Not a user yet?
Log in Register for free Suggest a product
Update

Improved query results

IntuneIntune
Microsoft

Week of March 2, 2026 (Service release 2602)
App management
Newly available protected apps for Intune

The following protected apps are now available for Microsoft Intune:

  • Jump by Accio Inc.
  • Mijn InPlanning by Intus Workforce Solutions (Android)

Device configuration
Apple declarative device management (DDM) supports assignment filters
You can use assignment filters in policy assignments for DDM-based configurations, like software updates.

To learn more about filters, see Use assignment filters to assign your apps, policies, and profiles in Microsoft Intune.

Applies to:

  • iOS/iPadOS
  • macOS

New updates to the Apple settings catalog
The Settings Catalog lists all the settings you can configure in a device policy, and all in one place. For more information about configuring Settings Catalog profiles in Intune, see Create a policy using settings catalog.

There are new settings in the Settings Catalog. To see these settings, in the Microsoft Intune admin center, go to Devices>Manage devices>Configuration >Create>New policy>iOS/iPadOS or macOS for platform >Settings catalog for profile type.

iOS/iPadOS
AirPlay:

  • Device Name

macOS
AirPlay:

  • Device Name Microsoft Defender
  • The Microsoft Defender category is updated with new settings. Learn more about available macOS Defender settings at Microsoft Defender - Policies.

Applies to:

  • iOS/iPadOS
  • macOS

Device management
Multi-administrator approval support for device compliance and device configuration policies
Multi-administrator approval now supports device configuration policies created through the settings catalog and device compliance policies. When you turn on this feature, any changes you make, including creating, editing, or deleting a policy, must be approved by a second administrator before they take effect. This dual-authorization process helps protect your organization from unauthorized or accidental changes to role-based access control.

Device security
Intune ending support for legacy Apple MDM software update policies
With the release of iOS 26, iPadOS 26, and macOS 26, Apple has deprecated legacy mobile device management (MDM) software update commands and payloads. As a result, Microsoft Intune will soon end support for creating legacy iOS/iPadOS and macOS software update policies. To continue managing Apple software updates in Intune, configure update policies using Apple's declarative device management (DDM) model. DDM provides a more modern and reliable approach to managing software updates, with improved device autonomy and reporting.

Applies to:

  • iOS/iPadOS
  • macOS

Autopatch update readiness
Autopatch update readiness provides a unified experience for tracking and remediating Windows update issues across Intune-enrolled devices and Windows Autopatch group-enrolled devices. With a single dashboard, admins can view all managed devices, including enrollment status and policy assignments, to better understand update readiness across their environment.

Key capabilities include:

  • Device update journey: View granular update states for each device to quickly identify where updates are blocked and why.
  • Centralized alerting: See actionable alerts for update failures, policy conflicts, and readiness gaps in one place, with integrated remediation guidance.
  • Update readiness checker: Proactively evaluate devices for deployment risks and flag devices as At Risk based on signals such as disk space, appraiser data, and setup conditions.
  • Repair devices with OS reinstall: Remediate upgrade‑blocked devices by triggering an OS reinstall for common issues like insufficient disk space or app compatibility problems, with supporting alerts and reporting.

Applies to:

  • Windows

Monitor and troubleshoot
Updates to operators in device query for multiple devices
Device query for multiple devices now includes expanded operator support, clearer query validation, and improved results to make building and interpreting queries easier.

New join types supported
You can now use the following join types when querying across entities:

  • leftsemi
  • rightsemi
  • leftanti
  • rightanti

Updated join behavior
Joins that use on Device.DeviceId are no longer supported. Queries should instead:

  • Use on Device, or
  • Omit the on clause entirely when joining on the device entity.

Updated device references in operators
Using Device by itself is no longer supported in operators such as distinct, summarize, or order by. Queries must reference a specific device property.

  • Improved query results
  • Queries that involve a device—either by querying a device directly or by joining a device with another entity—now return the device as a clickable link in the results, allowing you to quickly navigate to device details.
  • Clearer error messages
    Some query error messages have been updated to provide clearer, more descriptive guidance when queries are invalid.
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Microsoft updates

More from the Cloud Services section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad