From 17632365806f57bdc746345c20db58e38758f68b Mon Sep 17 00:00:00 2001 From: brenduns Date: Tue, 27 Aug 2024 15:14:56 -0700 Subject: [PATCH 1/5] Add edits for MDE in GCCH --- .../intune-govt-service-description.md | 3 ++- memdocs/intune/protect/mde-security-integration.md | 14 +++++++++++++- 2 files changed, 15 insertions(+), 2 deletions(-) diff --git a/memdocs/intune/fundamentals/intune-govt-service-description.md b/memdocs/intune/fundamentals/intune-govt-service-description.md index eb9bc28b8b8..fce92431a30 100644 --- a/memdocs/intune/fundamentals/intune-govt-service-description.md +++ b/memdocs/intune/fundamentals/intune-govt-service-description.md @@ -7,7 +7,7 @@ keywords: author: MandiOhlinger ms.author: mandia manager: dougeby -ms.date: 08/01/2024 +ms.date: 09/23/2024 ms.topic: article ms.service: microsoft-intune ms.suite: ems @@ -73,6 +73,7 @@ The following features are available and supported in Microsoft GCC High and/or | --- | --- | | Standard MDM features | ✅

You can use app policies, device configuration profiles, compliance policies, and more. | | Mobile Threat Defense (MTD) | ✅

Mobile Threat Defense (MTD) connectors for Android and iOS/iPadOS devices with MTD vendors that **also support** the GCC High environment can be used. When you sign in to a GCC High tenant, you see the connectors that are available in these environments. | +| Microsoft Defender for Endpoint security settings management | ✅

On devices onboarded to Defender but not enrolled in Intune, you can use Intune endpoint security policies to manage Defender security settings. For more information on this feature, go to [Defender for Endpoint security settings management](../protect/mde-security-integration.md). | | Platform support | ✅

You can use the same operating systems - Android, AOSP, iOS/iPadOS, Linux, macOS, and Windows.

- **Android (AOSP)**: There are some device restrictions. For more information, go to [Supported operating systems and browsers in Intune - AOSP](supported-devices-browsers.md#android).
- **Linux**: Generally available (GA) in February 2024.| | Remote Help | ✅

Remote Help is supported in GCC on Android, macOS, and Windows devices. It's not supported in GCC High or DoD.

For more information on this feature, go to [Remote Help in Microsoft Intune](../fundamentals/remote-help.md). | | Windows Autopilot device preparation | ✅

Some features are available now, such as user-driven deployments, and some are still [in the planning phase](#in-the-planning-phase). For more information on the recent changes to Windows Autopilot device preparation, go to [Blog: Windows deployment with the next generation of Windows Autopilot](https://techcommunity.microsoft.com/t5/microsoft-intune-blog/windows-deployment-with-the-next-generation-of-windows-autopilot/ba-p/4148169).

To get started with Windows Autopilot device preparation, go to [Windows Autopilot Device Preparation overview](/autopilot/device-preparation/overview). | diff --git a/memdocs/intune/protect/mde-security-integration.md b/memdocs/intune/protect/mde-security-integration.md index 4246eb69117..3920e09a396 100644 --- a/memdocs/intune/protect/mde-security-integration.md +++ b/memdocs/intune/protect/mde-security-integration.md @@ -7,7 +7,7 @@ keywords: author: brenduns ms.author: brenduns manager: dougeby -ms.date: 07/03/2024 +ms.date: 09/23/2024 ms.topic: how-to ms.service: microsoft-intune ms.subservice: protect @@ -70,6 +70,18 @@ When a supported device onboards to Microsoft Defender for Endpoint: Security settings management isn't yet supported with Government clouds. For more information, see [Feature parity with commercial](/microsoft-365/security/defender-endpoint/gov#feature-parity-with-commercial) in *Microsoft Defender for Endpoint for US Government customers*. +### Government cloud support + +The Defender for Endpoint security settings management scenario is supported in the following tenants: + +- US Government Community (GCC) High +- Department of Defense (DoD) + +For more information, see: + +- [Intune US Government service description](../fundamentals/intune-govt-service-description.md) +- [Microsoft Defender for Endpoint for US Government customers](/microsoft-365/security/defender-endpoint/gov) + ### Connectivity requirements Devices must have access to the following endpoint: From 1a370cf8ff947ef8342d3ed06b383851c051fa57 Mon Sep 17 00:00:00 2001 From: brenduns Date: Wed, 18 Sep 2024 15:29:05 -0700 Subject: [PATCH 2/5] Adding 'public preview' detail for this --- .../intune/fundamentals/intune-govt-service-description.md | 4 ++-- memdocs/intune/protect/mde-security-integration.md | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/memdocs/intune/fundamentals/intune-govt-service-description.md b/memdocs/intune/fundamentals/intune-govt-service-description.md index fce92431a30..e9564cf5a8b 100644 --- a/memdocs/intune/fundamentals/intune-govt-service-description.md +++ b/memdocs/intune/fundamentals/intune-govt-service-description.md @@ -7,7 +7,7 @@ keywords: author: MandiOhlinger ms.author: mandia manager: dougeby -ms.date: 09/23/2024 +ms.date: 09/19/2024 ms.topic: article ms.service: microsoft-intune ms.suite: ems @@ -73,7 +73,7 @@ The following features are available and supported in Microsoft GCC High and/or | --- | --- | | Standard MDM features | ✅

