创建 Skycure 移动威胁防御符合性策略Create Skycure Mobile Threat Defense compliance policy

适用于:经典控制台中的 IntuneApplies to: Intune in the classic console
正在查找有关 Azure 中的 Intune 的文档?Looking for documentation about Intune on Azure? 请转到此处Go here.

具备 Skycure 移动威胁防御的 Intune 使你能够检测移动设备上的威胁并评估存在威胁的设备的风险。Intune with Skycure Mobile Threat Defense lets you detect threats on mobile devices and assess risk on those devices. 可创建评估风险的 Intune 符合性策略规则,确定设备是否符合。You can create an Intune compliance policy rule that assesses risk to determine if the device is compliant. 然后可使用条件性访问策略,根据设备合规性阻止对服务的访问。You can then use conditional access policy to block access to services based on device compliance.

在开始之前Before you begin

包含 Skycure 设备威胁防护的符合性策略的先决条件:Prerequisites for compliance policy with Skycure device threat protection:

作为 Skycure 移动威胁防御设置过程的一部分,需在 Skycure 控制台中创建一个将各种威胁分类为高、中和低的策略。As part of the Skycure Mobile Threat Defense setup, in the Skycure console, you created a policy that classifies various threats as high, medium and low. 现在需要在 Intune 符合性策略中设置允许的最大威胁级别。You now need to set the maximum allowed threat level in the Intune compliance policy.

创建 Skycure 符合性策略To create Skycure compliance policy

  1. 转到“Intune 经典控制台”,然后输入你的凭据。Go to the Intune classic console then enter your credentials.

  2. 选择“策略”>“符合性策略”。Choose Policy > Compliance Policies. 可使用现有合规性策略或创建新策略。You can either use an existing compliance policy or create a new one.

  3. 选择“添加”>“设备运行状况”,然后启用“设备威胁防护”。Choose Add > Device Health, then enable Device Threat Protection.

  4. 选择允许的最大威胁级别Select the Maximum allowed threat level:

    a.a. 无(安全):这是最安全的选项。None (Secured): This is the most secure. 设备不能存在任何威胁,且仍可访问公司资源。The device cannot have any threats present and still access company resources. 如果发现了任何威胁,设备都将被视为不合规。If any threats are found, the device is evaluated as non-compliant.

    b。b. :如果设备上仅存在低级威胁,则该设备为合规。Low: The device is compliant if only low level threats are present. 低级以上的任意威胁都将使设备不合规。Anything higher puts the device in a non-compliant status.

    c.c. :如果设备上发现的威胁为低级别或中等级别,设备为合规。Medium: The device is compliant if the threats found on the device are low or medium level. 如果设备中检测到高级威胁,则视为不合格。If high level threats are detected, the device is determined as non-compliant.

    d.d. :这是最不安全的选项。High: This is the least secure. 此选项允许所有威胁级别,且仅将 Skycure 移动威胁防御用作报告目的。This allows all threat levels, and uses Skycure mobile threat defense for reporting purposes only.

重要

如果为 Office 365 或其他服务创建条件性访问策略,将考虑上述合规性评估,阻止不合规的设备访问这些服务,直到解决威胁。If you create conditional access policies for Office 365 or other services, this compliance evaluation is assessed and non-compliant devices are blocked from accessing those services until the threat is resolved.

后续步骤Next steps

要提交产品反馈,请访问 Intune Feedback