Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
You can use Microsoft Intune to onboard macOS devices into Microsoft Purview solutions.
Important
Use this procedure if you have already deployed Microsoft Defender for Endpoint (MDE) to your macOS devices.
Applies to:
- Customers who have MDE deployed to their macOS devices.
- Endpoint data loss prevention (DLP)
- Insider risk management
Before you begin
- Make sure your macOS devices are onboarded to Intune and enrolled in the Company Portal app.
- Make sure you have access to the Microsoft Intune admin center.
- OPTIONAL: Install the v95+ Microsoft Edge browser on your macOS devices.
Note
The three most recent major releases of macOS are supported.
Onboard macOS devices into Microsoft Purview solutions using Microsoft Intune
Given that Microsoft Defender for Endpoints (MDE) has already been deployed to your macOS devices, you can still onboard the devices into Purview solutions by competing the following steps:
Validate existing system configuration profile
A full disk access (FDA) configuration profile should have been created and deployed previously for MDE. (For details, see Intune-based deployment for Microsoft Defender for Endpoint on Mac).
Endpoint data loss prevention (DLP) requires additional FDA permission for the new application (
com.microsoft.dlp.daemon). Validate that thecom.microsoft.dlp.daemonis in the fulldisk.mobileconfig file
Update MDE Preferences
Find the existing MDE Preferences configuration profile. See Intune-based deployment for Microsoft Defender for Endpoint on Mac for details.
Add the following key to the
com.microsoft.wdavconfiguration profile file, then save the file.<key>features</key> <dict> <key>dataLossPrevention</key> <string>enabled</string> </dict>
Offboard macOS devices using Microsoft Intune
Important
Offboarding causes the device to stop sending sensor data to the portal. However, data received from the device, including references to any alerts it has had, will be retained for up to six months.
In the Microsoft Intune admin center, open Devices > Configuration. The policies you created display.
Choose the MDE Preferences policy.
Under Properties > Configuration Settings, choose Edit
Remove these settings:
<key>features</key> <dict> <key>dataLossPrevention</key> <string>enabled</string> </dict>Choose **Review+**Save. This will offboard the macOS devices from Purview solutions while not changing the macOS device enrollment in MDE.