savings updates

Author: MandiOhlinger

memdocs/intune/fundamentals/what-is-intune.md

@@ -7,7 +7,7 @@ keywords: what is Intune, mobile endpoint management, mobile application managem
 author: MandiOhlinger
 ms.author: mandia
 manager: dougeby
-ms.date: 09/27/2022
+ms.date: 10/05/2022
 ms.topic: overview
 ms.service: microsoft-intune
 ms.subservice: fundamentals
@@ -34,12 +34,14 @@ ms.collection:
 
 As organizations move to support hybrid and remote workforces, they're challenged with managing the different devices that access organization resources. Employees and students need to collaborate, work from anywhere, and securely access and connect to these resources. Admins need to protect organization data, manage end user access, and support users from wherever they work.
 
-To help with these challenges and tasks, use Microsoft Intune. Microsoft Intune is a mobile device management (MDM) and mobile application management (MAM) provider for your organization or enterprise. Intune is cloud-based and can manage your Android, iOS/iPadOS, macOS, and Windows client devices and apps using policies. It allows users to be productive from anywhere and on any device, and works well with on-premises Configuration Manager environments.
+To help with these challenges and tasks, use Microsoft Intune. Microsoft Intune is a mobile device management (MDM) and mobile application management (MAM) provider for your organization or enterprise. Intune is cloud-native and can manage your Android, iOS/iPadOS, macOS, and Windows client devices and apps using policies. It allows users to be productive from anywhere and on any device, and works well with on-premises Configuration Manager environments.
 
 Microsoft Intune is also a family of products and services that focus on endpoint management. This family includes Microsoft Intune, Configuration Manager, Windows Autopilot, and Endpoint Analytics. With these services, you get OS deployment, app and device policy management, and reporting & analytics.
 
 This article lists some features and benefits of Microsoft Intune.
 
+For more information on what it means to be cloud-native, go to [Learn more about cloud-native endpoints](../../solutions/cloud-native-endpoints/cloud-native-endpoints-overview.md).
+
 > [!TIP]
 > To get Intune, go to [Licenses available for Microsoft Intune](licenses.md) and [Intune 30-day trial](free-trial-sign-up.md).
 
@@ -272,14 +274,15 @@ When you enable SSO, users can automatically sign in to apps and services using
 
 Specifically:
 
-- On iOS/iPadOS and macOS devices, you can use the Microsoft Enterprise SSO plug-in to automatically sign in to apps and websites that use Azure Active Directory (AD) for authentication, including Microsoft 365 apps.
-
 - On Windows devices, SSO is automatically built in and used to sign in to apps and websites that use Azure AD for authentication, including Microsoft 365 apps. You can also enable SSO on VPN and Wi-Fi policies.
 
+- On iOS/iPadOS and macOS devices, you can use the Microsoft Enterprise SSO plug-in to automatically sign in to apps and websites that use Azure Active Directory (AD) for authentication, including Microsoft 365 apps.
+
 - On Android devices, you can use the Microsoft Authentication Library (MSAL) to enable SSO to Android apps.
 
   For more information, go to:
 
+  - [How SSO to on-premises resources works on Azure AD joined devices](/azure/active-directory/devices/azuread-join-sso)
   - [Use the Microsoft Enterprise SSO plug-in on iOS/iPadOS and macOS devices in Microsoft Intune](../configuration/use-enterprise-sso-plug-in-ios-ipados-macos.md)
   - [Enable cross-app SSO on Android using MSAL](/azure/active-directory/develop/msal-android-single-sign-on)
 

memdocs/solutions/cloud-native-endpoints/azure-ad-joined-hybrid-azure-ad-joined.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: Join your cloud-native endpoints to Azure AD
-titleSuffix: Microsoft Endpoint Manager
+titleSuffix: Microsoft Intune
 description: When moving to or using cloud-native endpoints, use Azure AD joined endpoints. When your endpoints are joined to Azure AD, you can use Windows Autopilot to provision or get devices ready for organization use. Learn more about the benefits to IT admins and end-users.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 07/13/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals
@@ -71,7 +71,7 @@ To join Windows endpoints to Azure AD, you have some options:
 - **Use a Window Provisioning Package**. For more information, go to:
 
   - [Provisioning packages for Windows](/windows/configuration/provisioning-packages/provisioning-packages)
-  - [Bulk join a Windows device to Azure AD and Microsoft Endpoint Manager using a provisioning package - Microsoft Tech Community](https://techcommunity.microsoft.com/t5/intune-customer-success/bulk-join-a-windows-device-to-azure-ad-and-microsoft-endpoint/ba-p/2381400) blog post
+  - [Bulk join a Windows device to Azure AD and Microsoft Intune using a provisioning package - Microsoft Tech Community](https://techcommunity.microsoft.com/t5/intune-customer-success/bulk-join-a-windows-device-to-azure-ad-and-microsoft-endpoint/ba-p/2381400) blog post
 
