22 Student Comments
Enhance Endpoint Security with Microsoft Intune and Microsoft Security Copilot (v2)
MOC: MD-4011
$695 | $0 (With Winter Promo Discount) 
With Promotional Discount
- 1 Day
- Included in the "all-you-can-eat" Microsoft Live Training Subscription Learn More
Interface Gold™Gold Benefits: Retake this course for one year. Money-back guarantee. Price Match available. Replay™ class recordings are not included due to licensing restrictions. MS SubscriptionIncluded in the "all-you-can-eat" Microsoft Live Training Subscription.
to Run
Live Online
Replay™
This class date is Guaranteed to Run and will not change.
This class date is Guaranteed to Run and will not change.
This class date is Guaranteed to Run and will not change.
Learning Path 1: Enhance endpoint security with Microsoft Intune and Microsoft Copilot for Security
In this learning path, you will learn how to prepare your environment for device management, enroll and validate devices, configure and secure endpoints, protect data with conditional access, harden security with Defender for Endpoint, and accelerate remediation using Microsoft Security Copilot. Gain hands-on experience with real-world labs and practical scenarios to implement Zero Trust principles and modern endpoint security.
Module 1: Prepare Microsoft Entra ID and Intune for device management
Learn how to configure identity, licensing, and tenant settings to enable device enrollment in Microsoft Intune. Explore manual enrollment, Windows Autopilot, and BYOD scenarios to prepare your organization for modern endpoint management.
Lessons
- Set up Microsoft Entra ID roles and licensing
- Configure your tenant for device onboarding
- Choose and explain enrollment methods
Exercise
- None
Module 2: Enroll and validate devices with Microsoft Intune
Perform hands-on device enrollment in Microsoft Intune, validate device join and management status, configure enrollment restrictions, and troubleshoot common enrollment issues to ensure devices are successfully managed.
Lessons
- Discover Microsoft Copilot for Security
- Validate device join and management
- Apply platform and ownership restrictions
- Troubleshoot device enrollment
Exercise
- Enroll a device
Module 3: Configure and secure devices with Microsoft Intune policies
Learn to create and deploy configuration profiles, implement compliance policies, use dynamic groups for targeting, and automate remediation for noncompliant devices in Microsoft Intune
Lessons
- Create and assign configuration profiles
- Create and assign compliance policies
- Target policies with dynamic groups
- Automate remediation for noncompliance
Exercise
- Assign and validate device policies
Module 4: Protect data and control access with Microsoft Intune and Conditional Access
Protect corporate data on managed and unmanaged devices using Microsoft Intune app protection policies. Control access to organizational resources with Microsoft Entra Conditional Access policies that enforce compliance and security requirements.
Lessons
- Protect organizational data with app protection policies
- Control resource access with Conditional Access policies
Exercise
- Protect data and control access with policies
Module 5: Harden endpoints and monitor security with Microsoft Intune and Defender for Endpoint
Strengthen endpoint security by deploying Microsoft security baselines, onboarding devices to Microsoft Defender for Endpoint, and configuring attack surface reduction rules. Monitor security posture and respond to threats using integrated security operations tools.
Lessons
- Harden device security with security baselines
- Enable advanced threat protection with Microsoft Defender for Endpoint
- Prevent exploitation with attack surface reduction
Exercise
Harden and monitor endpoints with security policies
Module 6: Accelerate endpoint remediation and response with Microsoft Security Copilot
Leverage AI-powered investigation capabilities with Microsoft Security Copilot to analyze security incidents, troubleshoot device issues, and generate remediation recommendations across Microsoft Intune and Defender for Endpoint.
Lessons
- Microsoft Security Copilot overview
- Investigate security incidents with Copilot
- Device troubleshooting with Copilot in Intune
Exercise
- Investigate and respond with Security Copilot
This course is ideal for IT administrators, endpoint administrators, and security professionals responsible for managing and securing organizational devices using Microsoft Intune, Microsoft Defender for Endpoint, and Microsoft Security Copilot.
- Before attending this course, students must have:
- Familiarity with Microsoft 365 services and administration
- Basic understanding of Microsoft Entra ID (formerly Azure Active Directory)
- Experience with Windows 10/11 device management concepts
- Understanding of security concepts including authentication, authorization, and encryption
- Configure and deploy device enrollment strategies in Microsoft Intune, including Windows Autopilot, Apple DEP, and Android Enterprise zero-touch deployment.
- Apply and enforce compliance and conditional access policies to ensure organizational security standards are consistently met across diverse devices and applications.
- Secure and manage enterprise applications by implementing app configuration, protection policies, and mobile application management (MAM) settings.
- Leverage Microsoft Copilot for Security to summarize incidents, analyze scripts, and generate AI-driven recommendations for threat response.
- Integrate Intune with Microsoft Copilot for Security to enhance endpoint visibility, monitor device posture, and streamline incident response workflows.
- Design and execute effective custom prompts and promptbooks in Copilot for Security to extract targeted security and compliance data from Intune.
- Implement role-based access controls (RBAC) and authentication mechanisms across Intune, Microsoft Entra, and Copilot for Security to secure administrative operations.