Introducing Config Refresh for mobile device management
Windows 11 now offers a new feature called Config Refresh for mobile device management (MDM). This feature enables you to configure policy refresh timing, making it possible to refresh as fast as every 30 minutes or as slow as every 24 hours. This helps improve security and compliance and ensures that settings do not drift from their original intent. To manage Config Refresh, you can use the Microsoft Intune Settings Catalog and troubleshoot it in the Event Viewer. It is essential to note that this feature is designed to work with MDM policies managed by the Policy CSP, and it will adhere to enablement such as the BitLocker CSP. However, policies such as Firewall, AppLocker, PDE, and LAPS are outside the scope of Config Refresh.
The feature will be available beginning with the May 2024 non-security update. To enable Config Refresh, PCs must be running Windows 11, version 23H2 or version 22H2 with the June 2024 security update installed or later. This feature can help manage devices more securely and prevent configuration drift. To get ready to use this feature, Microsoft has suggested reading the official announcement, the walkthrough in Intro to Config Refresh, and downloading the June 2024 security update if it isn't already installed. You can bookmark the Microsoft Security Blog to stay up-to-date with expert coverage on security matters.
The post Introducing Config Refresh for mobile device management originally appeared on M365 Admin.
Published on:
Learn more
Related posts
When to use Windows 10 Extended Security Updates
If you are looking to prepare for Windows 10 end-of-life support, then this post has got you covered. The article discusses how to enroll in t...
Expedite non-security updates in Windows 11
With Microsoft Intune or Microsoft Graph, you can now speed up non-security updates in Windows 11. Previously, you could only expedite securit...
Episode 372 – Microsoft Intune (Part Deux) – App
Episode 372 of the Microsoft Cloud IT Pro Podcast takes a deeper dive into Microsoft Intune, a powerful tool for managing devices, apps, and e...
Non-security preview updates will continue to be released for Windows 11, version 22H2
If you're using or managing Windows 11, version 22H2 devices, you can now expect to receive non-security preview updates for a longer period o...
Microsoft Purview compliance portal: Insider Risk Management – Policy tuning analysis for priority content-only policies
Microsoft Purview's compliance portal has introduced a policy tuning analysis feature that provides admins with a real-time prediction of the ...
New security capabilities of Event Tracing for Windows
The Event Tracing for Windows has recently received nine improvements to facilitate better cybersecurity threat diagnosis. Specifically, the s...
Microsoft Intune: Hardware backed device attestation
Microsoft Intune is offering an upgrade to Windows compliance policies with a focus on the device health feature. The update adds five new har...
Microsoft Purview compliance portal: Insider Risk Management – Policy customization from alert review experience
Microsoft Purview Insider Risk Management has introduced a new feature that enables admins to customize Insider Risk Management policies and a...
Microsoft Intune: Security policies and settings for devices enrolled with Microsoft Defender
This post explores Microsoft Intune and the security policies and settings used for devices that are enrolled with Microsoft Defender. By util...
Announcing public preview of Content Security Policy for Power Apps
Power Apps users, rejoice: the public preview of Content Security Policy is here! By configuring CSP, you can enhance the security of your Pow...