 ### Organization IT benefits
 

memdocs/solutions/cloud-native-endpoints/cloud-native-endpoints-known-issues.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: Common issues and resolutions with cloud-native endpoints
-titleSuffix: Microsoft Endpoint Manager
+titleSuffix: Microsoft Intune
 description: Learn more about the known and resolutions when using cloud-native endpoints. Use user-based authentication; don't use machine authentication. Existing group policy objects might not apply. Local Administrator Password Solution (LAPS) isn't supported.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 06/01/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals
@@ -128,7 +128,7 @@ It's possible some of your older policies aren't available, or don't apply to cl
 
 **Resolution**:
 
-- Using [Group Policy Analytics](../../intune/configuration/group-policy-analytics.md) in Endpoint Manager, you can evaluate your existing group policy objects (GPO). The analysis shows the policies that are available, and policies that aren't available.
+- Using [Group Policy Analytics](../../intune/configuration/group-policy-analytics.md) in Intune, you can evaluate your existing group policy objects (GPO). The analysis shows the policies that are available, and policies that aren't available.
 - In endpoint management, policies are deployed to users and groups. They aren't applied in LSDOU order. This behavior is a mind shift, so make sure your users and groups are in order.
 
   For more specific information and guidance on policy assignment in Microsoft Intune, go to [Assign user and device profiles in Microsoft Intune](../../intune/configuration/device-profile-assign.md).

memdocs/solutions/cloud-native-endpoints/cloud-native-endpoints-on-premises.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: Use on-premises services with cloud-native endpoints
-titleSuffix: Microsoft Endpoint Manager
+titleSuffix: Microsoft Intune
 description: For cloud-native endpoints to access on-premises resources, such as file servers, printers, and web servers, use Windows integrated authentication (WIA) and Azure AD Connect.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 06/01/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals

memdocs/solutions/cloud-native-endpoints/cloud-native-endpoints-overview.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: What are cloud-native Windows endpoints 
-titleSuffix: Microsoft Endpoint Manager
-description: Learn more about cloud-native endpoints and what they are. See a list of benefits, and the impact on end users and IT administrators. Cloud-native endpoints help with remote workers and hybrid workers, and use Microsoft Endpoint Manager to manage devices.
+titleSuffix: Microsoft Intune
+description: Learn more about cloud-native endpoints and what they are. See a list of benefits, and the effect on end users and IT administrators. Cloud-native endpoints help with remote workers and hybrid workers, and use Microsoft Intune to manage devices.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 06/01/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals
@@ -44,13 +44,14 @@ Organizations are focusing on supporting remote and hybrid workers. With cloud-n
 In this set of articles, you will:
 
 - ✅ **Learn about cloud-native endpoints** and the benefits to organizations and end users (this article).
-- ✅ **Step through a tutorial** that creates a Windows device that's cloud-native: 
 
-  - [Tutorial: Get started with cloud-native Windows endpoints with Microsoft Endpoint Manager](cloud-native-windows-endpoints.md)
+- ✅ **Step through a tutorial** that creates a Windows device that's cloud-native:
+
+  - [Tutorial: Get started with cloud-native Windows endpoints with Microsoft Intune](cloud-native-windows-endpoints.md)
 
 - ✅ **Learn more about the Azure AD concepts** that are part of cloud-native endpoints, including accessing on-premises resources:
 
-  - [Azure AD joined vs. Hybrid Azure AD joined](azure-ad-joined-hybrid-azure-ad-joined.md) 
+  - [Azure AD joined vs. Hybrid Azure AD joined](azure-ad-joined-hybrid-azure-ad-joined.md)
   - [Cloud-native endpoints and on-premises resources](cloud-native-endpoints-on-premises.md)
 
 - ✅ **Get guidance and advice** on moving your workloads and your organization to become cloud-native:
@@ -69,7 +70,7 @@ A cloud-native endpoint doesn't necessarily live exclusively in the cloud. Inste
 
 These endpoints can be located anywhere that has internet access. They can also be physical devices or virtual machines.
 
-From a technical perspective, cloud-native endpoints are Windows devices that are deployed using [Windows Autopilot](../../autopilot/windows-autopilot.md), joined to Azure Active Directory ([Azure AD joined](/azure/active-directory/devices/concept-azure-ad-join)), and are automatically enrolled in a Mobile Device Management (MDM) solution, like [Microsoft Endpoint Manager](../../endpoint-manager-overview.md).
+From a technical perspective, cloud-native endpoints are Windows devices that are deployed using [Windows Autopilot](../../autopilot/windows-autopilot.md), joined to Azure Active Directory ([Azure AD joined](/azure/active-directory/devices/concept-azure-ad-join)), and are automatically enrolled in a Mobile Device Management (MDM) solution, like [Microsoft Intune](../../intune/fundamentals/what-is-intune.md).
 
