What’s New in Microsoft Intune November 2024

The November 2024 update introduces several significant changes that IT professionals and organizations will find beneficial. Here’s a detailed look at what’s new this month.

Enhanced Security for macOS Devices

One of the key updates in November 2024 is the improved certificate management for macOS devices. Previously, user and device certificates were stored in the system keychain, posing potential security risks. With the new update, administrators can now specify the deployment channel for certificates, allowing them to be stored in the user keychain. This change enhances security by reducing the need for admin access and streamlining the user experience.
Intune SCEP certificate

Expanded Android Inventory Capabilities

Managing Android devices has become more efficient with the enhanced inventory catalog. Intune now collects detailed information about the subscriber carrier and ICCID number for fully managed or enterprise-dedicated Android devices. This update not only aids in administrative tasks but also supports multifactor authentication (MFA) configurations, adding an extra layer of security.
Intune Android device

New Settings in Windows and Apple Settings Catalogs

The Settings Catalog in Intune has been updated with new configurations for both Windows and Apple devices. For Windows, a new setting called “Set Copilot Hardware Key” is now available, allowing for more precise device management. Additionally, Device Firmware Configuration Interface (DFCI) support has been extended to Samsung devices running Windows 10 or 11.

For Apple devices, new settings include options to allow or restrict various functionalities such as app hiding, call recording, and media sharing modifications. These additions provide administrators with greater control over device configurations and security.

Windows 365 Link Public Preview

A notable introduction this month is the Windows 365 Link, now available in public preview. This Cloud PC device connects securely to Windows 365, offering a high-fidelity Windows desktop experience. It simplifies device management by minimizing local configurations and ensuring data security through cloud-based operations.

Suggested Screenshot: A screenshot of the Windows 365 Link interface showing the connection to a Cloud PC.

App Management and Device Compliance

Intune has also enhanced app management capabilities, particularly for Android Open Source Project (AOSP) devices. Detailed error reporting for Line of Business (LOB) app installations is now available, helping administrators troubleshoot issues more effectively.

Moreover, compliance checks for Windows Subsystem for Linux (WSL) are now generally available. This feature allows administrators to evaluate the compliance of WSL instances running on Windows host devices, ensuring a secure and compliant environment.

Conclusion

The November 2024 updates to Microsoft Intune bring significant improvements in security, device management, and user experience. By enhancing certificate management for macOS, expanding Android inventory capabilities, and introducing new settings for Windows and Apple devices, Intune continues to support IT professionals in managing diverse device ecosystems effectively. Stay tuned for more updates and innovations from Microsoft Intune.


What’s New in Microsoft Intune – October 2024

Microsoft Intune brings new features and enhancements to help IT professionals manage and secure their environments more effectively. Here’s a detailed look at the latest updates in Microsoft Intune for October 2024.

Enhanced Security Features

Blocking Certificate Spoofing: One of the standout updates this month is the introduction of measures to combat certificate spoofing in on-premises environments. This involves the addition of a Security Identifier (SID) variable in Simple Certificate Enrollment Protocol (SCEP) profiles. This new feature is designed to enhance the security of certificates by embedding SID information, which uniquely identifies users, groups, or computer accounts. This update is currently available for Windows, iOS/iPadOS, and macOS devices, with Android support expected next month.

SCEP certificate

Source: Microsoft

Improved Management for Shift Workers

Working Time Configuration: IT administrators can now configure notification muting and block access to the Microsoft Teams app for shift workers based on their working time status. This feature helps protect employees’ time and reduces the risk of notifications outside of working hours. To implement this, the Working Time API must be integrated with your tenant.

Quiet Time: When notifications are muted via Intune, users will not receive pop-up windows or notification badges on app icons. However, they can still view messages by opening the app. This ensures that employees are not disturbed during their off-hours while still having access to important information when needed.

Notification snooze

Source: Microsoft

Streamlined Device Preparation

Windows Autopilot for China: In a significant update for users in China, Microsoft has introduced Windows Autopilot device preparation. Previously, IT departments had to manually provision devices, which was time-consuming. With this new feature, the time required to prepare new devices for end users is significantly reduced, improving overall efficiency and user experience.


What’s New in Microsoft Intune September 2024

As we look back to September 2024, Microsoft Intune continues to innovate, delivering a suite of new features and enhancements aimed at simplifying device management and enhancing user experience. This month’s updates bring significant improvements across various platforms. Let’s dive into the key highlights of this month’s release.

