This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 90%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EU%3C/text%3E%3C/svg%3E)
Presuming I've onboarded a device to Intune, but haven't bound it to a compliance policy yet, is there a way to preview the device's compliance applicable settings through the Intune portal?
Here's the scenario: We're going onboarding devices, some are BYOD, some are not and some are used by high-ranking personnel, within our org.
I onboarded a test device with a handful of compliance settings set. I see that Intune remediated many of the non-compliant settings on the test machine - this is both a boon and a curse. It's good that the settings were remediated, but I'd hate for that to happen on a user's machine (especially an executive's machine!) without them expecting it.
I was hoping to find a way to onboard a device to intune, and review the devices' compliance related settings (ie: simple passwords or whether the firewall was enabled) before adding the device to a compliance policy, so that I can get a feel for which users we'll have to schedule and guide through the changes they may notice. In my initial test, i didn't enable any of the compliance settings, and nothing gets reported under the device > device compliance. I added a few more settings and can now see which were originally compliant, which were remediated, and which need user intervention to make compliant.
It would be helpful to see (using my above example), whether a device is allowing simple passwords or doesn't have it's firewall enabled, before adding it to compliance policy that would change those settings.
Thanks in advance!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 35%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZM%3C/text%3E%3C/svg%3E)
@user_zero, Thanks for posting in Q&A.
Based on my experience, currently, there is no such way in Intune to check a device's compliance-related settings before adding it to a compliance policy. If you want to know whether a device is compliant with certain compliance policies, you have to either check at the device end or go through a policy analysis after assigning the device a compliance policy in order to come up with the device's setting status. After that you can correct the non-compliant settings on device.
You can refer to the following links to set up compliance policies and monitor the status of the device after applying the policies
https://learn.microsoft.com/en-us/mem/intune/protect/device-compliance-get-started
https://learn.microsoft.com/en-us/mem/intune/protect/compliance-policy-monitor
As for device enrollment, here are some methods mentioned in the following link.
Hope above information can be helpful.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@user_zero, Hope things going well.
May I know the above information is helpful? If there is any update, feel free to let us know.