Merge pull request #17050 from MicrosoftDocs/main

Published main to live, Friday 10:30 AM PST, 01/10
MicrosoftDocs · Jan 10, 2025 · 7921116 · 7921116
2 parents 42d43df + f06de2e
commit 7921116
Show file tree

Hide file tree

Showing 6 changed files with 25 additions and 28 deletions.
diff --git a/memdocs/intune/protect/security-baseline-settings-defender.md b/memdocs/intune/protect/security-baseline-settings-defender.md
@@ -49,16 +49,14 @@ Each security baseline is a group of preconfigured Windows settings that help yo
 
 The details that display in this article are based on baseline version you select at the top of the article. For each version, this article displays:
 
-- A list of each setting and its configuration as found in the default instance of that baseline version.
+- A list of each setting with its configuration as found in the default instance of that baseline version.
 - When available, a link to the underlying configuration service provider (CSP) documentation or other related content from the relevant product group that provides context and possibly additional details for a settings use.
 
 When a new version of a baseline becomes available, it replaces the previous version. Profile instances that you’ve created prior to the availability of a new version:
 
 - Become read-only. You can continue to use those profiles but can't edit them to change their configuration.
 - Can be updated to the current version. After you update a profile to the current baseline version, you can edit the profile to modify settings.
 
-This article is a reference for the settings that are available in the different versions of the Microsoft Defender for Endpoint security baseline that you can deploy with Microsoft Intune. Use the tabs to select and view the settings in the most recent baseline version and a few older versions that might still be in use.
-
 To learn more about using security baselines, see:
 - [Use security baselines](../protect/security-baselines.md)
 - [Change the baseline version for a profile](../protect/security-baselines-configure.md#update-baselines-that-use-the-previous-format)

diff --git a/memdocs/intune/protect/security-baseline-settings-edge.md b/memdocs/intune/protect/security-baseline-settings-edge.md
@@ -42,7 +42,7 @@ Each security baseline is a group of preconfigured Windows settings that help yo
 
 The details that display in this article are based on baseline version you select at the top of the article. For each version, this article displays:
 
-- A list of each and its configuration as found in the default instance of that baseline version.
+- A list of each setting with its configuration as found in the default instance of that baseline version.
 - When available, a link to the underlying configuration service provider (CSP) documentation or other related content from the relevant product group that provides context and possibly additional details for a settings use.
 
 When a new version of a baseline becomes available, it replaces the previous version. Profile instances that you’ve created prior to the availability of a new version:

diff --git a/memdocs/intune/protect/security-baseline-settings-mdm-all.md b/memdocs/intune/protect/security-baseline-settings-mdm-all.md
@@ -29,7 +29,7 @@ ms.collection:
 zone_pivot_groups: windows-mdm-versions
 ---
 
-# Windows MDM security baseline settings reference for Microsoft Intunein Intune
+# Windows MDM security baseline settings reference for Microsoft Intune
 
 This article is a reference for the settings that are available in the Windows Mobile Device Management (MDM) security baseline for Microsoft Intune.
 
@@ -39,7 +39,7 @@ Each security baseline is a group of preconfigured Windows settings that help yo
 
 The details that display in this article are based on baseline version you select at the top of the article. For each version, this article displays:
 
-- A list of each and its configuration as found in the default instance of that baseline version.
+- A list of each setting with its configuration as found in the default instance of that baseline version.
 - When available, a link to the underlying configuration service provider (CSP) documentation or other related content from the relevant product group that provides context and possibly additional details for a settings use.
 
 When a new version of a baseline becomes available, it replaces the previous version. Profile instances that you’ve created prior to the availability of a new version:
@@ -48,6 +48,7 @@ When a new version of a baseline becomes available, it replaces the previous ver
 - Can be updated to the current version. After you update a profile to the current baseline version, you can edit the profile to modify settings.
 
