Policies created by the tool are visible in the Microsoft Endpoint Manager in the Endpoint security > Firewall pane.īy default, only enabled firewall rules are migrated and only firewall rules created by GPO are migrated. When more than 150 firewall rules are found, multiple policies are created. The policy name must be unique for the tenant. For more information about required permissions, see Required permissions. When prompted, provide appropriate Intune administrator credentials. The script downloads all the prerequisites it requires to run. Run the Export-FirewallRules.ps1 script on the machine.
The zip file contains the script file Export-FirewallRules.ps1. Sign in to the reference machine with local administrator privileges.ĭownload and unzip the file Export-FirewallRules.zip. When run, the tool exports all enabled firewall rules that are present on the device, and automatically creates new Intune policies with the collected rules. Run the tool on a reference machine to migrate that machines current Windows Firewall rule configuration.
To work around this condition, either add a policy that targets MDM before running the script, or edit the line 46 of the script to the following: while(($profileNameExist) -and ($profiles.Count -gt 0)) When there are no policies that target MDM, the script can loop and fail to exit.
The tool's PowerShell script looks for endpoint security policies that target MDM. After the endpoint security rules are created, administrators can target the rules to Azure AD groups to configure MDM and co-managed clients.ĭownload the Endpoint security firewall rule migration tool: When you run the Endpoint security firewall rule migration tool on a reference Windows 10/11 client that has firewall rules based on Group Policy applied, the tool can automatically create Endpoint security firewall rule policies in Endpoint Manager. Endpoint security in Endpoint Manager offers rich management experiences of Windows Firewall configuration and granular firewall rule management.īecause it can be challenging to move large numbers of existing Group Policies for Windows Firewall rules to Endpoint security policies in Endpoint Manager, we've created the Endpoint security firewall rule migration tool, which is a PowerShell script. Many organizations are moving their security configuration to Microsoft Endpoint Manager to make use of modern, cloud-based management.
0 kommentar(er)
