AzureAD Groups (Intune)
Device Group - A device group is a group that ONLY accepts device names in it. Users can be added to this group, but doing so will break the function of the group.
User Group - A user group is a group that primarily accepts user names in it. It's recommended to never add devices to a user group unless you're 100% sure that it will function correctly.
Windows Defender Onboarding Test
This group applies a suite of security changes for testing Windows Defender and other security settings in Intune.
-Applies "MDE Baseline policy" in Intune > Endpoint Security > Microsoft Defender for Endpoint Baseline > MDE Baseline Policy
-Applies "MS AV Software" policy in Intune > Endpoint Security > Antivirus
-Applies "Defender Onboarding Windows_Firewall Test" policy in Intune > Endpoint Security > Firewall
---This policy will be renamed "MS Windows Firewall"
-Applies the "Microsoft Teams Firewall Rule" rule in Intune > Endpoint security > Firewall > Microsoft Teams Firewall Rule
---This rule adds a firewall rule to allow Microsoft Teams connections. If this isn't enabled, a harmless prompt comes up the first time a user receives a team call. The prompt does not stop or prevent functionality but it will confuse the users.
-Applies "MDE Sensor Onboarding" policy in Intune > Endpoint Security > Endpoint detection and response
---This policy onboards devices into Defender
-Applies "Attack Surface Reduction - Default" policy in Intune > Endpoint Security > Attack surface reduction
-Applies "Security Configuration Profile - Testing 12/8/23" in Intune > Devices > configuration profiles > Security Configuration Profile - Testing 12/8/23
---This policy enables various security options such as smart screen and memory integrity
Device Security - Strict
This group applies a more strict set of policies than the above group. A device in this group should also be included in the above group.
-Applies "MS AV Software - Strict" policy in Intune > Endpoint Security > Antivirus
-Applies "Security Configuration Profile - Strict" in Intune > Devices > configuration profiles