Share via

Device Compliance Related Policies to Azure VMs

Tirath Singh 25 Reputation points
2025-08-06T20:58:56.34+00:00

Hello All,

I am facing an issue, we have a fully azure cloud environment nothing on-prem. I have connected all my azure VM via MDE to intune so that they can get all the security config from the intune portal like all other intune fully MDM managed device gets.

Issue-

The azure VM is only able to get AV related policies but nothing related to device compliance that is pretty much trying to change reg key from what i am seeing. Is dere a way to enforce all those policies to azure VM like we have on the normal MDM managed intune device? Since we don't have on-prem DC, otherwise i would have applied via GPO

Thanks in advance

Microsoft Security | Intune | Microsoft Intune Linux
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Prathista Ilango 515 Reputation points Microsoft Employee
    2025-08-14T07:01:00.28+00:00

    Hello Tirath Singh,

    This could be because the device is not fully enrolled into Intune. You can confirm the same from Intune portal, under "Devices-All Devices", for the device in question - "Managed by" should be Intune.

    If it is not enrolled, you have to configure Automatic enrollment to make sure new Azure AD joined VMs automatically get enrolled. And enroll the existing ones.

    Refer to: Windows device enrollment guide for Microsoft Intune | Microsoft Learn

    MDM enrollment of Windows devices | Microsoft Learn

    Hope this helps!

    If you found the information above helpful, please Accept the answer. This will assist others in the community who encounter a similar issue, enabling them to quickly find the solution and benefit from the guidance provided.

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.