https://www.verboon.info/tags/microsoft-intune/Recent content in Microsoft Intune on Anything About ITHugoen-usSun, 28 Apr 2024 12:25:01 +0000https://www.verboon.info/2024/04/microsoft-defender-for-endpoint-security-settings-management-internals-0x1/Sun, 28 Apr 2024 12:25:01 +0000https://www.verboon.info/2024/04/microsoft-defender-for-endpoint-security-settings-management-internals-0x1/<p>In this post, we take a closer look at how <strong>Microsoft Defender for Endpoint Security Settings Management</strong> works behind the scenes, especially for Windows Server scenarios.</p> <h2 id="entra-id-device-registration">Entra ID Device Registration</h2> <p>Because Intune policy assignment is group-based, devices need an object in Entra ID. If a server already has an existing registration (for example Hybrid Join), that object is reused. If not, a synthetic device identity is created in Entra ID so the device can retrieve policy.</p>