Microsoft Intune Endpoint Privilege Management is now functional with Windows 365, according to an announcement made by Microsoft on Monday. Key to this development is the newly-released September Intune service update, which extends the utility of Endpoint Privilege Management over the Windows 365 service.
Following this update, it is now feasible to designate “cloud PC” user privileges. Typically, a cloud PC refers to a virtual machine that Windows 365 desktop-as-a-service users employ to access Windows operating systems and applications.
Enhanced Control, Scope, and Time Constraints in User Privileges
Windows 365 users can now be entrusted with standard user privileges by IT organizations, a common practice that ensures structured control over user accesses. Beyond that, IT technicians can also intermittently enhance these privileges, as and when required, by making use of the Endpoint Privilege Management functionality. As a result, users can perform administrative duties part-time. Interestingly, these escalated Windows 365 user privileges are marked by “scope and time limited” attributes, indicating an approach that supports a least-privilege access framework.
Licensing Details and Future Plans for Endpoint Privilege Management
Although this enhanced control over Windows 365 user privileges might appear ordinary, it deceptively requires the obligatory licensing for Endpoint Privilege Management, along with Intune and Windows 365 licensing. Still, IT professionals possessing “Global and billing administrators” privileges can initiate a trial.
Microsoft offers the Endpoint Privilege Management solution as either a standalone option or as a constituent of the Intune Suite. Access to the solution can be achieved through the Intune admin center, the Microsoft admin center, or by reaching out to the Microsoft account team.
Final to this announcement, Microsoft revealed its intentions to augment the Azure Virtual Desktop service with Endpoint Privilege Management. Azure Virtual Desktop is Microsoft's virtual desktop infrastructure service offering, and support for Azure Virtual Desktop single-session VMs is expected soon. With the Endpoint Privilege Management's general availability stage completed by March, Microsoft is propelling its growth with new service compatibilities.