Merge pull request #8676 from MandiOhlinger/ado15729032

ADO 15729032: Intune family updates to cloud native endpoints solution

Author: v-stsavell

memdocs/intune/fundamentals/what-is-intune.md

@@ -7,7 +7,7 @@ keywords: what is Intune, mobile endpoint management, mobile application managem
 author: MandiOhlinger
 ms.author: mandia
 manager: dougeby
-ms.date: 09/27/2022
+ms.date: 10/05/2022
 ms.topic: overview
 ms.service: microsoft-intune
 ms.subservice: fundamentals
@@ -34,12 +34,14 @@ ms.collection:
 
 As organizations move to support hybrid and remote workforces, they're challenged with managing the different devices that access organization resources. Employees and students need to collaborate, work from anywhere, and securely access and connect to these resources. Admins need to protect organization data, manage end user access, and support users from wherever they work.
 
-To help with these challenges and tasks, use Microsoft Intune. Microsoft Intune is a mobile device management (MDM) and mobile application management (MAM) provider for your organization or enterprise. Intune is cloud-based and can manage your Android, iOS/iPadOS, macOS, and Windows client devices and apps using policies. It allows users to be productive from anywhere and on any device, and works well with on-premises Configuration Manager environments.
+To help with these challenges and tasks, use Microsoft Intune. Microsoft Intune is a mobile device management (MDM) and mobile application management (MAM) provider for your organization or enterprise. Intune is cloud-native and can manage your Android, iOS/iPadOS, macOS, and Windows client devices and apps using policies. It allows users to be productive from anywhere and on any device, and works well with on-premises Configuration Manager environments.
 
 Microsoft Intune is also a family of products and services that focus on endpoint management. This family includes Microsoft Intune, Configuration Manager, Windows Autopilot, and Endpoint Analytics. With these services, you get OS deployment, app and device policy management, and reporting & analytics.
 
 This article lists some features and benefits of Microsoft Intune.
 
+For more information on what it means to be cloud-native, go to [Learn more about cloud-native endpoints](../../solutions/cloud-native-endpoints/cloud-native-endpoints-overview.md).
+
 > [!TIP]
 > To get Intune, go to [Licenses available for Microsoft Intune](licenses.md) and [Intune 30-day trial](free-trial-sign-up.md).
 
@@ -272,14 +274,15 @@ When you enable SSO, users can automatically sign in to apps and services using
 
 Specifically:
 
-- On iOS/iPadOS and macOS devices, you can use the Microsoft Enterprise SSO plug-in to automatically sign in to apps and websites that use Azure Active Directory (AD) for authentication, including Microsoft 365 apps.
-
 - On Windows devices, SSO is automatically built in and used to sign in to apps and websites that use Azure AD for authentication, including Microsoft 365 apps. You can also enable SSO on VPN and Wi-Fi policies.
 
+- On iOS/iPadOS and macOS devices, you can use the Microsoft Enterprise SSO plug-in to automatically sign in to apps and websites that use Azure Active Directory (AD) for authentication, including Microsoft 365 apps.
+
 - On Android devices, you can use the Microsoft Authentication Library (MSAL) to enable SSO to Android apps.
 
   For more information, go to:
 
+  - [How SSO to on-premises resources works on Azure AD joined devices](/azure/active-directory/devices/azuread-join-sso)
   - [Use the Microsoft Enterprise SSO plug-in on iOS/iPadOS and macOS devices in Microsoft Intune](../configuration/use-enterprise-sso-plug-in-ios-ipados-macos.md)
   - [Enable cross-app SSO on Android using MSAL](/azure/active-directory/develop/msal-android-single-sign-on)
 

memdocs/solutions/cloud-native-endpoints/azure-ad-joined-hybrid-azure-ad-joined.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: Join your cloud-native endpoints to Azure AD
-titleSuffix: Microsoft Endpoint Manager
+titleSuffix: Microsoft Intune
 description: When moving to or using cloud-native endpoints, use Azure AD joined endpoints. When your endpoints are joined to Azure AD, you can use Windows Autopilot to provision or get devices ready for organization use. Learn more about the benefits to IT admins and end-users.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 07/13/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals
@@ -71,7 +71,7 @@ To join Windows endpoints to Azure AD, you have some options:
 - **Use a Window Provisioning Package**. For more information, go to:
 
   - [Provisioning packages for Windows](/windows/configuration/provisioning-packages/provisioning-packages)
-  - [Bulk join a Windows device to Azure AD and Microsoft Endpoint Manager using a provisioning package - Microsoft Tech Community](https://techcommunity.microsoft.com/t5/intune-customer-success/bulk-join-a-windows-device-to-azure-ad-and-microsoft-endpoint/ba-p/2381400) blog post
+  - [Bulk join a Windows device to Azure AD and Microsoft Intune using a provisioning package - Microsoft Tech Community](https://techcommunity.microsoft.com/t5/intune-customer-success/bulk-join-a-windows-device-to-azure-ad-and-microsoft-endpoint/ba-p/2381400) blog post
 
 ### Organization IT benefits
 

memdocs/solutions/cloud-native-endpoints/cloud-native-endpoints-known-issues.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: Common issues and resolutions with cloud-native endpoints
-titleSuffix: Microsoft Endpoint Manager
+titleSuffix: Microsoft Intune
 description: Learn more about the known and resolutions when using cloud-native endpoints. Use user-based authentication; don't use machine authentication. Existing group policy objects might not apply. Local Administrator Password Solution (LAPS) isn't supported.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 06/01/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals
@@ -128,7 +128,7 @@ It's possible some of your older policies aren't available, or don't apply to cl
 
 **Resolution**:
 
-- Using [Group Policy Analytics](../../intune/configuration/group-policy-analytics.md) in Endpoint Manager, you can evaluate your existing group policy objects (GPO). The analysis shows the policies that are available, and policies that aren't available.
+- Using [Group Policy Analytics](../../intune/configuration/group-policy-analytics.md) in Intune, you can evaluate your existing group policy objects (GPO). The analysis shows the policies that are available, and policies that aren't available.
 - In endpoint management, policies are deployed to users and groups. They aren't applied in LSDOU order. This behavior is a mind shift, so make sure your users and groups are in order.
 
   For more specific information and guidance on policy assignment in Microsoft Intune, go to [Assign user and device profiles in Microsoft Intune](../../intune/configuration/device-profile-assign.md).

memdocs/solutions/cloud-native-endpoints/cloud-native-endpoints-on-premises.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: Use on-premises services with cloud-native endpoints
-titleSuffix: Microsoft Endpoint Manager
+titleSuffix: Microsoft Intune
 description: For cloud-native endpoints to access on-premises resources, such as file servers, printers, and web servers, use Windows integrated authentication (WIA) and Azure AD Connect.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 06/01/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals

memdocs/solutions/cloud-native-endpoints/cloud-native-endpoints-overview.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: What are cloud-native Windows endpoints 
-titleSuffix: Microsoft Endpoint Manager
-description: Learn more about cloud-native endpoints and what they are. See a list of benefits, and the impact on end users and IT administrators. Cloud-native endpoints help with remote workers and hybrid workers, and use Microsoft Endpoint Manager to manage devices.
+titleSuffix: Microsoft Intune
+description: Learn more about cloud-native endpoints and what they are. See a list of benefits, and the effect on end users and IT administrators. Cloud-native endpoints help with remote workers and hybrid workers, and use Microsoft Intune to manage devices.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 06/01/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals
@@ -44,13 +44,14 @@ Organizations are focusing on supporting remote and hybrid workers. With cloud-n
 In this set of articles, you will:
 
 - ✅ **Learn about cloud-native endpoints** and the benefits to organizations and end users (this article).
-- ✅ **Step through a tutorial** that creates a Windows device that's cloud-native: 
 
-  - [Tutorial: Get started with cloud-native Windows endpoints with Microsoft Endpoint Manager](cloud-native-windows-endpoints.md)
+- ✅ **Step through a tutorial** that creates a Windows device that's cloud-native:
+
+  - [Tutorial: Get started with cloud-native Windows endpoints with Microsoft Intune](cloud-native-windows-endpoints.md)
 
 - ✅ **Learn more about the Azure AD concepts** that are part of cloud-native endpoints, including accessing on-premises resources:
 
-  - [Azure AD joined vs. Hybrid Azure AD joined](azure-ad-joined-hybrid-azure-ad-joined.md) 
+  - [Azure AD joined vs. Hybrid Azure AD joined](azure-ad-joined-hybrid-azure-ad-joined.md)
   - [Cloud-native endpoints and on-premises resources](cloud-native-endpoints-on-premises.md)
 
 - ✅ **Get guidance and advice** on moving your workloads and your organization to become cloud-native:
@@ -69,7 +70,7 @@ A cloud-native endpoint doesn't necessarily live exclusively in the cloud. Inste
 
 These endpoints can be located anywhere that has internet access. They can also be physical devices or virtual machines.
 