 A cloud-native endpoint has the following characteristics:
 
@@ -81,7 +82,7 @@ A cloud-native endpoint has the following characteristics:
 
 For end users, they only need an internet connection. Their data and critical settings can be automatically preserved and restored using [Enterprise State Roaming](/azure/active-directory/devices/enterprise-state-roaming-faqs), or similar solutions. If end users experience issues during deployment or at any time, then they can reset and reprovision the device without contacting support.
 
-Microsoft recommends customers focus on adopting cloud-native endpoints.
+Microsoft recommends that organizations focus on adopting cloud-native endpoints.
 
 ## Benefits for users and IT
 
@@ -91,17 +92,17 @@ Cloud-native endpoints provide many benefits to end users and IT:
 
   End users don't worry about connecting to the VPN or other networks. They sign in to devices from anywhere, and run actions, like password reset, without connecting to on-premises AD.
 
-  Azure AD joined (also known as AADJ) endpoints do the initial sign-in using an internet connection. The Azure AD joined sign-in process doesn't use on-premises domain controller connectivity, and is faster than a traditional domain-based sign-in.
+  Azure AD joined (also known as AADJ) endpoints do the initial sign-in using an internet connection. The Azure AD joined sign-in process doesn't use an on-premises domain controller for connectivity, and is faster than a traditional domain-based sign-in.
 
   Traditional domain joined PCs require connectivity to domain controllers for initial sign-in.
 
 - **Deploy from anywhere**
 
-  To deploy new devices, administrators can be anywhere with an internet connection. You can provision or reset devices, and have the devices ready much quicker than traditional provisioning, possibly in minutes. The reliance on on-premises resources is reduced, which simplifies the endpoint requirements and endpoint management.
+  To deploy new devices, administrators can be anywhere with an internet connection. You can provision or reset devices, and have the devices ready quicker than traditional provisioning, possibly in minutes. The reliance on on-premises resources is reduced, which simplifies the endpoint requirements and endpoint management.
 
 - **Simplified management for all platforms**
 
-  Users and administrators get a unified management experience for all platforms, including Android, iOS/iPadOS, macOS, and Windows. With Endpoint Manager, you can manage mobile and non-mobile devices and operating systems. You don't need to rely on complex group policy management.
+  Users and administrators get a unified management experience for all platforms, including Android, iOS/iPadOS, macOS, and Windows. With Intune, you can manage mobile and non-mobile devices and operating systems. You don't need to rely on complex group policy management.
 
 - **Provide a secure Single-Sign-On (SSO) experience to cloud and on-premises apps**
 
@@ -131,7 +132,7 @@ Cloud-native endpoints provide many benefits to end users and IT:
 
 The [High level planning guide to move to cloud-native endpoints](cloud-native-endpoints-planning-guide.md) is a good resource. It covers the following areas:
 
-- **Plan**: In adopting cloud-native endpoints, organizations focus on several key areas:
+- **Plan**: When ready to move to cloud-native endpoints, organizations focus on several key areas:
 
   - Review your existing workloads for modernization, and determine the next steps to support cloud-native.
   - Be prepared to change operational processes and procedures.

memdocs/solutions/cloud-native-endpoints/cloud-native-endpoints-planning-guide.md

@@ -2,14 +2,14 @@
 # required metadata
 
 title: Update your workloads to support cloud-native endpoints
-titleSuffix: Microsoft Endpoint Manager
-description: To support hybrid and remote workers, convert or migrate your workloads to support cloud-native endpoints. This planning guide focuses on deploying apps and updates with Endpoint Manager, moving from group policy objects, and using Windows Autopilot.
+titleSuffix: Microsoft Intune
+description: To support hybrid and remote workers, convert or migrate your workloads to support cloud-native endpoints. This planning guide focuses on deploying apps and updates with Intune, moving from group policy objects, and using Windows Autopilot.
 keywords:
 author: MandiOhlinger
 
 ms.author: mandia
 manager: dougeby
-ms.date: 06/01/2022
+ms.date: 10/05/2022
 ms.topic: conceptual
 ms.service: mem
 ms.subservice: fundamentals
@@ -50,15 +50,15 @@ To be successful, consider the key areas described in this article for your plan
 
 Managing your endpoints, including cloud-native endpoints, is an important task for all organizations. With cloud-native endpoints, the management tools you use must manage the endpoints wherever they go.
 
