Enterprise Data Protection policy options in Microsoft Intune

Now earlier this week, Microsoft released their enterprise data protection feature within Microsoft Intune. I have blogged about this earlier here –> https://msandbu.wordpress.com/2015/05/30/whats-actually-new-in-windows-10/

But it is a security feature which allows us to filter data based upon if it is private data or buisness data.

We will be able to define 4 different levels of security.

  • Block (We can say that users are NOT allowed to share data from a buisness file to for instance social media)
  • Override (Users get a warning but are allowed to override, events are logged)
  • Silent (Everything is logged)
  • Off

The feature which was released into Intune is aimed at Windows 10 enterprise (mobile/desktop) and allows policied aimed at applications., either desktop apps or Universal apps.

So if we go into Intune and choose create new policy we have a new option called Enterprise data protection here –>


From here we can then create the different levels of security and define which application we want to scope this policy on. We can of course use wildcard levels to exclude/include different software


We can also define security level, domains which users are allowed to store data on and such.


So what is the magic sauce running beneath which allows this to happen ?
Stay tuned as I get more detailed on this blogpost, since I am still testing it Smilefjes

0 thoughts on “Enterprise Data Protection policy options in Microsoft Intune”

  1. I guess you have noticed by now that the released Windows 10 th2, or 1511 fall update sadly did not include EDP. Hopefully we will be able to test this soon on a Insider Preview.

Leave a Reply

Scroll to Top
%d bloggers like this: