cqrenet/macOS_IntuneManagement
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 3 Wiki Activity
Files
ece28a649f996a0c32db13d0870ac7de16af5b22
macOS_IntuneManagement/Documentation/Strings-zh-chs.json
Mikael Karlsson ece28a649f 3.8.1
2023-01-26 22:29:21 +11:00

12032 lines
1.3 MiB
Raw Blame History

This file contains invisible Unicode characters
This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
{
"OutlookAppConfig": {
"DataProtectionConfiguration": {
"header": "Data Protection configuration"
},
"OrganizeMailByThread": {
"title": "Organize mail by thread",
"tooltip": "The default behavior in Outlook is to bundle mail conversations into a threaded conversation view. If this setting is disabled Outlook will display each mail individually and will not group them by thread."
},
"Sync": {
"header": "Sync contact fields to native contacts app configuration"
},
"allowBiometricsAllowUserChangeTooltip": "Specify if the user is allowed to change the setting.",
"allowBiometricsTitle": "Require Biometrics to Access App",
"allowBiometricsTooltip": "Biometrics, such as TouchID or FaceID, can be required for users to access the app on their device. When required, biometrics are used in addition to the authentication method selected in this profile. This setting should not be enabled when Intune App Protection Policies are deployed, as the app protection policy includes access requirements prior to accessing managed data. Enabling both will result in multiple access prompts to access Outlook mobile. When set as not configured, the default app setting is set to Off.",
"allowCalendarNotificationsAllowUserChangeTooltip": "Specify if the user is allowed to change the setting.",
"allowCalendarNotificationsTitle": "Calendar Notifications",
"allowCalendarNotificationsTooltip": "Allow calendar notifications to display full details when the App Protection Policy setting \"Org data notifications\" is set to \"Block Org Data\".",
"allowDefaultAppSignatureTitle": "Default App Signature",
"allowDefaultAppSignatureTooltip": "Default app signature indicates whether the app will use “Get Outlook for iOS” as the default signature during message composition. If the setting is configured as Off, the default signature will not be used; however, users can add their own signature. When set as Not Configured, the default app setting is set to On.",
"allowExternalRecipientsMailTipTitle": "External Recipients MailTip",
"allowExternalRecipientsMailTipTooltip": "The External Recipients MailTip is displayed if the sender adds a recipient that's external or adds a distribution group that contains external recipients. This MailTip informs senders if a message they're composing will leave the organization, helping them make the correct decisions about wording, tone, and content. Available only for Exchange Online accounts and on-premises accounts leveraging hybrid modern authentication. When set as not configured, the default app setting is set to On.",
"allowFocusedInboxTitle": "Focused Inbox",
"allowFocusedInboxTooltip": "Focused Inbox separates your inbox into two tabs—Focused and Other. Your most important emails are on the Focused tab while the rest remain easily accessible—but out of the way—on the Other tab. When set as not configured, the default app setting is set to On.",
"allowMailNotificationsAllowUserChangeTooltip": "Specify if the user is allowed to change the setting.",
"allowMailNotificationsTitle": "Mail Notifications",
"allowMailNotificationsTooltip": "This value specifies if Outlook will allow mail notifications. Setting the value to No disables mail notifications.",
"allowOrgDataOnWearablesTitle": "Org Data on Wearables",
"allowOrgDataOnWearablesTooltip": "This value specifies if Outlook data can be synchronized to a wearable device. Setting the value to No disables wearable synchronization.",
"allowSaveContactsAllowUserChangeTooltip": "Specify if the user is allowed to change the contact sync setting.",
"allowSaveContactsTitle": "Save Contacts",
"allowSaveContactsTooltip": "Saving contacts to the mobile devices native address book allows new calls and text messages to be linked with the users existing Outlook contacts. When set as not configured, the default app setting is set to Off.",
"allowSmartReplyAndroidAllowUserChangeTooltip": "Specify if the user is allowed to change the setting.",
"allowSmartReplyTitle": "Suggested Replies",
"allowSmartReplyTooltip": "When you open a message, Outlook might suggest replies below the message. If you select a suggested reply, you can edit the reply before sending it. When set as not configured, the default app setting is set to On.",
"allowUserChangeGeneralToolTip": "Specify if the user is allowed to change the setting.",
"allowUserChangeTitle": "Allow user to change setting",
"blockExternalImagesAllowUserChangeTooltip": "Specify if the user is allowed to change the setting.",
"blockExternalImagesTitle": "Block External Images",
"blockExternalImagesTooltip": "When block external images is enabled, the app will prevent the download of images hosted on the Internet that are embedded in the message body. When set as not configured, the default app setting is set to Off.",
"disableAddinsTitle": "Allow Add-ins",
"disableAddinsTooltip": "By default, an App Protection Policy allows for users to utilize third-party add-ins, but can be used to block add-ins with the \"Sync policy managed app data with native apps\" setting. This app config setting operates independent of the App Protection Policy setting and enables organizations to define whether add-ins are available in the app.",
"discoverFeedTitle": "Discover Feed",
"discoverFeedTooltip": "Discover Feed surfaces your most frequently accessed Office files. By default, this feed is enabled when Delve is enabled for the user. When set as not configured, the default app setting is set to On.",
"enableSMIMETitle": "Enable S/MIME",
"enableSMIMETooltip": "Specify whether or not S/MIME controls are enabled when composing an email.",
"encryptAllEmails": "Encrypt all emails",
"encryptAllEmailsAllowUserChangeTooltip": "Specify if the user is allowed to change the Encrypt all emails setting.",
"encryptAllEmailsTooltip": "Specify whether all emails must be encrypted. Encrypting converts data to cipher text so that only the intended recipient can read it.",
"ldapUrl": "LDAP URL",
"ldapUrlTooltip": "This is the LDAP hostname where clients can get the public encryption keys for email recipients. Emails will be encrypted when a key is available. Supported formats: \n<ul>\n<li>ldap.example.com</li>\n<li>ldap.example.com:123</li>\n<li>ldap://ldap.example.com</li>\n<li>ldap://ldap.example.com:123</li>\n<li>ldaps://ldap.example.com</li>\n<li>ldaps://ldap.example.com:123</li>\n</ul>",
"nativeCalendarSyncAllowUserChangeTooltip": "Specify if the user is allowed to change the setting.",
"nativeCalendarSyncMAMOnlyTitle": "Allow Calendar Sync",
"nativeCalendarSyncMAMOnlyTooltip": "By default, an App Protection Policy allows for calendar synchronization to the native Calendar app, but can be used to block calendar sync availability. This setting operates independent of the App Protection Policy setting and enables organizations to define whether calendar sync is available for the work or school account.",
"nativeCalendarSyncTitle": "Sync Calendars",
"nativeCalendarSyncTooltip": "Configure whether users can sync their Outlook calendar to the native calendar app and database.",
"playMyEmailsTitle": "Play My Emails",
"playMyEmailsTooltip": "The Play My Emails feature is not enabled by default in the app, but it is promoted to eligible users via a banner in the inbox. When set to Off, this feature will not be promoted to eligible users in the app. Users can choose to manually enable Play My Emails from within the app, even when this feature is set to Off. When set as Not configured, the default app setting is On and the feature will be promoted to eligible users.",
"signAllEmails": "Sign all emails",
"signAllEmailsAllowUserChangeTooltip": "Specify if the user is allowed to change the Sign all emails setting.",
"signAllEmailsTooltip": "Specify whether all emails must be signed. A digital signature verifies the authenticity of the email and ensures that the contents are not tampered with in transit.",
"syncAddressTitle": "Address",
"syncAddressTooltip": "This value specifies if the contact's address should be synchronized to native contacts.",
"syncBirthdayTitle": "Birthday",
"syncBirthdayTooltip": "This value specifies if the contact's birthday should be synchronized to native contacts.",
"syncCompanyTitle": "Company",
"syncCompanyTooltip": "This value specifies if the contact's company name should be synchronized to native contacts.",
"syncDepartmentTitle": "Department",
"syncDepartmentTooltip": "This value specifies if the contact's department should be synchronized to native contacts.",
"syncEmailAddressTitle": "Email Address",
"syncEmailAddressTooltip": "This value specifies if the contact's email address should be synchronized to native contacts.",
"syncInstantMessagingAddressTitle": "Instant Messaging Address",
"syncInstantMessagingAddressTooltip": "This value specifies if the contact's instant messaging address should be synchronized to native contacts.",
"syncJobTitleTitle": "Job Title",
"syncJobTitleTooltip": "This value specifies if the contact's job title should be synchronized to native contacts.",
"syncNicknameTitle": "Nickname",
"syncNicknameTooltip": "This value specifies if the contact's nickname should be synchronized to native contacts.",
"syncNotesTitle": "Notes",
"syncNotesTooltip": "This value specifies if the contact's notes should be synchronized to native contacts.",
"syncPhoneHomeFaxNumberTitle": "Phone Home Fax Number",
"syncPhoneHomeFaxNumberTooltip": "This value specifies if the contact's home fax number should be synchronized to native contacts.",
"syncPhoneHomeNumberTitle": "Phone Home Number",
"syncPhoneHomeNumberTooltip": "This value specifies if the contact's home phone number should be synchronized to native contacts.",
"syncPhoneMobileNumberTitle": "Phone Mobile Number",
"syncPhoneMobileNumberTooltip": "This value specifies if the contact's mobile phone number should be synchronized to native contacts.",
"syncPhoneOtherNumberTitle": "Phone Other Number",
"syncPhoneOtherNumberTooltip": "This value specifies if the contact's other phone number should be synchronized to native contacts.",
"syncPhonePagerNumberTitle": "Phone Pager Number",
"syncPhonePagerNumberTooltip": "This value specifies if the contact's pager phone number should be synchronized to native contacts.",
"syncPhoneWorkFaxNumberTitle": "Phone Work Fax Number",
"syncPhoneWorkFaxNumberTooltip": "This value specifies if the contact's work fax number should be synchronized to native contacts.",
"syncPhoneWorkNumberTitle": "Phone Work Number",
"syncPhoneWorkNumberTooltip": "This value specifies if the work phone number should be synchronized to native contacts.",
"syncPrefixTitle": "Name Prefix",
"syncPrefixTooltip": "This value specifies if the contact's name prefix should be synchronized to native contacts.",
"syncSuffixTitle": "Name Suffix",
"syncSuffixTooltip": "This value specifies if the contact's name suffix should be synchronized to native contacts.",
"textPredictionsTitle": "Text Predictions",
"textPredictionsTooltip": "Outlook can suggest words and phrases as you compose messages. When Outlook offers a suggestion, swipe to accept it. When set as not configured, the default app setting is set to On.",
"themesEnabledTitle": "Themes Enabled",
"themesEnabledTooltip": "Specify if the user is allowed to use a custom visual theme."
},
"Languages": {
"ar-aE": "Arabic (U.A.E.)",
"ar-bH": "Arabic (Bahrain)",
"ar-dZ": "Arabic (Algeria)",
"ar-eG": "Arabic (Egypt)",
"ar-iQ": "Arabic (Iraq)",
"ar-jO": "Arabic (Jordan)",
"ar-kW": "Arabic (Kuwait)",
"ar-lB": "Arabic (Lebanon)",
"ar-lY": "Arabic (Libya)",
"ar-mA": "Arabic (Morocco)",
"ar-oM": "Arabic (Oman)",
"ar-qA": "Arabic (Qatar)",
"ar-sA": "Arabic (Saudi Arabia)",
"ar-sY": "Arabic (Syria)",
"ar-tN": "Arabic (Tunisia)",
"ar-yE": "Arabic (Yemen)",
"az-cyrl": "Azerbaijani (Cyrillic, Azerbaijan)",
"az-latn": "Azerbaijani (Latin, Azerbaijan)",
"bn-bD": "Bangla (Bangladesh)",
"bn-iN": "Bangla (India)",
"bs-cyrl": "Bosnian (Cyrillic)",
"bs-latn": "Bosnian (Latin)",
"zh-cN": "Chinese (PRC)",
"zh-hK": "Chinese (Hong Kong S.A.R.)",
"zh-mO": "Chinese (Macao S.A.R.)",
"zh-sG": "Chinese (Singapore)",
"zh-tW": "Chinese (Taiwan)",
"hr-bA": "Croatian (Latin)",
"hr-hR": "Croatian (Croatia)",
"nl-bE": "Dutch (Belgium)",
"nl-nL": "Dutch (Netherlands)",
"en-aU": "English (Australia)",
"en-bZ": "English (Belize)",
"en-cA": "English (Canada)",
"en-cabn": "English (Caribbean)",
"en-iE": "English (Ireland)",
"en-iN": "English (India)",
"en-jM": "English (Jamaica)",
"en-mY": "English (Malaysia)",
"en-nZ": "English (New Zealand)",
"en-pH": "English (Republic of the Philippines)",
"en-sG": "English (Singapore)",
"en-tT": "English (Trinidad and Tobago)",
"en-uK": "English (United Kingdom)",
"en-uS": "English (United States)",
"en-zA": "English (South Africa)",
"en-zW": "English (Zimbabwe)",
"fr-bE": "French (Belgium)",
"fr-cA": "French (Canada)",
"fr-cH": "French (Switzerland)",
"fr-fR": "French (France)",
"fr-lU": "French (Luxembourg)",
"fr-mC": "French (Monaco)",
"de-aT": "German (Austria)",
"de-cH": "German (Switzerland)",
"de-dE": "German (Germany)",
"de-lI": "German (Liechtenstein)",
"de-lU": "German (Luxembourg)",
"iu-cans": "Inuktitut (Syllabics, Canada)",
"iu-latn": "Inuktitut (Latin, Canada)",
"it-cH": "Italian (Switzerland)",
"it-iT": "Italian (Italy)",
"ms-bN": "Malay (Brunei Darussalam)",
"ms-mY": "Malay (Malaysia)",
"mn-cN": "Mongolian (Traditional Mongolian, PRC)",
"mn-mN": "Mongolian (Cyrillic, Mongolia)",
"no-nB": "Norwegian, Bokmål (Norway)",
"no-nn": "Norwegian, Nynorsk (Norway)",
"pt-bR": "Portuguese (Brazil)",
"pt-pT": "Portuguese (Portugal)",
"quz-bO": "Quechua (Bolivia)",
"quz-eC": "Quechua (Ecuador)",
"quz-pE": "Quechua (Peru)",
"smj-nO": "Sami, Lule (Norway)",
"smj-sE": "Sami, Lule (Sweden)",
"se-fI": "Sami, Northern (Finland)",
"se-nO": "Sami, Northern (Norway)",
"se-sE": "Sami, Northern (Sweden)",
"sma-nO": "Sami, Southern (Norway)",
"sma-sE": "Sami, Southern (Sweden)",
"smn": "Sami, Inari (Finland)",
"sms": "Sami, Skolt (Finland)",
"sr-Cyrl-bA": "Serbian (Cyrillic)",
"sr-Cyrl-rS": "Serbian (Cyrillic, Serbia and Montenegro)",
"sr-Latn-bA": "Serbian (Latin)",
"sr-Latn-rS": "Serbian (Latin, Serbia)",
"dsb": "Lower Sorbian (Germany)",
"hsb": "Upper Sorbian (Germany)",
"es-es-tradnl": "Spanish (Spain, Traditional Sort)",
"es-aR": "Spanish (Argentina)",
"es-bO": "Spanish (Bolivia)",
"es-cL": "Spanish (Chile)",
"es-cO": "Spanish (Colombia)",
"es-cR": "Spanish (Costa Rica)",
"es-dO": "Spanish (Dominican Republic)",
"es-eC": "Spanish (Ecuador)",
"es-eS": "Spanish (Spain)",
"es-gT": "Spanish (Guatemala)",
"es-hN": "Spanish (Honduras)",
"es-mX": "Spanish (Mexico)",
"es-nI": "Spanish (Nicaragua)",
"es-pA": "Spanish (Panama)",
"es-pE": "Spanish (Peru)",
"es-pR": "Spanish (Puerto Rico)",
"es-pY": "Spanish (Paraguay)",
"es-sV": "Spanish (El Salvador)",
"es-uS": "Spanish (United States)",
"es-uY": "Spanish (Uruguay)",
"es-vE": "Spanish (Venezuela)",
"sv-fI": "Swedish (Finland)",
"uz-cyrl": "Uzbek (Cyrillic, Uzbekistan)",
"uz-latn": "Uzbek (Latin, Uzbekistan)",
"af": "Afrikaans (South Africa)",
"sq": "Albanian (Albania)",
"am": "Amharic (Ethiopia)",
"hy": "Armenian (Armenia)",
"as": "Assamese (India)",
"ba": "Bashkir (Russia)",
"eu": "Basque (Basque)",
"be": "Belarusian (Belarus)",
"br": "Breton (France)",
"bg": "Bulgarian (Bulgaria)",
"ca": "Catalan (Catalan)",
"co": "Corsican (France)",
"cs": "Czech (Czech Republic)",
"da": "Danish (Denmark)",
"prs": "Dari (Afghanistan)",
"dv": "Divehi (Maldives)",
"et": "Estonian (Estonia)",
"fo": "Faroese (Faroe Islands)",
"fil": "Filipino (Philippines)",
"fi": "Finnish (Finland)",
"gl": "Galician (Galician)",
"ka": "Georgian (Georgia)",
"el": "Greek (Greece)",
"gu": "Gujarati (India)",
"ha": "Hausa (Latin, Nigeria)",
"he": "Hebrew (Israel)",
"hi": "Hindi (India)",
"hu": "Hungarian (Hungary)",
"is": "Icelandic (Iceland)",
"ig": "Igbo (Nigeria)",
"id": "Indonesian (Indonesia)",
"ga": "Irish (Ireland)",
"xh": "isiXhosa (South Africa)",
"zu": "isiZulu (South Africa)",
"ja": "Japanese (Japan)",
"kn": "Kannada (India)",
"kk": "Kazakh (Kazakhstan)",
"km": "Khmer (Cambodia)",
"rw": "Kinyarwanda (Rwanda)",
"sw": "Kiswahili (Kenya)",
"kok": "Konkani (India)",
"ko": "Korean (Korea)",
"ky": "Kyrgyz (Kyrgyzstan)",
"lo": "Lao (Lao P.D.R.)",
"lv": "Latvian (Latvia)",
"lt": "Lithuanian (Lithuania)",
"lb": "Luxembourgish (Luxembourg)",
"mk": "Macedonian (North Macedonia)",
"ml": "Malayalam (India)",
"mt": "Maltese (Malta)",
"mi": "Maori (New Zealand)",
"mr": "Marathi (India)",
"moh": "Mohawk (Mohawk)",
"ne": "Nepali (Nepal)",
"oc": "Occitan (France)",
"or": "Odia (India)",
"ps": "Pashto (Afghanistan)",
"fa": "Persian",
"pl": "Polish (Poland)",
"pa": "Punjabi (India)",
"ro": "Romanian (Romania)",
"rm": "Romansh (Switzerland)",
"ru": "Russian (Russia)",
"sa": "Sanskrit (India)",
"st": "Sesotho sa Leboa (South Africa)",
"tn": "Setswana (South Africa)",
"si": "Sinhala (Sri Lanka)",
"sk": "Slovak (Slovakia)",
"sl": "Slovenian (Slovenia)",
"sv": "Swedish (Sweden)",
"syr": "Syriac (Syria)",
"tg": "Tajik (Cyrillic, Tajikistan)",
"ta": "Tamil (India)",
"tt": "Tatar (Russia)",
"te": "Telugu (India)",
"th": "Thai (Thailand)",
"bo": "Tibetan (PRC)",
"tr": "Turkish (Turkey)",
"tk": "Turkmen (Turkmenistan)",
"uk": "Ukrainian (Ukraine)",
"ur": "Urdu (Islamic Republic of Pakistan)",
"vi": "Vietnamese (Vietnam)",
"cy": "Welsh (United Kingdom)",
"wo": "Wolof (Senegal)",
"ii": "Yi (PRC)",
"yo": "Yoruba (Nigeria)"
},
"Category": {
"airPlay": "AirPlay",
"airPrint": "AirPrint",
"androidDefenderAtp": "Microsoft Defender for Endpoint",
"androidDeviceOwnerApplications": "Applications",
"androidDeviceOwnerPolicyMessages": "Custom support information",
"androidForWorkPassword": "Device password",
"appManagement": "Allow or Block apps",
"applicationGuard": "Microsoft Defender Application Guard",
