This post will cover how to create a configuration policy in Intune that allows Intune MDM policy to win over GPO.
Prerequisite:
- Devices needs to be running Windows 10 version 1803 or above.
- SCCM Version 1806.
- Configuration Manager is setup to move the workload to Intune.
(Recommended guide for setting up Co-management in SCCM, Flipping the switch by Martin Bengtsson)
Let’s get started.
Creating the configuration profile.
Go to Microsoft Endpoint
Click on Devices – Configuration profiles – Create profile.
Platform: Windows 10 and later
Profile type: Templates
Click Create.
Fill in a name for your configuration file, for this purpose, I will name it Windows 10 – MDM Policy Wins over GPO. (Fill in description optional)
Click Next.
![Profile name and description](http://i0.wp.com/www.everything365.online/wp-content/uploads/2021/07/Intune-ConfigurationProfileName.png?resize=770%2C412&ssl=1)
Configuration settings (OMA-URI settings)
Now we will add an OMA-URI Settings, click on Add.
Fill in the following information (You may pick any name and description you see fit)
Name: MDM Policy Wins over GPO
Description: MDM settings will win over Group Policies
OMA-URI: ./Vendor/MSFT/Policy/Config/ControlPolicyConflict/MDMWinsOverGP
Data type: Integer
Value: 1
Click Save.
![OMA-URI Settings](http://i0.wp.com/www.everything365.online/wp-content/uploads/2021/07/Intune-ConfigurationProfilesSettings.png?resize=578%2C384&ssl=1)
Now the only part that is left is assigning the configuration policy to your users or devices.
Review your settings and create.