Merge pull request #16950 from MicrosoftDocs/main

Publish main to live, 12/13/24, 3:30 PM PT

memdocs/intune/configuration/apple-settings-catalog-configurations.md

@@ -78,15 +78,52 @@ Some settings are available in device configuration templates and in the setting
 ## Apple declarative configurations
 
 This section is specific to the configurations that are under the Declarative Device Management (DDM) category in the settings catalog. You can learn more about DDM at [Intro to declarative device management and Apple devices](https://support.apple.com/guide/deployment/depb1bab77f8/1/web/1.0) on Apple's website.
-
+
+### Disk Management
+
+Use Disk Management setting to install disk management settings on devices. This configuration is located in the **Declarative Device Management (DDM)** category of the settings catalog. You can learn more about Disk Management using the following documentation:
+
+|Apple Platform Guides|Apple Developer|Apple YAML|Intune documentation|
+| -------- | -------- | -------- | -------- |
+|[Storage management declarative configuration](https://support.apple.com/en-tm/guide/deployment/dep2b9f009ed/web)|[Disk Management Settings](https://developer.apple.com/documentation/devicemanagement/diskmanagementsettings)|[Disk Management Settings](https://github.com/apple/device-management/blob/release/declarative/declarations/configurations/diskmanagement.settings.yaml)||
+
+**Known issues**
+
+- None
+
+### Math Settings
+
+Use Math Settings to configure the Math and Calculator apps on devices. This configuration is located in the **Declarative Device Management (DDM)** category of the settings catalog. You can learn more about Math Settings using the following documentation:
+
+|Apple Platform Guides|Apple Developer|Apple YAML|Intune documentation|
+| -------- | -------- | -------- | -------- |
+|[Math and Calculator app declarative configuration](https://support.apple.com/en-tm/guide/deployment/dep7881be3bb/web)|[Math Settings](https://developer.apple.com/documentation/devicemanagement/mathsettings)|[Math Settings](https://github.com/apple/device-management/blob/release/declarative/declarations/configurations/math.settings.yaml)||
+
+**Known issues**
+
+- None
+
 ### Passcode
 Use the passcode configuration to require that devices have a password or passcode that meet your organization's requirements. This configuration is located in the **Declarative Device Management (DDM)** category of the settings catalog. You can learn more about Passcode using the following documentation:
 
-| Apple Platform Guides | Apple Developer | Apple YAML | Intune documentation
+| Apple Platform Guides | Apple Developer | Apple YAML | Intune documentation|
 | -------  | ------- | ------- | ------- |
-| <ul><li>[Passcodes and passwords](https://support.apple.com/guide/security/sec20230a10d/web)</li><li>[Passcode declarative configuration](https://support.apple.com/guide/deployment/depf72b010a8/1/web/1.0)</li></ul>| [Passcode](https://developer.apple.com/documentation/devicemanagement/passcode)| [Passcode](https://github.com/apple/device-management/blob/release/declarative/declarations/configurations/passcode.settings.yaml)
+| <ul><li>[Passcodes and passwords](https://support.apple.com/guide/security/sec20230a10d/web)</li><li>[Passcode declarative configuration](https://support.apple.com/guide/deployment/depf72b010a8/1/web/1.0)</li></ul>| [Passcode](https://developer.apple.com/documentation/devicemanagement/passcode)| [Passcode](https://github.com/apple/device-management/blob/release/declarative/declarations/configurations/passcode.settings.yaml)||
+
+**Known issues**
+
+- None
+
+### Safari Extension Settings
+
+Use the Safari extensions settings to manage extensions in the Safari browser. This configuration is located in the **Declarative Device Management (DDM)** category of the settings catalog. You can learn more about Safari Extension Settings using the following documentation:
+
+|Apple Platform Guides|Apple Developer|Apple YAML|Intune documentation|
+| -------- | -------- | -------- | -------- |
+|[Safari extensions management declarative configuration](https://support.apple.com/en-tm/guide/deployment/depff7fad9d8/web)|[Safari Extension Settings](https://developer.apple.com/documentation/devicemanagement/safariextensionsettings)|[Safari Extension Settings](https://github.com/apple/device-management/blob/release/declarative/declarations/configurations/safari.extensions.settings.yaml)||
+
+**Known issues**
 
