Enter the protocol for a single unmanaged browser. Web content (http/s) from policy managed applications will open in any app that supports this protocol.
\n \nCut, copy, and paste data between your app and other approved apps installed on the device. Choose to block these actions completely between apps, allow these actions for use with any app, or restrict use to apps that your organization manages.
\n\nThe encryption method is FIPS 140-2 compliant.
"
},
"EncryptDataIos": {
"tooltip1": "Choose Select one of the following options to specify how notifications for org accounts are shown for this app and any connected devices such as wearables:
\n{0}: Do not share notifications.
\n{1}: Do not share org data in notifications. If not supported by the application, notifications are blocked.
\n{2}: Share all notifications.
\n Android only:\n Note: This setting does not apply to all applications. For more information see {3}
\n \n iOS only:\nNote: This setting does not apply to all applications. For more information see {4}
"
},
"OpenLinksManagedBrowser": {
"label": "Restrict web content transfer with other apps",
"tooltip": "Select one of the following options to specify the apps that this app can open web content in:
\nIf you defer software updates, newly released updates won't become visible to users until after the deferral period (which you'll configure in the next setting). Deferring software updates doesn't impact scheduled updates.
OS-related updates can be deferred on devices running macOS 10.13 or later; non OS-related updates (such as Safari updates) can be deferred on devices running macOS 11 or later.
",
"updateDelayPolicyName": "Defer software updates",
"updateEveryWeek": "Every week",
"updateFirstWeekOfMonth": "First week of the month",
"updateFourthWeekOfMonth": "Fourth week of the month",
"updateNotificationLevelDescription": "Specifies what Windows Update notifications users see.",
"updateNotificationLevelName": "Change notification update level",
"updateSecondWeekOfMonth": "Second week of the month",
"updateSettingsName": "Update settings",
"updateThirdWeekOfMonth": "Third week of the month",
"updatesClassificationName": "Minimum classification of updates to install automatically",
"upperIPv4AddressName": "Upper IPv4 address",
"upperPortName": "Upper port",
"url": "URL",
"urlPathHashOption": "Hash",
"useDeadlineSettingsDescription": "Allows user to use deadline settings",
"useDeadlineSettingsName": "Use deadline settings",
"useInternalSubnetName": "Use IPv4/IPv6 internal subnet attributes",
"useOAuth": "OAuth",
"useOAuthDescription": "Specifies whether the connection should use OAuth for authentication.",
"usePACName": "Use (PAC)",
"useWindows10ForcedUpdates": "Force restart apps on update failure",
"useWindows10ForcedUpdatesTooltip": "To ensure apps are always up-to-date, use this setting to configure a recurring or one time date to restart apps whose update failed due to the app being in use.",
"userAccountControlDescription": "How is user notified about device changes (recommend Always notify).",
"userAccountControlName": "User Account Control",
"userApprovedAndAutomatedDeviceEnrollmentHeaderDescriptionMac": "These settings work for devices that were enrolled in Intune with user approval, and for devices enrolled using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP). This includes all supervised devices.",
"userApprovedAndAutomatedDeviceEnrollmentHeaderNameMac": "User approved and automated device enrollment",
"userAuthentication": "User authentication",
"userCanConfigure": "User can configure",
"userControlOption": "User in control",
"userCustomDomainDescription": "The value Intune uses for the user domain name that will be used by this profile e.g. contoso.com or contoso.",
"userCustomDomainName": "Custom domain name to use",
"userCustomDomainNameExample": "e.g. contoso.com",
"userDefined": "User defined",
"userDomainAADAttributeDescription": "The attribute Intune gets from Azure AD to dynamically generate the user domain name that will be used by this profile e.g. contoso.com (full domain name) or contoso (NetBIOS name).",
"userDomainAADAttributeLinkText": "Learn more about AAD attributes for email profiles.",
"userDomainAADAttributeName": "User domain name attribute from AAD",
"userExperienceSettingsName": "User experience settings",
"userNameOption": "User name",
"userNameTypeDescription": " The attribute Intune gets from Azure AD to dynamically generate the username that will be used by this profile e.g. MyName@contoso.com (UPN) or MyName (username).",
"userNameTypeLinkText": "Learn more about AAD attributes for Email profiles.",
"userNameTypeName": "Username attribute from AAD",
"userPauseAccessDescription": "An option in Windows Update that, when enabled, lets device users pause updates for a certain number of days.",
"userPauseAccessName": "Option to pause Windows updates",
"userPrincipalNameOption": "User Principal Name",
"userRightsAccessCredentialManagerAsTrustedCallerDesc": "This user right is used by Credential Manager during Backup/Restore. Users' saved credentials might be compromised if this privilege is given to other entities. ",
"userRightsAccessCredentialManagerAsTrustedCallerName": "Access Credential Manager as trusted caller",
"userRightsActAsPartOfTheOperatingSystemDesc": "This user right allows a process to impersonate any user without authentication. ",
"userRightsActAsPartOfTheOperatingSystemName": "Act As Part Of The OS",
"userRightsAddSidBladeTitle": "Other local users or groups",
"userRightsAddSidBladeTitleName": "Add local users or groups by SID",
"userRightsAddSidTableDescriptionDesc": "Admin’s description of this local user or group.",
"userRightsAddSidTableDescriptionName": "Description",
"userRightsAddSidTableNameDesc": "The name of this local user or group.",
"userRightsAddSidTableNameName": "Name",
"userRightsAddSidTableSidDesc": "The security identifier of this local user or group (e.g. *S-1-5-32-544).",
"userRightsAddSidTableSidName": "SID",
"userRightsAdministratorsName": "Administrators",
"userRightsAllowAccessFromNetworkDesc": "This user right determines which users and groups are allowed to connect to the computer over the network. ",
"userRightsAllowAccessFromNetworkName": "Allow Access From Network",
"userRightsAllowLocalLogOnDesc": "This user right determines which users can log on to the computer.",
"userRightsAllowLocalLogOnName": "Allow local log on",
"userRightsAuthenticatedUsersName": "Authenticated users",
"userRightsBackupFilesAndDirectoriesDesc": "This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when backing up files and directories.",
"userRightsBackupFilesAndDirectoriesName": "Backup files and directories",
"userRightsBlockAccessFromNetworkDesc": "This user right determines which users are prevented from accessing a computer over the network.",
"userRightsBlockAccessFromNetworkName": "Deny Access From Network",
"userRightsChangeSystemTimeDesc": "This user right determines which users and groups can change the time and date on the internal clock of the computer.",
"userRightsChangeSystemTimeName": "Change the system time",
"userRightsCreateGlobalObjectsDesc": "This security setting determines whether users can create global objects that are available to all sessions. Users who can create global objects could affect processes that run under other users' sessions, which could lead to application failure or data corruption.",
"userRightsCreateGlobalObjectsName": "Create global objects",
"userRightsCreatePageFileDesc": "This user right determines which users and groups can call an internal API to create and change the size of a page file.",
"userRightsCreatePageFileName": "Create pagefile",
"userRightsCreatePermanentSharedObjectsDesc": "This user right determines which accounts can be used by processes to create a directory object using the object manager.",
"userRightsCreatePermanentSharedObjectsName": "Create permanent shared objects",
"userRightsCreateSymbolicLinksDesc": "This user right determines if the user can create a symbolic link from the computer to which they are logged on.",
"userRightsCreateSymbolicLinksName": "Create symbolic links",
"userRightsCreateTokenDesc": "This user right determines which users/groups can be used by processes to create a token that can then be used to get access to any local resources when the process uses an internal API to create an access token.",
"userRightsCreateTokenName": "Create tokens",
"userRightsDebugProgramsDesc": "This user right determines which users can attach a debugger to any process or to the kernel.",
"userRightsDebugProgramsName": "Debug programs",
"userRightsDelegationDesc": "This user right determines which users can set the Trusted for Delegation setting on a user or computer object.",
"userRightsDelegationName": "Enable delegation",
"userRightsDenyLocalLogOnDesc": "This security setting determines which service accounts are prevented from registering a process as a service.",
"userRightsDenyLocalLogOnName": "Deny log on as a service",
"userRightsDescriptionExample": "(BUILTIN\\Event Log Readers)",
"userRightsGenerateSecurityAuditsDesc": "This user right determines which accounts can be used by a process to add entries to the security log. The security log is used to trace unauthorized system access.",
"userRightsGenerateSecurityAuditsName": "Generate security audits",
"userRightsGuestsName": "Guests",
"userRightsImpersonateClientDesc": "Assigning this user right to a user allows programs running on behalf of that user to impersonate a client. Requiring this user right for this kind of impersonation prevents an unauthorized user from convincing a client to connect to a service that they have created and then impersonating that client, which can elevate the unauthorized user's permissions to administrative or system levels.",
"userRightsImpersonateClientName": "Impersonate a client",
"userRightsIncreaseSchedulingPriorityDesc": "This user right determines which accounts can use a process with Write Property access to another process to increase the execution priority assigned to the other process",
"userRightsIncreaseSchedulingPriorityName": "Increase scheduling priority",
"userRightsLoadUnloadDriversDesc": "This user right determines which users can dynamically load and unload device drivers or other code in to kernel mode.",
"userRightsLoadUnloadDriversName": "Load and unload device drivers",
"userRightsLocalAccountAndMemberOfAdministratorsGroupName": "Local account and member of Administrators group",
"userRightsLocalAccountName": "Local account",
"userRightsLocalServicesName": "Local services",
"userRightsLockMemoryDesc": "This user right determines which accounts can use a process to keep data in physical memory, which prevents the system from paging the data to virtual memory on disk.",
"userRightsLockMemoryName": "Lock pages in memory",
"userRightsManageAuditingAndSecurityLogsDesc": "This user right determines which users can specify object access auditing options for individual resources, such as files, Active Directory objects, and registry keys.",
"userRightsManageAuditingAndSecurityLogsName": "Manage auditing and security log",
"userRightsManageVolumesDesc": "This user right determines which users and groups can run maintenance tasks on a volume, such as remote defragmentation.",
"userRightsManageVolumesName": "Perform volume maintenance tasks",
"userRightsModifyFirmwareEnvironmentDesc": "This user right determines who can modify firmware environment values.",
"userRightsModifyFirmwareEnvironmentName": "Modify firmware environment values",
"userRightsModifyObjectLabelsDesc": "This user right determines which user accounts can modify the integrity label of objects, such as files, registry keys, or processes owned by other users.",
"userRightsModifyObjectLabelsName": "Modify an object label",
"userRightsNameExample": "Event Log Readers",
"userRightsNetworkServicesName": "Network services",
"userRightsProfileSingleProcessDesc": "This user right determines which users can use performance monitoring tools to monitor the performance of system processes.",
"userRightsProfileSingleProcessName": "Profile single process",
"userRightsRemoteDesktopServicesLogOnDesc": "This user right determines which users and groups are prohibited from logging on as a Remote Desktop Services client.",
"userRightsRemoteDesktopServicesLogOnName": "Deny log on through Remote Desktop Services",
"userRightsRemoteDesktopUsersName": "Remote desktop users",
"userRightsRemoteShutdownDesc": "This user right determines which users are allowed to shut down a computer from a remote location on the network. Misuse of this user right can result in a denial of service.",
"userRightsRemoteShutdownName": "Remote shutdown",
"userRightsRestoreDataDesc": "This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when restoring backed up files and directories, and determines which users can set any valid security principal as the owner of an object.",
"userRightsRestoreDataName": "Restore files and directories",
"userRightsServicesName": "Services",
"userRightsSidDesc": "User or Group Sid",
"userRightsSidExample": "*S-1-5-21-2146773085",
"userRightsSidName": "SIDs",
"userRightsTakeOwnershipDesc": "This user right determines which users can take ownership of any securable object in the system, including Active Directory objects, files and folders, printers, registry keys, processes, and threads.",
"userRightsTakeOwnershipName": "Take ownership of files or objects",
"userRightsUsersName": "Users",
"userToggleEnabledName": "User to disable VPN configuration",
"userToggleEnabledToolTip": "Unless allowed, users can’t turn off always-on VPN. The default value for this setting is the most secure option.",
"userWindowsUpdateScanAccessDescription": "A button in Windows Update that, when enabled, lets device users check the update service for updates.",
"userWindowsUpdateScanAccessName": "Option to check for Windows updates",
"usernameAndPasswordOption": "Username and password",
"usernameFormat": "Username format:",
"usernameFormatDescription": "Username format example - abcd{{WifiMacAddress}}",
"utcMinusEightOption": "UTC-8",
"utcMinusElevenOption": "UTC-11",
"utcMinusFiveOption": "UTC-5",
"utcMinusFourOption": "UTC-4",
"utcMinusNineOption": "UTC-9",
"utcMinusNineThirtyOption": "UTC-9:30",
"utcMinusOneOption": "UTC-1",
"utcMinusSevenOption": "UTC-7",
"utcMinusSixOption": "UTC-6",
"utcMinusTenOption": "UTC-10",
"utcMinusThreeOption": "UTC-3",
"utcMinusThreeThirtyOption": "UTC-3:30",
"utcMinusTwelveOption": "UTC-12",
"utcMinusTwoOption": "UTC-2",
"utcPlusEightFourtyFiveOption": "UTC+8:45",
"utcPlusEightOption": "UTC+8",
"utcPlusEightThirtyOption": "UTC+8:30",
"utcPlusElevenOption": "UTC+11",
"utcPlusFiveFourtyFiveOption": "UTC+5:45",
"utcPlusFiveOption": "UTC+5",
"utcPlusFiveThirtyOption": "UTC+5:30",
"utcPlusFourOption": "UTC+4",
"utcPlusFourThirtyOption": "UTC+4:30",
"utcPlusFourteenOption": "UTC+14",
"utcPlusNineOption": "UTC+9",
"utcPlusOneOption": "UTC+1",
"utcPlusSevenOption": "UTC+7",
"utcPlusSixOption": "UTC+6",
"utcPlusSixThirtyOption": "UTC+6:30",
"utcPlusTenOption": "UTC+10",
"utcPlusTenThirtyOption": "UTC+10:30",
"utcPlusThirteenOption": "UTC+13",
"utcPlusThreeOption": "UTC+3",
"utcPlusThreeThirtyOption": "UTC+3:30",
"utcPlusTwelveFourtyFiveOption": "UTC+12:45",
"utcPlusTwelveOption": "UTC+12",
"utcPlusTwoOption": "UTC+2",
"utcZeroOption": "UTC±00",
"vPNAddressExample": "10.0.0.3, vpn.contoso.com",
"vPNAppsDescription": "When at least one app is selected, the VPN connection will be limited to the apps in the list.",
"vPNAppsName": "Select apps that would be allowed to use this VPN connection",
"vPNAuthMethodDescription": "Select how you want users to authenticate to the VPN server. Using certificate-based authentication provides enhanced capabilities such as zero-touch experience, on-demand VPN, and per-app VPN.",
"vPNCitrixData": "Citrix data",
"vPNCitrixDataDescription": "Enter key and value pairs for the Citrix VPN attributes.",
"vPNConditionTypeColumnName": "Restrict to",
"vPNConditionTypeName": "I want to restrict to",
"vPNConnectionExample": "Contoso VPN",
"vPNCustomData": "Attributes for custom VPN",
"vPNCustomDataDescription": "Enter key and value pairs for the custom VPN attributes.",
"vPNCustomKeyExample": "SingleSignOn",
"vPNCustomValueExample": "True",
"vPNDnsAutoTriggerDescription": "Automatically connect to the VPN when the device connects to this domain",
"vPNDnsAutoTriggerName": "Automatically Connect",
"vPNDnsPersistentDescription": "Keep this rule active even when the VPN is not connected: Select Enable to keep this rule in the Name Resolution Policy table (NRPT) until the rule is manually removed from the device, even after the VPN is disconnected. By default, NRPT rules in the VPN profile are removed from the device when the VPN is disconnected.",
"vPNDnsPersistentName": "Persistent",
"vPNEAPXMLDescription": "Enter the extensible authentication protocol (EAP) configuration in XML format. ",
"vPNEAPXMLHelpLinkDescription": "Learn more about creating an EAP configuration for your VPN profile.",
"vPNFQDNExample": "vpn.contoso.com",
"vPNIKEv2RemoteIdentifierDescription": "Specify the address of the IKEv2 server. This is usually the same value used in the IP address or FQDN field under Base VPN. The address must be a FQDN, UserFQDN, network address, or ASN1DN.",
"vPNIKEv2RemoteIdentifierName": "Remote identifier",
"vPNIdentifier": "VPN identifier",
"vPNIdentifierExample": "e.g. com.cisco.anyconnect.applevpn.plugin",
"vPNNetMotionMobilityCustomData": "Attributes for NetMotion Mobility VPN",
"vPNNetMotionMobilityCustomDataDescription": "Enter key and value pairs for the NetMotion Mobility VPN attributes.",
"vPNPerAppDescription": "When users start using the selected apps, traffic will automatically route through the VPN connection if the connection is configured to be Always On or if the connection has been manually started by the user.",
"vPNPolicyAddressDescription": "Proxy server address (fully-qualified host, or IP address).",
"vPNPolicyAddressName": "Address",
"vPNPolicyAssociatedAppsDescription": "Apps added here will automatically start this VPN connection.",
"vPNPolicyAssociatedAppsName": "Associated Apps",
"vPNPolicyAssociatedDomainsUrlsDescription": "Associated domains require additional setup outside of this VPN profile. ",
"wifiPowerOnForcedDescription": "Available for iOS/iPadOS 13.0 and later. Force Wi-Fi to always be turned on.",
"wifiPowerOnForcedName": "Require Wi-Fi always on",
"wifiScanIntervalPlaceholder": "Enter a number (1-500)",
"win10AccountManagerConfigurationHeader": "In organizations where multiple OS versions are supported, these settings may not apply across all versions the same. Account manager settings are the only settings applicable to HoloLens devices. ",
"win10AllowedWebsitesDescription": "List of allowed URLs users can access. If you upload a list, make sure to include the default home page URL.",
"win10AllowedWebsitesHeader": "By default, users can access all websites from the Microsoft Kiosk Browser. To restrict access to a specific set of websites, upload a file with up to 500 URLs on separate lines. Then users will only have access to these URLs. Wildcard(*) characters are permitted.",
"win10AllowedWebsitesName": "Allowed websites",
"win10AppLockerApplicationControlTypeAuditDescription": "\"Audit Only\" mode logs all events in local client event logs, but does not block any apps from running",
"win10AppLockerApplicationControlTypeDescription": "Specifies the types of apps that can be trusted to run by application control code integrity policies",
"win10AppLockerApplicationControlTypeName": "Trust apps with good reputation:",
"win10AppLockerEnforcementTypeDescription": "Choose the application control code integrity policies for your users' devices",
"win10AppLockerEnforcementTypeName": "Application control code integrity policies:",
"win10BlockedWebsiteExceptionsDescription": "Specify URLs that kiosk browsers are allowed to navigate to. If a URL is in both the Blocked website list as well as the Blocked website exception list, the exception will take effect.",
"win10BlockedWebsiteExceptionsName": "Website exceptions",
"win10BlockedWebsitesDescription": "Block websites from user access in the kiosk browser app.",
"win10BlockedWebsitesName": "Blocked websites",
"win10BluetoothHeader": "Bluetooth",
"win10DefaultPrivacyHeader": "Define information that all apps on the device can access. You can define exceptions on a per-app basis using “Per-app privacy exceptions”.",
"win10KioskAccessDownloadsFolderDescription": "Allow users to access downloads folder in Windows Explorer. Commonly used to access items downloaded from a browser.",
"win10KioskAccessDownloadsFolderName": "Allow access to Downloads folder",
"win10KioskAutoLaunch": "Autolaunch",
"win10KioskBrowserDefaultWebsiteDescription": "Default webpage that opens when kiosk browser opens and restarts.",
"win10KioskBrowserDefaultWebsiteExample": "http://bing.com",
"win10KioskBrowserDefaultWebsiteName": "Default home page URL",
"win10KioskBrowserEnableEndSessionButtonDescription": "End Session button clears all browsing data and navigates user back to the default home page URL.",
"win10KioskBrowserEnableEndSessionButtonName": "End session button",
"win10KioskBrowserHeader": "Configure the Kiosk Browser app. Before you begin, go to the Mobile Apps blade and make sure the Kiosk Browser app is assigned to your kiosk devices.",
"win10KioskBrowserHomeButtonDescription": "By default, home button is not configured.",
"win10KioskBrowserHomeButtonName": "Home button",
"win10KioskBrowserNavigationButtonDescription": "Refers to the forward and back buttons users click to get from one page to another.",
"win10KioskBrowserNavigationButtonName": "Navigation buttons",
"win10KioskBrowserRestartAfterIdleTimeDescription": "Specifies when Kiosk Browser should restart. Determined by the idle time, which is the number of minutes since the user’s last interaction.",
