This post is all about Intune naming convention, please check Part 1 for Intune related Entra security groups naming convention.
Intune contains numerous items or policies that are assigned using Entra security groups. A naming convention is essential for understanding and managing policies on Intune effectively.
Main elements
Intune includes many items and policies that you assign to security groups. This plan is based on real-world use cases and can be modified to meet different needs or company policies. I designed my Intune naming convention for organizations with multiple sites or branches in various countries or within a single country. It accommodates different types of platforms and special business needs. This model can be simplified for smaller organizations.
- Ownership: What this Intune item is assigned for. What is the use case. Plan ownership hierarchy with company hierarchy in mind.
- Platform: What platform this Intune item is assigned for.
- Use case: Friendly descriptive name about this Intune item, what is is used for.
- Status: on production, testing or developing. This indicates status of Intune item.
Some examples that I’ve used
- GLB–WIN–M365 Apps-Default settings PROD
- Global setting for Windows M365 apps for default app settings on production – on production
- FI–WIN–Edge-Browser Search Engine settings TEST
- Finnish for Windows Edge browser search engine settings – under testing
- BU1–WIN–Disk Encryption-Bitlocker silent encryption PROD
- For businessunit1 Windows Disk encryption, Bitlocker silent encryption – on production
- FIHEL–WIN–OS-Factory security hardening PROD
- Finland, Helsinki for Windows security hardening for Factory workstations – on production
- FI-WIN-ASR block DEV
- Finland, Windows Attack surface reduction in block mode – Under development
What else?
Intune has a pretty good search function and this naming convention really helps to find out Intune items regarding ownership, platform, use case and even using status. There’s also Intune Device Filters to fine tune search results. For example, list of Intune device configuration policies do have a platform column, but I feel it’s easier just use search.
Conclusions
Establishing a naming convention is highly beneficial, especially in larger environments with numerous Intune administrators. However, it can be challenging for admins to fully implement to the defined naming policy. Ultimately, the naming convention should be a company-wide policy. Educating Intune administrators is essential to ensure they can effectively utilize the established naming convention.