-#### Known issues
 - None
 
 ### Software Update
@@ -96,7 +133,20 @@ Use the Software Update configuration to enforce an update to install at a speci
 | -------  | ------- | ------- | ------- |
 | <ul><li>[Software Update declarative configuration](https://support.apple.com/guide/deployment/depca14ecd4d/1/web/1.0)</li><li>[Installing and enforcing software updates](https://support.apple.com/guide/deployment/depd30715cbb/web)</li></ul>| [Software Update Enforcement Specific](https://developer.apple.com/documentation/devicemanagement/softwareupdateenforcementspecific)| [Software Update Enforcement Specific](https://github.com/apple/device-management/blob/release/declarative/declarations/configurations/softwareupdate.enforcement.specific.yaml)| [Use the settings catalog to configure managed software updates](../protect/managed-software-updates-ios-macos.md) |
 
-#### Known issues
+**Known issues**
+
+- None
+
+### Software Update Settings
+
+Use the Software Update Settings configuration to defer OS updates and control how users can manually interact with software updates in System Settings. This configuration is located in the **Declarative Device Management (DDM)** category of the settings catalog. You can learn more about Passcode using the following documentation:
+
+|Apple Platform Guides|Apple Developer|Apple YAML|Intune documentation|
+| -------- | -------- | -------- | -------- |
+|[Software Update Settings declarative configuration](https://support.apple.com/en-tm/guide/deployment/dep0578d8b8a/web)|[Software Update Settings](https://developer.apple.com/documentation/devicemanagement/softwareupdatesettings)|[Software Update Settings](https://github.com/apple/device-management/blob/release/declarative/declarations/configurations/softwareupdate.settings.yaml)|[Use the settings catalog to configure managed software updates](../protect/managed-software-updates-ios-macos.md)|
+
+**Known issues**
+
 - None
 
 ## Apple MDM payload settings
@@ -111,7 +161,8 @@ Use FileVault configurations to manage disk encryption on macOS devices. These c
 | -------  | ------- | ------- | ------- |
 | <ul><li>[Introduction to FileVault](https://support.apple.com/guide/deployment/dep82064ec40/web)</li><li>[FileVault payload for Apple devices](https://support.apple.com/guide/deployment/dep32bf53500/web)| <ul><li>[FDEFileVault](https://developer.apple.com/documentation/devicemanagement/fdefilevault)</li><li>[FDEFileVaultOptions](https://developer.apple.com/documentation/devicemanagement/fdefilevaultoptions)</li><li>[FDERecoveryKeyEscrow](https://developer.apple.com/documentation/devicemanagement/fderecoverykeyescrow)</li></ul>|<ul><li>[FileVault](https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.MCX.FileVault2.yaml)</li><li>[FileVault Options](https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.MCX(FileVault2).yaml)</li><li>[FileVault Recovery Key Escrow](https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.security.FDERecoveryKeyEscrow.yaml)</li></ul> | [Encrypt macOS devices (Microsoft Learn)](../protect/encrypt-devices-filevault.md)| 
 
-#### Known issues
+**Known issues**
+
 - [FileVault failing to enable on macOS devices during Setup Assistant](https://techcommunity.microsoft.com/t5/intune-customer-success/known-issue-filevault-failing-to-enable-on-macos-devices-during/ba-p/4180523)
 
