inc.
  • Kofax Power PDF Mobile by Tungsten Automation Corporation
  • Remote Desktop by Microsoft Corporation


  • [Windows] The replacement (supersedence) of Win32 applications allows replacing applications deployed as available with automatic update. For example, if you deploy a Win32 application (app A) as available and it is installed by users on their device, you can create a new Win32 application (app B) to replace app A using automatic update. All targeted devices and users on which application A is installed and available on the company portal are replaced by application B. Furthermore, only application B is displayed on the company portal. You can find the automatic update function for replacing the available application as an option under the Available assignment in the Assignments tab.
  • [Android] Microsoft has improved the Managed Home Screen experience. The application has been redesigned to enhance the core experience throughout the application. During August 2024, the new experience will be automatically enabled for all devices.
  • [Android] You may require users [Android] You can require users to enter their session PIN to resume activity on the Managed Home Screen after the device has been inactive for a specified period. Set the Minimum inactive time before session PIN is required parameter based on the number of seconds the device is inactive before the end user must enter their session PIN.
  • [Android] IPv4 and IPv6 connectivity details are now available on the Device Information page of the Managed Home Screen application.
  • [Android] Managed Home Screen now supports domainless sign-in. Administrators can configure a domain name which will be automatically appended to usernames at sign-in. In addition, Managed Home Screen supports a custom sign-in hint text that will be displayed to users during the sign-in process.
  • [Android] You may expose a setting in the Managed Home Screen application that allows the end user to enable and disable automatic rotation of the device.
  • [Android] You may expose the settings of the Managed Home Screen application to adjust the brightness of Android Enterprise device screens.


Monitoring and Troubleshooting


  • [General] The remote diagnostics for Microsoft 365 applications allows Intune administrators to request Intune application protection logs and Microsoft 365 application logs (where applicable) directly from the Intune console. You can find this report in the Troubleshooting + support portal > Troubleshoot > select a user > Summary > App protection*. This feature is exclusive to applications that are under Intune application protection management. If supported, application-specific logs are collected and stored in dedicated storage solutions for each application.
  • [General] GCC government cloud customers can use Remote Help on Windows and Android.
  • [macOS] Full control support in Remote Help for macOS devices now allowing the help desk to connect to a user's device and better support/assist them.
  • The number of devices that are at each quality update level. 
  • The coverage percentage for each update on devices managed by Intune, including co-managed devices.

You can drill down into the report for each quality update, which groups devices according to the Windows 10/11 feature version and update status. Finally, administrators can obtain the list of devices corresponding to the figures shown in the two previous reports, which can also be exported and used for troubleshooting and analysis with Windows Update for Business reports.


More information on: What's new in Microsoft Intune - Azure | Microsoft Docs


Read also: 
Your dynamic snippet will be displayed here... This message is shown because you have not defined the filter and template to use.
Read Next
What's new in April 2024 for Microsoft Defender for Cloud [MDC]