This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 8%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJC%3C/text%3E%3C/svg%3E)
Hi All,
My boss asked me to create a compliancy policy for below conditions.
Condition 1: If a laptop have not a "Crowstrike".
Condition 2: If the "Crowstike" is not up-to-date.
Action: Drop the device to "non-compliance list".
Please guide me to create this compliancy policy.
Thanks.
You are looking at creating a custom compliance condition here. https://learn.microsoft.com/en-us/mem/intune/protect/compliance-custom-script#sample-discovery-script-for-windows
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 35%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZM%3C/text%3E%3C/svg%3E)
@James Chan_110, Thanks for posting in Q&A.
For your issue, we can create a custom compliance policy to detect whether the device have a "Crowstrike", and the application have update to date, but the compliance policy cannot drop the device to "non-compliance list" if the device does not meet the requirements, because Intune compliance policy is a set of rules and conditions that you define to ensure that devices managed by Microsoft Intune meet your organization’s security and compliance requirements, it cannot do actions but just monitor devices status.
https://andrewstaylor.com/2022/06/14/understanding-custom-intune-compliance-policies/
Non-official, just for reference.
Hope it will help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Thank you for you detailed response.
I have one more question about this issue?
If a user's Crowstrike is not "up to date", can shown on the report on "Intune?
Thanks.
@James Chan_110, Thanks for your reply.
If the Crowstrike is not "up to date", you can view the non-compliant setting of device compliance details for custom compliance settings in the Microsoft Intune admin center.