"win10KioskBrowserRestartAfterIdleTimeExample": "Enter a number (1-1440 minutes)",
"win10KioskBrowserRestartAfterIdleTimeName": "Refresh browser after idle time",
"win10LogonBlockFastUserSwitchingDesc": "Disables the ability to quickly switch between users that are logged on simultaneously without logging off.",
"win10LogonBlockFastUserSwitchingName": "Fast user switching",
"win10PolicyOverrideHeader": "Override Group Policy settings with Intune settings when there are conflicting settings.",
"win10PolicyOverrideInstructions": "This setting cannot be reset on a device until you unenroll the device from management in Intune.",
"win10SharedGuestAccount": "Guest account",
"win10SharedGuestAccountDescription": "Create a Guest option on the sign-in screen. Requires no user credentials or authentication, and creates a new local account each time it is used.",
"win10SharedPCAccountDeletion": "Account Deletion",
"win10SharedPCAccountDeletionDescription": "Shared PC mode can be configured to delete accounts immediately at sign-out, when disk space is low, and when accounts are inactive for too long.",
"win10SharedPCAccountDeletionDiskSpace": "At storage space threshold",
"win10SharedPCAccountDeletionDiskSpaceInactiveThreshold": "At storage space threshold and inactive threshold",
"win10SharedPCAccountDeletionImmediate": "Immediately after log-out",
"win10SharedPCAccountDiskSpaceLeftBeforeDeletion": "Delete oldest accounts when free disk space drops below",
"win10SharedPCAccountDiskSpaceLeftBeforeDeletionDescription": "Sets the percentage of disk space remaining on a PC before cached accounts will be deleted to free disk space. Accounts that have been inactive the longest will be deleted first. You can enter any number from 0 to 100 here.",
"win10SharedPCAccountDiskSpaceLeftBeforeDeletionEmpty": "25",
"win10SharedPCAccountManager": "Account management",
"win10SharedPCAccountManagerDescription": "When the account management service is turned on in shared PC mode, accounts are automatically deleted. Deletion applies to accounts in Active Directory and Azure Active Directory, and local accounts created by guests. Account management occurs automatically at sign-off time and during system maintenance time periods.",
"win10SharedPCAllowedAccountsDomain": "Domain",
"win10SharedPCAllowedAccountsGuest": "Guest",
"win10SharedPCAllowedAccountsGuestAndDomain": "Guest and Domain",
"win10SharedPCDaysBeforeInactive": "Number of days an account is unused before it's considered inactive",
"win10SharedPCDaysBeforeInactiveDescription": "Set number of days before account is inactive. You can enter any number from 1 to 365 here. ",
"win10SharedPCDaysBeforeInactiveEmpty": "30",
"win10SharedPCDiskLevelCaching": "Stop delete threshold(%)",
"win10SharedPCDiskLevelCachingDescription": "Account manager stops deleting cached accounts as soon as total disk/storage space meets your configured threshold.",
"win10SharedPCDiskLevelDeletion": "Start delete threshold(%)",
"win10SharedPCDiskLevelDeletionDescription": "Account manager begins deleting cached accounts as soon as total disk/storage space drops below your configured threshold. It will continuously delete to reclaim disk space. Accounts that have been inactive the longest are deleted first.",
"win10SharedPCDiskSpaceEmptyValueDescription": "Enter percentage of disk space(0-100)",
"win10SharedPCDiskSpaceLeftCached": "Stop account deletion when percentage storage/disk space is",
"win10SharedPCDiskSpaceLeftCachedDescription": "Sets the minimum percentage of available disk space a PC should have before it stops deleting cached accounts. You can enter any number from 0 to 100 here. ",
"win10SharedPCDiskSpaceLeftCachedEmpty": "50",
"win10SharedPCFastFirstSignInDescription": "Allow auto connect of new non-admin Azure Active Directory (AAD) accounts to the pre-configured candidate local accounts.",
"win10SharedPCFastFirstSignInName": "Fast first sign-in (deprecated setting)",
"win10SharedPCHeader": "Configure access, account deletion, maintenance, and power management settings for your shared devices running Windows 10 or later used by multiple users in your organization. ",
"win10SharedPCInactiveThreshold": "Inactive account threshold",
"win10SharedPCInactiveThresholdDescription": "The number of consecutive days after which an account that has not signed in is deleted.",
"win10SharedPCInactiveThresholdEmpty": "Enter number of days",
"win10SharedPCLocalStorage": "Local Storage",
"win10SharedPCLocalStorageDescription": "With local storage, users can save and view files on the device's hard drive.",
"win10SharedPCMaintenanceStartTime": "Maintenance start time(in minutes from midnight)",
"win10SharedPCMaintenanceStartTimeDescription": "The time when automatic maintenance tasks, such as Windows Update, run. The default start time is midnight, or zero minutes. You can adjust the start time in this setting by entering a new start time in minutes from midnight. For example, if you want maintenance to begin at 2 AM, enter 120 as the value.",
"win10SharedPCMaintenanceStartTimeEmpty": "Enter number of minutes from midnight",
"win10SharedPCMode": "Shared PC mode",
"win10SharedPCModeDescription": "Optimize devices for shared use to allow one user at a time to sign in to device.",
"win10SharedPCMoreInfoLinkHeader": "Click here for more info.",
"win10SharedPCSetEduPolicies": "Education policies",
"win10SharedPCSetEduPoliciesDescription": "Recommended settings for devices used in schools",
"win10SharedPCSetPowerPolicies": "Power Policies",
"win10SharedPCSetPowerPoliciesDescription": "Power policies prevent users from changing power settings, turns off hibernate, and overrides all power state transitions—such as lid close—to sleep.",
"win10SharedPCSignInOnResume": "Sign-in when PC wakes",
"win10SharedPCSignInOnResumeDescription": "Require the user to sign in with a password when device comes out of sleep mode.",
"win10SharedPCSleepTimeOut": "Sleep time out (in seconds)",
"win10SharedPCSleepTimeOutDescription": "Number of inactive seconds before device goes into sleep mode. If you don't set a time, the device will go to sleep after 60 minutes.",
"win10SharedPCSleepTimeOutEmpty": "Enter number of seconds",
"win10StartBlockUnpinningAppsFromTaskbarDesc": "Block the user from unpinning apps as specified through policy.",
"win10StartBlockUnpinningAppsFromTaskbarName": "Unpin apps from task bar",
"win10StartMenuAppListVisibilityCollapseDisableSettingsAppName": "Collapse and Disable Settings App",
"win10StartMenuAppListVisibilityCollapseName": "Collapse",
"win10StartMenuAppListVisibilityDesc": "Setting the value of this collapses the app list, removes the app list entirely, or disables the corresponding toggle in the Settings app.",
"win10StartMenuAppListVisibilityName": "App list",
"win10StartMenuAppListVisibilityRemoveDisableSettingsAppName": "Remove and Disable Settings App",
"win10StartMenuHideChangeAccountSettingsDesc": "Enabling this policy hides the change account setting from appearing in the user tile in the start menu.",
"win10StartMenuHideChangeAccountSettingsName": "Change account settings",
"win10StartMenuHideFrequentlyUsedAppsDesc": "Enabling this policy hides the most used apps from appearing on the start menu and disables the corresponding toggle in the Settings app.",
"win10StartMenuHideFrequentlyUsedAppsName": "Most used apps",
"win10StartMenuHideHibernateDesc": "Enabling this policy hides hibernate from appearing in the power button in the start menu.",
"win10StartMenuHideHibernateName": "Hibernate",
"win10StartMenuHideLockDesc": "Enabling this policy hides lock from appearing in the user tile in the start menu.",
"win10StartMenuHideLockName": "Lock",
"win10StartMenuHidePowerButtonDesc": "Enabling this policy hides the power button from appearing in the start menu.",
"win10StartMenuHidePowerButtonName": "Power button",
"win10StartMenuHideRecentJumpListsDesc": "Enabling this policy hides recent jump lists from appearing on the start menu/taskbar and disables the corresponding toggle in the Settings app.",
"win10StartMenuHideRecentJumpListsName": "Recently opened items in Jump Lists",
"win10StartMenuHideRecentlyAddedAppsDesc": "Enabling this policy hides recently added apps from appearing on the start menu and disables the corresponding toggle in the Settings app.",
"win10StartMenuHideRecentlyAddedAppsName": "Recently added apps",
"win10StartMenuHideRestartOptionsDesc": "Enabling this policy hides “Restart/Update and Restart” from appearing in the power button in the start menu.",
"win10StartMenuHideRestartOptionsName": "Restart Options",
"win10StartMenuHideShutDownDesc": "Enabling this policy hides shut down/update and shut down from appearing in the power button in the start menu.",
"win10StartMenuHideShutDownName": "Shut Down",
"win10StartMenuHideSignOutDesc": "Enabling this policy hides sign out from appearing in the user tile in the start menu.",
"win10StartMenuHideSignOutName": "Sign out",
"win10StartMenuHideSleepDesc": "Enabling this policy hides sleep from appearing in the power button in the start menu.",
"win10StartMenuHideSleepName": "Sleep",
"win10StartMenuHideSwitchAccountDesc": "Enabling this policy hides switch account from appearing in the user tile in the start menu.",
"win10StartMenuHideSwitchAccountName": "Switch Account",
"win10StartMenuHideUserTileDesc": "Enabling this policy hides the user tile from appearing in the start menu.",
"win10StartMenuHideUserTileName": "User Tile",
"win10StartMenuLayoutEdgeAssetsXmlDesc": "Lets you import images from Microsoft Edge that will be displayed as a linked image in the Windows Start menu (desktop only).",
"win10StartMenuLayoutEdgeAssetsXmlName": "Pin websites to tiles in Start menu",
"win10StartMenuLayoutXmlDesc": "Lets you upload an XML file that customizes the Windows Start menu on desktop devices to which you assign this policy. Users cannot change the Start menu layout you specify.",
"win10StartMenuLayoutXmlName": "Start menu layout",
"win10StartMenuModeDesc": "Allows admins to decide how the Start menu is displayed.",
"win10StartMenuModeFullScreenName": "Full screen",
"win10StartMenuModeName": "Start screen mode",
"win10StartMenuModeNonFullScreenName": "Non-full screen",
"win10WiFiPolicyProxySettingsName": "Company proxy settings",
"win10WifiAllowWindowsToPrompt": "Allow Windows to prompt user for additional authentication credentials",
"win10WifiAuthenticationModeDescription": "Choose whether to authenticate the user, the device, either, or to use guest authentication (none). If you’re using certificate authentication, make sure the certificate type matches the authentication type.",
"win10WifiAuthenticationModeName": "Authentication Mode",
"win10WifiAuthenticationPeriodDescription": "Number of seconds for the client to wait after an authentication attempt before failing. Choose a number between 1 and 3600. Not specifying a value results in 18 seconds being used.",
"win10WifiAuthenticationPeriodName": "Authentication period",
"win10WifiAuthenticationRetryDelayPeriodDescription": "Number of seconds between a failed authentication and the next authentication attempt. Choose a value between 1 and 3600. Not specifying a value results in 1 second being used.",
"win10WifiAuthenticationRetryDelayPeriodName": "Authentication retry delay period ",
"win10WifiAutomaticallyConfigure": "Automatically Configure",
"win10WifiAutomaticallyConfigureExample": "https://proxysite.contoso.com/proxy.pac",
"win10WifiConnectAutomatically": "Connect automatically when in range",
"win10WifiConnectToNonBroadcastingNetwork": "Connect to this network, even when it is not broadcasting its SSID",
"win10WifiConnectToPreferredNetwork": "Connect to more preferred network if available",
"win10WifiDisable": "Disable",
"win10WifiEAPHeader": "Extensible Authentication Protocol (EAP)",
"win10WifiEAPText": "Select the EAP type that is configured on your Wi-Fi network.",
"win10WifiEapXML": "EAP XML",
"win10WifiEapXMLDesc": "Upload custom EAP configuration in an XML file.",
"win10WifiEnableAfterUserSignsInToDevice": "Enable after user signs in to device",
"win10WifiEnableBeforeUserSignsInToDevice": "Enable before user signs in to device",
"win10WifiEnablePairwiseMasterKey": "Enable pairwise master key (PMK) caching",
"win10WifiEnablePreAuthentication": "Enable pre-authentication",
"win10WifiFIPSComplianceDescription": "Validation against the FIPS 140-2 standard is required for all US federal government agencies that use cryptography-based security systems to protect sensitive but unclassified information stored digitally.",
"win10WifiFIPSComplianceName": "Force Wi-Fi profile to be compliant with the Federal Information Processing Standard (FIPS)",
"win10WifiFastRoaming": "Fast roaming settings",
"win10WifiFixed": "Fixed",
"win10WifiGuest": "Guest",
"win10WifiMachine": "Machine",
"win10WifiMachineOrUser": "User or machine",
"win10WifiManuallyConfigure": "Manually Configure",
"win10WifiMaximumAuthenticationFailuresDescription": "Enter the maximum number of authentication failures for this set of credentials. Not specifying a value results in 1 attempt being used.",
"win10WifiMaximumAuthenticationFailuresName": "Maximum authentication failures",
"win10WifiMaximumEAPOLStartMessagesDescription": "Choose a number of EAPOL-Start messages between 1 and 100. Not specifying a value results in a maximum of 3 messages being sent.",
"win10WifiMaximumEAPOLStartMessagesName": "Maximum EAPOL-start",
"win10WifiMaximumNumberPMKStoredInCache": "Maximum number of PMK's stored in cache",
"win10WifiMaximumNumberPMKStoredInCacheExample": "Number of entries (1-255)",
"win10WifiMaximumPreAuthenticationAttempts": "Maximum pre-authentication attempts",
"win10WifiMaximumPreAuthenticationAttemptsExample": "Number of attempts (1-16)",
"win10WifiMaximumTimePMKStoredInCache": "Maximum time a PMK is stored in cache",
"win10WifiMaximumTimePMKStoredInCacheExample": "Number of minutes (5-1440)",
"win10WifiMaximumTimeToAuthenticate": "Maximum time to authenticate before timeout",
"win10WifiMaximumTimeToAuthenticateExample": "Number of seconds (1-120)",
"win10WifiMeteredConnectionLimitDescription": "Unrestricted metering allows an app or service to use all data on your Wi-Fi, Fixed allows use of some data. and Variable allows use only when critical.",
"win10WifiMeteredConnectionLimitName": "Metered Connection Limit",
"win10WifiNetworkName": "Connection Name",
"win10WifiNotConfigured": "Not Configured",
"win10WifiPeapName": "Protected EAP (PEAP)",
"win10WifiPreSharedKey": "Pre-shared key",
"win10WifiProxyAutoConfiguration": "Proxy auto-configuration script URL",
"win10WifiProxyServerIPAddress": "Proxy server IP address",
"win10WifiProxyServerIPAddressExample": "10.0.0.22",
"win10WifiProxyServerPortNumberDescription": "If your proxy server uses a particular port, enter it here.",
"win10WifiProxyServerPortNumberExample": "8080",
"win10WifiProxyServerPortNumberName": "Proxy server port number",
"win10WifiRememberCredentialsDescription": "Choose whether to cache users' credentials when they enter them the first time they connect to the Wi-Fi network. Cached credentials are used for subsequent connections and the users don't need to re-enter them. Not configuring this setting is equivalent to setting it to yes.",
"win10WifiRememberCredentialsName": "Remember credentials at each logon",
"win10WifiSSIDExample": "ContosoCorp",
"win10WifiSSIDName": "Wi-Fi name (SSID)",
"win10WifiSignleSignOnName": "Single sign-on (SSO)",
"win10WifiStartPeriodDescription": "Number of seconds to wait before sending an EAPOL-Start message. Choose a value between 1 and 3600. Not specifying a value results in 5 seconds being used.",
"win10WifiStartPeriodName": "Start period",
"win10WifiUnrestricted": "Unrestricted",
"win10WifiUser": "User",
"win10WifiUserBasedVirtualLanDescription": "Specify whether the virtual LAN used by the device changes based on the user’s credentials. Not configuring this setting is equivalent to setting it to false.",
"win10WifiUserBasedVirtualLanName": "Use separate VLANs for device and user authentication",
"win10WifiVariable": "Variable",
"win10WifiWirelessSecurityTypeDescription": "Security protocol used to authenticate devices on your network.",
"win10WifiWirelessSecurityTypeName": "Wireless Security Type",
"win10WifiWirelessSecurityTypeOpen": "Open (no authentication)",
"win10WifiWirelessSecurityTypeWPA": "WPA/WPA2-Personal",
"win10appLockerApplicationControlAllowDescription": "These apps will be allowed to run",
"win10appLockerApplicationControlAllowName": "Enforce",
"win10appLockerApplicationControlAuditComponentsAndStoreAppsDescription": "\"Audit Only\" mode logs all events in local client event logs, but does not block any apps from running. Windows components and Microsoft Store apps will be logged as passing security requirements.",
"win10appLockerApplicationControlAuditComponentsAndStoreAppsName": "Not configured",
"win10appLockerApplicationControlAuditComponentsStoreAppsAndSmartlockerDescription": "\"Audit Only\" mode logs all events in local client event logs, but does not block any apps from running. Windows components, Microsoft store apps, and reputable apps as defined by the Intelligent Security Graph will be logged as passing security requirements.",
"win10appLockerApplicationControlAuditComponentsStoreAppsAndSmartlockerName": "Enable",
"win10appLockerApplicationControlAuditOnlyName": "Audit Only",
"win10appLockerApplicationControlEnforceComponentsAndStoreAppsDescription": "Only Windows components and Microsoft store apps will be allowed to run.",
"win10appLockerApplicationControlEnforceComponentsAndStoreAppsName": "Not configured",
"win10appLockerApplicationControlEnforceComponentsStoreAppsAndSmartlockerDescription": "Only Windows components, Microsoft store apps, and reputable apps as defined by the Intelligent Security Graph will be allowed to run.",
"win10appLockerApplicationControlEnforceComponentsStoreAppsAndSmartlockerName": "Enable",
"win10appLockerApplicationControlNotConfiguredDescription": "No Enforcement Policy selected",
"win10appLockerApplicationControlNotConfiguredName": "Not Configured",
"win10deviceGuardCodeIntegrityPolicyDescription": "Custom rule for selecting which types of apps to allow on device",
"win32EdgeKioskIdleTimeoutMinutesDescription": "Specifies when Microsoft Edge browser should restart. Determined by the idle time in minutes since the user's last interaction. (0-1440)",
"win32EdgeKioskType": "Microsoft Edge kiosk mode type",
"win32EdgeKioskTypeDescription": "Select the Microsoft Edge kiosk mode type. Learn More",
"win32EdgeKioskUrl": "Edge Kiosk URL",
"win32EdgeKioskUrlDescription": "Default webpage that opens when Microsoft Edge browser opens and restarts.",
"winMobileActionCenterDescription": "Allow action center notifications to appear while device is locked.",
"winMobileActionCenterName": "Action center notifications (mobile only)",
"winMobileAllowCopyAndPasteName": "Copy and paste (mobile only)",
"winMobileAllowVoiceRecordingDescription": "Block voice recording on mobile devices",
"winMobileAllowVoiceRecordingName": "Voice recording (mobile only)",
"winMobileBlockScreenshotName": "Screen capture (mobile only)",
"winMobileCortanaName": "Cortana",
"windows10AppPackageFamilyNameExample": "e.g. Microsoft.SkypeApp_kzf8qxf38zg5c",
"windows10EducationNOption": "Windows 10/11 Education N edition",
"windows10EducationOption": "Windows 10/11 Education",
"windows10EndpointProtectionDeviceGuardLearnMore": "Learn more about Windows Defender Application Control.",
"windows10EnterpriseNOption": "Windows 10/11 Enterprise N edition",
"windows10EnterpriseOption": "Windows 10/11 Enterprise",
"windows10HoloOption": "Windows 10 Holographic",
"windows10HolographicEnterpriseOption": "Windows 10 Holographic for Business",
"windows10MobileEnterpriseOption": "Windows 10 Mobile Enterprise",
"windows10MobileOption": "Windows 10 Mobile",
"windows10ProfessionalEducationNOption": "Windows 10/11 Pro Education N edition",
"windows10ProfessionalEducationOption": "Windows 10/11 Pro Education",
"windows10ProfessionalNOption": "Windows 10/11 Pro N edition",
"windows10ProfessionalOption": "Windows 10/11 Pro",
"windows10ProfessionalWorkstationNOption": "Windows 10/11 Pro for Workstations N edition",
"windows10ProfessionalWorkstationOption": "Windows 10/11 Pro for Workstations",
"windowsAppNonComplianceTypeDescription": "We recommend asking your users to accept a Terms of Use, to acknowledge that certain apps will be blocked from installation. Use the blocked apps list to specify the Windows Phone apps not managed by Intune that users cannot install. For the allowed apps list, all apps, including the company portal and any deployed apps must be added to the list using the app store URL format",
"windowsAppUrlExample": "e.g. https://www.microsoft.com/en-us/store/apps/remote-desktop/9wzdncrfj3ps",
"windowsAppUrlHelp": "Enter the Microsoft Store URL of the app you want. For example, to specify the Microsoft Remote Desktop app for Windows Phone, enter https://www.microsoft.com/en-us/store/apps/remote-desktop/9wzdncrfj3ps. To find the URL of an app, use a search engine to locate the store page. For example, to find the Remote Desktop app, you could search Microsoft Remote Desktop Microsoft Store.",
"windowsCompliantAppsOption": "Allow devices to install only the listed apps.",
"windowsDefenderFirewallDescription": "If this setting is not enabled, no network traffic will be blocked regardless of other policy settings.",
"windowsDriversDescription": "Allow or block driver updates via Windows Update.",
"windowsDriversName": "Windows drivers",
"windowsEditionUpgradeNotConfigured": "Not Configured",
"windowsInsiderBuildFastOption": "Windows Insider - Fast",
"windowsInsiderBuildReleaseOption": "Windows Insider - Release Preview",
"windowsInsiderBuildSlowOption": "Windows Insider - Slow",
"windowsNonCompliantAppsOption": "Block devices from opening the listed, unmanaged, apps.",
"windowsPasswordRequiredTypeDescription": "Controls number of complex character sets required in password. Learn More",
