ThomasKur / IntuneDocumentation

Automatic Intune Documentation to simplify the life of admins and consultants.
GNU General Public License v3.0
339 stars 87 forks source link

Policies seem to be read incompletely and assigned to the wrong area #64

Closed rk-h closed 3 years ago

rk-h commented 3 years ago

It looks like some setting are not captured properly or fully.

This are the Intune settings for an Endpoint Security Antivirus Policy:

image image

This is what is documented by the script for that policy:

image

Why Security Baselines? Why is it not referencing to Endpoint Protection -> Antivirus?

What I frankly did not understand, despite reading the notes on Github, is the translation issue. Is this related to this issue here? If so, wouldn't it be good to at least include a [Missing classification - translation needed] note in the document? About a 'How-To' translate I would be happy at this point, too.

When I use the switches -Verbose and -UseTranslationBeta I also get, among others, this file. ..\WindowsPowerShell\Modules\IntuneDocumentation\2.0.19\Data\LabelTranslation\macOS-securityTemplate-antivirus.json:

{
    "macOSEndpointProtectionConfiguration advancedThreatProtectionAutomaticSampleSubmission":  {
                                                                                                   "Section":  " ",
                                                                                                   "Name":  "",
                                                                                                   "DataType":  null
                                                                                               },
    "macOSEndpointProtectionConfiguration advancedThreatProtectionCloudDelivered":  {
                                                                                        "Section":  " ",
                                                                                        "Name":  "",
                                                                                        "DataType":  null
                                                                                    },
    "macOSEndpointProtectionConfiguration advancedThreatProtectionExcludedFiles":  {
                                                                                       "Section":  " ",
                                                                                       "Name":  "",
                                                                                       "DataType":  null
                                                                                   },
    "macOSEndpointProtectionConfiguration advancedThreatProtectionExcludedFolders":  {
                                                                                         "Section":  " ",
                                                                                         "Name":  "",
                                                                                         "DataType":  null
                                                                                     },
    "macOSEndpointProtectionConfiguration advancedThreatProtectionRealTime":  {
                                                                                  "Section":  " ",
                                                                                  "Name":  "",
                                                                                  "DataType":  null
                                                                              },
    "macOSEndpointProtectionConfiguration advancedThreatProtectionDiagnosticDataCollection":  {
                                                                                                  "Section":  " ",
                                                                                                  "Name":  "",
                                                                                                  "DataType":  null
                                                                                              },
    "macOSEndpointProtectionConfiguration advancedThreatProtectionExcludedProcesses":  {
                                                                                           "Section":  " ",
                                                                                           "Name":  "",
                                                                                           "DataType":  null
                                                                                       },
    "macOSEndpointProtectionConfiguration advancedThreatProtectionExcludedExtensions":  {
                                                                                            "Section":  " ",
                                                                                            "Name":  "",
                                                                                            "DataType":  null
                                                                                        }
}

The file and path names I have set in the policy do not appear anywhere either. Why is that?

ThomasKur commented 3 years ago

Thanks for the feedback. The Policy is assigned to Security Baselines because Microsoft in Background manages this policy in the Security Baseline namespace.

Regarding Translation check out the new version of the Automatic Microsoft 365 Documentation which has a UI to translate properties.