InTune (Microsoft): Screen lock check

Screen lock check

Here are step by step instructions for Intune (Mac and PC) for Screen Lock acceptanceAfter confirming you are set up correctly, an integration sync is required (or wait until the nightly sync.

Windows:

If Password Check has been configured:

  1. Go to https://endpoint.microsoft.com/
  2. Click on "Devices" from left sidebar menu.
  3. On "Devices" page menu, Scroll down the inner sidebar to "Policy" section and click on "Configuration Profiles".
  4. Find the previously configured "Window Password Enforcement" and access the profile.
  5. In "Configuration Settings" tab, Scrolldown to "Password" and expand it. Set the value for following checkboxes as below:
    • Maximum minutes of inactivity until screen locks => 15
  6. Click "Next".
  7. In "Assignments" tab, In "Included groups" section, click "Add all devices", and click "Next".
  8. If "Applicability Rules" appears skip and finalize change. 

If Password check has not configured:

  1. Go to https://endpoint.microsoft.com/
  2. Click on "Devices" from left sidebar menu.
  3. On "Devices" page menu, Scroll down the inner sidebar to "Policy" section and click on "Configuration Profiles".
  4. Click "Create Profile".
  5. In "Platform dropdown", select "Windows 10 and later" option.
  6. In "Profile type" select "Templates" option.
  7. Select "Device Restrictions" from Template names section and click create button.
  8. Name your policy as "Session Timeout", provide any description(optional) and click "Next".
  9. In "Configuration Settings" tab, Scrolldown to "Password" and expand it. Set the value for following checkboxes as below:
    • Maximum minutes of inactivity until screen locks => 15
  10. Click "Next".
  11. In "Assignments" tab, In "Included groups" section, click "Add all devices", and click "Next".
  12. Skip the "Applicability Rules" and click "Create" button.

Mac:

  1. Go to https://endpoint.microsoft.com/
  2. Click on "Devices" from left sidebar menu.
  3. On "Devices" page menu, Scroll down the inner sidebar to "Policy" section and click on "Configuration Profiles".
  4. Click "Create Profile".
  5. In "Platform dropdown", select "macOS" option.
  6. In "Profile type" select "Templates" option.
  7. Select "Device Restrictions" from Template names section and click create button.
  8. Name your policy as "Session Timeout", provide any description(optional) and click "Next".
  9. In "Configuration Settings" tab, Scroll down to "Password" and expand it. Set the value for following checkboxes as below:
    • Maximum minutes of inactivity until screen locks => 15
  10. Click "Next".
  11. In "Assignments" tab, In "Included groups" section, click "Add all devices", and click "Next".
  12. Skip the "Applicability Rules" and click "Create" button.

 Note: Intune's API does not allow us to pull session timeout status for Linux devices. Upload a screenshot showing this setting applied and click “ ignore” on the respective failing Linux test results.   

Was this article helpful?

Have more questions? Submit a request

Comments

0 comments

Article is closed for comments.