You can use app policies, device configuration profiles, compliance policies, and more. | | Mobile Threat Defense (MTD) | ✅

Mobile Threat Defense (MTD) connectors for Android and iOS/iPadOS devices with MTD vendors that **also support** the GCC High environment can be used. When you sign in to a GCC High tenant, you see the connectors that are available in these environments. | -| Microsoft Defender for Endpoint security settings management | ✅

On devices onboarded to Defender but not enrolled in Intune, you can use Intune endpoint security policies to manage Defender security settings. For more information on this feature, go to [Defender for Endpoint security settings management](../protect/mde-security-integration.md). | +| Microsoft Defender for Endpoint security settings management (public preview)| ✅

On devices onboarded to Defender but not enrolled in Intune, you can use Intune endpoint security policies to manage Defender security settings. For more information on this feature, go to [Defender for Endpoint security settings management](../protect/mde-security-integration.md). | | Platform support | ✅

You can use the same operating systems - Android, AOSP, iOS/iPadOS, Linux, macOS, and Windows.

- **Android (AOSP)**: There are some device restrictions. For more information, go to [Supported operating systems and browsers in Intune - AOSP](supported-devices-browsers.md#android).
- **Linux**: Generally available (GA) in February 2024.| | Remote Help | ✅

Remote Help is supported in GCC on Android, macOS, and Windows devices. It's not supported in GCC High or DoD.

For more information on this feature, go to [Remote Help in Microsoft Intune](../fundamentals/remote-help.md). | | Windows Autopilot device preparation | ✅

Some features are available now, such as user-driven deployments, and some are still [in the planning phase](#in-the-planning-phase). For more information on the recent changes to Windows Autopilot device preparation, go to [Blog: Windows deployment with the next generation of Windows Autopilot](https://techcommunity.microsoft.com/t5/microsoft-intune-blog/windows-deployment-with-the-next-generation-of-windows-autopilot/ba-p/4148169).

To get started with Windows Autopilot device preparation, go to [Windows Autopilot Device Preparation overview](/autopilot/device-preparation/overview). | diff --git a/memdocs/intune/protect/mde-security-integration.md b/memdocs/intune/protect/mde-security-integration.md index 3920e09a396..737d9376a44 100644 --- a/memdocs/intune/protect/mde-security-integration.md +++ b/memdocs/intune/protect/mde-security-integration.md @@ -7,7 +7,7 @@ keywords: author: brenduns ms.author: brenduns manager: dougeby -ms.date: 09/23/2024 +ms.date: 09/19/2024 ms.topic: how-to ms.service: microsoft-intune ms.subservice: protect @@ -72,7 +72,7 @@ Security settings management isn't yet supported with Government clouds. For mor ### Government cloud support -The Defender for Endpoint security settings management scenario is supported in the following tenants: +As a public preview, the Defender for Endpoint security settings management scenario is supported in the following tenants: - US Government Community (GCC) High - Department of Defense (DoD) From b54bb5a85f646644dd3680e993b9c4ba2eebd84c Mon Sep 17 00:00:00 2001 From: Meghan Daly - MSFT <42221156+meghandaly@users.noreply.github.com> Date: Thu, 3 Oct 2024 09:23:53 -0400 Subject: [PATCH 3/5] Update app-sdk-android-phase1.md Update supported Android OS versions. --- memdocs/intune/developer/app-sdk-android-phase1.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/memdocs/intune/developer/app-sdk-android-phase1.md b/memdocs/intune/developer/app-sdk-android-phase1.md index 2b90fbda21d..0204f285ba7 100644 --- a/memdocs/intune/developer/app-sdk-android-phase1.md +++ b/memdocs/intune/developer/app-sdk-android-phase1.md @@ -166,8 +166,8 @@ The user is ***not*** required to sign into or even launch the Company Portal ap > [!NOTE] > Ensure that your app is compatible with the [Google Play requirements](https://developer.android.com/google/play/requirements/target-sdk). -The SDK fully supports Android API 28 (Android 9.0) through Android API 34 (Android 14). -In order to target Android API 34 (Android 14), you must use Intune App SDK `v10.0.0` or later. +The SDK fully supports Android API 28 (Android 9.0) through Android API 35 (Android 15). +In order to target Android API 35 (Android 15), you must use Intune App SDK `v11.0.0` or later. APIs 26 through 27 (Android 8.0 - 8.1) are in limited support. The Company Portal app isn't supported below Android API 26 (Android 8.0). From bb07cbdcd14874babaf719f33a746215c2f04909 Mon Sep 17 00:00:00 2001 From: ErikjeMS Date: Mon, 7 Oct 2024 14:10:21 -0700 Subject: [PATCH 4/5] update ms.reviewer --- windows-365/business-continuity-disaster-recovery.md | 2 +- windows-365/enterprise/architecture.md | 2 +- windows-365/enterprise/encryption.md | 2 +- windows-365/enterprise/identity-authentication.md | 2 +- windows-365/enterprise/privacy-personal-data.md | 2 +- windows-365/enterprise/resilience.md | 2 +- windows-365/enterprise/security.md | 2 +- 7 files changed, 7 insertions(+), 7 deletions(-) diff --git a/windows-365/business-continuity-disaster-recovery.md b/windows-365/business-continuity-disaster-recovery.md index 0dea3973f92..e8e3e19fc56 100644 --- a/windows-365/business-continuity-disaster-recovery.md +++ b/windows-365/business-continuity-disaster-recovery.md @@ -19,7 +19,7 @@ ms.assetid: #ROBOTS: #audience: -ms.reviewer: docoombs +ms.reviewer: docoombs, olivchen, rkiran ms.suite: ems search.appverid: MET150 #ms.tgt_pltfrm: diff --git a/windows-365/enterprise/architecture.md b/windows-365/enterprise/architecture.md index 03d9b335a38..2d54a184886 100644 --- a/windows-365/enterprise/architecture.md +++ b/windows-365/enterprise/architecture.md @@ -19,7 +19,7 @@ ms.assetid: #ROBOTS: #audience: -ms.reviewer: thhickli +ms.reviewer: thhickli, mattsha, rikiran ms.suite: ems search.appverid: MET150 #ms.tgt_pltfrm: diff --git a/windows-365/enterprise/encryption.md b/windows-365/enterprise/encryption.md index ddb9d695c68..77c0a7ffc8c 100644 --- a/windows-365/enterprise/encryption.md +++ b/windows-365/enterprise/encryption.md @@ -19,7 +19,7 @@ ms.assetid: #ROBOTS: #audience: -ms.reviewer: anbiswas +ms.reviewer: ryclar, pratikshah, saudm, jonshi ms.suite: ems search.appverid: MET150 #ms.tgt_pltfrm: diff --git a/windows-365/enterprise/identity-authentication.md b/windows-365/enterprise/identity-authentication.md index e3b0756907f..4eb9178d540 100644 --- a/windows-365/enterprise/identity-authentication.md +++ b/windows-365/enterprise/identity-authentication.md @@ -19,7 +19,7 @@ ms.assetid: #ROBOTS: #audience: -ms.reviewer: davidbel +ms.reviewer: davidbel, pratikshah ms.suite: ems search.appverid: MET150 #ms.tgt_pltfrm: diff --git a/windows-365/enterprise/privacy-personal-data.md b/windows-365/enterprise/privacy-personal-data.md index 3ddd714e171..f72b33bac28 100644 --- a/windows-365/enterprise/privacy-personal-data.md +++ b/windows-365/enterprise/privacy-personal-data.md @@ -19,7 +19,7 @@ ms.assetid: #ROBOTS: #audience: -ms.reviewer: anbiswas +ms.reviewer: tnevins1, pratikshah ms.suite: ems search.appverid: MET150 #ms.tgt_pltfrm: diff --git a/windows-365/enterprise/resilience.md b/windows-365/enterprise/resilience.md index ef7b894a036..5ed749c8b86 100644 --- a/windows-365/enterprise/resilience.md +++ b/windows-365/enterprise/resilience.md @@ -19,7 +19,7 @@ ms.assetid: #ROBOTS: #audience: -ms.reviewer: thhickli +ms.reviewer: thhickli, rkiran ms.suite: ems search.appverid: MET150 #ms.tgt_pltfrm: diff --git a/windows-365/enterprise/security.md b/windows-365/enterprise/security.md index 5e6fc627a48..57f1f94ea5c 100644 --- a/windows-365/enterprise/security.md +++ b/windows-365/enterprise/security.md @@ -19,7 +19,7 @@ ms.assetid: #ROBOTS: #audience: -ms.reviewer: chrimo +ms.reviewer: lakasa, pratikshah, saudm, jonshi ms.suite: ems search.appverid: #ms.tgt_pltfrm: From 379cec97f5b134664cfa4bf1a9a2a939661505e6 Mon Sep 17 00:00:00 2001 From: ErikjeMS Date: Mon, 7 Oct 2024 14:17:24 -0700 Subject: [PATCH 5/5] add comment --- windows-365/business-continuity-disaster-recovery.md | 2 ++ windows-365/enterprise/architecture.md | 2 ++ windows-365/enterprise/encryption.md | 2 ++ windows-365/enterprise/identity-authentication.md | 2 ++ windows-365/enterprise/privacy-personal-data.md | 2 ++ windows-365/enterprise/resilience.md | 2 ++ windows-365/enterprise/security.md | 2 ++ 7 files changed, 14 insertions(+) diff --git a/windows-365/business-continuity-disaster-recovery.md b/windows-365/business-continuity-disaster-recovery.md index e8e3e19fc56..029605ee5dd 100644 --- a/windows-365/business-continuity-disaster-recovery.md +++ b/windows-365/business-continuity-disaster-recovery.md @@ -29,6 +29,8 @@ ms.collection: - tier1 --- + + # Business continuity and disaster recovery overview Windows 365 provides highly resilient user cloud pcs, including: diff --git a/windows-365/enterprise/architecture.md b/windows-365/enterprise/architecture.md index 2d54a184886..924fde7b5e0 100644 --- a/windows-365/enterprise/architecture.md +++ b/windows-365/enterprise/architecture.md @@ -29,6 +29,8 @@ ms.collection: - tier2 --- + + # Windows 365 architecture Windows 365 provides a per-user per-month license model by hosting Cloud PCs on behalf of customers in Microsoft Azure. In this model, there’s no need to consider storage, compute infrastructure architecture, or costs. The Windows 365 architecture also lets you use your existing investments in Azure networking and security. Each Cloud PC is provisioned according to the configuration you define in the Windows 365 section of the Microsoft Intune admin center. diff --git a/windows-365/enterprise/encryption.md b/windows-365/enterprise/encryption.md index 77c0a7ffc8c..c83fa6ff1ba 100644 --- a/windows-365/enterprise/encryption.md +++ b/windows-365/enterprise/encryption.md @@ -29,6 +29,8 @@ ms.collection: - tier2 --- + + # Data encryption in Windows 365 Windows 365 encrypts data at rest and in transit as explained in this article. diff --git a/windows-365/enterprise/identity-authentication.md b/windows-365/enterprise/identity-authentication.md index 4eb9178d540..bd36d73aa95 100644 --- a/windows-365/enterprise/identity-authentication.md +++ b/windows-365/enterprise/identity-authentication.md @@ -29,6 +29,8 @@ ms.collection: - tier2 --- + + # Windows 365 identity and authentication A Cloud PC user's identity defines which access management services manage that user and Cloud PC. This identity defines: diff --git a/windows-365/enterprise/privacy-personal-data.md b/windows-365/enterprise/privacy-personal-data.md index f72b33bac28..2e3185bfc3f 100644 --- a/windows-365/enterprise/privacy-personal-data.md +++ b/windows-365/enterprise/privacy-personal-data.md @@ -30,6 +30,8 @@ ms.collection: - essentials-privacy --- + + # Privacy, customer data, and customer content in Windows 365 Windows 365 is a cloud-based service that lets you provision and manage Cloud PC for your users. You manage the Cloud PCs with the rest of your devices by using Microsoft Intune (Windows 365 Enterprise) or a self-serviced experience (Windows 365 Business). This documentation provides details on data platform and privacy compliance for Windows 365. Unless otherwise specified, the term Windows 365 in this document refers to both Windows 365 Enterprise and the Windows 365 Business. Where the details below differ, each product is called out individually. diff --git a/windows-365/enterprise/resilience.md b/windows-365/enterprise/resilience.md index 5ed749c8b86..256891b7655 100644 --- a/windows-365/enterprise/resilience.md +++ b/windows-365/enterprise/resilience.md @@ -29,6 +29,8 @@ ms.collection: - tier2 --- + + # Windows 365 service resilience Windows 365 is designed to provide a resilient and reliable service for organizations and end users, connecting to, and using their Cloud PCs. diff --git a/windows-365/enterprise/security.md b/windows-365/enterprise/security.md index 57f1f94ea5c..3bfc4398950 100644 --- a/windows-365/enterprise/security.md +++ b/windows-365/enterprise/security.md @@ -30,6 +30,8 @@ ms.collection: - essentials-security --- + + # Windows 365 security Windows 365 provides an end-to-end connection flow for users to do their work effectively and securely. Windows 365 is built with [Zero Trust](/security/zero-trust/zero-trust-overview) in mind, providing the foundation for you to implement controls to better secure your environment across the 6 pillars of Zero Trust. You can implement Zero Trust controls for the following categories: