When you use the Intune software client on a Windows PC, the firewall policies may be listed in the Intune Console as noncompliant.
This issue occurs when the Windows PC checks in while it's not on the domain that the PC is joined to. The firewall checks have to access a domain resource to accurately report compliance. If they can't access that domain resource, they report the policy as noncompliant.
To fix this issue, connect the Windows PC to the domain that it's joined to, and then check in by using Intune.
This is a false positive. When the Windows PC is not located on the domain, it cannot evaluate the Windows firewall policies because the service that Intune has to communicate with on the Windows PC is running as the Machine account.
Because the Machine account is a Computer account on the domain, the Intune client has to authenticate to the domain in order to get access. Because the Intune client cannot authenticate, it reports the firewall policies as noncompliant.
Article ID: 4018987 - Last Review: 2017, ഏപ്രി 12 - Revision: 10