This Microsoft Intune post will show how to exclude managed devices from an Intune policy.
Excluding devices from an Intune policy can be beneficial in cases where we need to install an application, test functionality or enable a group of users to work on a task that Intune blocks.
Microsoft Intune allows us to exclude devices using Groups per policy basis. For example, we can exclude devices from security, compliance, and baseline policies.
Exclude Devices
First, we must create an Entra ID security group (static or dynamic) to exclude a single device or a group of devices from an Intune policy.
Add the computers or users (not both_ that you need to exclude from the group using the members option.
Once the group is created, go to any existing or new policy and use the Exclude option in the assignment section to add the security group.
Once you add the exclusion, you can sync a device excluded from the policy.
Related Articles
- Exclude a specific User, Group Or machine from A Group Policy
- Add Or Exclude OU From Azure Active Directory Connect To Office 365
- Exclude Azure AD Joined VMs From MFA Using Conditional Access
- Automatic Mailbox Migration Exchange Server 2016
- Exclude and Remove Microsoft 365 SharePoint Site from Retention Policy
Visit our YouTube channel