"applicationRestrictions": "Restricted Apps",
"applicationVisibility": "Show or Hide Apps",
"applications": "App Store",
"applicationsAndGames": "App Store, Doc Viewing, Gaming",
"applicationsAndGoogle": "Google Play Store",
"appsAndExperience": "Apps and experience",
"associatedDomains": "Associated domains",
"autonomousSingleAppMode": "Autonomous Single App Mode",
"azureOperationalInsights": "Azure operational insights",
"bitLocker": "Windows Encryption",
"bootOptions": "Boot options",
"browser": "Browser",
"builtinApps": "Built-in apps",
"cameras": "Cameras",
"cellular": "Cellular",
"cloudAndStorage": "Cloud and Storage",
"cloudPrint": "Cloud Printer",
"complianceEmailProfile": "Email",
"connectedDevices": "Connected devices",
"connectivity": "Cellular and connectivity",
"contentCaching": "Content caching",
"controlPanelAndSettings": "Control Panel and Settings",
"credentialGuard": "Microsoft Defender Credential Guard",
"customCompliance": "Custom Compliance",
"customConfiguration": "Custom Configuration Profile",
"customOMASettings": "Custom OMA-URI Settings",
"customPreferences": "Preference file",
"dFCISecuritySettings": "Security settings",
"defender": "Microsoft Defender Antivirus",
"defenderAntivirus": "Microsoft Defender Antivirus",
"defenderExploitGuard": "Microsoft Defender Exploit Guard",
"defenderFirewall": "Microsoft Defender Firewall",
"defenderLocalSecurityOptions": "Local device security options",
"defenderSecurityCenter": "Microsoft Defender Security Center",
"deliveryOptimization": "Delivery Optimization",
"derivedCredentialAuthenticationConfiguration": "Derived credential",
"deviceExperience": "Device experience",
"deviceFirmwareConfigurationInterface": "Device Firmware Configuration Interface",
"deviceGuard": "Microsoft Defender Application Control",
"deviceHealth": "Device Health",
"devicePassword": "Device password",
"deviceProperties": "Device Properties",
"deviceRestrictions": "General",
"deviceSecurity": "System security",
"display": "Display",
"domainJoin": "Domain Join",
"domains": "Domains",
"edgeBrowser": "Microsoft Edge Legacy (Version 45 and earlier)",
"edgeBrowserSmartScreen": "Microsoft Defender SmartScreen",
"edgeKiosk": "Microsoft Edge kiosk mode",
"editionUpgrade": "Edition Upgrade",
"education": "Education",
"educationDeviceCerts": "Device certificates",
"educationStudentCerts": "Student certificates",
"educationTakeATest": "Take a Test",
"educationTeacherCerts": "Teacher certificates",
"emailProfile": "Email",
"enterpriseDataProtection": "Windows Information Protection",
"extensibleSingleSignOn": "Single sign-on app extension",
"filevault": "FileVault",
"firewall": "Firewall",
"games": "Games",
"gatekeeper": "Gatekeeper",
"healthMonitoring": "Health monitoring",
"homeScreenLayout": "Home Screen Layout",
"iOSWallpaper": "Wallpaper",
"importedPFX": "PKCS Imported Certificate",
"iosDefenderAtp": "Microsoft Defender for Endpoint",
"iosKiosk": "Kiosk",
"kernelExtensions": "Kernel extensions",
"keyboardAndDictionary": "Keyboard and dictionary",
"kiosk": "Kiosk",
"kioskAndroidEnterprise": "Dedicated devices",
"kioskConfiguration": "Kiosk",
"kioskConfigurationV2": "Kiosk",
"kioskWebBrowser": "Kiosk web browser",
"lockScreenMessage": "Lock Screen Message",
"lockedScreenExperience": "Locked Screen Experience",
"logging": "Reporting and Telemetry",
"loginItems": "Login items",
"loginWindow": "Login window",
"macDefenderAtp": "Microsoft Defender for Endpoint",
"maintenance": "Maintenance",
"malware": "Malware",
"messaging": "Messaging",
"microphonesAndSpeakers": "Microphones and speakers",
"networkBoundary": "Network boundary",
"networkProxy": "Network proxy",
"notifications": "App Notifications",
"pKCS": "PKCS Certificate",
"password": "Password",
"personalProfile": "Personal profile",
"personalization": "Personalization",
"policyOverride": "Override Group Policy",
"ports": "Ports",
"powerSettings": "Power Settings",
"printer": "Printer",
"privacy": "Privacy",
"privacyPerApp": "Per-app privacy exceptions",
"privacyPreferences": "Privacy preferences",
"projection": "Projection",
"radios": "Radios",
"sCCMCompliance": "Configuration Manager Compliance",
"sCEP": "SCEP Certificate",
"sCEPProperties": "SCEP Certificate",
"sMode": "Mode switch (Windows Insider only)",
"safari": "Safari",
"search": "Search",
"session": "Session",
"sharedDevice": "Shared iPad",
"sharedPCAccountManager": "Shared multi-user device",
"singleSignOn": "Single sign-on",
"smartScreen": "Microsoft Defender SmartScreen",
"softwareUpdates": "Settings",
"start": "Start",
"systemExtensions": "System extensions",
"systemSecurity": "System Security",
"trustedCert": "Trusted Certificate",
"uEFIAccess": "UEFI access",
"updates": "Updates",
"userRights": "User Rights",
"usersAndAccounts": "Users and Accounts",
"vPN": "Base VPN",
"vPNApps": "Automatic VPN",
"vPNAppsAndTrafficRules": "Apps and Traffic Rules",
"vPNConditionalAccess": "Conditional Access",
"vPNConnectivity": "Connectivity",
"vPNDNSTriggers": "DNS Settings",
"vPNIKEv2": "IKEv2 settings",
"vPNProxy": "Proxy",
"vPNSplitTunneling": "Split Tunneling",
"vPNTrustedNetwork": "Trusted Network Detection",
"wakeSettings": "Wake settings",
"webContentFilter": "Web Content Filter",
"wiFi": "Wi-Fi",
"win10Wifi": "Wi-Fi",
"windowsAtp": "Microsoft Defender for Endpoint",
"windowsDefenderATP": "Microsoft Defender for Endpoint",
"windowsHelloForBusiness": "Windows Hello for Business",
"windowsSpotlight": "Windows Spotlight",
"wiredNetwork": "Wired network",
"wireless": "Wireless",
"wirelessProjection": "Wireless projection",
"workProfile": "Work profile settings",
"workProfilePassword": "Work profile password",
"xboxServices": "Xbox services",
"zebraMx": "MX profile (Zebra only)",
"complianceActionsLabel": "Actions for noncompliance"
},
"WindowsFeatureUpdateProfile": {
"Details": {
"Description": {
"label": "Description"
},
"FeatureDeploymentSettings": {
"header": "Feature deployment settings"
},
"FeatureUpdateVersion": {
"infoballoon": "This feature cannot downgrade a device.",
"label": "Feature update to deploy"
},
"GradualRolloutEndDate": {
"label": "Final group availability"
},
"GradualRolloutInterval": {
"label": "Days between groups"
},
"GradualRolloutStartDate": {
"label": "First group availability"
},
"Name": {
"label": "Name"
},
"RolloutOptions": {
"label": "Rollout options"
},
"RolloutSettings": {
"header": "When would you like to make the update available in Windows Update?"
},
"ScopeSettings": {
"header": "Configure scope tags for this policy."