-If you don't currently use a mobile device management (MDM) solution, or want to move to a Microsoft solution, then look at [Microsoft Endpoint Manager](../../endpoint-manager-overview.md).
+If you don't currently use a mobile device management (MDM) solution, or want to move to a Microsoft solution, then look at [What is Microsoft Intune?](../../intune/fundamentals/what-is-intune.md) and [Get started with Microsoft Intune](../../intune/fundamentals/get-started-with-intune.md).
 
-With Microsoft Endpoint Manager, you get the following endpoint management options:
+With the Microsoft Intune family of products and services, you have the following endpoint management options:
 
 - **[Microsoft Intune](../../intune/index.yml)**: Intune is 100% cloud-based, and uses the Endpoint Manager admin center to manage devices, manage apps on devices, create & deploy policies, review reporting data, and more.
 
   For more information on using Intune to manage your endpoints, go to:
 
-  - [Microsoft Intune is an MDM and MAM provider for your devices](../../intune/fundamentals/what-is-intune.md)
+  - [Microsoft Intune securely manages identities, manages apps, and manages devices](../../intune/fundamentals/what-is-intune.md)
   - [Deployment guide: Setup or move to Microsoft Intune](../../intune/fundamentals/deployment-guide-intune-setup.md)
   - [Microsoft Intune planning guide](../../intune/fundamentals/intune-planning-guide.md)
 
@@ -364,7 +364,7 @@ If you use Configuration Manager, then cloud attach your environment to Microsof
 
 When you cloud attach, you can remotely manage your client endpoints, co-manage your endpoints with Intune (cloud) and Configuration Manager (on-premises), and access the Endpoint Manager admin center.
 
-For more specific information, go to [Cloud attach your Configuration Manager environment](../../configmgr/cloud-attach/overview.md) and [Walk through the Microsoft Endpoint Manager](../../intune/fundamentals/tutorial-walkthrough-endpoint-manager.md).
+For more specific information, go to [Cloud attach your Configuration Manager environment](../../configmgr/cloud-attach/overview.md) and [Walk through the Microsoft Endpoint Manager admin center](../../intune/fundamentals/tutorial-walkthrough-endpoint-manager.md).
 
 ### ✅ Phase 4: Create an Azure AD joined proof of concept
 
@@ -449,19 +449,19 @@ Intune also has built-in features that can help you configure your cloud-native
 
   If you use GPOs, then using this tool is a valuable first step.
 
-  For more information, go to [Group Policy Analytics in Endpoint Manager](../../intune/configuration/group-policy-analytics.md).
+  For more information, go to [Group Policy Analytics in Intune](../../intune/configuration/group-policy-analytics.md).
 
 - **[Settings catalog](../../intune/configuration/settings-catalog.md)**: See all the settings available in Intune, and create, configure, & deploy a policy using these settings. [Tasks you can complete using the Settings Catalog in Intune](../../intune/configuration/settings-catalog-common-features.md) may also be a good resource. If you create GPOs, then the settings catalog is a natural transition to cloud-native endpoint configuration.
 
   When combined with [Group Policy Analytics](../../intune/configuration/group-policy-analytics.md), you can deploy the policies you used on-premises to your cloud-native endpoints.
 
-  For more information, go to [Settings catalog in Endpoint Manager](../../intune/configuration/settings-catalog.md).
+  For more information, go to [Settings catalog in Intune](../../intune/configuration/settings-catalog.md).
 
 - **[Administrative templates](../../intune/configuration/administrative-templates-windows.md)**: These templates are similar to the ADMX templates used on-premises, and are built in to Intune. You don't download them. These templates include many settings that control features in Microsoft Edge, Internet Explorer, Microsoft Office apps, remote desktop, OneDrive, passwords, PINs, and more.
 
   If you use administrative templates on-premises, then using them in Intune is a natural transition.
 
-  For more information, go to [Administrative templates in Endpoint Manager](../../intune/configuration/administrative-templates-windows.md).
+  For more information, go to [Administrative templates in Intune](../../intune/configuration/administrative-templates-windows.md).
 
   You can also ingest an existing set of ADMX policies for Win32 and Desktop Bridge apps. For more information, go to:
 
@@ -476,7 +476,7 @@ Intune also has built-in features that can help you configure your cloud-native
 
   You can create a security baseline for Windows, Microsoft Edge, and more. If you're not sure where to start, or want the security settings recommended by security experts, then look at security baselines.
 
-  For more information, go to [Security baselines in Endpoint Manager](../../intune/protect/security-baselines.md).
+  For more information, go to [Security baselines in Intune](../../intune/protect/security-baselines.md).
 
 ## Use Windows Autopilot to provision new or existing Windows endpoints