 #### Intune device configuration template to settings catalog mapping
@@ -133,7 +184,8 @@ Use the Firewall configuration to manage the native macOS application firewall.
 | -------- | ------- | ------- | 
 | <ul><li>[Firewall security in macOS](https://support.apple.com/guide/security/seca0e83763f/web) </li><li>[Firewall payload](https://support.apple.com/guide/deployment/dep8d306275f/web)</li></ul> | [Firewall](https://developer.apple.com/documentation/devicemanagement/firewall) | [Firewall (YAML)](https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.security.firewall.yaml) | 
 
-#### Known issues
+**Known issues**
+
 - [macOS devices using stealth mode turn noncompliant after upgrading to macOS 15](https://techcommunity.microsoft.com/t5/intune-customer-success/known-issue-macos-devices-using-stealth-mode-turn-non-compliant/ba-p/4250583)
 
 #### Intune device configuration template to settings catalog mapping
@@ -145,15 +197,31 @@ Use the Firewall configuration to manage the native macOS application firewall.
 | Apps allowed | Networking > Firewall | Applications (Allowed = True) |
 | Apps blocked  | Networking > Firewall | Applications (Allowed = False) |
 | Enable stealth mode | Networking > Firewall | Enable Stealth Mode |
-
+
+### Font
+
+> [!NOTE]
+> Font files being uploaded to Intune must be less than 2MB in size.
+
+Use the Font payload to configure fonts on devices. This configuration is located in the **System Configuration** category of the settings catalog. You can learn more about Font using the following documentation:
+
+|Apple Platform Guides|Apple Developer|Apple YAML|Intune documentation|
+| -------- | -------- | -------- | -------- |
+|[Fonts MDM payload settings](https://support.apple.com/en-tm/guide/deployment/depeba084b8/web)|[Font](https://developer.apple.com/documentation/devicemanagement/font)|[Font](https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.font.yaml)||
+
+**Known issues**
+
+- None
+
 ### System Policy Control (Gatekeeper)
 Use the System Policy Control payload to configure Gatekeeper settings. This configuration is located in the **System Policy Control** category of the settings catalog. You can learn more about System Policy Control using the following documentation:
 
 | Apple Platform Guides | Apple Developer | Apple YAML |
 | -------- | ------- | ------- | 
 | <ul><li>[Gatekeeper and runtime protection](https://support.apple.com/guide/security/sec5599b66df/web) </li><li>[Security MDM payload](https://support.apple.com/guide/deployment/dep61dc030/web)</li></ul>| [SystemPolicyControl](https://developer.apple.com/documentation/devicemanagement/systempolicycontrol)  | [System Policy Control](https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.systempolicy.control.yaml) | 
 
-#### Known issues
+**Known issues**
+
 - None
 
 #### Intune device configuration template to settings catalog mapping
@@ -162,15 +230,15 @@ Use the System Policy Control payload to configure Gatekeeper settings. This con
 | -------- | ------- | ------- |
 | Do not allow user to override Gatekeeper  | System Policy Control > System Policy Control | Enable Assessment |
 | Allow apps downloaded from these locations | System Policy Control > System Policy Control | Allow Identified Developers |
-
 ### System Extensions
 Use the System Extensions payload to configure system extensions to be automatically loaded or prevent users from approving specific extensions. This configuration is located in the **System Configuration** category of the settings catalog. You can learn more about System Extensions using the following documentation:
 
 | Apple Platform Guides | Apple Developer | Apple YAML |
 | -------- | ------- | ------- | 
 | <ul><li>[System and kernel extensions](https://support.apple.com/guide/deployment/system-and-kernel-extensions-in-macos-depa5fb8376f/web) </li><li> [System Extensions](https://support.apple.com/guide/deployment/dep5d1584ca4/web)</li></ul>| [System Extensions](https://developer.apple.com/documentation/devicemanagement/systemextensions) | [System Extensions](https://github.com/apple/device-management/blob/release/mdm/profiles/com.apple.system-extension-policy.yaml)|
 
-#### Known issues
+**Known issues**
+
 - None
 
 #### Intune device configuration template to settings catalog mapping