This repository has been created by CyberDrain in collaboration with @IntuneAdmin. For additional OSS baselines, check out Janβs work at Intune Baselines and wolkenman.nl.
This repository provides CIS Benchmarkβaligned configuration policies for Microsoft Intune (Endpoint Manager), focusing on securing Windows 10/11 environments.
All policies are supplied in JSON format, making them ready for direct import into the CyberDrain CIPP Platform or for usage with Intune Management.
CIS Microsoft Intune for Windows/
βββ CIS Microsoft Intune for Windows Level 1/
β βββ CISv4 - WIN - L1 - ASR Block Adobe Reader from creating child processes.json
β βββ CISv4 - WIN - L1 - ASR Block Office applications from injecting code into other processes.json
β βββ CISv4 - WIN - L1 - Account Logon Audit Credential Validation.json
β βββ CISv4 - WIN - L1 - User Account Control Run all administrators in Admin Approval Mode.json
β βββ ... (many more Level 1 baseline policies)
β
βββ CIS Microsoft Intune for Windows Level BitLocker/
βββ CISv4 - WIN - BL - Require Device Encryption.json
βββ CISv4 - WIN - BL - Deny write access to removable drives not protected by BitLocker.json
βββ CISv4 - WIN - BL - Require additional authentication at startup.json
βββ ... (BitLocker encryption & recovery policies)
- These policies are aligned with CIS Microsoft Windows 10/11 Benchmark v4.x.
- Always test policies in a pilot group before production rollout.
- Some settings (e.g., BitLocker recovery options, ASR rules) may depend on hardware/firmware compatibility.
- Adjust policies where needed to match your specific organizational environment.
This repository is an open-source library created for use by everyone. It was built in collaboration with an expert in CIS Intune templates and will be continuously maintained by CyberDrain to stay up to date with CIS Benchmark changes.
- Completely open source (MIT license).
- Community contributions are welcome β we accept pull requests.
- Designed to help MSPs and sysadmins deploy hardened, standardized baselines quickly and reliably.