"windowsPasswordRequiredTypeName": "Password complexity",
"windowsPlatformBinaryTableName": "Windows Platform Binary Table",
"windowsSpotlightDescription": "Allows IT admins to turn off all Windows Spotlight Features - Window spotlight on lock screen, Windows Tips, Microsoft consumer features and other related features.",
"windowsSpotlightInActionCenterDescription": "Block spotlight suggestions from Microsoft that introduce new or updated features",
"windowsSpotlightInActionCenterName": "Windows Spotlight in action center",
"windowsSpotlightName": "Windows Spotlight",
"windowsSpotlightOnLockScreenDescription": "Block Windows Spotlight on lock screen",
"windowsSpotlightOnLockScreenName": "Windows Spotlight on lock screen",
"windowsSpotlightPersonalizationDescription": "Block Windows Spotlight personalization based on device usage",
"windowsSpotlightPersonalizationName": "Windows Spotlight personalization",
"windowsTipsDescription": "Allows IT admins to turn off the popup of Windows Tips.",
"windowsTipsName": "Windows Tips",
"windowsWelcomeExperienceDescription": "Block Windows welcome experience that introduces new or updated features",
"windowsWelcomeExperienceName": "Windows welcome experience",
"wipDescription": "Windows Information Protection (WIP) domain for this connection",
"wipName": "WIP domain for this connection",
"wipOption": "Associate a WIP with this connection",
"wirelessOption": "Wireless",
"with": "Choose whether to connect",
"withDescription": "This will happen at each connection attempt",
"workFoldersURLDescription": "Use Work Folders to make your work files available on all devices you use, even when offline.",
"workFoldersURLName": "Work folders URL",
"workProfileAllowAppInstallsFromUnknownSourcesInWorkProfileName": "Allow app installations from unknown sources in the work profile",
"workProfileAllowWidgetsDescription": "Allows or disallows users to access widgets exposed by apps in the work profile",
"workProfileAllowWidgetsName": "Allow widgets from work profile apps",
"workProfileAndroidEnrollmentTypesHeaderDescription": "These settings work for corporate-owned work profile devices.",
"workProfileAndroidEnrollmentTypesHeaderName": "Corporate-owned work profile devices",
"workProfileBlockFaceUnlockDescription": "Block using facial recognition to unlock the work profile.",
"workProfileBlockFaceUnlockName": "Face unlock",
"workProfileBlockFingerprintUnlockDescription": "Block using fingerprint to unlock the work profile.",
"workProfileBlockFingerprintUnlockName": "Fingerprint unlock",
"workProfileBlockIrisUnlockDescription": "Block using iris scanning to unlock the work profile.",
"workProfileBlockIrisUnlockName": "Iris unlock",
"workProfileBlockPersonalAppInstallsFromUnknownSourcesName": "Prevent app installations from unknown sources in the personal profile",
"workProfileBlockPersonalAppInstallsFromUnknownSourcesNameDescription": "Restrict the ability for end users to install apps from unknown sources in the personal profile of devices. This affects the personal profile only. Installation from unknown sources is always prevented in the work profile regardless of this setting.",
"workProfileBlockSmartLockDescription": "Block Smart Lock or other trust agents from adjusting work profile lock settings.",
"workProfileBlockSmartLockName": "Smart Lock and other trust agents",
"workProfileGeneralSettingsHeader": "General Settings",
"workProfileHeader": "Configure settings that specifically apply to the Android work profile on this device.",
"workProfileHeaderDescription": "If you're configuring corporate-owned work profile devices, some of these settings will only take effect at the work profile-level. This is marked in the setting name. For all other devices, these settings will take effect at the device-level.",
"workProfileLearnMoreText": "Learn More",
"workProfileMinimumPasswordLengthDescription": "Minimum number of digits or characters in password.",
"workProfileMinimumPasswordLengthEmptyValueKey": "Enter a number (4-16)",
"workProfileMinimumPasswordLengthEmptyValueKeyRange2": "Enter a number (4-16)",
"workProfileMinimumPasswordLengthName": "Minimum password length",
"workProfileMinutesOfInactivityBeforeScreenTurnsOffDescription": "Maximum minutes of inactivity until the work profile locks. 15 minutes recommended. Ignored if new time is longer than what's currently set on device.",
"workProfileMinutesOfInactivityBeforeScreenTurnsOffName": "Maximum minutes of inactivity until work profile locks",
"workProfileNumberOfPreviousPasswordsToBlockDescription": "Number of new passwords that must be used until an old one can be reused.",
"workProfileNumberOfPreviousPasswordsToBlockEmptyValueKey": "Enter a number (1 - 24)",
"workProfileNumberOfPreviousPasswordsToBlockName": "Prevent reuse of previous passwords",
"workProfileNumberOfSignInFailuresBeforeWipeDescription": "Number of consecutive times an incorrect password can be entered before the work profile is removed and corporate data is wiped.",
"workProfileNumberOfSignInFailuresBeforeWipeEmptyValueKey": "Enter a number (4-11)",
"workProfileNumberOfSignInFailuresBeforeWipeName": "Number of sign-in failures before wiping the work profile",
"workProfilePasswordExpirationDaysReportingName": "Work Profile password: Number of days until password expires",
"workProfilePasswordExpirationInDaysDescription": "Number of days until work profile password must be changed.",
"workProfilePasswordExpirationInDaysEmptyValueKey": "Enter number of days (1-255)",
"workProfilePasswordExpirationInDaysEmptyValueOneYearKey": "Enter number of days (1 - 365)",
"workProfilePasswordExpirationInDaysName": "Password expiration (days)",
"workProfilePasswordMinimumLengthReportingName": "Work Profile password: Minimum password length",
"workProfilePasswordMinimumLetterCharactersReportingName": "Work Profile password: Number of characters required",
"workProfilePasswordMinimumLowerCaseCharactersReportingName": "Work Profile password: Number of lowercase characters required",
"workProfilePasswordMinimumNonLetterCharactersReportingName": "Work Profile password: Number of non-letter characters required",
"workProfilePasswordMinimumNumericCharactersReportingName": "Work Profile password: Number of numeric characters required",
"workProfilePasswordMinimumSymbolCharactersReportingName": "Work Profile password: Number of symbol characters required",
"workProfilePasswordMinimumUpperCaseCharactersReportingName": "Work Profile password: Number of uppercase characters required",
"workProfilePasswordPreviousPasswordBlockCountReportingName": "Work Profile password: Number of passwords required before user can reuse a password",
"workProfilePasswordRequiredTypeReportingName": "Work Profile password: Required password type",
"workProfilePasswordSettingsHeader": "Work Profile Password",
"workProfilePasswordSignInFailureCountBeforeFactoryResetReportingName": "Work Profile password: Number of sign-in failures before wiping device",
"workProfilePersonalUsagAndroidEnrollmentTypesHeaderDescription": "These settings work for corporate-owned work profile devices and only apply during personal usage.",
"workProfileRequirePasswordDescription": "Require a password to use work apps. This can be separate from the device password. Requires Android 7.0+ ",
"workProfileRequirePasswordName": "Require Work Profile Password",
"workProfileRequiredPasswordTypeDescription": "Specify the type of password required.",
"workProfileRequiredPasswordTypeName": "Required password type",
"workspaceIDName": "Workspace ID",
"workspaceKeyName": "Workspace Key",
"xboxServicesAccessoryManagementServiceStartupModeDesc": "This setting determines whether the Accessory Management Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesAccessoryManagementServiceStartupModeName": "Xbox Accessory Management Service",
"xboxServicesEnableXboxGameSaveTaskDesc": "This setting determines whether the Xbox Game Save Task is Enabled(1) or Disabled(0).",
"xboxServicesEnableXboxGameSaveTaskName": "Xbox Game Save Task",
"xboxServicesLiveAuthManagerServiceStartupModeDesc": "This setting determines whether the Live Auth Manager Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesLiveAuthManagerServiceStartupModeName": "Xbox Live Auth Manager Service",
"xboxServicesLiveGameSaveServiceStartupModeDesc": "This setting determines whether the Live Game Save Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesLiveGameSaveServiceStartupModeName": "Xbox Live Game Save Service",
"xboxServicesLiveNetworkingServiceStartupModeDesc": "This setting determines whether the Networking Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesLiveNetworkingServiceStartupModeName": "Xbox Live Networking Service",
"yahoo": "Yahoo",
"years": "Years",
"yes": "Yes",
"yesAllAppsName": "Yes, all apps",
"yesSpecificAppsName": "Yes, specific apps",
"zeroNumberOption": "0",
"zscalerCloudName": "Organization's cloud name",
"zscalerCloudNameDescription": "Enter the cloud name for your organization provided by Zscaler.",
"zscalerCloudNameError": "Must be single-word string with no special characters.",
"zscalerCloudNameExample": "zscalerone",
"zscalerCustomDataDescription": "Enter key and value pairs for the custom VPN attributes.",
"zscalerExcludeList": "Excluded URLs",
"zscalerExcludeListDescription": "The specified addresses will be accessible outside the Zscaler cloud when connected to the VPN. If you enable strict enforcement, you should include your Azure AD domain to ensure users maintain the ability to sign in and receive MDM policies.",
"zscalerOption": "Zscaler",
"zscalerStrictEnforcement": "Enable strict enforcement",
"zscalerStrictEnforcementDescription": "Prevent users from accessing network resources until successfully logged into the Zscaler app.",
"zscalerUserDomain": "Custom domain name",
"zscalerUserDomainDescription": "Enter a static domain to pre-populate the login field with in the Zscaler app. If this is left empty, the user's Azure Active Directory domain will be used instead.",
"zscalerUserDomainExample": "contoso.com",
"platformSupported": "Platform supported",
"aadDeviceId": "AAD Device ID",
"access": "Access",
"accessActions": "Access Actions",
"accessActionsGrid": "Access actions grid",
"accessActionsGridLinkText": "Learn more about conditional launch actions.",
"accessActionsGridText": "Set the sign-in security requirements for your access protection policy. Select a Setting and enter the Value that users must meet to sign in to your company app. Then select the Action you want to take if users do not meet your requirements. In some cases, multiple actions can be configured for a single setting.",
"accessRequirements": "Access requirements",
"action": "Action",
"add": "Add",
"addAppConfiguration": "Add App configuration",
"addApps": "Add apps",
"addConfigCommandLabel": "Add Config",
"addPolicyBladeTitle": "Add a policy",
"addPolicyError": "Failed to add policy: {0}",
"addPolicyNotificationText": "Adding policy",
"addTargetedAppsErrorNotificationTitle": "Error adding one or more apps to policy",
"addUserGroupCommandText": "Select groups",
"addedApps": "Added apps",
"advancedSettings": "Advanced settings",
"allAppTypes": "All app types",
"allAppsOptionText": "All Apps",
"allAppsWithData": "All Apps with incoming org Data",
"allow": "Allow",
"allowOverrides": "Allow Overrides",
"allowSpecifiedBlock": "Allow specified (Block non-specified)",
"allowSpecifiedWipe": "Allow specified (Wipe non-specified)",
"allowedOptionText": "Allowed",
"androidPatchVersion": "AndroidPatchVersion",
"androidPlatformLabel": "Android",
"androidWorkProfile": "Android work profile devices",
"anyAppOptionText": "Any app",
"anyDialerAppOptionText": "Any dialer app",
"anyPolicyManagedDialerAppOptionText": "Any policy-managed dialer app",
"appAdded": "App added",
"appBasedConditionalAccess": "App based conditional access",
"appColumnLabel": "App",
"appConditions": "App conditions",
"appConditionsComparison": "App conditions comparison",
"appConfigAppReport": "App configuration app report",
"appConfigInfo": "Intune SDK-enabled apps support configurations in key-value pairs. Consult the documentation for each app to learn more about which key-value configurations are supported.",
"appConfigReport": "App configuration report",
"appConfigStatus": "App Configuration Status",
"appConfigUserReport": "App configuration user report",
"appConfiguration": "App configuration",
"appConfigurationReport": "App configuration report",
"appGroupTooltip": "We'll continue to add managed apps to your policy as they become available in Intune. ",
"appGroupViewTooltip": "View a list of apps that will be targeted",
"appLockerFile": "AppLocker File",
"appManagement": "App Management",
"appName": "App name",
"appNameColumnLabel": "App",
"appPackageId": "App package id",
"appPoliciesBladeTitle": "App Protection policies",
"appPolicy": "App Policy",
"appProtectionAppReport": "App protection app report",
"appProtectionPolicy": "App protection policy",
"appProtectionReport": "App protection report",
"appProtectionSettings": "App Protection Settings",
"appProtectionStatus": "App Protection Status",
"appProtectionUserReport": "App protection user report",
"appRemoved": "{0} removed",
"appReport": "App report",
"appReporting": "App reporting",
"appTypes": "App types",
"appVersion": "App version",
"applicationInstanceId": "App Instance Id",
"appsCountSelectorDisplayTextPlural": "{0} apps selected",
"appsCountSelectorDisplayTextSingular": "{0} app selected",
"appsInAndroidWorkProfile": "Apps in Android Work Profile",
"appsOnIntuneManagedDevices": "Apps on Intune managed devices",
"appsOnUnmanagedDevices": "Apps on unmanaged devices",
"appsSelectorLabel": "Apps",
"areYouSureVerification": "Are you sure?",
"assignedUsers": "Assigned users",
"auditLogsReport": "Audit logs",
"baselineProtectionLevel": "95th percentile protection",
"basicDataProtectionGuidedString": "Basic data protection – ensure users are required to utilize PIN or biometrics to access work or school account data, encrypts work or school account data, and enables administrators to perform selective data wipes, if necessary. For Android devices, basic data protection also ensures the compatibility of the device with Google's services and enables Google's Verify Apps scan.",
"basicIntegrity": "Basic integrity",
"basicIntegrityAndCertifiedDevices": "Basic integrity and certified devices",
"bioPinInactiveTimeout": "Inactivity timeout",
"bioPinInactiveTimeoutTooltip": "Override with PIN instead of biometric after (minutes)",
"block": "Block",
"blockAccess": "Block access",
"blockMinutes": "Block access (minutes)",
"blockOrgDataOptionText": "Block org Data",
"blockScreenCaptureLabel": "Block screen capture and Android Assistant",
"blockScreenCaptureLabelAndroid": "Block screen capture and Android Assistant (Android)",
"blockedOptionText": "Blocked",
"bundleOrPackageId": "Bundle or Package ID",
"cCPExceptionInputInvalid": "The input is not numeric.",
"cCPExceptionLabel": "Cut and copy character limit for any app",
"camera": "Camera",
"checkInCountColumnTitle": "CHECK-IN COUNT",
"checkedIn": "Checked in",
"checkedInAppNameColumnTitle": "APP",
"checkedInButNotSynced": "Checked in. On next sync, this app will receive {0}",
"clickHereToNavigateToTheNewIntuneAppProtection": "Click here to navigate to the new Intune App protection experience",
"clientAppPolicyDefault": "No policies",
"clientAppPolicyPlural": "{0} policies",
"clientAppPolicySingular": "{0} policy",
"closeText": "Close",
"columns": "Columns",
"columnsApplied": "{0} columns applied",
"comingSoon": "Coming soon",
"complianceGracePeriodExpirationDate": "Compliance grace period expiration date",
"complianceState": "Compliance State",
"compliant": "Compliant",
"conditionalAccess": "Conditional access",
"conditionalAccessNoticeBladeCallToAction": "Learn more about where to modify and add new policies.",
"conditionalAccessNoticeBladeDescription": "App based conditional access is now a capability of Azure Active directory (Azure AD) that enables you to control how authorized users access your cloud and client apps. While the purpose is still the same, the release of the new Azure AD portal has introduced significant improvements to how app based conditional access works. The conditional access policies that appeared here should be configured in the Azure AD portal.",
"conditionalAccessReadOnlyInfoText": "This is a read-only view of your app based conditional access policies. To modify and add new policies, see here.",
"conditionalEncryptionLabel": "Disable app encryption when device encryption is enabled",
"conditionalEncryptionLabelAndroid": "Disable app encryption when device encryption is enabled (Android)",
"conditionalLaunch": "Conditional launch",
"configuration": "Configuration",
"configurationLowerCase": "configuration",
"configurations": "Configurations",
"configureSettingBeforeConfiguringThisSetting": "Please configure '{0}' before saving this setting.",
"configureSettings": "Default settings configured",
"configured": "Configured",
"continueExportAppProtectionReport": "Page {0} of App protection report: iOS, Android",
"createBladeDescription1": "Give your employees access to company apps, data, and resources from just about anywhere and almost any device while keeping company data more secure.",
"createBladeDescription2": "The subscription will provide you with access to the {0} and the {1} feature.",
"createBladeDocumentationLabel": "Documentation",
"createBladeDocumentationLinkText": "mobile application management",
"createBladePricingLabel": "Pricing details",
"createBladeServiceOverviewLabel": "Service overview",
"createBladeServiceOverviewLinkText": "Intune admin console",
"createBladeSolutionsLabel": "Solutions you can deliver",
"createBladeTrustCenterLabel": "Trust Center",
"createBladeUsefulLinksLabel": "Useful Links",
"createPolicy": "Create policy",
"createWipeRequestInstruction": "Select a user and one or more devices to selectively remove company app data.",
"currentValue": "Current value",
"customApps": "Custom apps",
"customBrowserDisplayNameLabelAndroid": "Unmanaged Browser Name (Android)",
"customBrowserPackageIdLabelAndroid": "Unmanaged Browser ID (Android)",
"customBrowserProtocolLabelIos": "Unmanaged browser protocol (iOS)",
"customDialerAppDisplayNameLabelAndroid": "Dialer App Name (Android)",
"customDialerAppOptionText": "A specific dialer app",
"customDialerAppPackageIdLabelAndroid": "Dialer App Package ID (Android)",
"customDialerAppProtocolLabelIos": "Dialer App URL Scheme (iOS)",
"dashboardPartDeprecated": "This part has been deprecated and will no longer be maintained. Please unpin it.",
"dataBackupDisabledLabel": "Prevent backups",
"dataBackupDisabledLabelMac": "Prevent iTunes and iCloud backups",
"dataProtection": "Data protection",
"dataTransfer": "Data Transfer",
"defaultEdgeAppConfig": "Default to Edge app configuration",
"defaultValueAdvancedSettingsSelectorDisplayText": "Configure advanced settings",
"defaultValueAppsSelectorDisplayText": "Select required apps",
"defaultValueDeviceSelectorDisplayText": "Select the device",
"defaultValueSettingsSelectorDisplayText": "Configure required settings",
"defaultValueUserSelectorDisplayText": "Select the user",
"defineConfiguration": "Define configuration",
"delete": "Delete",
"deleteAppConfirmationDialogTitle": "Delete \"{0}\"?",
"deleteDataRecoveryCert": "Delete uploaded certificate",
"deletePendingWipeContextMenuText": "Delete wipe request",
"deletePendingWipeDialogText": "Delete {0}'s wipe request for {1}?",
"deletePendingWipeInProgress": "Deleting wipe request",
"deletePendingWipeRequestError": "An error occurred while trying to delete the wipe request you selected",
"deletePolicyConfirmationDialogTitle": "Delete \"{0}\"?",
"deletePolicyError": "Failed to delete policy: {0}",
"deleteUserGroupCommandText": "Delete",
"deliveredPolicies": "Delivered Policies",
"deny": "Deny",
"descriptionTextBoxLabel": "Description",
"desktop": "Desktop",
"details": "Details",
"deviceConditions": "Device conditions",
"deviceConditionsComparison": "Device conditions comparison",
"deviceConditionsInfoParagraph1": "Configure the following conditional launch settings for device based conditions through your app protection policy.",
"deviceConditionsInfoParagraph2": "Similar device based settings can be configured for enrolled devices.",
"deviceConditionsInfoParagraph2LinkText": "Learn more about configuring device compliance settings for enrolled devices.",
"deviceId": "Device ID",
"deviceLockedOpenFilesOptionsText": "When device is locked and there are open files",
"deviceLockedOptionText": "When device is locked",
"deviceManufacturer": "Device manufacturer",
"deviceManufacturers": "Device manufacturer(s)",
"deviceModel": "Device model",
"deviceModels": "Device model(s)",
"deviceName": "Device name",
"deviceRestartOptionsText": "After device restart",
"deviceSelectorLabel": "Device",
"deviceSettingsOptionsText": "Use device settings",
"deviceType": "Device type",
"deviceTypes": "Device types",
"devices": "devices",
"devicesCountSelectorDisplayText": "{0} devices selected",
"diagnoseAndSolveProblems": "Diagnose and solve problems",
"dirtySettingsSelectorDisplayText": "Review configured settings",
"disable": "Disable",
"discardChangesCommandText": "Discard",
"displayName": "Display Name",
"downloadReport": "Download report",
"downloadingReport": "Downloading report",
"edgeGSAssignment": "Choose the user groups that you want to include to have Edge mobile installed. Edge will be installed on all iOS and Android devices enrolled by these users.",
"edgeGSIntroBenefitHTML": "Get the Microsoft Edge app for your users on iOS or Android so they can browse seamlessly across their corporate devices! Edge lets users cut through the clutter of the web with built-in features that help them consolidate, arrange and manage work content. Users of iOS and Android devices who sign-in with their corporate Azure AD accounts in the Edge application will find their browser pre-loaded with workplace Favorites and website filters you define.