1. Enhanced macOS Support

One of the standout updates this month is the expanded options for configuring Automated Device Enrollment (ADE) on macOS. This enhancement allows administrators to offer apps on-demand, providing greater flexibility and control over device management. Administrators can now choose to show or hide six new Setup Assistant screens when creating an ADE policy. This includes three new Skip Keys for macOS, allowing for a more tailored and streamlined enrollment process.
With the release of macOS 15 Sequoia, Intune, the Company Portal app, and the Intune MDM agent now require macOS 13 (Ventura) and later. This ensures compatibility with the latest macOS features and security updates.
Intune offers day-zero support for new macOS versions, including macOS 15.1. This means that as soon as Apple releases new updates, Intune is ready to support them, ensuring that your devices remain secure and up-to-date

2. Redesigned Intune Company Portal for Windows 11

The Intune Company Portal app for Windows 11 has received a significant makeover. This redesign, which was previewed in June, is now rolling out to all users with auto updates configured for Microsoft Store apps. The new look aims to enhance the user experience, making it more intuitive and user-friendly.
The redesign ensures a consistent experience across different devices and platforms. Whether you’re using the Company Portal on a desktop or a mobile device, the interface will feel familiar and easy to use.
While the look has changed, all the functionalities that users rely on remain intact. The app still allows employees to securely access corporate apps, data, and resources with improved visual experience.
Users with auto updates configured for Microsoft Store apps will receive the new version automatically. This ensures that everyone benefits from the latest features and improvements without manually updating the app.

Redesign Intune Company Portal app

3. Microsoft Intune Suite Remote Help Expansion

The Remote Help feature within the Microsoft Intune Suite has been expanded to support macOS, in addition to the existing support for Windows. This expansion allows IT administrators to provide remote assistance to users on both Windows and macOS devices, making it easier to troubleshoot issues across different platforms.
The integration between Intune and ServiceNow enhances the capabilities of Remote Help. Helpdesk agents can use Intune to troubleshoot endpoint-related issues directly from the ServiceNow platform, streamlining the support process.
Remote Help includes role-based access controls, ensuring that only authorized personnel can access and manage devices. This feature enhances security by limiting access to sensitive information and functions.

Intune and ServiceNow

4. Streamlined Application Security

Intune now offers enhanced capabilities for managing enterprise applications. This includes streamlined deployment, updates, and protection against vulnerabilities. Administrators can ensure that only approved applications are installed and maintained on devices, reducing the risk of security breaches.
A new feature within Intune allows for tailored elevation rules for running privileged applications. This means that administrators can define specific conditions under which applications can run with elevated privileges, enhancing security while maintaining necessary functionality.
The latest update brings advanced cross-platform capabilities, ensuring that security measures are consistent across different operating systems and devices. This helps in maintaining a unified security posture, regardless of the platform being used.
Intune has introduced tools to simplify the management of application security. These tools help administrators quickly configure and enforce security policies, making it easier to protect both on-premises and cloud resources.
Microsoft has streamlined the Intune documentation hub, providing clear and concise guidance on configuring security settings. This makes it easier for administrators to implement best practices and ensure their environments are secure.

5. Improved User Experience

The user interface (UI) for the Intune Company Portal app has been updated, offering a more cohesive and streamlined experience. Users will notice improvements in the Home, Devices, and Downloads & Updates pages, making it easier to navigate and manage their devices.
The new design offers a sleek, modern look that aligns with the overall aesthetic of Windows 11. This update aims to provide a more cohesive and visually appealing experience for users.
The redesigned interface highlights areas where users need to take action. This feature ensures that important tasks and notifications are easily noticeable, helping users stay on top of their device management responsibilities.
The update ensures a consistent user experience across different devices and platforms. Whether accessing the Company Portal on a desktop or a mobile device, users will encounter a familiar and intuitive interface.
Users with auto updates configured for Microsoft Store apps will receive the new version automatically.

Conclusion

These updates reflect Microsoft Intune’s commitment to providing robust, user-friendly, and secure device management solutions. Whether you’re an IT administrator looking to streamline device enrollment and management or a user seeking a more intuitive interface, the September 2024 updates have something to offer.

Look at the latest Microsoft Mechanics video to explore these new capabilities in action.
https://www.microsoft.com/en-us/videoplayer/embed/RW1hoo5
Stay tuned for more updates as Microsoft continues to innovate and enhance its Intune platform.

Sources: Microsoft Tech Community I, Microsoft Tech Community II, Microsoft Security Blog, Microsoft Learn

 

Paul Cobben