},
"StartDateOnlyStartDate": {
"label": "First available date"
},
"bladeTitle": "Feature update deployments",
"deploymentSettingsTitle": "Deployment settings",
"loadError": "Loading failed!",
"windows11EULA": "By selecting this Feature update to deploy you are agreeing that when applying this operating system to a device either (1) the applicable Windows license was purchased though volume licensing, or (2) that you are authorized to bind your organization and are accepting on its behalf the relevant Microsoft Software License Terms to be found here <a>{0}</a>."
},
"Notifications": {
"deploymentSaved": "\"{0}\" has been saved.",
"newFeatureUpdateDeploymentCreated": "New feature update deployment created."
},
"TabName": {
"deploymentSettings": "Deployment settings",
"groupAssignmentSettings": "Assignments",
"scopeSettings": "Scope tags"
},
"gradualRolloutLicenseWarning": "This capability requires specific licensing.",
"gradualRolloutLicenseWarningEdit": "This capability may continue to be used and configured until the policy is saved without this capability selected.",
"licenseLearnMoreText": "Learn more about pre-requisites and feature update policies."
},
"WIPPinRequirements": {
"WipLowercaseCharacterPinRequirements": {
"allow": "Allow the use of lowercase letters in PIN",
"notAllow": "Do not allow the use of lowercase letters in PIN",
"requireAtLeastOne": "Require the use of at least one lowercase letter in PIN"
},
"WipSpecialCharacterPinRequirements": {
"allow": "Allow the use of special characters in PIN",
"notAllow": "Do not allow the use of special characters in PIN",
"requireAtLeastOne": "Require the use of at least one special character in PIN"
},
"WipUppercaseCharacterPinRequirements": {
"allow": "Allow the use of uppercase letters in PIN",
"notAllow": "Do not allow the use of uppercase letters in PIN",
"requireAtLeastOne": "Require the use of at least one uppercase letter in PIN"
}
},
"OutlookAppConfigSettings": {
"AllowUserToChangeSetting": {
"title": "Allow user to change setting",
"tooltip": "Specify if the user is allowed to change the setting."
},
"AllowWorkAccounts": {
"title": "Allow only work or school accounts",
"tooltip": " By enabling this setting, users will be unable to add personal email and storage accounts within Outlook. If the user has a personal account added to Outlook, the user is prompted to remove the personal account. If the user does not remove the personal account, the work or school account cannot be added."
},
"BlockExternalImages": {
"title": "Block external images",
"tooltip": "When block external images is enabled, the app will prevent the download of images hosted on the Internet that are embedded in the message body. When set as not configured, the default app setting is set to Off"
},
"ConfigureEmail": {
"title": "Configure email account settings"
},
"DefaultAppSignatureSetting": {
"Tooltip": {
"android": "Default app signature indicates whether the app will use “Get Outlook for Android” as the default signature during message composition. If the setting is configured as Off, the default signature will not be used; however, users can add their own signature.\n\nWhen set as Not Configured, the default app setting is set to On.",
"iOS": "Default app signature indicates whether the app will use “Get Outlook for iOS” as the default signature during message composition. If the setting is configured as Off, the default signature will not be used; however, users can add their own signature.\n\nWhen set as Not Configured, the default app setting is set to On."
},
"title": "Default app signature"
},
"OfficeFeedReplies": {
"title": "Discover Feed",
"tooltip": "Discover Feed surfaces your most frequently accessed Office files. By default, this feed is enabled when Delve is enabled for the user. When set as not configured, the default app setting is set to On."
},
"OrganizeMailByThread": {
"title": "Organize mail by thread",
"tooltip": "The default behavior in Outlook is to bundle mail conversations into a threaded conversation view. If this setting is disabled Outlook will display each mail individually and will not group them by thread."
},
"PlayMyEmails": {
"title": "Play My Emails",
"tooltip": "The Play My Emails feature is not enabled by default in the app, but it is promoted to eligible users via a banner in the inbox. When set to Off, this feature will not be promoted to eligible users in the app. Users can choose to manually enable Play My Emails from within the app, even when this feature is set to Off. When set as Not configured, the default app setting is On and the feature will be promoted to eligible users."
},
"SuggestedReplies": {
"title": "Suggested replies",
"tooltip": "When you open a message, Outlook might suggest replies below the message. If you select a suggested reply, you can edit the reply before sending it."
},
"SyncCalendars": {
"title": "Sync Calendars",
"tooltip": "Configure whether users can sync their Outlook calendar to the native calendar app and database."
},
"TextPredictions": {
"title": "Text Predictions",
"tooltip": "Outlook can suggest words and phrases as you compose messages. When Outlook offers a suggestion, swipe to accept it. When set as not configured, the default app setting is set to On."
},
"ThemesEnabled": {
"title": "Themes enabled",
"tooltip": "Specify if the user is allowed to use a custom visual theme."
}
},
"CustomCompliance": {
"FilePicker": {
"noScriptSelectedError": "Please select a discovery script",
"scriptFileLabel": "Select your discovery script"
},
"PremiumBanner": {
"label": "Custom Compliance is currently offered in preview. When it becomes generally available, you can add it for an additional cost to the licensing options that include Microsoft Endpoint Manager or Intune."
},
"ScriptPicker": {
"objectName": "Script",
"placeholder": "Click to select",
"searchboxPlaceholder": "Search by script name",
"title": "Select a discovery script"
},
"SummaryGrid": {
"ariaLabel": "Custom compliance rules summary"
},
"UploadFile": {
"jsonFileLabel": "Upload and validate the JSON file with your custom compliance settings",
"noFileSelectedError": "Please select a json file",
"parseFileSelectedError": "The json file is invalid"
}
},
"AssignmentFilters": {
"assignmentFilterColumnHeader": "Filter",
"noFilters": "None"
},
"Platform": {
"all": "All",
"android": "Android device administrator",
"androidAOSP": "Android (AOSP)",
"androidEnterprise": "Android Enterprise",
"androidForWork": "Android Enterprise",
"androidWorkProfile": "Android enterprise",
"common": "Common",
"iOS": "iOS/iPadOS",
"iosAndAndroidPlatformLabel": "iOS and Android",
"iosCommaAndroidPlatformLabel": "iOS, Android",
"linux": "Linux",
"macOS": "macOS",
"unknown": "Unknown",
"unsupported": "Unsupported",
"windows": "Windows",
"windows10": "Windows 10 and later",
"windows10CM": "Windows 10 and later (ConfigMgr)",
"windows10Holo": "Windows 10 Holographic",
"windows10Mobile": "Windows 10 Mobile",
"windows10Team": "Windows 10 Team",
"windows10X": "Windows 10X",
"windows8": "Windows 8.1 and later",
"windows8And10": "Windows 8 and 10",
"windowsPhone": "Windows Phone 8.1",
"windows10AndLater": "Windows 10 and later",
"windows10AndWindowsServer": "Windows 10, Windows 11, and Windows Server (ConfigMgr)",
"windows10andLaterCM": "Windows 10 and later (ConfigMgr)",
"holoLens": "HoloLens",
"surfaceHub2": "Surface Hub 2",
"surfaceHub2S": "Surface Hub 2S",
"windowsPC": "Windows PC"
},
"AppInformationTab": {
"Error": {
"multipleChildApps": "A macOS LOB app can only be installed as managed when the uploaded package contains a single app."
},
"Info": {
"AppStoreUrl": {
"android": "Enter the link to the app listing in Google Play store. For example:",
"androidLink": "https://play.google.com/store/apps/details?id=com.microsoft.office.outlook",
"microsoftStore": "Enter the 'Link for Intune' URL for the app provided from the store. For more information, see {0}.",
"microsoftStoreLink": "https://go.microsoft.com/fwlink/?linkid=2115228",
"microsoftStoreLinkText": "Add Microsoft Store apps (legacy) to Microsoft Intune",
"windows": "Enter the link to the app listing in the Microsoft Store. For example:",
"windowsLink": "https://www.microsoft.com/en-us/p/microsoft-to-do-lists-tasks-reminders/9nblggh5r558"
},
"appPackageFile": "A file that contains your app in a format that can be sideloaded on a device. Valid package types include: Android (.apk), iOS (.ipa), macOS (.pkg), Windows (.msi, .appx, .appxbundle, .msix, and .msixbundle).",
"applicableDeviceType": "Select the device types that can install this app.",
"category": "Categorize the app to make it easier for users to sort and find in Company Portal. You can choose multiple categories.",
"categoryLink": "https://docs.microsoft.com/en-us/intune/apps/apps-add#create-and-edit-categories-for-apps",
"description": "Help your device users understand what the app is and/or what they can do in the app. This description will be visible to them in Company Portal.",
"developer": "The name of the company or Individual that developed the app. This information will be visible to people signed into the admin center.",
"displayVersion": "The version of the app. This information will be visible to users in the Company Portal.",
"infoUrl": "Link people to a website or documentation that has more information about the app. The information URL will be visible to users in Company Portal.",
"isFeatured": "Featured apps are prominently placed in Company Portal so that users can quickly get to them.",
"learnMore": "Learn more",
"logo": "Upload a logo that's associated with the app. This logo will appear next to the app throughout Company Portal.",
"macOSDmgAppPackageFile": "A file that contains your app in a format that can be sideloaded on a device. Valid package type: .dmg.",
"minOperatingSystem": "Select the earliest operating system version on which the app can be installed. If you assign the app to a device with an earlier operating system, it will not be installed.",
"name": "Add a name for the app. This name will be visible in the Intune apps list and to users in the Company Portal.",
"notes": "Add additional notes about the app. Notes will be visible to people signed in to the admin center.",
"owner": "The name of the person in your organization who manages licensing or is the point-of-contact for this app. This name will be visible to people signed in to the admin center.",
"packageId": "The app Package Identifier is the unique value that identifies the app.",
"packageName": "Contact the device manufacturer to get the app's package name. Example package name: com.example.app",
"privacyUrl": "Provide a link for people who want to learn more about the app's privacy settings and terms. The privacy URL will be visible to users in Company Portal.",
"publisher": "The name of the developer or company that distributes the app. This information will be visible to users in Company Portal.",
"selectApp": "Search the App Store for iOS store apps that you want to deploy with Intune.",
"useManagedBrowser": "If required, when a user opens the web app, it will open in an Intune-protected browser such as Microsoft Edge or Intune Managed Browser. This setting applies to both iOS and Android devices.",
"useManagedBrowserLink": "https://docs.microsoft.com/en-us/intune/apps/app-configuration-managed-browser",
"win32AppPackageFile": "A file that contains your app in a format that can be sideloaded on a device. Valid package type: .intunewin.",
"winGetStoreSelectApp": "Search the Microsoft Store app (new) for store apps that you want to deploy with Intune."
