The last thing you ever want during this work-from-home period is falling victim to the ransomware goons online. A single click on a malicious link in an email is all it takes to get your entire system compromised and your data stolen which is why corporations have incorporated different measures to ensure the safety of their staffs’ data and the safety of their infrastructures. So in case you to secure Windows 10 PCs with Microsoft 365, this short guide will walk you through the process.
But what if you’re an individual who doesn’t have the financial capacity that these big-enterprises have how do you then ensure the safety of your data from the hands of hackers.
Well it’s possible using the Microsoft 365 because has a number of security feature which is built into the administrative application which will help take care of some of your security challenges.
In this short guide, we’ll analyze how to activate the built-in security features of Microsoft 365 and apply those features to all Windows 10 PCs in your organization.
How to secure Windows 10 PCs with Microsoft 365
The number one step to securing your Windows 10 computer using the Microsoft 365 solution is to log in to the administrative portal using your credentials and then establish your domain as well as set up your email server.
The next thing to do is head to the left-side navigation bar and then select Setup. Next is to scroll down the list in the right-hand windowpane until you could locate the Device Section as seen below.
Next thing to do is to click on the “Secure your Windows 10 computers” link which will open the configuration screen for you.
From this interface, you can complete the configuration which will be auto-rolled out to all the Windows 10 computers with Microsoft Intune which is the company’s consolidated administrative tool for businesses using either Azure or Microsoft 365.
From here, you can create a baseline security policy for all the Windows 10 computers that are operating in your organization.
Just like a large enterprise, small businesses can apply these policies consistently across all Windows 10 devices, saving them the time it would take to configure each PC individually.
It is important to scroll down the page and take note of how the policy will be applied.
Policies only apply when the following are true:
Set Users may join devices to Azure AD to All or Some in Azure Active Directory
Set MDM user scope to All or Some in Azure Active Directory
Computers are running Windows 10 Pro, version 1703 or later
Computers are not running any other virus protection or device management programs
Computers are enrolled in Microsoft Intune (see User impact)
In case you meet all the stipulations, then you can go ahead and click on the Get Started button which will kickoff the process.
It will usually take a couple of seconds before the baseline policy is implemented which will then ask you to click on the Apply Settings button in order to confirm your setup.
The default value for turning off an idle screen is too low for my tastes, but I left everything else at their default values.
Click Apply Settings when your choices are complete. You should get a message that the baseline policies have been applied. Click the X to close out the window.
Now you may ask how do you enroll a Windows 10 PC which is already in use within your organization. All you have to do is open the Settings app on the particular PC and then go to the Accounts section.
Next thing is to click on the “Access Work or School” item in the left-hand navigation bar which will add the device as seen in the below.
With that said, you can ensure the security of your small business’ computer from the hands of hackers and let Microsoft do the rest for you.