Enterprise Data Protection policy options in Microsoft Intune

Now earlier this week, Microsoft released their enterprise data protection feature within Microsoft Intune. I have blogged about this earlier here –> https://msandbu.wordpress.com/2015/05/30/whats-actually-new-in-windows-10/

But it is a security feature which allows us to filter data based upon if it is private data or buisness data.

We will be able to define 4 different levels of security.

  • Block (We can say that users are NOT allowed to share data from a buisness file to for instance social media)
  • Override (Users get a warning but are allowed to override, events are logged)
  • Silent (Everything is logged)
  • Off

The feature which was released into Intune is aimed at Windows 10 enterprise (mobile/desktop) and allows policied aimed at applications., either desktop apps or Universal apps.

So if we go into Intune and choose create new policy we have a new option called Enterprise data protection here –>

image

From here we can then create the different levels of security and define which application we want to scope this policy on. We can of course use wildcard levels to exclude/include different software

image

We can also define security level, domains which users are allowed to store data on and such.

image

So what is the magic sauce running beneath which allows this to happen ?
Stay tuned as I get more detailed on this blogpost, since I am still testing it Smilefjes

You May Also Like

About the Author: Marius Sandbu

2 Comments

  1. I guess you have noticed by now that the released Windows 10 th2, or 1511 fall update sadly did not include EDP. Hopefully we will be able to test this soon on a Insider Preview.

Leave a Reply

Your email address will not be published. Required fields are marked *