},
"descriptionPreview": "Preview",
"descriptionRequired": "Description is required.",
"editDescription": "Edit Description",
"macOSMinOperatingSystemAdditionalInfo": "The minimum operating system for uploading a .pkg file is macOS 10.14. Upload a .pkg file to select an older minimum operating system.",
"name": "App information",
"nameForOfficeSuitApp": "App suite information"
},
"Tooltips": {
"PolicySettings": {
"TouchId1": {
"android": "On Android, you can allow using fingerprint identification instead of a PIN. Users are prompted to provide their fingerprints when they access this app with their work accounts.",
"iOS": "On iOS/iPadOS devices, you can allow using fingerprint identification instead of a PIN. Users are prompted to provide their fingerprints when they access this app with their work accounts.",
"mac": "On Mac devices, you can allow using fingerprint identification instead of a PIN. Users are prompted to provide their fingerprints when they access this app with their work accounts."
},
"appSharingFromLevel1": "Select one of the following options to specify the apps that this app can receive data from:",
"appSharingFromLevel2": "{0}: Only allow receiving data in org documents or accounts from other policy managed apps",
"appSharingFromLevel3": "{0}: Allow receiving data in org documents or accounts from any app",
"appSharingFromLevel4": "{0}: Do not allow receiving data in org documents or accounts from any app",
"appSharingFromLevel5": "{0}: Allow data transfer from any app and treat all incoming data without an user identity as Org data.",
"appSharingToLevel1": "Select one of the following options to specify the apps that this app can send data to:",
"appSharingToLevel2": "{0}: Only allow sending org data to other policy managed apps",
"appSharingToLevel3": "{0}: Allow sending org data to any app",
"appSharingToLevel4": "{0}: Do not allow sending org data to any app",
"appSharingToLevel5": "{0}: Only allow transfer only to other policy managed apps and file transfer to other MDM managed apps on enrolled devices",
"appSharingToLevel6": "{0}: Allow transfer only to other policy managed apps and filter OS Open-in/Share dialogs to only display policy managed apps",
"conditionalEncryption1": "Select {0} to disable app encryption for internal app storage when device encryption is detected on an enrolled device.",
"conditionalEncryption2": "Note: Intune can only detect device enrollment with Intune MDM. External app storage will still be encrypted to ensure data cannot be accessed by unmanaged applications.",
"contactSyncMac": "If disabled, apps cannot save contacts to the native address book.",
"contactsSync": "Choose <b>Block</b> to prevent policy managed apps from saving data to the device's native apps (like Contacts, Calendar and widgets), or to prevent the use of add-ins within the policy managed apps. If you choose <b>Allow</b>, the policy managed app can save data to the native apps or use add-ins, if those features are supported and enabled within the policy managed app. <br /> <br /> Apps may provide additional configuration capability with app configuration policies. For more information, see the app's documentation.",
"encryptionAndroid1": "For apps that are associated with an Intune mobile application management policy, encryption is provided by Microsoft. Data is encrypted synchronously during file I/O operations according to the setting in the mobile application management policy. Managed apps on Android use AES-128 encryption in CBC mode utilizing the platform cryptography libraries. The encryption method is not FIPS 140-2 compliant. SHA-256 encryption is supported as an explicit instruction using the SigAlg parameter and will only work on devices 4.2 and above. Content on the device storage is always be encrypted.",
"encryptionAndroid2": "When you require encryption in your app policy, the end-user is required to setup and use a PIN to access their device. If there is not a PIN set up for device access, the apps will not launch and the end-user will instead see a message, which says, “Your company has required that you must first enable a device PIN to access this application.\"",
"encryptionMac1": "For apps that are associated with an Intune mobile application management policy, encryption is provided by Microsoft. Data is encrypted synchronously during file I/O operations according to the setting in the mobile application management policy. Managed apps on Mac use AES-128 encryption in CBC mode utilizing the platform cryptography libraries. The encryption method is not FIPS 140-2 compliant. SHA-256 encryption is supported as an explicit instruction using the SigAlg parameter and will only work on devices 4.2 and above. Content on the device storage is always be encrypted.",
"faceId1": "Where applicable, you can allow the use of face identification instead of PIN. Users are prompted to provide face identification when they access this app with their work accounts.",
"faceId2": "Select <b>Yes</b> to allow face identification instead of a PIN for app access.",
"managementLevelsAndroid1": "Use this option to specify whether this policy applies to Android device administrator devices, Android Enterprise devices, or unmanaged devices.",
"managementLevelsAndroid2": "<b>{0}:</b> Unmanaged devices are devices where Intune MDM management has not been detected. This includes 3rd party MDM vendors.",
"managementLevelsAndroid3": "<b>{0}:</b> Intune-managed devices using the Android Device Administration API.",
"managementLevelsAndroid4": "<b>{0}:</b> Intune-managed devices using Android Enterprise Work Profiles or Android Enterprise Full Device Management.",
"managementLevelsIos1": "Use this option to specify whether this policy applies to MDM managed devices or unmanaged devices.",
"managementLevelsIos2": "<b>{0}:</b> Unmanaged devices are devices where Intune MDM management has not been detected. This includes 3rd party MDM vendors.",
"managementLevelsIos3": "<b>{0}:</b> Managed devices are managed by Intune MDM.",
"minAppVersion": "Define the required minimum App version number that a user should have to gain secure access to the app.",
"minAppVersionWarning": "Define the recommended minimum App version number that a user should have for secure access to the app.",
"minOsVersion": "Define the required minimum OS version number that a user should have to gain secure access to the app.",
"minOsVersionWarning": "Define the recommended minimum OS version number that a user should have to gain secure access to the app.",
"minPatchVersion": "Define the oldest required Android security patch level a user can have to gain secure access to the app.",
"minPatchVersionWarning": "Define the oldest recommended Android security patch level a user can have for secure access to the app.",
"minSdkVersion": "Define the required minimum Intune Application Protection Policy SDK version that a user should have to gain secure access to the app.",
"requireAppPinDefault": "<p>Select <b>Yes</b> to disable the app PIN when a device lock is detected on an enrolled device.</p>",
"targetAllApps1": "Use this option to target your policy to apps on devices of any management state.",
"targetAllApps2": "During policy conflict resolution this setting will be superseded if a user has policy targeted for a specific management state.",
"touchId2": "Select {0} to require fingerprint identity instead of a PIN for app access."
},
"Tap": {
"pinResetAfterNumberOfDays": "Specify the number of days that must pass before the user must reset the PIN.",
"previousPinBlockCount": "This setting specifies the number of previous PINs that Intune will maintain. Any new PINs must be different from those that Intune is maintaining."
