Introduction

At Microsoft Ignite 2024, Microsoft Intune introduces updates that promise to enhance endpoint management and security. In this article, we delve into the latest updates and what they mean for IT professionals and organizations worldwide.

Key Announcements

1. Cross Platform device inventory in preview by early 2025:  This update will extend the current device inventory capabilities, which provide access to critical device properties like battery health and Trusted Platform Module (TPM) version, to include iOS, Android, and macOS devices. Additionally, the enhanced inventory information will support multiple-device queries, allowing IT professionals to gain deeper insights and access within the Intune admin center, driving value for business decisions and operations.

2. EPM support for Windows ARM devices: Endpoint Privilege Management (EPM) will soon support Windows ARM64 devices in Intune. This update allows organizations to manage elevation requests from users of ARM64-based Windows devices just as they would with non-ARM64 based devices.

3. Unified Management Experience: A significant update is the unification of the management experience across platforms. Intune now offers a more streamlined and consistent interface, making it easier for IT admins to manage devices, whether they run on Windows, macOS, iOS, or Android.

4. Advanced Analytics and Reporting: Intune’s analytics capabilities have been bolstered with advanced reporting features. It now features KQL integration, enabling real-time data retrieval, anomaly detection, and insights into device performance.

5. Integration with Microsoft 365 Copilot: This integration leverages AI to assist IT professionals by providing actionable insights and automating complex tasks, ultimately simplifying the management of devices and applications. Additionally, Copilot in Intune aims to enhance security and compliance by offering proactive recommendations and streamlining the implementation of best practices. Also for Windows Autopatch and the Intune Suite: Intune Endpoint Privilege Management (EPM) and Advanced Analytics. Additional Copilot capabilities include assessing policy impacts, conducting risk analysis, and providing configuration guidance.

6. Windows 365 Link: The official launch of the Windows 365 Link marks a significant milestone as the first purpose-built device for Windows 365 Cloud PC, managed through Intune.
Windows 365 Link
Here are some key points about this device:

  • Cloud-Powered Performance: Windows 365 Link is designed to connect securely to Windows 365 in seconds, offering a highly responsive performance with support for dual 4K monitors, multiple USB ports, Ethernet, Wi-Fi 6E, and Bluetooth 5.3.
  • Security by Design: The device features a locked-down operating system with no local data or apps, and no local admin users, significantly reducing the attack surface. It also provides passwordless authentication using Microsoft Entra ID.
  • Simplified IT Management: IT professionals can efficiently configure and manage Windows 365 Link devices using Microsoft Intune, alongside other PCs, leveraging existing knowledge and policies.
  • Sustainability: The device is designed with sustainability in mind, using recycled materials and ENERGY STAR® certification, aligning with organizations’ environmental goals.
  • Availability: Windows 365 Link is available in preview in select markets and is expected to be generally available for purchase at $349 starting April 2025.

7. App protection policy support expansion: Microsoft has announced the expansion of App Protection Policy (APP) support for Microsoft Teams on the Apple Vision Pro. Customers can apply the same robust APP protections currently available for Android and iOS mobile devices to Vision Pro, ensuring organizational data is safeguarded on this AR/VR device. Looking ahead to early 2025, Microsoft plans to extend APP support to additional Microsoft 365 apps, creating a unified, secure ecosystem for employees across devices. Moreover, the Intune SDK will be available for third-party applications, enabling organizations to integrate protection and control of company data. These developments are part of Microsoft’s ongoing investment in seamless, dependable experiences across the entire device lifecycle, helping organizations manage a growing number of devices across diverse platforms. Improvements to application management were also highlighted, with a focus on making it easier to deploy, update, and manage apps across all devices in an organization.

Conclusion: The updates to Microsoft Intune announced at Microsoft Ignite 2024 underscore Microsoft’s commitment to providing comprehensive, intelligent, and secure endpoint management solutions. These enhancements are set to empower IT professionals with better tools and insights, ultimately leading to more secure and efficient IT environments.

 

Paul Cobben