When you have integrated Jamf Security Cloud with Microsoft Intune, you can apply Conditional Access based on device threats detected by Jamf Security Cloud. This functionality is compatible with both managed and unmanaged Microsoft Intune devices.
Conditional Access works slightly differently with Microsoft Intune. Instead of applying a label when a specific threat is detected by Jamf Security Cloud, the Conditional Access integration applies policies based on the overall risk level of a device. You can create different threat prevention policies based on whether the risk level is high, medium, or low, and you can adjust the severity of Jamf's threat levels to fine tune the risk-level calculation.
UEM Connect for Microsoft Intune is configured.
For more information, see Configuring UEM Connect for Microsoft Intune in the Jamf Security Cloud Setup Guide.
A Jamf Protect license
To create a compliance policy, see the Create Mobile Threat Defense device compliance policy with Intune documentation from Microsoft.
Microsoft Intune uses the device threat level, as reported by Jamf Security Cloud, to determine whether a device is compliant or not.
After the Microsoft side has been configured, Jamf Security Cloud syncs with the Microsoft Intune health level and with the current device risk level (high, medium, low, or secured). Any associated compliance policies will be applied until the threat has been remediated.
You can change how threats affect the device's risk level by adjusting your threat prevention policy settings.