none
Firewall policy in Intune (Azure Portal) ?

    Question

  • Hi all,

    In the classic Intune portal, you could configure firewall policies from Policy -> Create New Policy -> Computer Management -> Windows Firewall Settings.

    Have these been migrated to the new Azure portal?  If they have...can someone tell me where they are?

    I need to configure the firewall on our remote intune managed users.  So if they haven't been migrated to the new portal, will they will work if I configure them in the old portal or has that been totally decommissioned?


    http://www.dreamension.net

    Friday, October 13, 2017 7:22 AM

Answers

  • Hello Noel,

    Based on the article below, Firewall CSP will be supported in the next major update to Windows 10, which should be Windows 10 1709 based on my own understanding. 

    https://docs.microsoft.com/en-us/windows/client-management/mdm/firewall-csp

    From the blog article, the 1709 update will be released on Oct 17th. Therefore, I guess that the Firewall CPS will also be supported in Intune soon after the update released. Then, you can configure the custom policies for defining the Firewall policies for Windows 10.

    Best regards,

    Andy Liu


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, October 16, 2017 6:47 AM

All replies

  • Those firewall policies only applied to Windows systems managed by the full Intune agent. At this time, management of systems with the full Intune agent on them has not been ported to the new Azure portal and is only available in the classic Intune management portal.

    Thus the question is are you using the full Intune agent or are these system MDM enrolled?


    Jason | https://home.configmgrftw.com | @jasonsandys

    Friday, October 13, 2017 1:14 PM
  • Ohhh this is not ideal then.

    They're Win10 1703 machines being managed from Intune only. 

    I'm guessing the Intune agent is only for management of down-level clients and won't run/be supported on Win10 endpoints?

    If that's the case - I'm going to hazard a guess the only way to do this is via powershell wrapped in an MSI (until the Intune Management Extensions get deployed?).


    http://www.dreamension.net

    Saturday, October 14, 2017 5:36 AM
  • I am guessing that they are MDM enrolled then? As Jason noted, firewall policies isn't in the new Intune portal yet, but Microsoft are constantly adding settings to the new Intune portal. The firewall settings might get added at the end of the month.
    Sunday, October 15, 2017 7:13 AM
  • Hi

    Firewall CSP is not yet working in Intune yet like Nick is written - and it first introduces in Windows 10 1709.

    https://docs.microsoft.com/en-us/windows/client-management/mdm/configuration-service-provider-reference

    Kind regards

    Per Larsen
    Microsoft MVP - Enterprise Mobility
    Twitter: @PerLarsen1975 | Blog: osddeployment.dk
    If this post is helpful please vote it as Helpful or click Mark for answer.

    Monday, October 16, 2017 5:55 AM
  • Hello Noel,

    Based on the article below, Firewall CSP will be supported in the next major update to Windows 10, which should be Windows 10 1709 based on my own understanding. 

    https://docs.microsoft.com/en-us/windows/client-management/mdm/firewall-csp

    From the blog article, the 1709 update will be released on Oct 17th. Therefore, I guess that the Firewall CPS will also be supported in Intune soon after the update released. Then, you can configure the custom policies for defining the Firewall policies for Windows 10.

    Best regards,

    Andy Liu


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, October 16, 2017 6:47 AM
  • This is awesome news.  So hopefully it shouldn't be too far away.

    Thanks to everyone who contributed to this thread.  I appreciate it.


    http://www.dreamension.net

    Monday, October 16, 2017 7:23 AM
  • It has now been added for Windows 10 1709. See https://docs.microsoft.com/en-us/intune/whats-new

    In Intune, Device Configuration > Windows 10 and later > Endpoint Protection > Windows Defender Firewall


    Friday, November 10, 2017 8:43 PM