},
"WipPolicySettings": {
"25": "",
"allowWindowsSearch": "This will allow Windows Search to continue to search through encrypted data.",
"authoritativeIpRanges": "Enable this setting if you want to override Windows auto-detection of IP ranges.",
"authoritativeProxyServers": "Enable this setting if you want to override Windows auto-detection of proxy servers.",
"checkInput": "Check input for validity",
"dataRecoveryCert": "A recovery certificate is a special Encrypting File System (EFS) certificate you can use to recover encrypted files if your encryption key is lost or damaged. You need to create the recovery certificate, and specify it here. More information is <a target=\"_blank\" href='{0}'>here</a>",
"enterpriseCloudResources": "<p>Specify cloud resources to be treated as corporate and be protected with Windows Information Protection policy. Multiple resources can be specified by separating individual entries with the '|' character.</p><p>If you have a proxy configured in your company, then you can specify the proxy through which traffic to cloud resources you specified will be routed.</p><p>URL[,Proxy]|URL[,Proxy]</p><p>Without proxy: contoso.sharepoint.com|contoso.visualstudio.com <br/>With proxy: contoso.sharepoint.com,proxy.contoso.com|contoso.visualstudio.com,proxy.contoso.com</p>",
"enterpriseIPv4Ranges": "<p>Specify the IPv4 ranges that form your corporate network. These are used in conjunction with the Enterprise Network Domain Names that you specify to define your corporate network boundary.</p><p>This setting is required to have Windows Information Protection enabled.</p><p>Multiple ranges can be specified by separating individual entries with a comma.</p><p>For example: 3.4.0.1-3.4.255.255,192.168.1.1-192.168.255.255</p>",
"enterpriseIPv6Ranges": "<p>Specify the IPv6 ranges that form your corporate network. These are used in conjunction with the Enterprise Network Domain Names that you specify to define your corporate network boundary.</p><p>Multiple ranges can be specified by separating individual entries with a comma.</p><p>For example: 2001:4898:dc05::-2001:4898:dc05:ffff:ffff:ffff:ffff:ffff,2a01:110::-2a01:110:7fff:ffff:ffff:ffff:ffff:ffff</p>",
"enterpriseInternalProxyServers": "<p>If you have a proxy configured in your company, then you can specify the proxy through which traffic to cloud resources specified in the Enterprise Cloud Resources settings are to be routed.</p><p>Multiple values can be specified by separating individual entries with a semi-colon.</p><p>For example: contoso.internalproxy1.com;contoso.internalproxy2.com</p>",
"enterpriseNetworkDomainNames": "<p>Specify the DNS names that form your corporate network. These are used in conjunction with the IP ranges that you specify to define your corporate network boundary. Multiple values can be specified by separating individual entries with a comma.</p><p>This setting is required to have Windows Information Protection enabled.</p><p>For example: corp.contoso.com,region.contoso.com</p>",
"enterpriseProtectedDomainNames": "<p>Specify the DNS names that form your corporate network. These are used in conjunction with the IP ranges that you specify to define your corporate network boundary. Multiple values can be specified by separating individual entries with a '|'.</p><p>This setting is required to have Windows Information Protection enabled.</p><p>For example: corp.contoso.com|region.contoso.com</p>",
"enterpriseProxyServers": "<p>If you have external facing proxies in your corporate network, specify them here. When specifying a proxy server address, you should also specify the port through which traffic should be allowed and protected through Windows Information Protection.</p><p>Note: This list must not include servers in your Enterprise Internal Proxy Server list. Multiple values can be specified by separating individual entries with a semi-colon.</p><p>For example: proxy.contoso.com:80;proxy2.contoso.com:80</p>",
"maxInactivityTime1": "Specifies the maximum amount of time (in minutes) allowed after the device is idle that will cause the device to become PIN or password locked. Users can select any existing timeout value less than the specified maximum time in the Settings app. Note the Lumia 950 and 950XL have a maximum timeout value of 5 minutes, regardless of the value set by this policy.",
"maxInactivityTime2": "0 (default) - No timeout is defined. The default of '0' is interpreted as 'No timeout is defined.'",
"maxPasswordAttempts1": "This policy has different behaviors on the mobile device and desktop.",
"maxPasswordAttempts2": "On a mobile device, when the user reaches the value set by this policy, then the device is wiped.",
"maxPasswordAttempts3": "On a desktop, when the user reaches the value set by this policy, it is not wiped.Instead, the desktop is put on BitLocker recovery mode, which makes the data inaccessible but recoverable.If BitLocker is not enabled, then the policy cannot be enforced.",
"maxPasswordAttempts4": "Prior to reaching the failed attempts limit, the user is sent to the lock screen and warned that more failed attempts will lock their computer.When the user reaches the limit, the device automatically reboots and shows the BitLocker recovery page.This page prompts the user for the BitLocker recovery key.",
"maxPasswordAttempts5": "0 (default) - The device is never wiped after an incorrect PIN or password is entered.",
"maxPasswordAttempts6": "Most secure value is 0 if all policy values = 0; otherwise, Min policy value is the most secure value.",
"mdmDiscoveryUrl": "Specify the URL for the MDM enrollment endpoint that users who enroll to MDM will use. By default, this is specified for Intune.",
"minimumPinLength1": "Integer value that sets the minimum number of characters required for the PIN. Default value is 4. The lowest number you can configure for this policy setting is 4. The largest number you can configure must be less than the number configured in the Maximum PIN length policy setting or the number 127, whichever is the lowest.",
"minimumPinLength2": "If you configure this policy setting, the PIN length must be greater than or equal to this number. If you disable or do not configure this policy setting, the PIN length must be greater than or equal to 4.",
"name": "The name of this network boundary",
"neutralResources": "<p>If you have authentication redirection endpoints in your company, specify those here. The locations specified here are considered to be either personal or corporate depending on the context of the connection prior to the redirection.</p><p>Multiple values can be specified by separating individual entries with a comma.</p><p>For example: sts.contoso.com,sts.contoso2.com</p>",
"passportForWork1": "Value that sets Windows Hello for Business as a method for signing into Windows.",
"passportForWork2": "Default value is true.If you set this policy to false, the user cannot provision Windows Hello for Business except on Azure Active Directory joined mobile phones where provisioning is required.",
"pinExpiration": "The largest number you can configure for this policy setting is 730. The lowest number you can configure for this policy setting is 0. If this policy is set to 0, then the users PIN will never expire.",
"pinHistory1": "The largest number you can configure for this policy setting is 50. The lowest number you can configure for this policy setting is 0. If this policy is set to 0, then storage of previous PINs is not required.",
"pinHistory2": "The current PIN of the user is included in the set of PINs associated with the user account. PIN history is not preserved through a PIN reset.",
"protectUnderLock": "Protects app content while the device is in a locked state.",
"protectionModeBlock": "<p><b>Block:</b> Blocks enterprise data from leaving protected apps.</p>",
"protectionModeOff": "<p><b>Off:</b> User is free to relocate data off of protected apps. No actions are logged.</p>",
"protectionModeOverride": "<p><b>Allow overrides:</b> User is prompted when attempting to relocate data from a protected to a non-protected app. If they choose to override this prompt, the action will be logged. </p>",
"protectionModeSilent": "<p><b>Silent:</b> User is free to relocate data off of protected apps. These actions are logged.</p>",
"required": "Required",
"revokeOnMdmHandoff": "Added in Windows 10, version 1703. This policy controls whether to revoke the WIP keys when a device upgrades from MAM to MDM. If set to “Off”, the keys will not be revoked and the user will continue to have access to protected files after upgrade. This is recommended if the MDM service is configured with the same WIP EnterpriseID as the MAM service.",
"revokeOnUnenroll": "This will cause encryption keys to be revoked when a device un-enrolls from this policy.",
"rmsTemplateForEdp": "TemplateID GUID to use for RMS encryption. The Azure RMS template allows the IT admin to configure the details about who has access to RMS-protected file and how long they have access.",
"showWipIcon": "This will let the user know when they are acting in a corporate context, by overlaying an icon.",
"useRmsForWip": "Specifies whether to allow Azure RMS encryption for WIP."
},
"requireAppPin": "<p>Select <b>Yes</b> to disable the app PIN when a device lock is detected on an enrolled device.</p><p>Note: Intune cannot detect device enrollment with a third-party EMM solution on iOS/iPadOS.</p>"
},
"Autopilot": {
"AssignResourceAccount": {
"createNewCommandMenu": "Create new",
"createNewResourceAccountInfo": "<p>\nCreate a new resource account during enrollment. The Resource account will be added to the Resource account table right away, but won't be active until the device is enrolled, and the Surface Hub subscription is verified. <a target=\"_blank\" href=\"https://docs.microsoft.com/en-us/surface-hub/manage-surface-hub\">Learn more about Resource Accounts</a></p>\n ",
"createNewResourceTitle": "Create new resource account",
"deviceNameInvalid": "Device name is in an invalid format",
"deviceNameRequired": "A device name is required",
"editResourceAccountLabel": "Edit",
"selectExistingCommandMenu": "Select existing"
},
"Device": {
"ComputerName": {
"validFormat": "Names must be 15 characters or less, and can contain letters (a-z, A-Z), numbers (0-9), and hyphens. Names must not contain only numbers. Names cannot include a blank space."
},
"Header": {
"addressableUserName": "User friendly name",
"azureADDevice": "Associated Azure AD device",
"batch": "Group tag",
"dateAssigned": "Date assigned",
"deviceAccountPwd": "Device account password",
"deviceAccountUpn": "Device account",
"deviceDisplayName": "Device name",
"deviceFriendlyName": "Device friendly name",
"deviceName": "Device name",
"deviceUseType": "Device-use type",
"enrollmentState": "Enrollment state",
"intuneDevice": "Associated Intune device",
"lastContacted": "Last contacted",
"make": "Manufacturer",
"model": "Model",
"profile": "Assigned profile",
"profileStatus": "Profile status",
"purchaseOrderId": "Purchase order",
"resourceAccount": "Resource account",
"serialNumber": "Serial number",
"userPrincipalName": "User"
},
"SurfaceHub": {
"friendlyNameRequired": "A friendly name is required",
"pwdRequired": "A password is required",
"pwdValidFormat": "Unable to update the password. The value provided for the new password does not meet the lenght or complexity requirements of the domain.",
"upnRequired": "A device account is required",
"upnValidFormat": "Values can contain letters (a-z, A-Z), numbers (0-9), and hyphens. Values cannot include a blank space."
}
},
"DeviceUseType": {
"meetingAndPresentation": "Meeting and presentation",
"teamCollaboration": "Team collaboration"
},
"Devices": {
"featureDescription": "Windows Autopilot lets you customize the out-of-box experience (OOBE) for your users.",
"importErrorStatus": "Some devices were not imported. Click here for more information.",
"importPendingStatus": "Import in progress. Elapsed time: {0} min. This process can take up to {1} min."
