What’s New in Intune May 2025 Update

Bycloudguides

Welcome to the CloudGuides🙏. Numerous new features are introduced in the Intune May 2025 update, including cross-platform device inventory, multiple admin permissions for remote actions, a new endpoint security policy for Linux servers called global exclusions, and much more.

The 2505 service release of Intune is released to all the tenants worldwide. You can refer to the following guide to check your current tenant service release version. The best things about this month’s update are all about making things easier for IT pros who use the Microsoft Intune console.

Have a look at the official announcement by Microsoft on What is new in the Intune May 2025 release.

What’s New in Intune May 2025 Update

The following are the new features and enhancements included in Intune service release 2505 release in May 2025:

1. Cross-Platform Device Inventory

The device inventory is expanded to include Android, iOS, and Mac devices. Currently, Intune gathers a standard inventory of data, which comprises 32 Android properties and 74 Apple properties.

2. Multiple Administrator Approvals for Remote Actions

With the release of Intune 2505, a new feature has been added that enables organizations to create access policies that demand authorization from a different administrator before performing remote actions such as retire, wipe, or delete.

Requestors may be asked to include a business justification, and approvers may annotate their decisions during the approval process—all of which can help audits and investigations become more transparent.

3. Improved security for unattended Remote Help sessions on Android devices

Microsoft has improved security and user awareness during unattended Remote Help sessions on Android devices by blocking the screen of the device and letting users know if they touch it. This feature is designed for Zebra and Samsung devices enrolled as Android Enterprise corporate-owned dedicated devices.

4. Secure Linux Servers with Global Exclusions

Global exclusions is a new endpoint security policy that Intune is offering to organizations that want assistance with safeguarding their Linux servers. Some of these exceptions can even be used for devices that are managed with Defender for Endpoint but are not signed up for Intune.

You can use the exclusion settings for both Microsoft Defender Antivirus and Defender for Endpoint detection and response (EDR). They can help fix performance problems and cut down on false positives.

5. Detect rooted corporate-owned Android Enterprise devices

For enrolled Android devices in Intune, administrators can configure compliance policies to detect if a corporate-owned Android Enterprise device is rooted. If Microsoft Intune detects that a device is rooted, you can have it marked as noncompliant. This useful feature is now available for devices enrolled as fully managed, dedicated, or corporate-owned with a work profile.

That’s all we wanted to cover in this guide👍. Thank you for reading. If you found it helpful, please like and share this article❤️.

Avatar of cloudguides

Cloud Guides is a website for learning Microsoft Intune, Configuration Manager, PowerShell, Windows 365 and all the Cloud related things. Join us on our journey as we share insights and expertise on Cloud Computing ✨🚀

Leave a Reply

Your email address will not be published. Required fields are marked *