In this post, we will see how to setup Intune Compliance Policy for Windows 10. Managing Windows 10 devices are very critical in modern device management. Intune compliance policies are the first step of the protection before providing access to corporate applications. Intune Compliance Policy for Windows 10 is to help to protect company data; the organization needs to make sure that the devices used to access company apps and data comply with certain rules. These rules might include using a password/PIN to access devices and encrypting data stored on devices. These set of such rules is called a compliance policy. The best option is to use compliance policy with Azure AD Conditional Access.
Checkout the Video tutorial to setup Intune compliance policies for Windows 10 – here
- Intune Compliance policy setup for Android Devices here
- Intune Compliance policy setup for iOS Devices here
How to setup Intune Compliance Policy for Windows 10 in the Azure portal?
Minimum OS version
Maximum OS version
Minimum OS version for mobile devices
Maximum OS version for mobile devices
Device defaultDevice defaultAlphanumericNumeric
Minimum password length
Maximum minutes of inactivity before password is required
Password expiration (days)
Number of previous passwords to prevent reuse
Require password when device returns from idle state (mobile only)
Encryption of data storage on a device.
8. Deploy Windows 10 compliance to All Windows devices dynamic device group
(Update Device Groups are not supported for Compliance policies – hence use user groups for Intune compliance policies)
Click on Assignment and select the dynamic device group. I would use AAD dynamic device groups to deploy compliance policies rather than AAD user groups.
What is device compliance in Intune Azure preview – here