},
"DirectoryService": {
"activeDirectoryAD": "Hybrid Azure AD joined",
"activeDirectoryADLabel": "Hybrid Azure AD width Autopilot",
"azureAD": "Azure AD joined",
"unknownType": "Unknown Type"
},
"Filter": {
"enrollmentState": "State",
"profile": "Profile status"
},
"OOBE": {
"AddressableUserName": {
"validateEmpty": "User friendly name cannot be empty."
},
"ApplyComputerNameTemplate": {
"infoBalloon": "Create a naming template to add names to your devices during enrollment.",
"label": "Apply device name template"
},
"ApplyComputerNameTemplateDisabled": {
"label": "For Hybrid Azure AD joined type of Autopilot deployment profiles, devices are named using settings specified in Domain Join configuration."
},
"ComputerNameTemplate": {
"emptyValue": "MyCompany-%RAND:4%",
"label": "Enter a name",
"noDisallowedChars": "Name must only contain alphanumeric characters, hyphens, %SERIAL%, or %RAND:x%",
"serialLength": "Cannot use more than 7 characters with %SERIAL%",
"validateLessThan15Chars": "Name must be 15 characters or less",
"validateNoSpaces": "Computer names cannot contain spaces",
"validateNotAllNumbers": "Name must also contain letters and/or hyphens",
"validateNotEmpty": "Name cannot be empty",
"validateOnlyOneMacro": "Name must only contain one of %SERIAL% or %RAND:x%"
},
"ConfigureComputerNameTemplate": {
"description": "Create a unique name for your devices. Names must be 15 characters or less, and can contain letters (a-z, A-Z), numbers (0-9), and hyphens. Names must not contain only numbers. Names cannot include a blank space. Use the %SERIAL% macro to add a hardware-specific serial number. Alternatively, use the %RAND:x% macro to add a random string of numbers, where x equals the number of digits to add."
},
"EnableWhiteGlove": {
"infoBalloon": "Enable pressing Windows key 5 times to run OOBE without user authentication to enroll device and provision all system-context apps and settings. User-context apps and settings will be delivered when the user signs in.",
"label": "Allow pre-provisioned deployment"
},
"HybridAzureADSkipConnectivityCheck": {
"infoBalloon": "The Autopilot Hybrid Azure AD join flow will continue even if it does not establish domain controller connectivity during OOBE.",
"label": "Skip AD connectivity check (preview)"
},
"accountType": "User account type",
"accountTypeInfo": "Specify whether users are administrators or standard users on the device.  Note that this setting does not apply to Global Administrator or Company Administrator accounts. These accounts cannot be standard users because they have access to all administrative features in Azure AD.",
"configOOBEInfo": "<p>\nConfigure the out-of-box experience for your Autopilot devices\n</p>",
"configureDevice": "Deployment mode",
"configureDeviceHintForSurfaceHub2": "Autopilot only supports self-deploying mode for Surface Hub 2. This mode doesn't associate the user with the enrolled device, so it doesn't require user credentials.",
"configureDeviceHintForWindowsPC": "<p>\n Deployment mode controls if a user needs to provide credentials in order to provision the device.\n </p>\n <ul>\n <li>\n User-Driven: Devices are associated with the user enrolling the device and user credentials are required to provision the device\n </li>\n <li>\n Self-Deploying (preview): Devices are not associated with the user enrolling the device and user credentials are not required to provision the device\n </li>\n </ul>",
"createSurfaceHub2Info": "Configure the Autopilot enrollment settings for your Surface Hub 2 devices. By default Autopilot enables skipping user authentication during OOBE. <a target=\"_blank\" href=\"https://go.microsoft.com/fwlink/?linkid=875443\">Learn more about Windows Autopilot for Surface Hub 2.</a>",
"createWindowsPCInfo": "\n<p>\nThe following options are automatically enabled for Autopilot devices in self-deploying mode:\n</p>\n<ul>\n <li>\n Skip Work or Home usage selection\n </li>\n <li>\n Skip OEM registration and OneDrive configuration\n </li>\n <li>\n Skip user authentication in OOBE\n </li>\n</ul>",
"endUserDevice": "User-Driven",
"hideEscapeLink": "Hide change account options",
"hideEscapeLinkInfo": "Options to change account and start over with a different account appear, respectively, during initial device setup on the company sign-in page, and on the domain error page. To hide these options, you must configure company branding in Azure Active Directory (requires Windows 10, 1809 or later, or Windows 11).",
"info": "Autopilot profile settings define the out-of-box experience users see when starting Windows for the first time. ",
"language": "Language (Region)",
"languageInfo": "Specify the language and region that will be used.",
"licenseAgreement": "Microsoft Software License Terms",
"licenseAgreementInfo": "Specify whether to show the EULA to users.",
"plugAndForgetDevice": "Self-Deploying (preview)",
"plugAndForgetGA": "Self-Deploying",
"privacySettingWarning": "The default value for diagnostic data collection has changed for devices running Windows 10, version 1903 and later, or Windows 11. ",
"privacySettings": "Privacy settings",
"privacySettingsInfo": "Specify whether to show privacy settings to users.",
"showCortanaConfigurationPage": "Cortana configuration",
"showCortanaConfigurationPageInfo": "Show will enable the Cortana configuration introduction during startup.",
"skipEULAWarning": "Important information about hiding license terms",
"skipKeyboardSelection": "Automatically configure keyboard",
"skipKeyboardSelectionInfo": "If true, skip the keyboard selection page if Language is set.",
"subtitle": "Autopilot profiles",
"title": "Out-of-box experience (OOBE)",
"useOSDefaultLanguage": "Operating system default",
"userSelect": "User select"
},
"Sync": {
"lastRequestedLabel": "Last sync request",
"lastSuccessfulLabel": "Last successful sync",
"syncInProgress": "Sync is in progress. Check back again soon.",
"syncInitiated": "Autopilot settings sync initiated.",
"syncSettingsTitle": "Sync Autopilot settings"
},
"Title": {
"devices": "Windows Autopilot devices"
},
"Tooltips": {
"addressableUserName": "Greeting name displayed during device setup.",
"azureADDevice": "Go to device details for associated device. N/A means that there's no associated device.",
"batch": "A string attribute that can be used to identify a group of devices. Intune's group tag field maps to the OrderID attribute on Azure AD devices.",
"dateAssigned": "Timestamp of when the profile was assigned to the device.",
"deviceAccountPwd": "Device account password for Surface Hub devices. If entered, also fill out device account and friendly name.",
"deviceAccountUpn": "Device account email for Surface Hub devices. If entered, also fill out device account password and friendly name.",
"deviceDisplayName": "Configure a unique name for a device. This name will be ignored in Hybrid Azure AD joined deployments. Device name still comes from the domain join profile for Hybrid Azure AD devices.",
"deviceFriendlyName": "Device friendly name for Surface Hub devices. If entered, also fill out device account and device account password.",
"deviceName": "The name shown when someone tried to discover and connect to the device.",
"deviceUseType": " Device would setup based on your choice. You can always change later in settings.\n <ul>\n <li> For meetings and presentations, Windows Hello isn't turned on and data is removed after each session.\n </li>\n <li> For team collaboration, Windows Hello is turned on and profiles are saved for quick sign-in</li>\n </ul>",
"enrollmentState": "Specifies if the device has enrolled.",
"intuneDevice": "Go to device details for associated device. N/A means that there's no associated device.",
"lastContacted": "Timestamp of when the device was last contacted.",
"make": "Manufacturer of the selected device.",
"model": "Model of the selected device",
"profile": "Name of the profile assigned to the device.",
"profileStatus": "Specifies if a profile is assigned to the device.",
"purchaseOrderId": "Purchase order ID",
"resourceAccount": "The device's identity, or user principal name (UPN).",
"serialNumber": "Serial number of the selected device.",
"userPrincipalName": "User to pre-fill authentication during device setup."