If you have blocked users from enrolling either iOS or Android devices, this scenario will not enable enrollment, and the users will need to install Edge for themselves.
",
"edgeGSIntroPrereqHTML": "We'll ask you about the workplace favorites your users need, and the filters you require for web browsing. Make sure you complete the following tasks before you continue:
\nAdd users to Azure AD groups\nEnroll iOS or Android devices in Intune. Learn more\nGather list of workplace favorites to add in Edge.\nGather list of website filters to enforce in Edge.",
"edgeGSName": "Edge for iOS & Android",
"edgeGSSyncInfo": "Depending on device connectivity and sync times, it may take up to 24 hours for this deployment to reach devices.",
"edit": "Edit",
"editPolicy": "Edit policy",
"email": "Email",
"emptyAppsMessage": "No apps have been added",
"emptyDevicesListMessage": "No devices found for this user.",
"emptyFlaggedErrorsMessage": "There are no errors flagged for this user.",
"emptyFlaggedUsersMessage": "No users are flagged.",
"emptyGridRowAriaLabel": "Entering values in this row will create a new item in the grid",
"emptyPoliciesMessage": "You have no policies.",
"emptyTargetedAppsMessage": "You have no apps.",
"emptyUserGroupsMessage": "No groups are currently assigned",
"emptyUsersWithPotentiallyHarmfulAppsReport": "No users with potentially harmful apps",
"emptyWipeRequestsMessage": "No wipe requests have been issued.",
"enable": "Enable",
"enableOpenInExperienceSettingName": "Filter Open-In/Share Dialog to only policy managed apps?",
"encryption": "Encryption",
"encryptionLabel": "Encrypt app data",
"encryptionLabelAndroid": "Encrypt app data (Android)",
"encryptionLabelIos": "Encrypt app data (iOS)",
"encryptionLabelMac": "Encrypt app data (Mac)",
"enhancedDataProtectionGuidedString": "Enhanced data protection – expand upon the settings defined in basic data protection by ensuring work or school account data cannot be transferred to personal accounts or personal apps and requiring a minimum OS version.",
"enrollment": "Enrollment",
"errorAccessDenied": "{0} - Access denied",
"errorCode": "Error code",
"errorDescription": "Error description",
"errorDownloadingReportPleaseTryAgain": "Error downloading report. Please try again.",
"errorRetrievingPotentiallyHarmfulAppsReport": "Error retrieving potentially harmful apps report",
"exclude": "Exclude",
"exemptProtocolInfoText": "Apps in this list will be exempt from the policy and will be able to receive data from managed apps.",
"export": "Export",
"exportAppConfigReport": "App configuration report",
"exportAppProtectionReport": "App protection report: iOS, Android, Mac",
"exportAppProtectionReportNoMac": "App protection report: iOS, Android",
"exportMdmWindowsProtectionReport": "App protection report: WIP via MDM",
"exportWindowsProtectionReport": "App protection report: WIP without enrollment",
"extensionName": "Microsoft_Intune",
"failure": "Failure",
"file": "File",
"filterByDeviceNameOrType": "Filter by device name or device type",
"filterByNamePlaceHolder": "Filter by app name or device name",
"filterByPlaceholderUsersWithPotentiallyHarmfulAppsReport": "Filter by user, app package ID, email, or device name",
"filterByPolicyName": "Search by policy",
"flaggedErrorAppNameColumnTitle": "APP",
"flaggedErrorBootloaderUnlockedText": "Unlocked bootloader",
"flaggedErrorDeviceNameColumnTitle": "DEVICE NAME",
"flaggedErrorFactoryRomModifiedText": "Factory ROM modified",
"flaggedErrorPlatformColumnTitle": "PLATFORM",
"flaggedErrorRootedDeviceText": "Rooted device detected",
"flaggedErrorTimeStampColumnTitle": "TIME",
"flaggedErrorTypeColumnTitle": "ERROR",
"flaggedErrorUnknownErrorText": "Unknown error",
"flaggedUserBladeTitle": "Flagged users",
"flaggedUserDisplayNameColumnLabel": "USER",
"flaggedUserErrorCountColumnLabel": "ERRORS",
"flaggedUserFilterPlaceholderText": "Search by user",
"flaggedUsersSummaryPartLabel": "Users",
"flaggedUsersSummaryPartTitle": "Flagged users",
"functionality": "Functionality",
"gSAppPickerDescription": "Select the policy-managed apps that you want to include. Then configure the requirements for accessing and sharing corporate files and emails in these apps. By default, user can save data to your organization's OneDrive and SharePoint accounts.",
"gSAssignmentText": "Choose the user groups that you want to include to ensure that they have access to your corporate data. App protection is assigned to users, and not devices, so your corporate data will be secure regardless of the device used and its enrollment status.",
"gSEdgeAndroidApp": "Require Install for Edge Android",
"gSEdgeBasicNameText": "Enter a name and description for your new Edge policies. These polices can be referenced later if you need to change the assignments and configurations.",
"gSEdgeCreateAndroidApp": "Create and deploy Edge Android app",
"gSEdgeCreatePolicyTitle": "Edge for iOS & Android app configuration",
"gSEdgeCreateiOSApp": "Create and deploy Edge iOS app",
"gSEdgeTitle": "Deploy Microsoft Edge for mobile (preview)",
"gSEdgeiOSApp": "Require Install for Edge iOS",
"generalBladeTitle": "General",
"genericError": "Something went wrong!",
"gridLoadingText": "Loading...",
"groupNotFound": "Group not found",
"guidedAndroidLabel": "Android app protection",
"guidedCALabel": "Conditional Access for non-managed devices",
"guidedCopyControlLabel": "Copy data to unmanaged apps",
"guidedManagedBrowserControlLabel": "Open policy-managed app links in unmanaged browsers",
"guidedScenarioBenifitText": "Prevent data in Office mobile apps from being shared or leaked to unmanaged apps on iOS and Android devices. In this scenario, you’ll apply data protection settings to your organization’s managed mobile apps.",
"guidedScenarioBenifitText2": "Estimated time to complete: 5 min",
"guidedString1": "Configure the requirements for accessing work or school data in these apps. You can enable one of three options for data protection:",
"guidedString2": "That's it! Let's review your choices before deploying.",
"guidedString3": "Enter a name and description for your new app protection and Conditional Access policies. These polices can be referenced later if you need to add or remove users from protection.",
"guidedString4": "Prevent data from being shared or leaked outside of your organization. In this scenario, you’ll block users from copying and pasting data between managed Office apps and non-managed apps on iOS and Android devices.",
"guidedString5": "Estimated time to complete: 15 min",
"guidedString6": "For more information on the settings defined in each level, see Data protection framework with app protection policies.",
"guidedStringBasicsWithoutCA": "These details will make it easy to find your policies later if you need to add or remove users from protection.",
"guidedTemplate1": "I can't find the app I need
I need to add my own line-of-business app
",
"guidedTemplate2": "We’ll ask you which protection level you would like to deploy to your users. For more information, see Data protection framework with app protection policies. ",
"guidediOSLabel": "iOS app protection",
"hardwareBackedKey": "Hardware-backed key",
"helpAndSupport": "Help and support",
"hideOverrides": "Hide Overrides",
"highDataProtectionGuidedString": "High data protection – expand upon the settings defined in enhanced data protection by introducing more complex access requirements settings (e.g., disables simple PIN), data protection settings (for example, disabling third-party keyboards).",
"iOSAppEncryptionStatus": "iOS device independent encryption is enabled for compatible applications. The App protection policy setting \"Encrypt Org Data\" must be configured to \"Require\" to enforce encryption.",
"iOSPlatformLabel": "iOS/iPadOS",
"importedApps": "Imported apps",
"include": "Include",
"includedPolicyManagedApps": "Included policy-managed apps",
"instanceDisplayName": "Instance display name",
"introduction": "Introduction",
"intuneAppProtection": "Intune App Protection",
"intuneAppProtectionHasMergedIntoMobileApps": "Intune App Protection has merged into the Intune mobile apps experience",
"intuneAppProtectionLegacy": "Intune App Protection (Legacy)",
"intuneManagedDevices": "Intune managed devices",
"invalidBundleId": "Valid characters are: alphanumeric, '-' and '.'",
"invalidPackageId": "Valid characters are: alphanumeric, '_' and '.'",
"invalidTokenUsageError": "Invalid token",
"iosAndroidMacPlatformLabel": "iOS, Android, Mac",
"iosAndroidPlatformLabel": "iOS, Android",
"isMamEnabled": "Is MAM enabled?",
"itemsCount": "{0} items",
"jailbrokenRootedDevices": "Jailbroken/rooted devices",
"lastReportedDate": "Last reported date",
"lastSync": "Last sync",
"lastSyncGmt": "Last sync (GMT)",
"learnMoreAboutMamAndWipHere": "Learn more about MAM and WIP here.",
"learnMoreAboutWip": "Learn more about app protection policies in Windows 10 and later",
"learnMoreAboutWipHere": "Learn more about WIP here",
"legacy": "Legacy",
"loadMore": "Load more",
"localStorage": "Local Storage",
"mAMShortTitle": "Intune MAM",
"mAMSummaryBladeTitle": "App protection status",
"macPlatformLabel": "Mac",
"mamGSTitle": "Protect Microsoft Office mobile apps (preview)",
"manage": "Manage",
"manageUsers": "Manage Users",
"managedAppCRUDpermission": "Managed Apps Create,Read,Assign,Delete Permission",
"managedAppsOptionText": "Managed apps",
"managedAppsWithOSSharing": "Policy managed apps with OS sharing",
"managedAppsWithOpenInSharing": "Policy managed apps with Open-In/Share filtering",
"managementType": "Management type",
"maxMinValidation": "Maximum OS version has to be lower than the Minimum OS version, when the action is the same.",
"maxOsVersion": "Max OS version",
"maxPinAttempts": "Max PIN attempts",
"maximumAllowedDeviceThreatLevel": "Max allowed device threat level",
"maximumCompanyPortalVersionAge": "Max Company Portal version age (days)",
"mdm": "MDM",
"mdmDeviceId": "MDM Device ID",
"mdmWipInvalidVersionSettings": "One or more apps have invalid minimum/maximum version definitions.
Windows Information Protection With Enrollment policies support specifying only one of the minimum or maximum versions, unless both versions are specified as being equivalent. When only the minimum version is specified, the rule is set for greater than or equal to minimum version. Similarly, when only the maximum version is specified, the rule is set for lesser that equal to the maximum version.",
"mdmWipReport": "MDM Windows Information Protection Report",
"microsoftEdgeOptionText": "Microsoft Edge",
"minAppVersion": "Min app version",
"minMaxValidation": "Minimum OS version has to be lower than the Maximum OS version, when the action is the same.",
"minOsVersion": "Min OS version",
"minPatchVersion": "Min patch version",
"minSdkVersion": "Min SDK version",
"minimumCompanyPortalVersion": "Min Company Portal version",
"minimumDeviceSelection": "At least 1 device has to be selected",
"mobileAppCRUDpermission": "Mobile apps read, create, and assign permission",
"monitor": "Monitor",
"moreApps": "More apps",
"moreAppsTextBoxTooltip": "Add line-of-business apps here if you do not have access to the full Intune portal.",
"mtdConnectorInfoBox1": "Important! Make sure your Mobile Threat Defense Connector is set up in order to properly secure your organization’s data based on threat evaluations from the connected Mobile Threat Defense services.",
"mtdConnectorInfoBox2": "Learn more about Mobile Threat Defense for unenrolled devices.",
"name": "Name",
"networkBoundariesInfoBoxText": "Add /*AppCompat*/ to your list of cloud resources to enable TLS connections by personal apps that connect directly to a cloud resource through an IP address.",
"networkBoundariesInfoParagraph1": "Choose where protected apps can access enterprise data on your network.",
"networkBoundariesInfoParagraph2": "There are no default locations included with WIP, you must add each of your network locations. This area applies to any network endpoint device that gets an IP address in your enterprise’s range and is also bound to one of your enterprise domains, including SMB shares. Local file system locations should just maintain encryption (for example, on local NTFS, FAT, ExFAT).",
"networkPerimeter": "Network perimeter",
"never": "Never",
"newWipeRequestBladeTitle": "Create wipe request",
"newWipeRequestCommandText": "Create wipe request",
"newWipeRequestNotificationText": "Sending wipe request",
"noAppCheckins": "No app check-ins to show",
"noAppsDefinedForPolicyText": "No apps are defined for this policy.",
"noAssignments": "No Assignments",
"noConfigSelection": "Select a platform and app",
"noConfiguredUsers": "No configured users",
"noEmailToDisplay": "No email address available",
"noOptionText": "No",
"noPermissionPropertyLabel": "Already have a subscription?",
"noPermissionPropertyLinkText": "You might need permission",
"noPermissionsToPerfomAction": "You don't have the required permissions to perform this action.",
"noPolicy": "No policy",
"noProtectedUsers": "No protected users",
"noSelection": "Select a platform, app and protection status",
"noSubscriptionPropertyLabel": "You may need a subscription",
"noSubscriptionPropertyLinkText": "Try Microsoft Intune now",
"noUnprotectedUsers": "No unprotected users",
"noUserSelected": "No user selected",
"noneDialerAppOptionText": "None, do not transfer this data between apps",
"noneOptionText": "None",
"notAvailable": "Not Available",
"notCheckedIn": "Not checked in",
"notCheckedInButNotSynced": "Not checked in. On next sync, this app will receive one or more of policies: {0} based on the management level",
"notCompliant": "Not Compliant",
"notProtected": "Not Protected",
"notRequired": "Not required",
"notice": "Notice",
"obfuscatedOptionText": "Obfuscated",
"off": "Off",
"offlineGracePeriod": "Offline grace period",
"ok": "OK",
"on": "On",
"onlineButUnableToCheckin": "Disabled account",
"orgPermission": "Organization read, update permission",
"override": "Override",
"overview": "Overview",
"packageId": "Package ID",
"pendingDeleteContentStateText": "Deleting...",
"pinCharSettingTooltip": "A numeric PIN only allows numeric characters.\n\nA passcode requires all of the following: Alphanumeric characters and allowed symbols.",
"pinToDashboard": "Dummy string, don't translate",
"platformColumnLabel": "Platform",
"platformDropDownLabel": "Platform",
"platformVersion": "Platform version",
"pleaseFixErrors": "Please fix the errors in the sections below!",
"pleaseSelectAtLeastOneFileError": "Please select at least one file before continuing",
"policies": "Policies",
"policyAddErrorNotificationTitle": "Error creating policy {0}",
"policyAppsTargetedColumnLabel": "Apps",
"policyAppsTargetedTitle": "Targeted apps",
"policyDeleteCommandText": "Delete policy",
"policyDeleteErrorNotificationTitle": "Error deleting policy",
"policyId": "Policy ID",
"policyInstanceBladeSubtitle": "CLIENT APP POLICY",
"policyInstanceSettingsSearchBoxPlaceholderText": "Search to filter settings...",
"policyLastUpdatedColumnLabel": "Updated",
"policyManagedAppsOptionText": "Policy managed apps",
"policyManagedAppsWithPasteInOptionText": "Policy managed apps with paste in",
"policyManagedBrowserOptionText": "Intune Managed Browser",
"policyName": "Policy name",
"policyNameColumnLabel": "Policy",
"policyNameRequiredValidationMessage": "Please provide a name for the policy.",
"policyNameTextBoxLabel": "Name",
"policySaveErrorNotificationTitle": "Error saving policy {0}",
"policySaveErrorNotificationTitle2": "Error saving policy",
"policySet": "Policy Set",
"policySetsCRUDpermission": "Policy sets read, create, and assign permissions",
"policySettingsTitle": "Policy settings",
"policyTargetUsersMenuItemText": "Target User Groups",
"policyTargetingGlobal": "Global",
"policyToCreate": "Policy to create",
"policyType": "Policy type",
"policyUserGroupsSettingTitle": "Assignments",
"policyUsersTargetedColumnLabel": "Deployed",
"prefix": "Prefix",
"productName": "Product name",
"properties": "Properties",
"protected": "Protected",
"publicApps": "Public apps",
"publisher": "Publisher",
"quickStartBladeTitle": "Quick start",
"quickStartGetStartedSectionGeneralLinkText": "Mobile application management",
"quickStartGetStartedSectionMdmlessLinkText": "Protect app data on devices not enrolled in Intune",
"quickStartGetStartedSectionText": "Get up to speed on how to protect company data using mobile application management.",
"quickStartGetStartedSectionTitle": "Get started",
"quickStartGetSupportSectionCreateSupportRequestLinkText": "Create a support request",
"quickStartGetSupportSectionMoreAboutIntuneLinkText": "More about Intune support",
"quickStartGetSupportSectionServiceStatusLinkText": "View Intune service status",
"quickStartGetSupportSectionText": "Need help with Intune? The Office 365 admin center is your Intune billing and support center.",
"quickStartGetSupportSectionTitle": "Get support",
"quickStartLearnMoreSectionIntuneLinkText": "Microsoft Intune",
"quickStartLearnMoreSectionMonitoringLinkText": "Monitoring",
"quickStartLearnMoreSectionPolicyLinkText": "Create app policies",
"quickStartLearnMoreSectionPrivacyLinkText": "Privacy and Terms of Use",
"quickStartLearnMoreSectionWipeLinkText": "Selectively wipe company data",
"quickStartOverviewSectionText": "Use mobile application management to manage and protect app data on mobile devices. These can be BYOD devices that you don’t manage, or devices enrolled in Intune or a third-party solution.",
"quickStartOverviewSectionTitle": "Overview",
"readOnlyPolicyWillBeDeprecated": "This policy is read-only and will be deprecated in the future. To edit the policy, you can re-create it by adding a new policy.",
"refresh": "Refresh",
"reloadingPolicies": "Reloading your policies",
"remove": "Remove",
"removeUserGroupsNotificationText": "Removing selected user groups",
"removed": "removed",
"reporting": "Reporting",
"reports": "Reports",
"require": "Require",
"requireDeviceLockOnApps": "Require device lock",
"requireThreatScanOnApps": "Require threat scan on apps",
"requiredField": "This field can't be empty",
"requiredSafetyNetEvaluationType": "Required SafetyNet evaluation type",
"requiredSettings": "Required settings",
"resetPin": "Reset PIN",
"resourceManagement": "Resource management",
"resourceSummaryPoliciesTitle": "App Policies",
"resourcesToBeCreated": "Resources to be created",
"restrictWebContentNo": "Any app",
"restrictWebContentOption2": "{0}: Allow web links in any app",
"safetyNetDeviceAttestation": "SafetyNet device attestation",
"saveAppsNotificationText": "Saving selected apps",
"saveChangesCommandText": "Save",
"savePolicySettingsNotificationText": "Saving policy settings",
"saveReport": "Save Report",
"saveUserGroupsNotificationText": "Saving selected user groups",
"scopeTagDescription": "Use scope tags to filter policies with custom tags.",
"scopeTags": "Scope (Tags)",
"select": "Select",
"selectAppForAppsReport": "Select the app to generate the report for",
"selectApps": "Select apps",
"selectAppsBladeTitle": "Apps",
"selectAppsToTarget": "Select apps to target",
"selectAtLeastOneOption": "Select at least one option",
"selectDevicesBladeTitle": "Select Device",
"selectExcludeGroups": "Select groups to exclude",
"selectExemptApps": "Select apps to exempt",
"selectIncludeGroups": "Select groups to include",
"selectOnePlaceholder": "Select one",
"selectPlatform": "Select a platform",
"selectPlatformForApp": "Select app platform",
"selectPlatformForAppsReport": "Select the platform you want to see apps for",
"selectPolicySettingsBladeTitle": "Settings",
"selectType": "Select Type",
"selectUser": "Select user",
"selectUserProtectionStatus": "Select the user's protection status",
"selectUserValidation": "Select a user",
"selectUserWipeBladeTitle": "User",
"semicolonSeparatedListManufacturers": "In a semicolon-separated list, enter one or more device manufacturers.",
"semicolonSeparatedListModels": "In a semicolon-separated list, enter one or more device models.",
"setting": "Setting",
"settingName": "Setting name",
"settings": "Settings",
"settingsSelectorLabel": "Settings",
"silent": "Silent",
"specificUserIsLicensedIntune": "{0} is licensed for Microsoft Intune.",
"state": "State",
"status": "Status",
"store": "Store",
"success": "Success",
"successfully": "Successfully",
"summary": "Summary",
"summaryLensTitle": "Summary",
"summarySettingsPartRemoteRequestsGroupText": "Remote requests",
"summarySettingsPartWipeRequestsSelectorText": "Wipe requests",
"supportId": "Support ID: {0}",
"tacSettingNamePrefixError": "Names cannot be prefixed by '__'.",
"tacTokenReplacementInfoBox1": "Intune supports string values and token replacement values.",
"tacTokenReplacementInfoBox2": "Learn more about which tokens Intune supports",
"targetPolicyTo": "Target policy to",
"targetToAllAppTypes": "Target to all app types",
"targetedAndroidUserPartTitle": "User status for Android",
"targetedAppConfigTitle": "Targeted App Config",
"targetedAppGroup": "Targeted App Group",
"targetedMacUserPartTitle": "User status for Mac",
"targetedUserPartNoPolicy": "No policy",
"targetedUserPartTitle": "User status",
"targetedUserPartWithPolicy": "Managed by policy",
"targetediOSUserPartTitle": "User status for iOS",
"threatCategory": "Threat category",
"timeColumnLabel": "Time",
"timebombLabel": "Offline interval before app data is wiped (days)",
"timebombToolTip": "After the specified number of days without the device syncing to Intune, Windows will perform a selective wipe on the device, which will unenroll the apps for MAM enrollment and remove encrypted and protected corporate data. The default for this setting is 90 days. Setting this value to 0 will disable the setting.",
"topAndroidConfiguredApps": "Top Configured Android Apps Without Enrollment",
"topAndroidMamApps": "Top Protected Android Apps",
"topIosConfiguredApps": "Top Configured iOS Apps Without Enrollment",
"topIosMamApps": "Top Protected iOS Apps",
"topMacConfiguredApps": "Top Configured Mac Apps Without Enrollment",
"topMacMamApps": "Top Protected iMac Apps",
"type": "Type",
"unconfigured": "Unconfigured",
"unknown": "Unknown",
"unknownValuePlaceholder": "---",
"unmanagedBrowserOptionText": "Unmanaged browser",
"unmanagedDevices": "Unmanaged devices",
"unprotected": "Unprotected",
"userCheckInPerAppGridTitle": "User check-in per app",
"userColumnLabel": "User",
"userConfigReport": "User configuration report",
"userEmail": "User email",
"userGroupAddErrorNotificationTitle": "Error adding one or more user groups to policy",
"userGroupIsNotTargetedText": "No",
"userGroupIsTargetedText": "Yes",
"userGroupNameColumnLabel": "User group",
"userHasNotReceivedAppConfigurations": "The user has not received any app configurations",
"userId": "User ID",
"userImpact": "User impact",
"userImpactGSText": "Assigned iOS and Android users must enter a PIN each time they open an Office app. After 5 failed PIN attempts, users must reset their PIN. If you already require a device PIN, users won't be impacted.",
"userImpactTextDetails": "Assigned iOS and Android users must enter a PIN or use biometrics to access work or school content after a period of inactivity. After 5 failed PIN attempts, user must reset their PIN.If advanced data protection controls are enforced, users will not be able to share work or school content with personal apps or personal accounts and will be required to use Microsoft Edge.