-From a technical perspective, cloud-native endpoints are Windows devices that are deployed using [Windows Autopilot](../../autopilot/windows-autopilot.md), joined to Azure Active Directory ([Azure AD joined](/azure/active-directory/devices/concept-azure-ad-join)), and are automatically enrolled in a Mobile Device Management (MDM) solution, like [Microsoft Endpoint Manager](../../endpoint-manager-overview.md).
+From a technical perspective, cloud-native endpoints are Windows devices that are deployed using [Windows Autopilot](../../autopilot/windows-autopilot.md), joined to Azure Active Directory ([Azure AD joined](/azure/active-directory/devices/concept-azure-ad-join)), and are automatically enrolled in a Mobile Device Management (MDM) solution, like [Microsoft Intune](../../intune/fundamentals/what-is-intune.md).
 
 A cloud-native endpoint has the following characteristics:
 
@@ -81,7 +82,7 @@ A cloud-native endpoint has the following characteristics:
 
 For end users, they only need an internet connection. Their data and critical settings can be automatically preserved and restored using [Enterprise State Roaming](/azure/active-directory/devices/enterprise-state-roaming-faqs), or similar solutions. If end users experience issues during deployment or at any time, then they can reset and reprovision the device without contacting support.
 
-Microsoft recommends customers focus on adopting cloud-native endpoints.
+Microsoft recommends that organizations focus on adopting cloud-native endpoints.
 
 ## Benefits for users and IT
 
@@ -91,17 +92,17 @@ Cloud-native endpoints provide many benefits to end users and IT:
 
   End users don't worry about connecting to the VPN or other networks. They sign in to devices from anywhere, and run actions, like password reset, without connecting to on-premises AD.
 
-  Azure AD joined (also known as AADJ) endpoints do the initial sign-in using an internet connection. The Azure AD joined sign-in process doesn't use on-premises domain controller connectivity, and is faster than a traditional domain-based sign-in.
+  Azure AD joined (also known as AADJ) endpoints do the initial sign-in using an internet connection. The Azure AD joined sign-in process doesn't use an on-premises domain controller for connectivity, and is faster than a traditional domain-based sign-in.
 
   Traditional domain joined PCs require connectivity to domain controllers for initial sign-in.
 
 - **Deploy from anywhere**
 
-  To deploy new devices, administrators can be anywhere with an internet connection. You can provision or reset devices, and have the devices ready much quicker than traditional provisioning, possibly in minutes. The reliance on on-premises resources is reduced, which simplifies the endpoint requirements and endpoint management.
+  To deploy new devices, administrators can be anywhere with an internet connection. You can provision or reset devices, and have the devices ready quicker than traditional provisioning, possibly in minutes. The reliance on on-premises resources is reduced, which simplifies the endpoint requirements and endpoint management.
 
 - **Simplified management for all platforms**
 
-  Users and administrators get a unified management experience for all platforms, including Android, iOS/iPadOS, macOS, and Windows. With Endpoint Manager, you can manage mobile and non-mobile devices and operating systems. You don't need to rely on complex group policy management.
+  Users and administrators get a unified management experience for all platforms, including Android, iOS/iPadOS, macOS, and Windows. With Intune, you can manage mobile and non-mobile devices and operating systems. You don't need to rely on complex group policy management.
 
 - **Provide a secure Single-Sign-On (SSO) experience to cloud and on-premises apps**
 
@@ -131,7 +132,7 @@ Cloud-native endpoints provide many benefits to end users and IT:
 
 The [High level planning guide to move to cloud-native endpoints](cloud-native-endpoints-planning-guide.md) is a good resource. It covers the following areas:
 
-- **Plan**: In adopting cloud-native endpoints, organizations focus on several key areas:
+- **Plan**: When ready to move to cloud-native endpoints, organizations focus on several key areas:
 
   - Review your existing workloads for modernization, and determine the next steps to support cloud-native.
   - Be prepared to change operational processes and procedures.