Configuration Profile Policy Creation

This guide will provide background information on creating a configuration profile that will push specified security settings to the specific onboarded device group.

Configuration Profiles

Device profiles allow you to add and configure settings, and then push these settings to managed devices in your organization.

Role Requirements

Procedure Scope: Administrators

Required Group Membership: Admin.Security

Handbook Reference

Package: TBD

Domain: TBD

Modifies: TBD

Creating a Device Configuration Profile

  1. Navigate to Configuration Profiles – Intune, select Create Profile; a pop-up will display asking for platform configuration which will pertain to the OS type of the devices and the profile type which will differ depending on platform selection but will mainly revolve around a setting catalog which will display all possible configurable settings on the platform, or a template which will section off specific settings depending on a scope of operation. Select Create when complete.
  2. Provide the Name of the profile and Description related to the objective it is trying to achieve. Select Next when complete.
  3. You will be directed to the settings catalog which has every conceivable setting for the platform that you are interfacing with. Select Add Settings, this will display the Settings Picker which will allow you to search or browse the catalog for applicable settings, selecting the settings under Setting Name will display them in the main area where you can configure the setting using the Radio Button or Value Field Select Next to proceed.
  4. Scope tag selection can be made, it is mainly leveraged with RBAC. Select Next to continue.
  5. Next is group assignment and exclusion, these profiles can be leveraged for all users, all devices, or specific groups outlined in AD. Select Next to proceed to revisions.
  6. Review will show all the configured items for the profile prior to creation, if you see a discrepancy, you can select Previous to go back and alter the settings before finalization. Select Create when finished to publish the configuration profile.
  7. Once created the profile will be generated in the list, you can click in to view devices that the profile is successfully deploying to and check for failures related to setting deployment errors.

Need Assistance?

Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.