",
"userIsBlocked": "This user is blocked by user-level wipe.",
"userIsLicensedIntune": "User is licensed for Microsoft Intune.",
"userIsLicensedO365": "User is licensed for Office 365.",
"userIsNotLicensedIntune": "User is not licensed for Microsoft Intune. Click here to learn more.",
"userIsNotLicensedIntuneNoLink": "User is not licensed for Microsoft Intune. Click here to learn more.",
"userIsNotLicensedO365": "User is not licensed for Office 365. Click here to learn more.",
"userIsNotLicensedO365NoLink": "User is not licensed for Office 365. Click here to learn more.",
"userLevelWipe": "User-Level Wipe",
"userLicensingUnknownIntune": "Unable to determine if a Microsoft Intune license is assigned to this user. Click here to learn more.",
"userLicensingUnknownIntuneNoLink": "Unable to determine if a Microsoft Intune license is assigned to this user. Click here to learn more.",
"userLicensingUnknownO365": "Unable to determine if an Office 365 license is assigned to this user. Click here to learn more.",
"userLicensingUnknownO365NoLink": "Unable to determine if an Office 365 license is assigned to this user. Click here to learn more.",
"userName": "User name",
"userNotFound": "User not found",
"userNotLicensed": "This user is not licensed for Microsoft Intune.",
"userNotTargetedForAppPolicies": "This user is not targeted for any app policies",
"userPrincipalName": "User principal name",
"userReport": "User report",
"userSelectorDisplayText": "{0} selected",
"userSelectorLabel": "User",
"userStatusesTableGroupingDropdownLabel": "Table grouping",
"userStatusesTableGroupingDropdownTooltip": "Select a column to aggregate data by",
"users": "Users",
"usersCheckedInTitle": "Users checked in",
"usersThatIDontInclude": "What happens to the users that I don't include?",
"usersWithLicense": "Assigned and licensed",
"usersWithPotentiallyHarmfulApps": "Users with potentially harmful apps",
"usersWithoutLicense": "Assigned and not licensed",
"validationResult": "Validation result",
"valueColumnHeader": "Value",
"valueMustNotContainCharsError": "Value must not contain the following characters: {0}",
"versionValidationExample": "Format: [Major].[Minor] or [Major].[Minor].[Build].[Revision]
Example: 1.5 or 1.5.50.101
",
"versionValidationWith2To4Segments": "Format: [Major].[Minor] or [Major].[Minor].[Build] or [Major].[Minor].[Build].[Revision]
Example: 1.5 or 1.5.50 or 1.5.50.101
",
"versionValidationWithDateFormat": "Must be a valid date format (YYYY-MM-DD).",
"warn": "Warn",
"warning": "Warning",
"weMovedToANewLocation": "We moved to a new location",
"windows10AppProtectionPolicy": "Windows 10 and later app protection policy",
"windows10PlatformLabel": "Windows 10 and later",
"windowsPlatformLabel": "Windows",
"windowsProtectionReport": "Windows protection report",
"wipAddAppsSubtitle": "Add recommended Microsoft apps, or manually add store or desktop apps to be allowed in this policy.",
"wipAllowIndexingTitle": "Allow Windows Search Indexer to search encrypted items",
"wipAllowIndexingTooltip": "Allows or disallows the indexing of items. This switch is for the Windows Search Indexer, which controls whether it will index items that are encrypted, such as the Windows Information Protection (WIP) protected files.",
"wipAllowedAppsInfo": "These are the apps that must adhere to this policy.",
"wipAppLockerFileUploadInfoBaloonText": "Allowed files are AppLocker files, which are XML.",
"wipAppLockerFileUploadInfoText": "Please specify the file path to the file you want to import.",
"wipCorpIdentityTooltip": "This field should contain only the primary domain. Any additional domains are to be added as 'Protected domains' under the 'Network perimeter' in the 'Advanced settings' tab.",
"wipDesktopApps": "Desktop apps",
"wipExemptAppsInfo": "These apps are exempt from this policy, and can freely access corporate data.",
"wipLearnMore": "Learn more about WIP",
"wipLearningTitle": "App learning report for Windows Information Protection",
"wipMaxVersion": "Max Version",
"wipMinVersion": "Min Version",
"wipNoAppsSelected": "No apps selected.",
"wipPolicyAddAps": "Add apps",
"wipPolicyExemptAppsTitle": "Exempt apps",
"wipPolicyImportApps": "Import apps",
"wipPolicyProtectedAppsTitle": "Protected apps",
"wipPotocolsWarningMessage": "Caution: modifying these settings changes how Intune blocks or allows data transfer to other applications. Do not modify these settings unless you understand the potential for data leaks. You can learn more here.",
"wipPotocolsWarningMessageIos": "Caution: modifying these settings changes how Intune blocks or allows data transfer to other applications. Do not modify these settings unless you understand the potential for data leaks. You can learn more here.
For newer policies, telecommunication protocols would no longer be added to the default exempt apps list. If the application is using a newer version of Intune SDK (Version 12.7.0+), use the Transfer telecommunications data to setting under Send org data to other apps to address telecommunication transfer settings. For applications using an older version of Intune SDK, add telecommunication protocol (tel and telprompt) to this list. Learn More.",
"wipProtectedAppsInfo": "These are the apps that must adhere to this policy.",
"wipRecommendedApps": "Recommended apps",
"wipSMBStringListAddTitle": "Add encrypted file extensions",
"wipSMBStringListTitle": "Encrypted file extensions",
"wipSMBStringTooltip": "Specifies a list of file extensions, so that files with these extensions are encrypted when copying from an SMB share within the corporate boundary as defined in the network location list. When this policy is not specified, the existing auto-encryption behavior is applied. When this policy is configured, only files with the extensions in the list will be encrypted.",
"wipStoreApps": "Store apps",
"wipWeAppsListInfo": "These apps are allowed to access your enterprise data and will interact differently when used with unallowed, non-enterprise aware, or personal-only apps. Only enlightened apps are allowed on devices without MDM.",
"wipWeWarning": "Before Windows 10 and later policies can take effect, set the MAM URLs in AAD to Microsoft Intune by choosing “Restore default URLs” and defining the user scope.",
"wipWebsiteLearningTitle": "Website learning for Windows Information Protection",
"wipeData": "Wipe data",
"wipeDays": "Wipe data (days)",
"wipeFailed": "Wipe failed",
"wipeFailedLabel": "Failed",
"wipePending": "Wipe pending",
"wipePendingLabel": "Pending",
"wipeRequestErrorNotificationTitle": "Error sending wipe request",
"wipeRequestStatusSummaryPartTitle": "Wipe requests",
"wipeRequestsBladeTitle": "Wipe requests",
"wipeRequestsSearchPlaceholder": "Search by user, app, or device name",
"wipeStatusColumnLabel": "Status",
"wipeSuccess": "Wipe success",
"wipeSuccessfulLabel": "Complete",
"withoutMdm": "Without MDM",
"wordListSeparator": "Dummy string, don't translate",
"wouldYouLikeToSaveTheReportQuestion": "Would you like to save the report?",
"xMLInvalid": "XML format is invalid",
"yesOptionText": "Yes",
"yourDataIsBeingDownloadedEllipsis": "Your data is being downloaded, this can take a while...",
"yourDataIsBeingDownloadedMinutes": "Your data is being downloaded, this can take a few minutes...",
"yourProtectionLevel": "Your protection level",
"basics": "Basics",
"modeTableHeader": "Group mode",
"appAssignmentMsg": "Group",
"installContextLabel": "Install Context",
"allDevices": "All devices",
"allUsers": "All users",
"uninstallOnRemoval": "Uninstall on device removal",
"installAsRemovable": "Install as removable",
"channel": null,
"languageLabel": null,
"admin": "Administrator",
"standard": "Standard",
"latest": "Latest",
"deviceConfigurationTitle": "Device configuration",
"deviceComplianceTitle": "Device compliance",
"clientAppsTitle": "Client apps",
"policySetsTitle": "Policy sets",
"applicabilityRules": "Applicability Rules",
"windowsEnrollmentTitle": "Windows enrollment",
"appleEnrollmentTitle": "Apple enrollment",
"targetedAppLabel": "Targeted app",
"configurationSettingsTitle": "Configuration Settings",
"applicationConfiguration": "General app configuration",
"outlookConfigTitle": "Email account configuration",
"additionalConfiguration": "Additional configuration",
"win32DependenciesAutoInstall": "Automatically Install",
"win32DependenciesDetect": "Detect",
"dependencyTitle": "Add dependency",
"dependencyCategory": "Dependencies",
"supersedenceCategory": "Supersedence (preview)",
"win32SupersedenceReplace": "Replace",
"win32SupersedenceUpdate": "Update",
"deviceLimit": "Device limit",
"licenseTypeDevice": "Device",
"licenseTypeUser": "User"
},
"Languages": {
"ar-aE": "Arabic (U.A.E.)",
"ar-bH": "Arabic (Bahrain)",
"ar-dZ": "Arabic (Algeria)",
"ar-eG": "Arabic (Egypt)",
"ar-iQ": "Arabic (Iraq)",
"ar-jO": "Arabic (Jordan)",
"ar-kW": "Arabic (Kuwait)",
"ar-lB": "Arabic (Lebanon)",
"ar-lY": "Arabic (Libya)",
"ar-mA": "Arabic (Morocco)",
"ar-oM": "Arabic (Oman)",
"ar-qA": "Arabic (Qatar)",
"ar-sA": "Arabic (Saudi Arabia)",
"ar-sY": "Arabic (Syria)",
"ar-tN": "Arabic (Tunisia)",
"ar-yE": "Arabic (Yemen)",
"az-cyrl": "Azerbaijani (Cyrillic, Azerbaijan)",
"az-latn": "Azerbaijani (Latin, Azerbaijan)",
"bn-bD": "Bangla (Bangladesh)",
"bn-iN": "Bangla (India)",
"bs-cyrl": "Bosnian (Cyrillic)",
"bs-latn": "Bosnian (Latin)",
"zh-cN": "Chinese (PRC)",
"zh-hK": "Chinese (Hong Kong S.A.R.)",
"zh-mO": "Chinese (Macao S.A.R.)",
"zh-sG": "Chinese (Singapore)",
"zh-tW": "Chinese (Taiwan)",
"hr-bA": "Croatian (Latin)",
"hr-hR": "Croatian (Croatia)",
"nl-bE": "Dutch (Belgium)",
"nl-nL": "Dutch (Netherlands)",
"en-aU": "English (Australia)",
"en-bZ": "English (Belize)",
"en-cA": "English (Canada)",
"en-cabn": "English (Caribbean)",
"en-iE": "English (Ireland)",
"en-iN": "English (India)",
"en-jM": "English (Jamaica)",
"en-mY": "English (Malaysia)",
"en-nZ": "English (New Zealand)",
"en-pH": "English (Republic of the Philippines)",
"en-sG": "English (Singapore)",
"en-tT": "English (Trinidad and Tobago)",
"en-uK": "English (United Kingdom)",
"en-uS": "English (United States)",
"en-zA": "English (South Africa)",
"en-zW": "English (Zimbabwe)",
"fr-bE": "French (Belgium)",
"fr-cA": "French (Canada)",
"fr-cH": "French (Switzerland)",
"fr-fR": "French (France)",
"fr-lU": "French (Luxembourg)",
"fr-mC": "French (Monaco)",
"de-aT": "German (Austria)",
"de-cH": "German (Switzerland)",
"de-dE": "German (Germany)",
"de-lI": "German (Liechtenstein)",
"de-lU": "German (Luxembourg)",
"iu-cans": "Inuktitut (Syllabics, Canada)",
"iu-latn": "Inuktitut (Latin, Canada)",
"it-cH": "Italian (Switzerland)",
"it-iT": "Italian (Italy)",
"ms-bN": "Malay (Brunei Darussalam)",
"ms-mY": "Malay (Malaysia)",
"mn-cN": "Mongolian (Traditional Mongolian, PRC)",
"mn-mN": "Mongolian (Cyrillic, Mongolia)",
"no-nB": "Norwegian, Bokmål (Norway)",
"no-nn": "Norwegian, Nynorsk (Norway)",
"pt-bR": "Portuguese (Brazil)",
"pt-pT": "Portuguese (Portugal)",
"quz-bO": "Quechua (Bolivia)",
"quz-eC": "Quechua (Ecuador)",
"quz-pE": "Quechua (Peru)",
"smj-nO": "Sami, Lule (Norway)",
"smj-sE": "Sami, Lule (Sweden)",
"se-fI": "Sami, Northern (Finland)",
"se-nO": "Sami, Northern (Norway)",
"se-sE": "Sami, Northern (Sweden)",
"sma-nO": "Sami, Southern (Norway)",
"sma-sE": "Sami, Southern (Sweden)",
"smn": "Sami, Inari (Finland)",
"sms": "Sami, Skolt (Finland)",
"sr-Cyrl-bA": "Serbian (Cyrillic)",
"sr-Cyrl-rS": "Serbian (Cyrillic, Serbia and Montenegro)",
"sr-Latn-bA": "Serbian (Latin)",
"sr-Latn-rS": "Serbian (Latin, Serbia)",
"dsb": "Lower Sorbian (Germany)",
"hsb": "Upper Sorbian (Germany)",
"es-es-tradnl": "Spanish (Spain, Traditional Sort)",
"es-aR": "Spanish (Argentina)",
"es-bO": "Spanish (Bolivia)",
"es-cL": "Spanish (Chile)",
"es-cO": "Spanish (Colombia)",
"es-cR": "Spanish (Costa Rica)",
"es-dO": "Spanish (Dominican Republic)",
"es-eC": "Spanish (Ecuador)",
"es-eS": "Spanish (Spain)",
"es-gT": "Spanish (Guatemala)",
"es-hN": "Spanish (Honduras)",
"es-mX": "Spanish (Mexico)",
"es-nI": "Spanish (Nicaragua)",
"es-pA": "Spanish (Panama)",
"es-pE": "Spanish (Peru)",
"es-pR": "Spanish (Puerto Rico)",
"es-pY": "Spanish (Paraguay)",
"es-sV": "Spanish (El Salvador)",
"es-uS": "Spanish (United States)",
"es-uY": "Spanish (Uruguay)",
"es-vE": "Spanish (Venezuela)",
"sv-fI": "Swedish (Finland)",
"uz-cyrl": "Uzbek (Cyrillic, Uzbekistan)",
"uz-latn": "Uzbek (Latin, Uzbekistan)",
"af": "Afrikaans (South Africa)",
"sq": "Albanian (Albania)",
"am": "Amharic (Ethiopia)",
"hy": "Armenian (Armenia)",
"as": "Assamese (India)",
"ba": "Bashkir (Russia)",
"eu": "Basque (Basque)",
"be": "Belarusian (Belarus)",
"br": "Breton (France)",
"bg": "Bulgarian (Bulgaria)",
"ca": "Catalan (Catalan)",
"co": "Corsican (France)",
"cs": "Czech (Czech Republic)",
"da": "Danish (Denmark)",
"prs": "Dari (Afghanistan)",
"dv": "Divehi (Maldives)",
"et": "Estonian (Estonia)",
"fo": "Faroese (Faroe Islands)",
"fil": "Filipino (Philippines)",
"fi": "Finnish (Finland)",
"gl": "Galician (Galician)",
"ka": "Georgian (Georgia)",
"el": "Greek (Greece)",
"gu": "Gujarati (India)",
"ha": "Hausa (Latin, Nigeria)",
"he": "Hebrew (Israel)",
"hi": "Hindi (India)",
"hu": "Hungarian (Hungary)",
"is": "Icelandic (Iceland)",
"ig": "Igbo (Nigeria)",
"id": "Indonesian (Indonesia)",
"ga": "Irish (Ireland)",
"xh": "isiXhosa (South Africa)",
"zu": "isiZulu (South Africa)",
"ja": "Japanese (Japan)",
"kn": "Kannada (India)",
"kk": "Kazakh (Kazakhstan)",
"km": "Khmer (Cambodia)",
"rw": "Kinyarwanda (Rwanda)",
"sw": "Kiswahili (Kenya)",
"kok": "Konkani (India)",
"ko": "Korean (Korea)",
"ky": "Kyrgyz (Kyrgyzstan)",
"lo": "Lao (Lao P.D.R.)",
"lv": "Latvian (Latvia)",
"lt": "Lithuanian (Lithuania)",
"lb": "Luxembourgish (Luxembourg)",
"mk": "Macedonian (North Macedonia)",
"ml": "Malayalam (India)",
"mt": "Maltese (Malta)",
"mi": "Maori (New Zealand)",
"mr": "Marathi (India)",
"moh": "Mohawk (Mohawk)",
"ne": "Nepali (Nepal)",
"oc": "Occitan (France)",
"or": "Odia (India)",
"ps": "Pashto (Afghanistan)",
"fa": "Persian",
"pl": "Polish (Poland)",
"pa": "Punjabi (India)",
"ro": "Romanian (Romania)",
"rm": "Romansh (Switzerland)",
"ru": "Russian (Russia)",
"sa": "Sanskrit (India)",
"st": "Sesotho sa Leboa (South Africa)",
"tn": "Setswana (South Africa)",
"si": "Sinhala (Sri Lanka)",
"sk": "Slovak (Slovakia)",
"sl": "Slovenian (Slovenia)",
"sv": "Swedish (Sweden)",
"syr": "Syriac (Syria)",
"tg": "Tajik (Cyrillic, Tajikistan)",
"ta": "Tamil (India)",
"tt": "Tatar (Russia)",
"te": "Telugu (India)",
"th": "Thai (Thailand)",
"bo": "Tibetan (PRC)",
"tr": "Turkish (Turkey)",
"tk": "Turkmen (Turkmenistan)",
"uk": "Ukrainian (Ukraine)",
"ur": "Urdu (Islamic Republic of Pakistan)",
"vi": "Vietnamese (Vietnam)",
"cy": "Welsh (United Kingdom)",
"wo": "Wolof (Senegal)",
"ii": "Yi (PRC)",
"yo": "Yoruba (Nigeria)"
},
"AppProtection": {
"allAppTypes": "Target to all app types",
"androidPlatformLabel": "Android",
"appsInAndroidWorkProfile": "Apps in Android Work Profile",
"appsOnIntuneManagedDevices": "Apps on Intune managed devices",
"appsOnUnmanagedDevices": "Apps on unmanaged devices",
"iOSPlatformLabel": "iOS/iPadOS",
"iosAndroidMacPlatformLabel": "iOS, Android, Mac",
"iosAndroidPlatformLabel": "iOS, Android",
"macPlatformLabel": "Mac",
"notAvailable": "Not Available",
"windows10PlatformLabel": "Windows 10 and later",
"withEnrollment": "With enrollment",
"withoutEnrollment": "Without enrollment"
},
"Inputs": {
"accountDomain": "Account domain",
"accountDomainHint": "e.g. contosodomain",
"accountDomainInfoBalloon": "Specify the user’s account domain.",
"accountTypeInfoBalloon": "Specify the account type being configured based on the authentication model",
"allowContactSetting": "Allow user to change contact setting",
"allowContactSyncInfoBalloon": "Specify if the user is allowed to change the contact sync setting",
"allowUserChange": "Allow user to change setting",
"androidPackageNamePreset": "com.microsoft.word",
"androidPackageNameValidation": "Please enter a package name similar to com.microsoft.word",
"androidUrlValidation": "Enter a valid url similar to https://play.google.com/store/apps/details?id=com.microsoft.bing&hl=en",
"appInstallContext": "App install context",
"appUrlLabel": "Appstore URL",
"appleUrlValidation": "Enter a valid url similar to https://www.itunes.apple.com/us/app/microsoft-excel/id586683407?mt=8",
"applicableDeviceType": "Applicable device type",
"assignmentActionLabel": "Mode",
"authenticationMethodInfoBalloon": "Specify the authentication method for the user",
"authenticationMetod": "Authentication method",
"authenticationType": "Authentication type",
"authenticationTypeInfoBalloon": "Specify the authentication type for the user",
"availableLicenseCount": "Available licenses",
"basicAuth": "Basic authentication",
"biometricsInfoBalloon": "Biometrics, such as TouchID or FaceID, can be required for users to access the app on their device. When required, biometrics are used in addition to the authentication method selected in this profile. This setting should not be enabled when Intune App Protection Policies are deployed, as the app protection policy includes access requirements prior to accessing managed data. Enabling both will result in multiple access prompts to access Outlook mobile. When set as not configured, the default app setting is set to Off. ",
"bookNameLabel": "Book name",
"bundleDescriptionHint": "Enter a description that describes the apps included.",
"calendar": "Calendar",
"categoryLabel": "Category",
"categoryNameLabel": "Default name",
"certProfileType": "Certificate profile type",
"certificate": "Certificate",
"certificates": "Certificates",
"commandLineLabel": "Command-line arguments",
"commandLineSizeHint": "The maximum length of the command-line arguments text is 1024 characters",
"configurationSettingsFormatLabel": "Configuration settings format",
"configurationSettingsLabel": "Settings format",
"contactSync": "Save Contacts",
"contactSyncInfoBalloon": "Saving contacts to the mobile device’s native address book allows new calls and text messages to be linked with the user’s existing Outlook contacts. When set as not configured, the default app setting is set to Off.",
