An error occurred while saving the commentSven commented
I agree. Currently there is not enough granularity in the Endpoint Protection workload..
We would like to offload the vast majority of the EP workload to Intune (incl. but not limited to tamper protection functionality - which I understand is also coming to ConfigMgr in the future..). Especially for Hybrid AAD joined devices we would still like to have ConfigMgr in control of the Windows Encryption workload (e.g. MBAM functionality with key rotation, self-service and helpdesk options).Sven supported this idea ·