Merge pull request #7245 from Brenduns/13742640-new-endpoint-security-profiles

13742640 new endpoint security profiles for new platform type.

Author: v-dihans

memdocs/intune/fundamentals/whats-new.md

@@ -7,7 +7,7 @@ keywords:
 author: Erikre
 ms.author: erikre
 manager: dougeby
-ms.date: 04/05/2022
+ms.date: 04/06/2022
 ms.topic: conceptual
 ms.service: microsoft-intune
 ms.subservice: fundamentals
@@ -62,6 +62,35 @@ You can use RSS to be notified when this page is updated. For more information,
 
 ## Week of April 4, 2022
 
+### Device security
+
+#### New profile templates and settings structure for endpoint security policies<!-- 13742640 -->
+
+We’ve begun to release new [endpoint security profile templates](../protect/endpoint-security-policy.md) that use the settings format as found in the Settings Catalog. Each new profile template includes the same settings as the older profile it replaces, while bringing the following improvements:
+
+- **Setting names match the Windows CSP name**: In most cases, each setting name in the new profiles is a match to the name of the CSP that the setting configures. However, in the Intune UI we’ve added spaces to that name to make the setting name easier to read. For example, a setting in the Intune UI that’s named *Allow USB Connection* configures the CSP named [AllowUSBConnection](/windows/client-management/mdm/policy-csp-connectivity#connectivity-allowusbconnection).
+
+- **Setting options align to those of the Windows CSP**: Options for settings now align directly to those options as described and supported by the Windows CSP, with one addition. The addition is that we’ve included the option of Not configured. When a setting is set to Not configured, that Intune profile does not actively manage that setting. When a profile is changed to go from active configuration of  setting Not configured, Intune stops actively enforcing the configuration for that setting on the device.
+
+- **Setting guidance is taken from the Windows CSP**: The information about the setting found in the Intune UI is taken directly from the Windows CSP content, with Learn more links opening the documentation for the relevant CSP, or the content page that includes that CSP. The CSP defines and manages the settings behavior.
+
+When a new platform and profile template is available for a policy type, the older profile of the same name will no longer be available to create new profiles. Instead, new profiles must use the new profiles and settings format. Eventually, your old profiles will be supported for conversion to the new profile format.  Until that conversion is available, you can still use, edit, and deploy your existing profiles.  
+
+The following profile templates are now available in the new settings format:
+
+| Policy type  | Platform  | Profile (template) name  |
+|-----------------|-----------------|-----------------|
+| Antivirus | Windows 10, Windows 11, and Windows Server | Windows Security experience |
+| Antivirus | Windows 10, Windows 11, and Windows Server | Windows Defender Antivirus    |
+| Antivirus | Windows 10, Windows 11, and Windows Server | Windows Defender Antivirus Exclusions
+| Firewall | Windows 10, Windows 11, and Windows Server | Microsoft Defender Firewall |
+| Firewall | Windows 10, Windows 11, and Windows Server | Microsoft Defender Firewall Rules |
+| Endpoint detection and response | Windows 10, Windows 11, and Windows Server | Endpoint detection and response |
+| Attack surface reduction | Windows 10 and Later | Attack surface reduction rules |
+| Attack surface reduction | Windows 10 and Later | Exploit protection |
+
+<!-- To learn more about this change, see the Device Management team blog at [](). -->
+
 ### Device management
 
 #### Microsoft Endpoint Manager premium add-ons<!-- 12953253  -->

memdocs/intune/protect/advanced-threat-protection-configure.md

@@ -7,7 +7,7 @@ keywords: configure, manage, capabilities, attack surface reduction, next-genera
 author: brenduns 
 ms.author: brenduns
 manager: dougeby
-ms.date: 12/08/2021
+ms.date: 04/06/2022
 ms.topic: how-to
 ms.service: microsoft-intune
 ms.subservice: protect
@@ -116,6 +116,9 @@ After onboarding a device using the configuration package, you don't need to do
 You can also onboard devices using:
 
 - [Endpoint detection and response](../protect/endpoint-security-edr-policy.md) (EDR) policy. Intune EDR policy is part of endpoint security in Intune. Use EDR policies to configure device security without the overhead of the larger body of settings found in device configuration profiles. You can also use EDR policy with tenant attached devices, which are devices you manage with Configuration Manager.
+
+  When you configure EDR policy after connecting Intune and Microsoft Defender for Endpoint, the policy setting *Microsoft Defender for Endpoint client configuration package type* has a new configuration option: **Auto from connector**. With this option, Intune automatically gets the onboarding package (blob) from your Defender for Endpoint deployment, replacing the need to manually configure an *Onboard* package.
+
 - [Group policy or Microsoft Endpoint Configuration Manager](/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints).
 
 > [!TIP]

memdocs/intune/protect/antivirus-microsoft-defender-settings-windows.md

@@ -7,7 +7,7 @@ keywords:
 author: brenduns
 ms.author: brenduns
 manager: dougeby
-ms.date: 07/20/2021
+ms.date: 04/06/2022
 ms.topic: conceptual
 ms.service: microsoft-intune
 ms.subservice: protect
@@ -30,9 +30,10 @@ ms.reviewer: laarrizz
 
 # Settings for Microsoft Defender Antivirus policy in Microsoft Intune for Windows devices
 
-View the Endpoint security antivirus policy settings you can configure for the Microsoft Defender Antivirus profile for Windows 10/11 in Microsoft Intune as part of an [Endpoint security policy](../protect/endpoint-security-policy.md).
+> [!NOTE]  
+> This article details the settings in the  Microsoft Defender Antivirus and Microsoft Defender Antivirus Exclusions profiles for the *Windows 10 and later* platform for endpoint security Antivirus policy. Beginning on April 5, 2022, the *Windows 10 and later* platform was replaced by the *Windows 10, Windows 11, and Windows Server* platform. Although you can no longer create new instances of the original profile, you can continue to edit and use your existing profiles. The settings details in this article apply to those deprecated profiles. 
 
-## Cloud protection
+View details about the [endpoint security](../protect/endpoint-security-policy.md) antivirus policy settings you can configure for the Microsoft Defender Antivirus profile for Windows 10 and later in Microsoft Intune.  
 
 These settings are available in the following profiles:
 

memdocs/intune/protect/antivirus-security-experience-windows-settings.md

@@ -7,7 +7,7 @@ keywords:
 author: brenduns
 ms.author: brenduns
 manager: dougeby
-ms.date: 12/06/2021
+ms.date: 04/06/2022
 ms.topic: reference
 ms.service: microsoft-intune
 ms.subservice: protect
@@ -30,7 +30,10 @@ ms.reviewer: mattsha
 
 # Settings for the Windows Security experience profile in Microsoft Intune
 
-View the Antivirus policy settings you can configure for the **Windows Security Experience** profile for Windows 10 and Windows 11 devices as part of a Microsoft Intune [Endpoint security policy](../protect/endpoint-security-policy.md).
+> [!NOTE]  
+> This article details the settings in the  Windows Security experience profile for the *Windows 10 and later* platform for endpoint security Antivirus policy. Beginning on April, 5 2022, the *Windows 10 and later* platform was replaced by the *Windows 10, Windows 11, and Windows Server* platform. Although you can no longer create new instances of the original profile, you can continue to edit and use your existing profiles.
+
+View details about the [endpoint security](../protect/endpoint-security-policy.md) antivirus policy settings you can configure for the Windows Security Experience profile for Windows 10 and later in Microsoft Intune.
 
 **Windows Security**