Microsoft posted its Week of June 15, 2026 Intune What’s New update, and it includes two announcements worth unpacking: a new native STIG SCAP Benchmark audit baseline for government-sector compliance and iterative improvements to the redesigned single device page in public preview. Neither is a headline feature on its own, but both fill specific gaps that organizations have felt for years.

STIG Audit Baseline: Intune Gets a DoD Compliance Assessment Tool

What It Is

Intune now includes a STIG audit baseline that evaluates Windows devices against the Security Technical Implementation Guides published by DISA (Defense Information Systems Agency). The initial baseline maps to the Microsoft Windows 11 STIG SCAP Benchmark Version 2, Release 7 — benchmark dated January 5, 2026, covering 262 discrete security checks.

This is an audit-only baseline. Unlike other Intune security baselines (like the Windows or Defender baselines), it does not configure or enforce settings. It evaluates the current configuration state of each device and generates detailed audit reports without changing anything.

Audit results include documented mappings to NIST XCCDF result categories for formal DISA compliance reporting, and Graph API support enables programmatic data retrieval and cross-tenant assessment aggregation.

Who This Matters To

The STIG audit baseline is available only for US Government Community Cloud High (GCC High) tenants and requires Intune Advanced Analytics licensing. If you’re not in GCC High, this doesn’t appear in your tenant — but it signals where Microsoft is heading.

For defense contractors, federal agencies, and organizations pursuing CMMC (Cybersecurity Maturity Model Certification) compliance, this is meaningful. Organizations that previously relied on third-party SCAP scanners (like the open-source SCAP Compliance Checker or commercial tools) can now get STIG assessments natively through Intune without deploying separate agents, managing results aggregation, or building custom reporting pipelines.

Strategic Implications

The audit-only design is deliberate. Enforcing all 262 STIG checks across a standard enterprise Windows fleet would break considerable functionality — from Siri-level features to core authentication flows. By starting with assessment, Microsoft enables organizations to establish a “current state vs. STIG” delta report, then selectively enforce the controls that matter most for their compliance boundary using custom policies.

This also puts pressure on the ecosystem of third-party compliance tools. Native Intune integration means STIG assessment data lives alongside the rest of your endpoint compliance posture, reducing the need for separate compliance dashboards and data stitching.

The Advanced Analytics licensing requirement is worth noting. Organizations that don’t already have this add-on will need to budget for it. At the same time, this is a natural addition to the Advanced Analytics value proposition — turning compliance data into actionable insights via the analytics engine.

Device Page Redesign Gets Its Second Wind

What Changed

The redesigned single device page in the Intune admin center, first released in the 2604 service update back in April, has received a batch of iterative improvements:

Passcode and PIN visibility — After triggering Reset Passcode, Recover Passcode, Remote Lock, or Rotate BitLocker Keys, admins can temporarily view the generated passcodes and PINs directly in the Device Action Status table. No more switching to secondary views or digging through notification history.

Multi Admin Approval support — Device actions now work correctly when multi-admin approval policies are enabled. This was a blocker for organizations with separation-of-duties compliance requirements.

Supervised iOS improvements — Device actions for supervised iOS devices now work as expected where supported, and a badge identifies supervised iOS devices directly in the Essentials section.

Lost Mode controls — Admins can enable and disable Lost Mode directly from the device page rather than navigating to a separate workflow.

Navigation refinements — Tools and reports have moved to the left navigation menu, and the Monitor tab is now the default landing tab when opening a device.

Additional upgrades — Comanagement information is now visible on the device page, and admins can remove the primary user from Azure AD joined devices.

The Real-World Impact

If you’ve been using the new device page preview since the 2604 release, these improvements address several pain points that the initial version introduced. The passcode/PIN visibility alone saves help desk technicians from context-switching during troubleshooting sessions. The multi-admin approval fix is essential for organizations that have invested in that governance model.

The preview is still limited to the Devices > All Devices entry point — opening a device from reports, policies, or compliance pages still shows the old layout. Microsoft hasn’t announced when this becomes the default experience, but the pace of improvement suggests they’re converging on GA.

Should You Enable It?

Yes. The preview toggle is per-admin (not tenant-wide), has no functional impact on management capabilities, and the new layout is strictly better for daily operations. Flip it on in any tenant where you regularly manage devices.

The Bigger Picture

These two updates highlight different aspects of Intune’s evolution. The STIG baseline targets a specific, high-value compliance gap for regulated industries — native compliance assessment without third-party tools. The device page improvements are about refining the day-to-day admin experience, reducing friction in the highest-frequency management workflow.

Both signal that Microsoft continues investing across the full Intune surface — from high-security government compliance to the foundational UX that endpoint admins interact with dozens of times per day.

Want to stay ahead of Intune changes? Enable the public preview features in your tenant, subscribe to the What’s New RSS feed, or follow along here at Big Hat Group for regular breakdowns of what actually matters.