Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add macOS agent release notes to Intune Documentation #4687

Closed
wants to merge 1 commit into from
Closed

Add macOS agent release notes to Intune Documentation #4687

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 16 additions & 0 deletions memdocs/intune/fundamentals/whats-new.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -237,6 +237,12 @@ Now generally available, Microsoft Intune supports compliance checks for instanc

For more information about WSL compliance, see [Evaluate compliance for Windows Subsystem for Linux](../protect/compliance-wsl.md).

### Device management

#### macOS agent
- Track network availability so that Intune agent can trigger another sync on network reconnection in the case of network interruption.
- Add traces to macOS agent log when customers killing the MDM agent.

### Intune Apps

#### Newly available protected apps for Intune<!-- 29602331 -->
Expand Down Expand Up @@ -333,6 +339,9 @@ While Intune doesn't prevent enrollment or management of devices on unsupported

Userless methods of Android device management (Dedicated and AOSP userless) and Microsoft Teams certified Android devices are not affected by this change.

#### macOS agent
- Bug fix: The DMG App is successfully removed from directory after editing the assignment to uninstall.

#### Collection of additional device inventory details<!-- 29460196 -->

Intune now collects additional files and registry keys to assist in troubleshooting the Device Hardware Inventory feature.
Expand Down Expand Up @@ -537,6 +546,13 @@ You can configure these screens in new and existing enrollment policies. For mor

Now when you create an enrollment token for Android Open Source Project (AOSP) corporate-owned, user-associated devices, you can select an expiration date that's up to 65 years into the future, an improvement over the previous 90 day expiration date. You can also modify the expiration date of existing enrollment tokens for Android Open Source Project (AOSP) corporate-owned, user-associated devices.

### Device management

#### macOS agent
- Add protections against client DoS attacks from an attacker unmounting the image via DiskUtility.
- Protect DMG from attacks where an the disk is unmounted via DiskUtility and remounted via CLI with different contents. We now use Disk Arbitration (DA) to mitigate against DoS attacks via Disk Utility; these DA APIs allows us to intercept requests to unmount a mounted DMG while it's still in use and decide how to proceed.
- The self-destruct failed on macOS device. Use shell script to uninstall sidecar; this way, a different process running as root can do the uninstallation.

### Device security

#### New disk encryption template for Personal Data Encryption<!-- 28677934 -->
Expand Down
Loading