home

Mobile Endpoint Security

Mobile Endpoint SecuritySecurity Service Edge
Mobile Endpoint SecuritySecurity Service Edge

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Show Contents

Mobile Endpoint Security

Configuring and Enforcing a Compliance Policy

Using Lookout Risk Levels to Drive a Compliance Policy in Intune

In a Cloud deployment, you manage compliance policy configuration through Intune. The Intune Administrator chooses the maximum acceptable threat level for a device (High, Medium, Low, Secured). Any device with a higher threat level as determined by the Lookout MES threat classification policy is considered non-compliant.

For testing purposes, it is useful to test new threat configurations against a small subset of users. This presents a chance to see the policy in action and check for unexpected behavior. One way to do this is to create a new compliance policy that specifies a small Entra ID user group for its "managed devices". This can be the same group(s) specified for Lookout MES Enrollment Groups, or a subset of users from that group.

  1. Log in to the Microsoft Intune admin center.
  2. In the left sidebar menu, click Devices.
  3. In the Devices blade, under Policy, click Compliance policies.
  4. Click + Create Policy.
  5. Your exact policy will vary based on the needs of your organization, but you must at least select a threat level for Device Health > Require the device to be at or under the Device Threat Level in order to use Lookout MES threat detection:


  6. Click Next to configure noncompliance actions, then click Next again to apply the policies to selected User Groups.
  7. When you have configured the policy, click Next to review final settings, then click Save.

Last updated: September 30, 2024

lookout-footer

Legal Privacy Policy Cookie Policy Transparency Report Compliance Info Compliance Info (Gov)

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.