"contacts": "Contacts",
"createdDateTime": "Created",
"defaultCategoryHint": "Default categories cannot be changed",
"deploySMimeCertsFromIntune": "Deploy S/MIME certificates from Intune",
"descriptionGenericLabel": "Description",
"descriptionHint": "Enter a description...",
"descriptionLabel": "Description",
"descriptionSizeHint": "The length of the description should be no longer than 10,000 characters",
"developerLabel": "Developer",
"developerSizeHint": "The maximum length of the developer name is 256 characters.",
"disable": "Disable",
"disabled": "Disabled",
"displayNameLabel": "Name",
"displayVersionHint": "Enter the app version",
"displayVersionLabel": "App Version",
"eBookCategoryNameLabel": "Default name",
"emailAccount": "Email account name",
"emailAccountHint": "e.g. Corporate Email",
"emailAccountInfoBalloon": "Specify the display name for the email account as it will appear to users on their devices",
"emailAddressAttribute": "Email address attribute from AAD",
"emailAddressInfoBalloon": "Specify the email address to be used for sending and receiving mail",
"emailServer": "Email Server",
"emailServerHint": "e.g. mail.contoso.com",
"emailServerInfoBalloon": "Specify the host name of your Exchange Server",
"enable": "Enable",
"enableSMime": "Enable S/MIME",
"enabled": "Enabled",
"encryptAllEmails": "Encrypt all emails",
"encryptionCertificates": "Encryption certificates",
"endUserNotifications": "End-user notifications",
"enrollmentTypeLabel": "Device enrollment type",
"externalRecipients": "External recipients MailTip",
"externalRecipientsInfoBalloon": "The External Recipients MailTip is displayed if the sender adds a recipient that's external or adds a distribution group that contains external recipients. This MailTip informs senders if a message they're composing will leave the organization, helping them make the correct decisions about wording, tone, and content. Available only for Exchange Online accounts and on-premises accounts leveraging hybrid modern authentication. When set as not configured, the default app setting is set to On.",
"focusedInbox": "Focused Inbox",
"focusedInboxInfoBalloon": "Focused Inbox separates your inbox into two tabs—Focused and Other. Your most important emails are on the Focused tab while the rest remain easily accessible—but out of the way—on the Other tab. When set as not configured, the default app setting is set to On. ",
"gmailNineAmountOfEmail": "Amount of email to synchronize",
"gmailNineAuthenticationMethodInfoBalloon": "Select how you want users to authenticate to the email server. Use certificates to provide the most secure and seamless experience for end users. Certificate based authentication is not yet available because SCEP and PKCS certificate profiles for device owner devices are not available. ",
"gmailNineCertificateUPNInfoBalloon": "The certificate must include user principal name (UPN) as a subject alternative name.",
"gmailNineEmailAddressInfoBalloon": "The attribute Intune gets from Azure AD to dynamically generate the email address that will be used by the profile e.g. MyName@contoso.com (UPN). Learn more about AAD attributes for email profiles.",
"gmailNineEmailServerInfoBalloon": "The Exchange location (URL) of the email server to which the app you specified connects to get email.",
"gmailNineEmailSynchronizeInfoBalloon": "Control how much email the client will synchronize.",
"gmailNineSSLInfoBalloon": "Enable SSL to help secure all communications with the email server.",
"gmailNineUsernameInfoBalloon": "The attribute Intune gets from Azure AD to dynamically generate the username that will be used by the profile e.g. MyName@contoso.com (UPN) or MyName (username). Learn more about AAD attributes for email profiles.",
"ignoreVersionDetection": "Ignore app version",
"informationUrlLabel": "Information URL",
"installAsManaged": "Install as managed",
"installationSourceLabel": "App type",
"isFeatured": "Show this as a featured app in the Company Portal",
"isMAMEnabledToggleLabel": "Yes",
"lastModifiedDateTime": "Last updated Time",
"ldapUrl": "LDAP URL",
"licensingType": "Supports device context assignment",
"microsoft": "Microsoft",
"minimumOperationSystem": "Minimum operating system",
"modernAuth": "Modern authentication",
"nameHint": "Enter a name",
"nameLabel": "Name",
"nameSizeHint": "The maximum length of the name is 512 characters.",
"notConfigured": "Not configured",
"notesLabel": "Notes",
"notesSizeHint": "The maximum length of the notes text is 1024 characters.",
"notificationType": "Notification type",
"oneDay": "One Day",
"oneMonth": "One Month",
"oneWeek": "One Week",
"outlookSMimeSettings": "Outlook S/MIME settings",
"ownerLabel": "Owner",
"ownerSizeHint": "The maximum length of the owner name is 256 characters.",
"packageNameLabel": "Package name",
"pivCredentialNotConfigured": "You haven't selected a derived credential issuer for your tenant. You'll need to configure one before you can successfully apply this policy to devices.",
"platformLabel": "Platform",
"policyDescriptionLabel": "Description",
"policyNameLabel": "Name",
"primarySMTPAddress": "Primary SMTP Address",
"privacyUrlLabel": "Privacy URL",
"publisherHint": "Enter a publisher name",
"publisherLabel": "Publisher",
"publisherSizeHint": "The length of the publisher name should be between 2 and 1024 characters (inclusive)",
"require": "Require",
"requireBiometrics": "Require Biometrics to access app",
"sAMAccountName": "sAMAccountName",
"scopeTagsRequired": "At least one scope tag is required",
"searchAppLabel": "Select app",
"searchAppLinkText": "Search the App Store",
"selectAAD": "Select an AAD attribute",
"selectAppFileLabel": "Select file",
"selectAppFileLinkText": "Select app package file",
"selectAppFileToUpdateLabel": "Select file to update",
"selectAuthMethod": "Select an authentication method",
"selectAuthType": "Select an authentication type",
"selectCertificate": "Select a certificate",
"signAllEmails": "Sign all emails",
"signingCertificates": "Signing certificates",
"ssl": "SSL",
"suiteDescriptionLabel": "Suite Description",
"suiteNameLabel": "Suite Name",
"tasks": "Tasks",
"threeDays": "Three Days",
"totalLicenseCount": "Total licenses",
"twoWeeks": "Two Weeks",
"unifiedAssignmentsLabel": "Assign to:",
"unlimited": "Unlimited",
"urlHint": "Enter a valid url",
"useManagedBrowserHint": "Android and iOS only. Learn more",
"useManagedBrowserLabel": "Require a managed browser to open this link",
"userPrinicipalName": "User Principal Name",
"username": "Username",
"usernameAttribute": "Username attribute from AAD",
"usernameAttributreInfoBalloon": "Specify the User Principal Name for the email profile that will be used to authenticate the account",
"usernamePassword": "Username and password",
"webAppUrlHint": "Enter a valid url beginning with http:// or https://",
"webAppUrlLabel": "App URL",
"webAppUrlSizeHint": "The maximum length of the app url is 1024 characters",
"windowsUrlValidation": "Enter a valid url similar to https://www.microsoft.com/en-us/store/p/lync/9wzdncrfhvhm",
"xMLDataEntered": "XML Data Entered",
"xmlFormatInvalid": "XML policy format is invalid.",
"xmlTooLarge": "Input size must be less than 1 MB."
},
"Tooltips": {
"PolicySettings": {
"TouchId1": {
"android": "On Android, you can allow using fingerprint identification instead of a PIN. Users are prompted to provide their fingerprints when they access this app with their work accounts.",
"iOS": "On iOS/iPadOS devices, you can allow using fingerprint identification instead of a PIN. Users are prompted to provide their fingerprints when they access this app with their work accounts.",
"mac": "On Mac devices, you can allow using fingerprint identification instead of a PIN. Users are prompted to provide their fingerprints when they access this app with their work accounts."
},
"appSharingFromLevel1": "Select one of the following options to specify the apps that this app can receive data from:",
"appSharingFromLevel2": "{0}: Only allow receiving data in org documents or accounts from other policy managed apps",
"appSharingFromLevel3": "{0}: Allow receiving data in org documents or accounts from any app",
"appSharingFromLevel4": "{0}: Do not allow receiving data in org documents or accounts from any app",
"appSharingFromLevel5": "{0}: Allow data transfer from any app and treat all incoming data without an user identity as Org data.",
"appSharingToLevel1": "Select one of the following options to specify the apps that this app can send data to:",
"appSharingToLevel2": "{0}: Only allow sending org data to other policy managed apps",
"appSharingToLevel3": "{0}: Allow sending org data to any app",
"appSharingToLevel4": "{0}: Do not allow sending org data to any app",
"appSharingToLevel5": "{0}: Only allow transfer only to other policy managed apps and file transfer to other MDM managed apps on enrolled devices",
"appSharingToLevel6": "{0}: Allow transfer only to other policy managed apps and filter OS Open-in/Share dialogs to only display policy managed apps",
"conditionalEncryption1": "Select {0} to disable app encryption for internal app storage when device encryption is detected on an enrolled device.",
"conditionalEncryption2": "Note: Intune can only detect device enrollment with Intune MDM. External app storage will still be encrypted to ensure data cannot be accessed by unmanaged applications.",
"contactSyncMac": "If disabled, apps cannot save contacts to the native address book.",
"contactsSync": "Choose Block to prevent policy managed apps from saving data to the native Contacts and Calendar apps on the device. If you choose Allow, the app can save data to the native Contacts and Calendar apps on the device, when those features are enabled within the policy managed app.
Outlook provides additional control capability within app configuration policies for syncing to the native Contacts and Calendar apps; for more information, see https://aka.ms/omappconfig .",
"encryptionAndroid1": "For apps that are associated with an Intune mobile application management policy, encryption is provided by Microsoft. Data is encrypted synchronously during file I/O operations according to the setting in the mobile application management policy. Managed apps on Android use AES-128 encryption in CBC mode utilizing the platform cryptography libraries. The encryption method is not FIPS 140-2 compliant. SHA-256 encryption is supported as an explicit instruction using the SigAlg parameter and will only work on devices 4.2 and above. Content on the device storage is always be encrypted.",
"encryptionAndroid2": "When you require encryption in your app policy, the end-user is required to setup and use a PIN to access their device. If there is not a PIN set up for device access, the apps will not launch and the end-user will instead see a message, which says, “Your company has required that you must first enable a device PIN to access this application.\"",
"encryptionMac1": "For apps that are associated with an Intune mobile application management policy, encryption is provided by Microsoft. Data is encrypted synchronously during file I/O operations according to the setting in the mobile application management policy. Managed apps on Mac use AES-128 encryption in CBC mode utilizing the platform cryptography libraries. The encryption method is not FIPS 140-2 compliant. SHA-256 encryption is supported as an explicit instruction using the SigAlg parameter and will only work on devices 4.2 and above. Content on the device storage is always be encrypted.",
"faceId1": "Where applicable, you can allow the use of face identification instead of PIN. Users are prompted to provide face identification when they access this app with their work accounts.",
"faceId2": "Select Yes to allow face identification instead of a PIN for app access.",
"managementLevelsAndroid1": "Use this option to specify whether this policy applies to Android device administrator devices, Android Enterprise devices, or unmanaged devices.",
"managementLevelsAndroid2": "{0}: Unmanaged devices are devices where Intune MDM management has not been detected. This includes 3rd party MDM vendors.",
"managementLevelsAndroid3": "{0}: Intune-managed devices using the Android Device Administration API.",
"managementLevelsAndroid4": "{0}: Intune-managed devices using Android Enterprise Work Profiles or Android Enterprise Full Device Management.",
"managementLevelsIos1": "Use this option to specify whether this policy applies to MDM managed devices or unmanaged devices.",
"managementLevelsIos2": "{0}: Unmanaged devices are devices where Intune MDM management has not been detected. This includes 3rd party MDM vendors.",
"managementLevelsIos3": "{0}: Managed devices are managed by Intune MDM.",
"minAppVersion": "Define the required minimum App version number that a user should have to gain secure access to the app.",
"minAppVersionWarning": "Define the recommended minimum App version number that a user should have for secure access to the app.",
"minOsVersion": "Define the required minimum OS version number that a user should have to gain secure access to the app.",
"minOsVersionWarning": "Define the recommended minimum OS version number that a user should have to gain secure access to the app.",
"minPatchVersion": "Define the oldest required Android security patch level a user can have to gain secure access to the app.",
"minPatchVersionWarning": "Define the oldest recommended Android security patch level a user can have for secure access to the app.",
"minSdkVersion": "Define the required minimum Intune Application Protection Policy SDK version that a user should have to gain secure access to the app.",
"requireAppPinDefault": "Select Yes to disable the app PIN when a device lock is detected on an enrolled device.
",
"targetAllApps1": "Use this option to target your policy to apps on devices of any management state.",
"targetAllApps2": "During policy conflict resolution this setting will be superseded if a user has policy targeted for a specific management state.",
"touchId2": "Select {0} to require fingerprint identity instead of a PIN for app access."
},
"Tap": {
"pinResetAfterNumberOfDays": "Specify the number of days that must pass before the user must reset the PIN.",
"previousPinBlockCount": "This setting specifies the number of previous PINs that Intune will maintain. Any new PINs must be different from those that Intune is maintaining."
},
"WipPolicySettings": {
"25": "",
"allowWindowsSearch": "This will allow Windows Search to continue to search through encrypted data.",
"authoritativeIpRanges": "Enable this setting if you want to override Windows auto-detection of IP ranges.",
"authoritativeProxyServers": "Enable this setting if you want to override Windows auto-detection of proxy servers.",
"checkInput": "Check input for validity",
"dataRecoveryCert": "A recovery certificate is a special Encrypting File System (EFS) certificate you can use to recover encrypted files if your encryption key is lost or damaged. You need to create the recovery certificate, and specify it here. More information is here",
"enterpriseCloudResources": "Specify cloud resources to be treated as corporate and be protected with Windows Information Protection policy. Multiple resources can be specified by separating individual entries with the '|' character.
If you have a proxy configured in your company, then you can specify the proxy through which traffic to cloud resources you specified will be routed.
URL[,Proxy]|URL[,Proxy]
Without proxy: contoso.sharepoint.com|contoso.visualstudio.com
With proxy: contoso.sharepoint.com,proxy.contoso.com|contoso.visualstudio.com,proxy.contoso.com
",
"enterpriseIPv4Ranges": "Specify the IPv4 ranges that form your corporate network. These are used in conjunction with the Enterprise Network Domain Names that you specify to define your corporate network boundary.
This setting is required to have Windows Information Protection enabled.
Multiple ranges can be specified by separating individual entries with a comma.
For example: 3.4.0.1-3.4.255.255,192.168.1.1-192.168.255.255
",
"enterpriseIPv6Ranges": "Specify the IPv6 ranges that form your corporate network. These are used in conjunction with the Enterprise Network Domain Names that you specify to define your corporate network boundary.
Multiple ranges can be specified by separating individual entries with a comma.
For example: 2001:4898:dc05::-2001:4898:dc05:ffff:ffff:ffff:ffff:ffff,2a01:110::-2a01:110:7fff:ffff:ffff:ffff:ffff:ffff
",
"enterpriseInternalProxyServers": "If you have a proxy configured in your company, then you can specify the proxy through which traffic to cloud resources specified in the Enterprise Cloud Resources settings are to be routed.
Multiple values can be specified by separating individual entries with a semi-colon.
For example: contoso.internalproxy1.com;contoso.internalproxy2.com
",
"enterpriseNetworkDomainNames": "Specify the DNS names that form your corporate network. These are used in conjunction with the IP ranges that you specify to define your corporate network boundary. Multiple values can be specified by separating individual entries with a comma.
This setting is required to have Windows Information Protection enabled.
For example: corp.contoso.com,region.contoso.com
",
"enterpriseProtectedDomainNames": "Specify the DNS names that form your corporate network. These are used in conjunction with the IP ranges that you specify to define your corporate network boundary. Multiple values can be specified by separating individual entries with a '|'.
This setting is required to have Windows Information Protection enabled.
For example: corp.contoso.com|region.contoso.com
",
"enterpriseProxyServers": "If you have external facing proxies in your corporate network, specify them here. When specifying a proxy server address, you should also specify the port through which traffic should be allowed and protected through Windows Information Protection.
Note: This list must not include servers in your Enterprise Internal Proxy Server list. Multiple values can be specified by separating individual entries with a semi-colon.
For example: proxy.contoso.com:80;proxy2.contoso.com:80
",
"maxInactivityTime1": "Specifies the maximum amount of time (in minutes) allowed after the device is idle that will cause the device to become PIN or password locked. Users can select any existing timeout value less than the specified maximum time in the Settings app. Note the Lumia 950 and 950XL have a maximum timeout value of 5 minutes, regardless of the value set by this policy.",
"maxInactivityTime2": "0 (default) - No timeout is defined. The default of '0' is interpreted as 'No timeout is defined.'",
"maxPasswordAttempts1": "This policy has different behaviors on the mobile device and desktop.",
"maxPasswordAttempts2": "On a mobile device, when the user reaches the value set by this policy, then the device is wiped.",
"maxPasswordAttempts3": "On a desktop, when the user reaches the value set by this policy, it is not wiped.Instead, the desktop is put on BitLocker recovery mode, which makes the data inaccessible but recoverable.If BitLocker is not enabled, then the policy cannot be enforced.",
"maxPasswordAttempts4": "Prior to reaching the failed attempts limit, the user is sent to the lock screen and warned that more failed attempts will lock their computer.When the user reaches the limit, the device automatically reboots and shows the BitLocker recovery page.This page prompts the user for the BitLocker recovery key.",
"maxPasswordAttempts5": "0 (default) - The device is never wiped after an incorrect PIN or password is entered.",
"maxPasswordAttempts6": "Most secure value is 0 if all policy values = 0; otherwise, Min policy value is the most secure value.",
"mdmDiscoveryUrl": "Specify the URL for the MDM enrollment endpoint that users who enroll to MDM will use. By default, this is specified for Intune.",
"minimumPinLength1": "Integer value that sets the minimum number of characters required for the PIN. Default value is 4. The lowest number you can configure for this policy setting is 4. The largest number you can configure must be less than the number configured in the Maximum PIN length policy setting or the number 127, whichever is the lowest.",
"minimumPinLength2": "If you configure this policy setting, the PIN length must be greater than or equal to this number. If you disable or do not configure this policy setting, the PIN length must be greater than or equal to 4.",
"name": "The name of this network boundary",
"neutralResources": "If you have authentication redirection endpoints in your company, specify those here. The locations specified here are considered to be either personal or corporate depending on the context of the connection prior to the redirection.
Multiple values can be specified by separating individual entries with a comma.
For example: sts.contoso.com,sts.contoso2.com
",
"passportForWork1": "Value that sets Windows Hello for Business as a method for signing into Windows.",
"passportForWork2": "Default value is true.If you set this policy to false, the user cannot provision Windows Hello for Business except on Azure Active Directory joined mobile phones where provisioning is required.",
"pinExpiration": "The largest number you can configure for this policy setting is 730. The lowest number you can configure for this policy setting is 0. If this policy is set to 0, then the user’s PIN will never expire.",
"pinHistory1": "The largest number you can configure for this policy setting is 50. The lowest number you can configure for this policy setting is 0. If this policy is set to 0, then storage of previous PINs is not required.",
"pinHistory2": "The current PIN of the user is included in the set of PINs associated with the user account. PIN history is not preserved through a PIN reset.",
"protectUnderLock": "Protects app content while the device is in a locked state.",
"protectionModeBlock": "Block: Blocks enterprise data from leaving protected apps.
",
"protectionModeOff": "Off: User is free to relocate data off of protected apps. No actions are logged.
",
"protectionModeOverride": "Allow overrides: User is prompted when attempting to relocate data from a protected to a non-protected app. If they choose to override this prompt, the action will be logged.
",
"protectionModeSilent": "Silent: User is free to relocate data off of protected apps. These actions are logged.
",
"required": "Required",
"revokeOnMdmHandoff": "Added in Windows 10, version 1703. This policy controls whether to revoke the WIP keys when a device upgrades from MAM to MDM. If set to “Off”, the keys will not be revoked and the user will continue to have access to protected files after upgrade. This is recommended if the MDM service is configured with the same WIP EnterpriseID as the MAM service.",
"revokeOnUnenroll": "This will cause encryption keys to be revoked when a device un-enrolls from this policy.",
"rmsTemplateForEdp": "TemplateID GUID to use for RMS encryption. The Azure RMS template allows the IT admin to configure the details about who has access to RMS-protected file and how long they have access.",
"showWipIcon": "This will let the user know when they are acting in a corporate context, by overlaying an icon.",
"useRmsForWip": "Specifies whether to allow Azure RMS encryption for WIP."
},
"requireAppPin": "Select Yes to disable the app PIN when a device lock is detected on an enrolled device.
Note: Intune cannot detect device enrollment with a third-party EMM solution on iOS/iPadOS.
"
},
"AppInfoBalloonText": {
"Certificate": {
"customSubjectName": "CN={{UserName}},E={{EmailAddress}},OU=EnterpriseUsers,O=Contoso Corporation,L=Redmond,ST=WA,C=US\nor\nCN={{AAD_Device_ID}},E={{EmailAddress}},OU=EnterpriseUsers,O=Contoso Corporation,L=Redmond,ST=WA,C=US",
"keySize": "Select the number of bits contained in the key.",
"keyUsage": "Specify the cryptographic action that is required to exchange the certificate’s public key.",
"renewalThreshold": "Enter the percentage (between 1 and 99 percent) of remaining certificate lifetime that is allowed before a device can request renewal of the certificate. The recommended amount in Intune is 20%. (1-99)",
"rootCert": "Choose a previously configured and assigned root CA certificate profile. The CA certificate must match the root certificate of the CA that is issuing the certificate for this profile (the one you are currently configuring).",
"scepServerUrl": "Enter a URL for the NDES Server that issues certificates through SCEP (Must be HTTPS). e.g. https://contoso.com/certsrv/mscep/mscep.dll",
"scepServerUrls": "Add one or more URLs for the NDES Server that issues certificates through SCEP (Must be HTTPS). e.g. https://contoso.com/certsrv/mscep/mscep.dll",
"subjectAlternativeName": "Subject alternative name",
"subjectNameFormat": "Subject name format",
"validityPeriod": "The amount of time remaining before the certificate expires. Enter a value that is equal to or lower than the validity period shown in the certificate template. Default is set at one year."
},
"appInstallContext": "This specifies the install context to be associated with this app. For dual mode apps, select the desired context for this app. For all other apps, this is pre-selected based on the package and cannot be modified.",
"configurationSettingsFormat": "Configuration settings format text",
"ignoreVersionDetection": "Set this to “Yes” for apps that are automatically updated by the app developer (such as Google Chrome).",
"ignoreVersionDetectionMacOSLobApp": "Select \"Yes\" for apps that are automatically updated by app developer or to only check for app bundleID before installation. Select \"No\" to check for app bundleID and version number before installation.",
"installAsManagedMacOSLobApp": "This setting only applies to macOS 11 and higher. The app will be installed but not managed on macOS 10.15 and lower.",
"installContextDropdown": "Select the appropriate install context. User context will install the app only for the targeted user while device context will install the app for all users on the device.",
"ldapUrl": "This is the LDAP hostname where clients can get the public encryption keys for email recipients. Emails will be encrypted when a key is available. Supported formats: - ldap.example.com
\n- ldap.example.com:123
\n- ldap://ldap.example.com
- ldap://ldap.example.com:123
- ldaps://ldap.example.com
\n- ldaps://ldap.example.com:123
",
"permissionsSettings": "Select runtime permissions for the associated app.",
"policyAssociatedApp": "Select the app that this policy will be associated with.",
"policyConfigurationSettings": "Select the method you want to use to define configuration settings for this policy.",
"policyDescription": "Optionally, enter a description for this configuration policy.",
"policyEnrollmentType": "Choose whether these settings are managed through device management or apps made with Intune SDK.",
"policyName": "Enter a name for this configuration policy.",
"policyPlatform": "Select the platform this app configuration policy will apply to.",
"policyProfileType": "Select the device profile types that this app configuration profile will apply to",
"policySMime": "Configure S/MIME signing and encryption settings for Outlook.",
"sMimeDeployCertsFromIntune": "Specify whether or not S/MIME certificates will be delivered from Intune for use with Outlook.\nIntune can automatically deploy signing and encryption certificates to users through the Company Portal.",
"sMimeEnable": "Specify whether or not S/MIME controls are enabled when composing an email",
"sMimeEnableAllowChange": "Specify if the user is allowed to change the Enable S/MIME setting.",
"sMimeEncryptAllEmails": "Specify whether or not all emails must be encrypted.\nEncrypting converts data to cipher text so that only the intended recipient can read it.",
"sMimeEncryptAllEmailsAllowChange": "Specify if the user is allowed to change the Encrypt all emails setting.",
"sMimeEncryptionCertProfile": "Specify certificate profile for email encryption.",
"sMimeSignAllEmails": "Specify whether or not all emails must be signed.\nA digital signature verifies the authenticity of the email and ensures that the contents are not tampered with in transit.",
"sMimeSignAllEmailsAllowChange": "Specify if the user is allowed to change the Sign all emails setting.",
"sMimeSigningCertProfile": "Specify certificate profile for email signing.",
"sMimeUserNotificationType": "Method to notify users that they must open Company Portal to retrieve S/MIME certificates for Outlook."
},
"WindowsQualityUpdateDaysUntilForcedReboot": {
"oneDay": "1 day",
"twoDays": "2 days",
"zeroDays": "0 days"
},
"Autopilot": {
"AssignResourceAccount": {
"createNewCommandMenu": "Create new",
"createNewResourceAccountInfo": "\nCreate a new resource account during enrollment. The Resource account will be added to the Resource account table right away, but won't be active until the device is enrolled, and the Surface Hub subscription is verified. Learn more about Resource Accounts
\n ",
"createNewResourceTitle": "Create new resource account",
"deviceNameInvalid": "Device name is in an invalid format",
"deviceNameRequired": "A device name is required",
"editResourceAccountLabel": "Edit",
"selectExistingCommandMenu": "Select existing"
},
"Device": {
"ComputerName": {
"validFormat": "Names must be 15 characters or less, and can contain letters (a-z, A-Z), numbers (0-9), and hyphens. Names must not contain only numbers. Names cannot include a blank space."
},
"Header": {
"addressableUserName": "User Friendly Name",
"azureADDevice": "Associated Azure AD device",
"batch": "Group Tag",
"dateAssigned": "Date assigned",
"deviceDisplayName": "Device Name",
"deviceName": "Device name",
"deviceUseType": "Device-use type",
"enrollmentState": "Enrollment state",
"intuneDevice": "Associated Intune device",
"lastContacted": "Last contacted",
"make": "Manufacturer",
"model": "Model",
"profile": "Assigned profile",
"profileStatus": "Profile status",
"purchaseOrderId": "Purchase order",
"resourceAccount": "Resource account",
"serialNumber": "Serial number",
"userPrincipalName": "User"
}
},
"DeviceUseType": {
"meetingAndPresentation": "Meeting and presentation",
"teamCollaboration": "Team collaboration"
},
"Devices": {
"featureDescription": "Windows Autopilot lets you customize the out-of-box experience (OOBE) for your users.",
"importErrorStatus": "Some devices were not imported. Click here for more information.",
"importPendingStatus": "Import in progress. Elapsed time: {0} min. This process can take up to {1} min."
},
"DirectoryService": {
"activeDirectoryAD": "Hybrid Azure AD joined",
"activeDirectoryADLabel": "Hybrid Azure AD width Autopilot",
"azureAD": "Azure AD joined",
"unknownType": "Unknown Type"
},
"Filter": {
"enrollmentState": "State",
"profile": "Profile status"
},
"OOBE": {
"AddressableUserName": {
"validateEmpty": "User friendly name cannot be empty."
},
"ApplyComputerNameTemplate": {
"infoBalloon": "Create a naming template to add names to your devices during enrollment.",
"label": "Apply device name template"
},
"ApplyComputerNameTemplateDisabled": {
"label": "For Hybrid Azure AD joined type of Autopilot deployment profiles, devices are named using settings specified in Domain Join configuration."
},
"ComputerNameTemplate": {
"emptyValue": "MyCompany-%RAND:4%",
"label": "Enter a name",
"noDisallowedChars": "Name must only contain alphanumeric characters, hyphens, %SERIAL%, or %RAND:x%",
"serialLength": "Cannot use more than 7 characters with %SERIAL%",
"validateLessThan15Chars": "Name must be 15 characters or less",
"validateNoSpaces": "Computer names cannot contain spaces",
"validateNotAllNumbers": "Name must also contain letters and/or hyphens",
"validateNotEmpty": "Name cannot be empty",
"validateOnlyOneMacro": "Name must only contain one of %SERIAL% or %RAND:x%"
},
"ConfigureComputerNameTemplate": {
"description": "Create a unique name for your devices. Names must be 15 characters or less, and can contain letters (a-z, A-Z), numbers (0-9), and hyphens. Names must not contain only numbers. Names cannot include a blank space. Use the %SERIAL% macro to add a hardware-specific serial number. Alternatively, use the %RAND:x% macro to add a random string of numbers, where x equals the number of digits to add."
},
"EnableWhiteGlove": {
"infoBalloon": "Enable pressing Windows key 5 times to run OOBE without user authentication to enroll device and provision all system-context apps and settings. User-context apps and settings will be delivered when the user signs in.",
"label": "Allow White Glove OOBE"
},
"HybridAzureADSkipConnectivityCheck": {
"infoBalloon": "The Autopilot Hybrid Azure AD join flow will continue even if it does not establish domain controller connectivity during OOBE.",
"label": "Skip AD connectivity check (preview)"
},
"accountType": "User account type",
"accountTypeInfo": "Specify whether users are administrators or standard users on the device. Note that this setting does not apply to Global Administrator or Company Administrator accounts. These accounts cannot be standard users because they have access to all administrative features in Azure AD.",
"configOOBEInfo": "\nConfigure the out-of-box experience for your Autopilot devices\n
",
"configureDevice": "Deployment mode",
"configureDeviceHintForSurfaceHub2": "Autopilot only supports self-deploying mode for Surface Hub 2. This mode doesn't associate the user with the enrolled device, so it doesn't require user credentials.",
"configureDeviceHintForWindowsPC": "\n Deployment mode controls if a user needs to provide credentials in order to provision the device.\n
\n \n - \n User-Driven: Devices are associated with the user enrolling the device and user credentials are required to provision the device\n
\n - \n Self-Deploying (preview): Devices are not associated with the user enrolling the device and user credentials are not required to provision the device\n
\n
",
"createSurfaceHub2Info": "Configure the Autopilot enrollment settings for your Surface Hub 2 devices. By default Autopilot enables skipping user authentication during OOBE. Learn more about Windows Autopilot for Surface Hub 2.",
"createWindowsPCInfo": "\n\nThe following options are automatically enabled for Autopilot devices in self-deploying mode:\n
\n\n - \n Skip Work or Home usage selection\n
\n - \n Skip OEM registration and OneDrive configuration\n
\n - \n Skip user authentication in OOBE\n
\n
",
"endUserDevice": "User-Driven",
"hideEscapeLink": "Hide change account options",
"hideEscapeLinkInfo": "Options to change account and start over with a different account appear, respectively, during initial device setup on the company sign-in page, and on the domain error page. To hide these options, you must configure company branding in Azure Active Directory (requires Windows 10, 1809 or later, or Windows 11).",
"info": "Autopilot profile settings define the out-of-box experience users see when starting Windows for the first time. ",
"language": "Language (Region)",
"languageInfo": "Specify the language and region that will be used.",
"licenseAgreement": "Microsoft Software License Terms",
"licenseAgreementInfo": "Specify whether to show the EULA to users.",
"plugAndForgetDevice": "Self-Deploying (preview)",
"plugAndForgetGA": "Self-Deploying",
"privacySettingWarning": "The default value for diagnostic data collection has changed for devices running Windows 10, version 1903 and later, or Windows 11. ",
"privacySettings": "Privacy settings",
"privacySettingsInfo": "Specify whether to show privacy settings to users.",
"showCortanaConfigurationPage": "Cortana configuration",
"showCortanaConfigurationPageInfo": "Show will enable the Cortana configuration introduction during startup.",
"skipEULAWarning": "Important information about hiding license terms",
"skipKeyboardSelection": "Automatically configure keyboard",
"skipKeyboardSelectionInfo": "If true, skip the keyboard selection page if Language is set.",
"subtitle": "Autopilot profiles",
"title": "Out-of-box experience (OOBE)",
"useOSDefaultLanguage": "Operating system default",
"userSelect": "User select"
},
"Sync": {
"lastRequestedLabel": "Last sync request",
"lastSuccessfulLabel": "Last successful sync",
"syncInProgress": "Sync is in progress. Check back again soon.",
"syncInitiated": "Autopilot settings sync initiated.",
"syncSettingsTitle": "Sync Autopilot settings"
},
"Title": {
"devices": "Windows Autopilot devices"
},
"Tooltips": {
"addressableUserName": "Greeting name displayed during device setup.",
"azureADDevice": "Go to device details for associated device. N/A means that there's no associated device.",
"batch": "A string attribute that can be used to identify a group of devices. Intune's Group Tag field maps to the OrderID attribute on Azure AD devices.",
"dateAssigned": "Timestamp of when the profile was assigned to the device.",
"deviceDisplayName": "Configure a unique name for a device. This name will be ignored in Hybrid Azure AD joined deployments. Device name still comes from the domain join profile for Hybrid Azure AD devices.",
"deviceName": "The name shown when someone tried to discover and connect to the device.",
"deviceUseType": " Device would setup based on your choice. You can always change later in settings.\n \n - For meetings and presentations, Windows Hello isn't turned on and data is removed after each session.\n
\n - For team collaboration, Windows Hello is turned on and profiles are saved for quick sign-in
\n
",
"enrollmentState": "Specifies if the device has enrolled.",
"intuneDevice": "Go to device details for associated device. N/A means that there's no associated device.",
"lastContacted": "Timestamp of when the device was last contacted.",
"make": "Manufacturer of the selected device.",
"model": "Model of the selected device",
"profile": "Name of the profile assigned to the device.",
"profileStatus": "Specifies if a profile is assigned to the device.",
"purchaseOrderId": "Purchase Order ID",
"resourceAccount": "The device's identity, or user principal name (UPN).",
"serialNumber": "Serial number of the selected device.",
"userPrincipalName": "User to pre-fill authentication during device setup."
},
"allDevices": "All devices",
"allDevicesAlreadyAssignedError": "An Autopilot profile is already assigned to All Devices.",
"assignFailedDescription": "Failed to update assignments for {0}.",
"assignFailedTitle": "Failed to update Autopilot profile assignments.",
"assignSuccessDescription": "Successfully updated assignments for {0}.",
"assignSuccessTitle": "Successfully updated Autopilot profile assignments.",
"assignSufaceHub2ProfileNextStep": "Next steps for this deployment",
"assignSurfaceHub2ProfileToDeviceGroup": "1. Assign this profile to at least one device group",
"assignSurfaceHub2ProfileToResourceAccount": "2. Assign a resource account to each Surface Hub device to which you deploy this profile",
"assignedDevicesCount": "Assigned devices",
"assignedDevicesResourceAccountDescription": "To deploy this profile to a device, you must assign the device a Resource account. Select one device at a time to assign an existing Resource account or to create a new one. Learn more about Resource Accounts
",
"assignedDevicesResourceAccountStatusBarMessage": "This table only lists the Surface Hub 2 devices that have been assigned this profile.",
"assigningDescription": "Updating assignments for {0}.",
"assigningTitle": "Updating Autopilot profile assignments.",
"cannotDeleteMessage": "This profile is assigned to groups. You must unassign all groups from this profile before you can delete it.",
"cannotDeleteTitle": "Cannot delete {0}",
"createdDateTime": "Created",
"deleteMessage": "If you delete this Autopilot profile, any devices assigned to this profile will display Unassigned.",
"deleteMessageWithPolicySet": "{0} is included in one more more policy sets. If you delete {0}, you'll no longer be able to assign it via these policy sets.",
"deleteTitle": "Are you sure you want to delete this profile?",
"description": "Description",
"deviceType": "Device type",
"deviceUse": "Device use",
"directoryServiceHintForSurfaceHub2": " \n Autopilot only supports Azure AD Joined for Surface Hub 2 devices. Specify how devices join Active Directory (AD) in your organization.\n
\n \n - \n Azure AD joined: Cloud-only without an on-premises Windows Server Active Directory.\n
\n
\n ",
"directoryServiceHintForWindowsPC": "\n \n Specify how devices join Active Directory (AD) in your organization:\n
\n \n - \n Azure AD joined: Cloud-only without an on-premises Windows Server Active Directory\n
\n
\n ",
"getAssignedDevicesCountError": "An error occurred while fetching the assigned devices count.",
"getAssignmentsError": "An error occurred while fetching Autopilot profile assignments.",
"harvestDeviceId": "Convert all targeted devices to Autopilot",
"harvestDeviceIdDescription": "By default, this profile can only be applied to Autopilot devices synced from the Autopilot service.",
"harvestDeviceIdInfo": "\n Select Yes to register all targeted devices to Autopilot if they are not already registered. The next time registered devices go through the Windows Out of Box Experience (OOBE), they will go through the assigned Autopilot scenario.\n
\n Please note that certain Autopilot scenarios require specific minimum builds of Windows. Please make sure your device has the required minimum build to go through the scenario.\n
\n Removing this profile won’t remove affected devices from Autopilot. To remove a device from Autopilot, use the Windows Autopilot Devices view.\n ",
"harvestDeviceIdWarning": "After conversion, Autopilot devices can only be reverted by deleting them from the Autopilot devices list.",
"holoLensCommandMenu": "HoloLens",
"info": "Windows Autopilot deployment profiles lets you customize the out-of-box experience for your devices.",
"invalidProfileNameMessage": "Character \"{0}\" is not allowed",
"joinTypeLabel": "Join Azure AD as",
"lastModifiedDateTime": "Last modified:",
"name": "Name",
"noAutopilotProfile": "No Autopilot profiles",
"notEnoughPermissionAssignedError": "You don't have enough permissions to assign this profile to one or more of your selected groups. Please contact your administrator.",
"profile": "profile",
"resourceAccountStatusBarMessage": "A Resource Account is required for each Surface Hub 2 device to which this profile is deployed. Click to learn more.",
"selectServices": "Select directory service devices will join",
"surfaceHub2CommandMenu": "Surface Hub 2",
"userAffinityLabel": "Deployment mode",
"windowsPCCommandMenu": "Windows PC",
"directoryServiceLabel": "Join to Azure AD as"
},
"AppInformationTab": {
"Error": {
"multipleChildApps": "A macOS LOB app can only be installed as managed when the uploaded package contains a single app."
