Enterprise Data Protection policy options in Microsoft Intune

Now earlier this week, Microsoft released their enterprise data protection feature within Microsoft Intune. I have blogged about this earlier here –> https://msandbu.wordpress.com/2015/05/30/whats-actually-new-in-windows-10/

But it is a security feature which allows us to filter data based upon if it is private data or buisness data.

We will be able to define 4 different levels of security.

  • Block (We can say that users are NOT allowed to share data from a buisness file to for instance social media)
  • Override (Users get a warning but are allowed to override, events are logged)
  • Silent (Everything is logged)
  • Off

The feature which was released into Intune is aimed at Windows 10 enterprise (mobile/desktop) and allows policied aimed at applications., either desktop apps or Universal apps.

So if we go into Intune and choose create new policy we have a new option called Enterprise data protection here –>

image

From here we can then create the different levels of security and define which application we want to scope this policy on. We can of course use wildcard levels to exclude/include different software

image

We can also define security level, domains which users are allowed to store data on and such.

image

So what is the magic sauce running beneath which allows this to happen ?
Stay tuned as I get more detailed on this blogpost, since I am still testing it Smilefjes