Hi all, been a while since I posted, but I'm just looking for a little guidance if possible...
So we are currently setup in a co-managed environment using MECM with Intune/Endpoint manager. This may not matter for this particular issue, but I thought that I would mention it anyway at this point.
We only really have one basic compliance policy setup at the moment that ensures bitlocker is enabled and a couple of other things.
If I go into Intune > Endpoint Security > Compliance Policies > Compliance Policy Settings:
I can see that we have devices with no policies will be marked as compliant, we are not using jailbreak detection, and we are setting the validity period to 30 days. I am assuming that the 30 days means that if the device is not seen within 30 days, it will mark itself as none compliant.
At the moment, there are about 5k devices...