},
"Info": {
"AppStoreUrl": {
"android": "Enter the link to the app listing in Google Play store. For example:",
"androidLink": "https://play.google.com/store/apps/details?id=com.microsoft.office.outlook",
"windows": "Enter the link to the app listing in the Microsoft Store. For example:",
"windowsLink": "https://www.microsoft.com/en-us/p/microsoft-to-do-lists-tasks-reminders/9nblggh5r558"
},
"appPackageFile": "A file that contains your app in a format that can be sideloaded on a device. Valid package types include: Android (.apk), iOS (.ipa), macOS (.intunemac), Windows (.msi, .appx, .appxbundle, .msix, and .msixbundle).",
"applicableDeviceType": "Select the device types that can install this app.",
"category": "Categorize the app to make it easier for users to sort and find in Company Portal. You can choose multiple categories.",
"categoryLink": "https://docs.microsoft.com/en-us/intune/apps/apps-add#create-and-edit-categories-for-apps",
"description": "Help your device users understand what the app is and/or what they can do in the app. This description will be visible to them in Company Portal.",
"developer": "The name of the company or Individual that developed the app. This information will be visible to people signed into the admin center.",
"displayVersion": "The version of the app. This information will be visible to users in the Company Portal.",
"infoUrl": "Link people to a website or documentation that has more information about the app. The information URL will be visible to users in Company Portal.",
"isFeatured": "Featured apps are prominently placed in Company Portal so that users can quickly get to them.",
"learnMore": "Learn more",
"logo": "Upload a logo that's associated with the app. This logo will appear next to the app throughout Company Portal.",
"minOperatingSystem": "Select the earliest operating system version on which the app can be installed. If you assign the app to a device with an earlier operating system, it will not be installed.",
"name": "Add a name for the app. This name will be visible in the Intune apps list and to users in the Company Portal.",
"notes": "Add additional notes about the app. Notes will be visible to people signed in to the admin center.",
"owner": "The name of the person in your organization who manages licensing or is the point-of-contact for this app. This name will be visible to people signed in to the admin center.",
"packageName": "Contact the device manufacturer to get the app's package name. Example package name: com.example.app",
"privacyUrl": "Provide a link for people who want to learn more about the app's privacy settings and terms. The privacy URL will be visible to users in Company Portal.",
"publisher": "The name of the developer or company that distributes the app. This information will be visible to users in Company Portal.",
"selectApp": "Search the App Store for iOS store apps that you want to deploy with Intune.",
"useManagedBrowser": "If required, when a user opens the web app, it will open in an Intune-protected browser such as Microsoft Edge or Intune Managed Browser. This setting applies to both iOS and Android devices.",
"useManagedBrowserLink": "https://docs.microsoft.com/en-us/intune/apps/app-configuration-managed-browser",
"win32AppPackageFile": "A file that contains your app in a format that can be sideloaded on a device. Valid package type: .intunewin."
},
"descriptionPreview": "Preview",
"descriptionRequired": "Description is required.",
"editDescription": "Edit Description",
"name": "App information",
"nameForOfficeSuitApp": "App suite information"
},
"NotificationMessage": {
"NotificationMessageTemplatesTab": {
"arabic": "Arabic",
"bulgarian": "Bulgarian",
"chineseSimplified": "Chinese (Simplified)",
"chineseTraditional": "Chinese (Traditional)",
"croatian": "Croatian",
"czech": "Czech",
"danish": "Danish",
"dutch": "Dutch",
"englishUK": "English (United Kingdom)",
"englishUS": "English (United States)",
"estonian": "Estonian",
"finnish": "Finnish",
"frenchCanada": "French (Canada)",
"frenchFrance": "French (France)",
"german": "German",
"greek": "Greek",
"hebrew": "Hebrew",
"hungarian": "Hungarian",
"italian": "Italian",
"japanese": "Japanese",
"korean": "Korean",
"latvian": "Latvian",
"lithuanian": "Lithuanian",
"norwegian": "Norwegian, Bokmål",
"polish": "Polish",
"portugueseBrazil": "Portuguese (Brazil)",
"portuguesePortugal": "Portuguese (Portugal)",
"romanian": "Romanian",
"russian": "Russian",
"serbian": "Serbian",
"slovak": "Slovak",
"slovenian": "Slovenian",
"spanishMexico": "Spanish (Mexico)",
"spanishSpain": "Spanish (Spain)",
"swedish": "Swedish",
"thai": "Thailand",
"turkish": "Turkish",
"ukrainian": "Ukrainian"
},
"Summary": {
"placeholder": "Select a notification message from the left to preview contents."
},
"companyContact": "Email footer - Include contact information",
"companyLogo": "Email header - Include company logo",
"companyName": "Email footer - Include company name",
"createEditDescription": "Create or edit notification message templates.",
"createMessage": "Create message",
"editImpactInfo": "Editing this notification message template will affect all policies which are using this template.",
"editMessage": "Edit message",
"email": "email",
"formSubTitle": "Create or modify notification emails",
"infotext": "Select a notification messsage. To create a new notification, please visit Notification in the Manage section of the Set Device Compliance workload.",
"iwLink": "Company Portal Website Link",
"listEmpty": "No message templates.",
"listEmptySelectOnly": "No message templates. To create a new notification, please visit Notifications in the Manage section of the Set Device Compliance workload.",
"listSubTitle": "List of notification message templates",
"listTitle": "Notification message templates",
"localizedNotificationMessageTemplates": "Localized notification message templates",
"messageAssigned": "Cannot delete this message template, because it is currently being used by one or more compliance policies.",
"messageCapitalized": "Notification message template",
"messageLowercase": "notification message template",
"missingDefaultError": "Select a default template",
"notificationMessageTemplates": "Notification message templates",
"rowValidationError": "At least one message template is required",
"selectDescription": "Select a notification message. To create a new notification, please visit Notifications in the Manage section of the Set Device Compliance workload.",
"testEmailLabel": "Send preview email",
"localeLabel": "Locale",
"isDefaultLocale": "Is Default"
},
"Win32Program": {
"DeviceRestartBehaviorOptions": {
"allow": "App install may force a device restart",
"basedOnReturnCode": "Determine behavior based on return codes",
"force": "Intune will force a mandatory device restart",
"suppress": "No specific action"
},
"RunAsAccountOptions": {
"system": "System",
"user": "User"
},
"bladeTitle": "Program",
"deviceRestartBehavior": "Device restart behavior",
"deviceRestartBehaviorTooltip": "Select the device restart behavior after the app has successfully installed. Select 'Determine behavior based on return codes' to restart the device based on the return codes configuration settings. Select 'No specific action' to suppress device restarts during the app install for MSI-based apps. Select 'App install may force a device restart' to allow the app install to complete without suppressing restarts. Select 'Intune will force a mandatory device restart' to always restart the device after successful app installation.",
"header": "Specify the commands to install and uninstall this app:",
"installCommand": "Install command",
"installCommandMaxLengthErrorMessage": "Install command cannot exceed the maximum allowed length of 1024 characters.",
"installCommandTooltip": "The complete installation command line used to install this app.",
"runAs32Bit": "Run install and uninstall commands in a 32-bit process on 64-bit clients",
"runAs32BitTooltip": "Select 'Yes' to install and uninstall the app in a 32-bit process on 64-bit clients. Select 'No' (default) to install and uninstall the app in a 64-bit process on 64-bit clients. 32-bit clients will always use a 32-bit process.",
"runAsAccount": "Install behavior",
"runAsAccountTooltip": "Select 'System' to install this app for all users if supported. Select 'User' to install this app for the logged-in user on the device. For dual-purpose MSI apps, changes will prevent updates and uninstalls from successfully completing until the value applied to the device at the time of the original install is restored.",
"selectorLabel": "Program",
"uninstallCommand": "Uninstall command",
"uninstallCommandTooltip": "The complete uninstallation command line used to uninstall this app."
},
"OutlookAppConfigSettings": {
"AllowUserToChangeSetting": {
"title": "Allow user to change setting",
"tooltip": "Specify if the user is allowed to change the setting."
},
"AllowWorkAccounts": {
"title": "Allow only work or school accounts",
"tooltip": " By enabling this setting, users will be unable to add personal email and storage accounts within Outlook. If the user has a personal account added to Outlook, the user is prompted to remove the personal account. If the user does not remove the personal account, the work or school account cannot be added."
},
"BlockExternalImages": {
"title": "Block external images",
"tooltip": "When block external images is enabled, the app will prevent the download of images hosted on the Internet that are embedded in the message body. When set as not configured, the default app setting is set to Off"
},
"ConfigureEmail": {
"title": "Configure email account settings"
},
"DefaultAppSignatureSetting": {
"Tooltip": {
"android": "Default app signature indicates whether the app will use “Get Outlook for Android” as the default signature during message composition. If the setting is configured as Off, the default signature will not be used; however, users can add their own signature.\n\nWhen set as Not Configured, the default app setting is set to On.",
"iOS": "Default app signature indicates whether the app will use “Get Outlook for iOS” as the default signature during message composition. If the setting is configured as Off, the default signature will not be used; however, users can add their own signature.\n\nWhen set as Not Configured, the default app setting is set to On."
},
"title": "Default app signature"
},
"OfficeFeedReplies": {
"title": "Discover Feed",
"tooltip": "Discover Feed surfaces your most frequently accessed Office files. By default, this feed is enabled when Delve is enabled for the user. When set as not configured, the default app setting is set to On."
},
"OrganizeMailByThread": {
"title": "Organize mail by thread",
"tooltip": "The default behavior in Outlook is to bundle mail conversations into a threaded conversation view. If this setting is disabled Outlook will display each mail individually and will not group them by thread."
},
"PlayMyEmails": {
"title": "Play My Emails",
"tooltip": "The Play My Emails feature is not enabled by default in the app, but it is promoted to eligible users via a banner in the inbox. When set to Off, this feature will not be promoted to eligible users in the app. Users can choose to manually enable Play My Emails from within the app, even when this feature is set to Off. When set as Not configured, the default app setting is On and the feature will be promoted to eligible users."
},
"SuggestedReplies": {
"title": "Suggested replies",
"tooltip": "When you open a message, Outlook might suggest replies below the message. If you select a suggested reply, you can edit the reply before sending it."
},
"SyncCalendars": {
"title": "Sync Calendars",
"tooltip": "Configure whether users can sync their Outlook calendar to the native calendar app and database."
},
"TextPredictions": {
"title": "Text Predictions",
"tooltip": "Outlook can suggest words and phrases as you compose messages. When Outlook offers a suggestion, swipe to accept it. When set as not configured, the default app setting is set to On."
},
"ThemesEnabled": {
"title": "Themes enabled",
"tooltip": "Specify if the user is allowed to use a custom visual theme."
}
},
"SoftwareUpdates": {
"BladeTitles": {
"overview": "Overview"
},
"EndUserUpdate": {
"searchByDeviceUserAndQualityUpdateVersion": "Search by Device, User or Quality Update Version."
},
"Ios": {
"Notifications": {
"LoadAllConfigurationFailed": {
"title": "Failed to load iOS software update profiles"
}
},
"SummaryBlade": {
"subtitle": "iOS update profile",
"title": "iOS/iPadOS"
},
"WizardBlade": {
"subtitle": "iOS/iPadOS",
"title": "profile"
},
"listLoadError": "Unable to load iOS software update profiles, try again later",
"lowercase": "iOS update policy",
"uppercase": "iOS Update policy"
},
"IosUpdatePolicy": {
"Settings": {
"IOSVersion": {
"apiFailText": "We're sorry, we're unable to connect with Apple to get the list of available versions. Please try again later or continue with the latest version.",
"latestUpdate": "Latest update",
"noLongerSupported": "Selected version is no longer supported",
"olderVersionSelected": "Since you selected an earlier version, make sure you apply a device restriction policy that defers the visibilty of software updates so that devices can't update to the latest version.",
"prefix": "Install iOS/iPadOS",
"selectSupported": "Select update version supported by Apple",
"updateToInstall": "Update to install"
},
"Schedule": {
"always": "Update at next check-in",
"duringTimeWindows": "Update during scheduled time",
"header": "By default, when an iOS/iPadOS Software Updates policy is assigned to a device, Intune deploys the latest updates at device check-in (approximately every 8 hours). You can instead create a weekly schedule with customized start and end times. If you choose to update outside of the scheduled time, Intune won't deploy updates until the scheduled time ends.",
"infoBalloon": "When the updates will occur. Additional input is required to schedule updates during or outside of scheduled times.",
"label": "Schedule type",
"outsideActiveHours": "Update outside of active hours (legacy)",
"outsideTimeWindows": "Update outside of scheduled time",
"timeWindow": "Time window",
"timeZone": "Time zone",
"title": "Update policy schedule settings:",
"weekly": "Weekly schedule",
"timeWindowToolTip": null,
"timeZoneToolTip": null
},
"VersionsDropdown": {
"infoBalloon": "The version of iOS/iPadOS to install on devices at time of update.",
"label": "Select version to install"
},
"header": "Create a profile to force assigned devices to automatically install the latest iOS/iPadOS updates. These settings determine how and when software updates deploy. This profile doesn't prevent users from updating the OS manually, which can be prevented for up to 90 days with a device configuration restriction policy. Updates will only apply to devices enrolled through Apple's Automated Device Enrollment (with ABM or ASM).",
"notAvailable": "N/A"
}
},
"ListPartEmpty": {
"iosUpdates": "There are no iOS update policies to display",
"macOsUpdates": "There are no macOS software update policies to display",
"windowsUpdates": "There are no update rings for Windows 10 and later to show."
},
"MacOSSoftwareUpdate": {
"AccountSummary": {
"Columns": {
"deviceName": "Device Name",
"deviceUpdateStatus": "Device Update Status",
"lastUpdated": "Last Updated",
"osVersion": "OS Version",
"userPrincipalName": "User Name"
},
"maximumOSVersionFilter": "Maximum OS version",
"minimumOSVersionFilter": "Minimum OS version",
"noData": "No data to display",
"searchBoxPlaceholder": "Search by device name, user name or OS version",
"title": "Account summary for macOS devices"
},
"Category": {
"configurationDataFile": "Configuration data file",
"critical": "Critical",
"firmware": "Firmware",
"other": "Other"
},
"CategorySummary": {
"Columns": {
"lastUpdated": "Last Updated",
"successfulUpdateCount": "Successful updates deployed",
"totalUpdateCount": "Total updates deployed",
"updateCategory": "Update category",
"updateCategoryStatus": "Update category status"
},
"noData": "No data to display"
},
"Notifications": {
"LoadAllConfigurationFailed": {
"title": "Failed to load macOS software update profiles"
}
},
"State": {
"available": "Available",
"commandFailed": "Command failed",
"downloadFailed": "Download failed",
"downloadInsufficientNetwork": "Download insufficient network",
"downloadInsufficientPower": "Download insufficient power",
"downloadInsufficientSpace": "Download insufficient space",
"downloaded": "Downloaded",
"downloading": "Downloading",
"idle": "Idle",
"installFailed": "Install failed",
"installInsufficientPower": "Install insufficient power",
"installInsufficientSpace": "Install insufficient space",
"installing": "Installing",
"scheduled": "Scheduled",
"success": "Success",
"unknown": "Unknown"
},
"StateSummary": {
"Columns": {
"lastUpdated": "Last Updated",
"updateName": "Update name",
"updateStatus": "Update status",
"version": "Version"
},
"noData": "No data to display",
"searchBoxPlaceholder": "Search by update name or version"
},
"SummaryBlade": {
"subtitle": "macOS update profile",
"title": "macOS"
},
"WizardBlade": {
"subtitle": "macOS",
"title": "Profile"
},
"error": "Error",
"errorOrErrors": "Error(s)",
"errors": "Errors",
"listLoadError": "Unable to load macOS software update profiles, try again later",
"lowercase": "macOs update policy",
"other": "Other",
"subtitle": "MacOS Software Update",
"upToDate": "Up to date",
"uppercase": "macOS Update Policy"
},
"Notifications": {
"DeleteFailed": {
"description": "Please try again later",
"title": "Failed to delete {0}"
},
"LoadAllConfigurationFailed": {
"description": "Please try again later"
},
"LoadConfigurationFailed": {
"description": "Please try again later",
"title": "Failed to load {0}"
},
"idWrongFormat": "The provided id for the profile is not in the expected format."
},
"UpdatePolicy": {
"Settings": {
"Schedule": {
"noneSelected": "At least one time window should be selected",
"tooMany": "A maximum of 20 time windows can be configured"
}
},
"endDay": "End day",
"endTime": "End time",
"startDay": "Start day",
"startTime": "Start time",
"timeWindowError": "Choose a window of time that spans at least one hour."
},
"WindowsUpdateForBusiness": {
"Notifications": {
"LoadAllConfigurationFailed": {
"title": "Failed to load update ring profiles for Windows 10 and later."
}
},
"SummaryBlade": {
"subtitle": "Update ring for Windows 10 and later",
"title": "Windows Update for Business"
},
"WizardBlade": {
"subtitle": "Windows 10 and later",
"title": "Update ring for Windows 10 and later"
},
"listLoadError": "Unable to load update rings profiles for Windows 10 and later, try again later",
"lowercase": "Update ring",
"uppercase": "Update Ring"
},
"Wizard": {
"Tabs": {
"updatePolicySettings": "Update policy settings",
"updateRingSettings": "Update ring settings"
}
},
"WizardBlade": {
"Verb": {
"create": "Create {0}",
"edit": "Edit {0}"
}
},
"notScannedYet": "Not scanned yet",
"outOfDateIosDevices": "Out of Date iOS Devices"
},
"ScheduledAction": {
"Form": {
"editBlockActionInfo": "One block action is required for all compliance policies.",
"graceperiod": "Schedule (days after noncompliance)",
"graceperiodInfo": "Specify the number of days after noncompliance after which this action should be triggered for the user's device",
"subtitle": "Specify action parameters",
"title": "Action parameters"
},
"List": {
"gracePeriodDay": "{0} day after noncompliance",
"gracePeriodDays": "{0} days after noncompliance",
"gracePeriodHour": "{0} hour after noncompliance",
"gracePeriodHours": "{0} hours after noncompliance",
"gracePeriodMinute": "{0} minute after noncompliance",
"gracePeriodMinutes": "{0} minutes after noncompliance",
"immediately": "Immediately",
"schedule": "Schedule",
"scheduleInfoBalloon": "Days after noncompliance",
"subtitle": "Specify the sequence of actions on noncompliant devices",
"title": "Actions"
},
"Notification": {
"additionalEmailLabel": "Others",
"additionalRecipients": "Additional recipients (via email)",
"additionalRecipientsBladeTitle": "Select additional recipients",
"emailAddressPrompt": "Enter email addresses (separated by commas)",
"invalidEmail": "Invalid email address",
"messageTemplate": "Message template",
"noneSelected": "None selected",
"notSelected": "Not selected",
"numSelected": "{0} selected",
"selected": "Selected"
},
"block": "Mark device noncompliant",
"lockDevice": "Lock device (local action)",
"lockDeviceWithPasscode": "Lock device (local action)",
"noAction": "No action",
"noActionRow": "No actions, select 'Add' to add an action",
"pushNotification": "Send push notification to end user",
"remoteLock": "Remotely lock the noncompliant device",
"removeSourceAccessProfile": "Remove source access profile",
"retire": "Retire the noncompliant device",
"wipe": "Wipe",
"emailNotification": "Send email to end user"
},
"WIPPinRequirements": {
"WipLowercaseCharacterPinRequirements": {
"allow": "Allow the use of lowercase letters in PIN",
"notAllow": "Do not allow the use of lowercase letters in PIN",
"requireAtLeastOne": "Require the use of at least one lowercase letter in PIN"
},
"WipSpecialCharacterPinRequirements": {
"allow": "Allow the use of special characters in PIN",
"notAllow": "Do not allow the use of special characters in PIN",
"requireAtLeastOne": "Require the use of at least one special character in PIN"
},
"WipUppercaseCharacterPinRequirements": {
"allow": "Allow the use of uppercase letters in PIN",
"notAllow": "Do not allow the use of uppercase letters in PIN",
"requireAtLeastOne": "Require the use of at least one uppercase letter in PIN"
}
}
}