@@ -58,116 +58,30 @@ pip install IntuneCD
5858pip install IntuneCD -- upgrade
5959```
6060
61- ## What is backed up?
62- - Apple Push Notification
63- - Apple Volume Purchase Program tokens
64- - Application Configuration Policies
65- - Including assignments
66- - Application Protection Policies
67- - Including assignments
68- - Applications
69- - Including assignments
70- - Compliance Policies
71- - Including assignments
72- - Device Configurations
73- - Including assignments
74- - For custom macOS and iOS configurations, mobileconfigs are backed up
75- - Enrollment profiles
76- - Apple Business Manager
77- - Windows Autopilot
78- - Including assignments
79- - Endpoint Security
80- - Including assignments
81- - Security Baselines
82- - Antivirus
83- - Disk Encryption
84- - Firewall
85- - Endpoint Detection and Response
86- - Attack Surface Reduction
87- - Account Protection
88- - Filters
89- - Managed Google Play
90- - Notification Templates
91- - Proactive Remediations
92- - Including assignments
93- - Partner Connections
94- - Compliance
95- - Management
96- - Remote Assistance
97- - Scripts
98- - Including assignments
99- - Powershell
100- - Shell
101- - Settings Catalog Policies
102- - Including assignments
103-
104- ## What can be updated?
105- Well... most of the above ;)
106-
107- - Application Configuration Policies
108- - Including assignments
109- - Application Protection Policies
110- - Including assignments
111- - Compliance Policies
112- - Including assignments
113- - Device Configurations
114- - Including assignments
115- - Including custom macOS/iOS .mobileconfigs and custom Windows profiles
116- - Enrollment profiles
117- - Apple Business Manager
118- - Windows Autopilot
119- - Including assignments
120- - Endpoint Security
121- - Including assignments
122- - Security Baselines
123- - Antivirus
124- - Disk Encryption
125- - Firewall
126- - Endpoint Detection and Response
127- - Attack Surface Reduction
128- - Account Protection
129- - Filters
130- - Notification Templates
131- - Proactive Remediations
132- - Including assignments
133- - Scripts
134- - Including assignments
135- - Powershell
136- - Shell
137- - Settings Catalog Policies
138- - Including assignments
139-
140- ## What can be created?
141- If the configuration the script is looking for cannot be found, it will create it. Supported configurations for creation are:
142-
143- - Application Configuration Policies
144- - Including assignments
145- - Application Protection Policies
146- - Including assignments
147- - Compliance Policies
148- - Including assignments
149- - Device Configurations
150- - Including assignments
151- - Including custom macOS/iOS .mobileconfigs and custom Windows profiles
152- - Endpoint Security
153- - Including assignments
154- - Security Baselines
155- - Antivirus
156- - Disk Encryption
157- - Firewall
158- - Endpoint Detection and Response
159- - Attack Surface Reduction
160- - Account Protection
161- - Filters
162- - Notification Templates
163- - Proactive Remediations
164- - Including assignments
165- - Scripts
166- - Including assignments
167- - Powershell
168- - Shell
169- - Settings Catalog Policies
170- - Including assignments
61+ ## What is backed up, updated, created and documented?
62+ | Payload | Back up | Update | Document | Create | Notes |
63+ | --------------------------------------| :-----------:| :------:| :--------:| :-----------:| -----------------------------------------------------------------------------------------------------------------------------------------------------------|
64+ | Apple Push Notification | :tada : | | :tada : | | |
65+ | Apple Volume Purchase Program tokens | :tada : | | :tada : | | |
66+ | Application Configuration Policies | :tada : | :tada : | :tada : | :tada : | |
67+ | Application Protection Policies | :tada : | :tada : | :tada : | :tada : | |
68+ | Applications | :tada : | | :tada : | | |
69+ | Compliance Policies | :tada : | :tada : | :tada : | :tada : | |
70+ | Device Configurations | :tada : | :tada : | :tada : | :tada : | For custom macOS and iOS configurations,</br >mobileconfigs are backed up |
71+ | Group Policy Configurations | :tada : | | :tada : | | |
72+ | Enrollment profiles | :tada : [ ^ 1 ] | :tada : | :tada : | :tada : [ ^ 2 ] | |
73+ | Endpoint Security | :tada : | :tada : | :tada : | :tada : | Security Baselines</br >Antivirus</br >Disk Encryption</br >Firewall</br >Endpoint Detection and Response</br >Attack Surface Reduction</br >Account Protection |
74+ | Filters | :tada : | :tada : | :tada : | :tada : | |
75+ | Managed Google Play | :tada : | | :tada : | | |
76+ | Notification Templates | :tada : | :tada : | :tada : | :tada : | |
77+ | Proactive Remediations | :tada : | :tada : | :tada : | :tada : | |
78+ | Partner Connections | :tada : | | :tada : | | Compliance</br >Management</br >Remote Assistance |
79+ | Shell Scripts | :tada : | :tada : | :tada : | :tada : | |
80+ | Powershell Scripts | :tada : | :tada : | :tada : | :tada : | |
81+ | Settings Catalog Policies | :tada : | :tada : | :tada : | :tada : | |
82+
83+ [ ^ 1 ] : Only Apple Business Manager and Windows Autopilot profiles are backed up.
84+ [ ^ 2 ] : Only Windows Autopilot profiles are created.
17185
17286## Required Azure AD application Graph API permissions
17387- DeviceManagementApps.ReadWrite.All
0 commit comments