Microsoft Intune: What's New in 2024

Intune is constantly evolving and improving, with new features and enhancements being released regularly. In this blog post, we will highlight some of the most exciting and useful features and enhancements that Intune has to offer in 2024 so far.

Device management

Some of the new features and enhancements for device management include:

• Zero-touch enrollment: This feature allows you to enroll your Windows 10 devices without any user interaction, by using a device provisioning package that contains the enrollment information. You can create and distribute the device provisioning package using Intune or a third-party tool and apply it to your devices using a USB drive, an SD card, or a network share.
• Device health attestation: This feature allows you to verify the health and integrity of your Windows 10 devices, by checking the device's security configuration, boot process, and hardware status. You can use Intune to collect and report the device health attestation data and use conditional access policies to block or allow access to your resources based on the device's health status.
• Update compliance: This feature allows you to monitor and manage the update status of your Windows 10 devices, by using the Windows Update for Business service. You can use Intune to configure the update settings, such as the update channel, the quality update deferral period, and the feature update pause duration, and assign them to your devices or groups. You can also use Intune to view the update compliance reports, such as the update status, the update history, and the update issues.

App management

Another area of improvement for Intune in 2024 is app management, which enables you to deploy and manage your apps across your devices and control app access and data sharing.

Some of the new features and enhancements for app management include:

• App configuration policies: This feature allows you to configure the settings and preferences of your apps, such as the app language, the app theme, and the app data source. You can use Intune to create and assign app configuration policies to your apps or groups and apply them to your devices without requiring device enrollment or app wrapping.
• App protection policies: This feature allows you to protect your app data with encryption, authentication, and data transfer restrictions. You can use Intune to create and assign app protection policies to your apps or groups and apply them to your devices without requiring device enrollment or app wrapping.

• App inventory: This feature allows you to view and manage the app inventory of your devices, by using the Microsoft Graph API. You can use Intune to query the app inventory data, such as the app name, the app version, and the app publisher, and perform actions on the apps, such as uninstall, update, or launch.

Data protection

The third area of improvement for Intune in 2024 is data protection, which enables you to protect your data with policies and encryption and monitor and remediate compliance issues.

• Endpoint data loss prevention: This feature allows you to prevent data loss on your Windows 10 devices, by using the Microsoft Information Protection service. You can use Intune to create and assign endpoint data loss prevention policies to your devices or groups and apply them to your devices without requiring device enrollment. You can also use Intune to view the endpoint data loss prevention reports, such as the data activity, the data classification, and the data incidents.
• BitLocker management: This feature allows you to manage the BitLocker encryption on your Windows 10 devices, by using the Microsoft Endpoint Manager admin center. You can use Intune to configure the BitLocker settings, such as the encryption method, the recovery key, and the PIN, and assign them to your devices or groups. You can also use Intune to view the BitLocker status, such as the encryption state, the recovery key, and the PIN.
• Compliance policies: This feature allows you to enforce the compliance status of your devices, by using the Azure Active Directory service. You can use Intune to create and assign compliance policies to your devices or groups and apply them to your devices without requiring device enrollment. You can also use Intune to view the compliance reports, such as the compliance state, the compliance score, and the compliance issues.

If you want to learn more about the new features and enhancements that Intune has to offer throughout 2024, we invite you to contact the SureStep Ambassador team for Modern Work at This email address is being protected from spambots. You need JavaScript enabled to view it. today!