 To learn more about using security baselines, see:
+
 - [Use security baselines](../protect/security-baselines.md)
 - [Change the baseline version for a profile](../protect/security-baselines-configure.md#update-baselines-that-use-the-previous-format)
 - [Manage security baselines](../protect/security-baselines-configure.md)

diff --git a/memdocs/intune/protect/security-baseline-settings-windows-365.md b/memdocs/intune/protect/security-baseline-settings-windows-365.md
@@ -45,7 +45,7 @@ Each security baseline is a group of preconfigured Windows settings that help yo
 
 The details that display in this article are based on baseline version you select at the top of the article. For each version, this article displays:
 
-- A list of each and its configuration as found in the default instance of that baseline version.
+- A list of each setting with its configuration as found in the default instance of that baseline version.
 - When available, a link to the underlying configuration service provider (CSP) documentation or other related content from the relevant product group that provides context and possibly additional details for a settings use.
 
 When a new version of a baseline becomes available, it replaces the previous version. Profile instances that you’ve created prior to the availability of a new version:

diff --git a/memdocs/intune/protect/security-baseline-v2-edge-settings.md b/memdocs/intune/protect/security-baseline-v2-edge-settings.md
@@ -55,13 +55,12 @@ If you use a security baseline for Microsoft Edge version 85 or earlier, see [Li
 
 ## About this reference article
 
-Each security baseline is a group of preconfigured Windows settings that help you apply and enforce granular security settings that the relevant security teams recommend. You can also customize each baseline you deploy to enforce only those settings and values you require. When you create a security baseline profile in Intune, you're creating a template that consists of multiple device configuration profiles.
+Each security baseline is a group of preconfigured Windows settings that help you apply and enforce granular security settings that the relevant security teams recommend. You can also customize each baseline you deploy to enforce only those settings and values you require. When you create a security baseline profile in Intune, you're creating a template that consists of multiple device configuration settings.
 
 The details that are displayed in this article are based on baseline version that is selected at the top of the article. For each selection, this article displays:
 
-- A list of each setting in that baseline version.
-- The default configuration of each setting in that baseline version.
-- When available, a link to the underlying configuration service provider (CSP) documentation, or other related content from the relevant product group that provides context and possibly additional details for the settings use.
+- A list of each setting with its configuration as found in the default instance of that baseline version.
+- When available, a link to the underlying configuration service provider (CSP) documentation or other related content from the relevant product group that provides context and possibly additional details for a settings use.
 
 When a new version of a baseline becomes available, it replaces the previous version. Profile instances that you’ve created prior to the availability of a new version:
 
@@ -74,13 +73,12 @@ When a new version of a baseline becomes available, it replaces the previous ver
 To learn more about using security baselines, see:
 
 - [Use security baselines](../protect/security-baselines.md)
-- [Manage security baselines](../protect/security-baselines-configure.md).
-
-## Microsoft Edge
+- [Change the baseline version for a profile](../protect/security-baselines-configure.md#update-baselines-that-use-the-previous-format)
+- [Manage security baselines](../protect/security-baselines-configure.md)
 
 ::: zone pivot="edge-v117"
 
-**Microsoft Edge baseline for November 2023 (Edge version 117)**
+## Microsoft Edge baseline for November 2023 (Edge version 117) 
 
 For information about the most recent baseline versions and settings from Microsoft, including versions of this baseline that might not be available through Intune, download the [Microsoft Security Compliance Toolkit](https://www.microsoft.com/download/details.aspx?id=55319) from the Microsoft Download Center.
 
@@ -111,15 +109,15 @@ For information about the most recent baseline versions and settings from Micros
 - **Specifies whether SharedArrayBuffers can be used in a non cross-origin-isolated context**  
   Baseline default: *Disabled*
 
-**Extensions**:
+### Extensions
 
 - **Control which extensions cannot be installed**  
   Baseline default: *Enabled*
 
   - **Extension IDs the user should be prevented from installing (or * for all) (Device)**  
     Baseline default: *\**  
 
-**HTTP authentication**:
+### HTTP authentication
 
 - **Allow Basic authentication for HTTP**  
   Baseline default: *Disabled*
@@ -128,17 +126,17 @@ For information about the most recent baseline versions and settings from Micros
   Baseline default: *Enabled*  
   [Learn more](/deployedge/microsoft-edge-policies#authschemes)
 
-**Native Messaging**:
+### Native Messaging
 
 - **Allow user-level native messaging hosts (installed without admin permissions)**  
   Baseline default: *Disabled*
 
-**Private Network Request Settings**:
+### Private Network Request Settings
 
 - **Specifies whether to allow insecure websites to make requests to more-private network endpoints**  
   Baseline default: *Disabled*
 
-**SmartScreen settings**:
+### SmartScreen settings
 
 - **Configure Microsoft Defender SmartScreen**  
   Baseline default: *Enabled*  
@@ -161,7 +159,7 @@ For information about the most recent baseline versions and settings from Micros
 ::: zone-end
 ::: zone pivot="edge-v112"
 
-**Microsoft Edge baseline for May 2023 (Edge version 112)**
+## Microsoft Edge baseline for May 2023 (Edge version 112)
 
 For information about the most recent baseline versions and settings from Microsoft, including versions of this baseline that might not be available through Intune, download the [Microsoft Security Compliance Toolkit](https://www.microsoft.com/download/details.aspx?id=55319) from the Microsoft Download Center.
 
@@ -195,15 +193,15 @@ For information about the most recent baseline versions and settings from Micros
 - **Specifies whether SharedArrayBuffers can be used in a non cross-origin-isolated context**  
   Baseline default: *Disabled*
 
-**Extensions**:
+### Extensions
 
 - **Control which extensions cannot be installed**  
   Baseline default: *Enabled*
 
   - **Extension IDs the user should be prevented from installing (or * for all) (Device)**  
     Baseline default: *\**  
 
-**HTTP authentication**:
+### HTTP authentication
 
 - **Allow Basic authentication for HTTP**  
   Baseline default: *Disabled*
@@ -215,23 +213,23 @@ For information about the most recent baseline versions and settings from Micros
 - **Supported authentication schemes (Device)**  
     Baseline default: *ntlm,negotiate*  
 
-**Native Messaging**:
+### Native Messaging
 
 - **Allow user-level native messaging hosts (installed without admin permissions)**  
   Baseline default: *Disabled*
 
-**Password manager and protection**:
+### Password manager and protection
 
 - **Enable saving passwords to the password manager**  
   Baseline default: *Disabled*  
   [Learn more](/windows/client-management/mdm/policy-csp-browser#browser-allowpasswordmanager)
 
-**Private Network Request Settings**:
+### Private Network Request Settings
 
 - **Specifies whether to allow insecure websites to make requests to more-private network endpoints**  
   Baseline default: *Disabled*
 
-**SmartScreen settings**:
+### SmartScreen settings
 
 - **Configure Microsoft Defender SmartScreen**  
   Baseline default: *Enabled*  

diff --git a/memdocs/intune/protect/security-baseline-v2-office-settings.md b/memdocs/intune/protect/security-baseline-v2-office-settings.md
@@ -56,7 +56,7 @@ Each security baseline is a group of preconfigured Windows settings that help yo
 
 The details that display in this article are based on baseline version you select at the top of the article. For each version, this article displays:
 
-- A list of each and its configuration as found in the default instance of that baseline version.
+- A list of each setting with its configuration as found in the default instance of that baseline version.
 - When available, a link to the underlying configuration service provider (CSP) documentation or other related content from the relevant product group that provides context and possibly additional details for a settings use.
 
 When a new version of a baseline becomes available, it replaces the previous version. Profile instances that you’ve created prior to the availability of a new version: