This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 82%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIO%3C/text%3E%3C/svg%3E)
Good morning,
For security groups created in the tenant, various custom or default policies can be added from the Intune, Entra ID, and Defender portals. In my case, I have configured several security groups, each with different associated policies and settings. However, I cannot find a way to determine exactly which policies or configurations are associated with each security group.
Inside the properties of these groups, we can see different parameters such as members, owners, roles, licenses… but there is no information about other aspects linked to the group. Currently, to find this out, I have to individually check each of the different policies to see which groups they are associated with... and this becomes very complicated when dealing with many policies.
Therefore, my question is: Is there a quick and comprehensive way to find out which policies and configurations are associated with a security group? This would greatly help me to make a proper administration and maintenance.
Thank you in advance!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Ignacio Ortiz, Thanks for posting in Q&A. Based as I know, currently in Intune, there's no report to show policies assigned to group. But we can check the policies assigned to a device. if one user is only in this group, you can check the policies on this device as a workaround. Here is a link guide us how to get it.
Hope the above information can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
My advice, use virtual All devices\All Users groups in Intune and control assignments using filters wherever possible. Filters can also address your requirement of knowing which all assignments are assigned.