Microsoft Intune Suite Adds Advanced Privilege Management and App Management Tools

Microsoft has rolled out enhanced Endpoint Privilege Management (EPM) and Enterprise Application Management capabilities for its Intune Suite. These new features are aimed at optimizing security controls while minimizing disruptions in enterprise environments.

Microsoft Intune Endpoint Privilege Management is a feature that allows businesses to manage user privileges more effectively. Meanwhile, Enterprise Application Management offers a comprehensive solution for overseeing applications within an organization.

Microsoft has introduced automated rule creation for quicker approvals in Endpoint Privilege Management (EPM). This feature enables administrators to create elevation rules directly from support approval requests or entries in the elevation report. It eliminates the need for lengthy manual approval processes.

The latest update enables IT administrators to specify allowed command parameters when setting elevation rules in Endpoint Privilege Management. Additionally, the EPM service now integrates with Personal Data Encryption (PDE) for Windows folders.

Furthermore, EPM now supports Azure Virtual Desktop single-session environments. This service also includes new integration with Windows attestation, which verifies the integrity of devices before granting elevation. The security feature ensures that only trusted devices can receive temporary elevated privileges.

Microsoft Intune Enterprise App Management updates

Microsoft has launched a new guided application upgrade feature that allows administrators to deploy updates for applications already installed through the Enterprise App Catalog. This feature utilizes Microsoft Graph to gather information about available app updates, including installation commands, supersedence settings, and detection rules.

The Enterprise App Catalog now features over 450 applications, simplifying the management of app environments. Some of these apps support self-updating which helps administrators keep their apps up-to-date.

Starting today, administrators can access automated rule creation and guided application upgrades within the Microsoft Intune Suite. Microsoft plans to roll out the new Endpoint Privilege Management (EPM) and Enterprise Application Management features to all commercial customers in the coming months.