},
"allDevices": "All devices",
"allDevicesAlreadyAssignedError": "An Autopilot profile is already assigned to All Devices.",
"assignFailedDescription": "Failed to update assignments for {0}.",
"assignFailedTitle": "Failed to update Autopilot profile assignments.",
"assignSuccessDescription": "Successfully updated assignments for {0}.",
"assignSuccessTitle": "Successfully updated Autopilot profile assignments.",
"assignSufaceHub2ProfileNextStep": "Next steps for this deployment",
"assignSurfaceHub2ProfileToDeviceGroup": "1. Assign this profile to at least one device group",
"assignSurfaceHub2ProfileToResourceAccount": "2. Assign a resource account to each Surface Hub device to which you deploy this profile",
"assignedDevicesCount": "Assigned devices",
"assignedDevicesResourceAccountDescription": "<p>To deploy this profile to a device, you must assign the device a Resource account. Select one device at a time to assign an existing Resource account or to create a new one. <a target=\"_blank\" href=\"https://docs.microsoft.com/en-us/surface-hub/manage-surface-hub\">Learn more about Resource Accounts</a></p>",
"assignedDevicesResourceAccountStatusBarMessage": "This table only lists the Surface Hub 2 devices that have been assigned this profile.",
"assigningDescription": "Updating assignments for {0}.",
"assigningTitle": "Updating Autopilot profile assignments.",
"autoremediationContext": "We've detected a hardware change on this device. We're trying to automatically register the new hardware. You don't need to do anything now; the status will be updated at the next check in with the result. <a href=\"https://go.microsoft.com/fwlink/?linkid=2169163\">Learn more about resetting the profile.</a>",
"autoremediationTitle": "Device {0} has a fix pending",
"cannotDeleteMessage": "This profile is assigned to groups. You must unassign all groups from this profile before you can delete it.",
"cannotDeleteTitle": "Cannot delete {0}",
"createdDateTime": "Created",
"deleteMessage": "If you delete this Autopilot profile, any devices assigned to this profile will display Unassigned.",
"deleteMessageWithPolicySet": "{0} is included in one more more policy sets. If you delete {0}, you'll no longer be able to assign it via these policy sets.",
"deleteTitle": "Are you sure you want to delete this profile?",
"description": "Description",
"deviceType": "Device type",
"deviceUse": "Device use",
"directoryServiceHintForSurfaceHub2": " <p>\n Autopilot only supports Azure AD Joined for Surface Hub 2 devices. Specify how devices join Active Directory (AD) in your organization.\n </p>\n <ul>\n <li>\n Azure AD joined: Cloud-only without an on-premises Windows Server Active Directory.\n </li>\n </ul>\n ",
"directoryServiceHintForWindowsPC": "\n <p>\n Specify how devices join Active Directory (AD) in your organization:\n </p>\n <ul>\n <li>\n Azure AD joined: Cloud-only without an on-premises Windows Server Active Directory\n </li>\n </ul>\n ",
"getAssignedDevicesCountError": "An error occurred while fetching the assigned devices count.",
"getAssignmentsError": "An error occurred while fetching Autopilot profile assignments.",
"harvestDeviceId": "Convert all targeted devices to Autopilot",
"harvestDeviceIdDescription": "By default, this profile can only be applied to Autopilot devices synced from the Autopilot service.",
"harvestDeviceIdInfo": "\n Select Yes to register all targeted devices to Autopilot if they are not already registered. The next time registered devices go through the Windows Out of Box Experience (OOBE), they will go through the assigned Autopilot scenario.\n <br>\n Please note that certain Autopilot scenarios require specific minimum builds of Windows. Please make sure your device has the required minimum build to go through the scenario.\n <br>\n Removing this profile wont remove affected devices from Autopilot. To remove a device from Autopilot, use the Windows Autopilot Devices view.\n ",
"harvestDeviceIdWarning": "After conversion, Autopilot devices can only be reverted by deleting them from the Autopilot devices list.",
"holoLensCommandMenu": "HoloLens",
"info": "Windows Autopilot deployment profiles lets you customize the out-of-box experience for your devices.",
"invalidProfileNameMessage": "Character \"{0}\" is not allowed",
"joinTypeLabel": "Join Azure AD as",
"lastModifiedDateTime": "Last modified:",
"manualRemediationContext": "We've detected a hardware change on this device. It won't automatically receive an Autopilot profile when it's reset unless you register the device again. <a href=\"https://go.microsoft.com/fwlink/?linkid=2169163\">Learn more about resetting the profile.</a>",
"manualRemediationTitle": "Device {0} needs your attention",
"name": "Name",
"noAutopilotProfile": "No Autopilot profiles",
"notEnoughPermissionAssignedError": "You don't have enough permissions to assign this profile to one or more of your selected groups. Please contact your administrator.",
"profile": "profile",
"resourceAccountStatusBarMessage": "A Resource Account is required for each Surface Hub 2 device to which this profile is deployed. Click to learn more.",
"selectServices": "Select directory service devices will join",
"surfaceHub2CommandMenu": "Surface Hub 2",
"surfaceHub2SCommandMenu": "Surface Hub 2S",
"userAffinityLabel": "Deployment mode",
"windowsPCCommandMenu": "Windows PC",
"directoryServiceLabel": "Join to Azure AD as"
},
"RoleAssignment": {
"RoleAssignmentAdmin": "Admin Groups",
"RoleAssignmentAdminDesc": "Admin group users are the administrators assigned to this role",
"rolesMenuTitle": "Endpoint Manager roles",
"RoleAssignmentScopeDesc": "Administrators in this role assignment can target policies, applications and remote tasks",
"RoleAssignmentScope": "Scope Groups"
},
"MinimumOperatingSystem": {
"Android": {
"v10": "Android 10.0",
"v11": "Android 11.0",
"v4": "Android 4.0 (Ice Cream Sandwich)",
"v403": "Android 4.0.3 (Ice Cream Sandwich)",
"v41": "Android 4.1 (Jelly Bean)",
"v42": "Android 4.2 (Jelly Bean)",
"v43": "Android 4.3 (Jelly Bean)",
"v44": "Android 4.4 (KitKat)",
"v5": "Android 5.0 (Lollipop)",
"v51": "Android 5.1 (Lollipop)",
"v6": "Android 6.0 (Marshmallow)",
"v7": "Android 7.0 (Nougat)",
"v71": "Android 7.1 (Nougat)",
"v8": "Android 8.0 (Oreo)",
"v81": "Android 8.1 (Oreo)",
"v9": "Android 9.0 (Pie)"
},
"IOS": {
"v10": "iOS 10.0",
"v11": "iOS 11.0",
"v12": "iOS 12.0",
"v13": "iOS 13.0",
"v14": "iOS 14.0",
"v15": "iOS 15.0",
"v8": "iOS 8.0",
"v9": "iOS 9.0"
},
"MacOS": {
"V10": {
"10": "OS X Yosemite 10.10",
"11": "OS X El Capitan 10.11",
"12": "macOS Sierra 10.12",
"13": "macOS High Sierra 10.13",
"14": "macOS Mojave 10.14",
"15": "macOS Catalina 10.15",
"7": "Mac OS X Lion 10.7",
"8": "OS X Mountain Lion 10.8",
"9": "OS X Mavericks 10.9"
},
"V11": {
"0": "macOS Big Sur 11.0"
},
"V12": {
"0": "macOS Monterey 12.0"
},
"V13": {
"0": "macOS Ventura 13.0"
}
},
"Windows": {
"V10Release": {
"release1607": "Windows 10 1607",
"release1703": "Windows 10 1703",
"release1709": "Windows 10 1709",
"release1803": "Windows 10 1803",
"release1809": "Windows 10 1809",
"release1903": "Windows 10 1903",
"release1909": "Windows 10 1909",
"release2004": "Windows 10 2004",
"release21H1": "Windows 10 21H1",
"release2H20": "Windows 10 20H2"
},
"v10": "Windows 10.0",
"v80": "Windows 8.0",
"v81": "Windows 8.1"
},
"WindowsPhone": {
"v80": "Windows Phone 8.0",
"v81": "Windows Phone 8.1"
}
},
"EnrollmentStatusScreen": {
"Apps": {
"allowNonBlockingAppInstallation": "Only fail selected blocking apps in technician phase",
"apps": "apps",
"appsListName": "Application list",
"blockingApps": "Blocking apps",
"managedApps": "Managed apps",
"noApps": "No applications",
"noAppsError": "Error retrieving applications",
"selectApps": "Select apps",
"selectedAppsCount": "{0} apps selected (100 max)",
"useSelectedAppsAll": "All",
"useSelectedAppsSelected": "Selected",
"useSelectedAppsToggleLabel": "Block device use until required apps are installed if they are assigned to the user/device"
},
"Header": {
"application": "Application",
"publisher": "Publisher",
"version": "Version"
},
"SearchBox": {
"placeHolder": "Search by name or publisher"
},
"allowToUseToggle": "Allow users to use device if installation error occurs",
"blockToggle": "Block device use until all apps and profiles are installed",
"blockToolTip": "If you add Microsoft Word to this list, for example, targeted users and devices will not be able to leave the enrollment status page until Word is successfully installed.",
"collectLogToggle": "Turn on log collection and diagnostics page for end users",
"create": "Create Profile",
"customMessageTextBox": "Error message",
"customMessageToggle": "Show custom message when time limit or error occurs",
"enableForAutopilotOnlyToggle": "Only show page to devices provisioned by out-of-box experience (OOBE)",
"installQualityUpdatesToggle": "Install Windows quality updates (might restart the device)",
"progressToggle": "Show app and profile configuration progress",
"resetToggle": "Allow users to reset device if installation error occurs",
"timeout": "Show an error when installation takes longer than specified number of minutes"
},
"TableHeaders": {
"activity": "Activity",
"actor": "Initiated by (actor)",
"app": "App",
"appName": "App name",
"applicationName": "Application name",
"approvalType": "Approval method",
"assignedGroups": "Group",
"assignment": "Assignment",
"assignmentStatus": "Assigned",
"assignments": "Assignments",
"attributeName": "Attribute name",
"attributeType": "Attribute type",
"bundleId": "Bundle-Id",
"category": "Category",
"complianceGracePeriodExpiration": "Compliance grace period expiration",
"configurationType": "Profile type",
"conflictingPolicy": "Conflicting Policies",
"createdDate": "Created date",
"currentOs": "Current OS",
"date": "Date",
"dateRange": "Date range",
"deployed": "Deployed",
"description": "Description",
"device": "Device",
"deviceId": "Device ID",
"deviceName": "Device name",
"deviceOrApplicationName": "Device or application name",
"deviceReporting": "Devices reporting",
"diagnosticCode": "Diagnostic Code",
"diagnosticText": "Diagnostic Text",
"diagnostics": "Diagnostics",
"displayName": "Display name",
"driversToReview": "Drivers to review",
"eSIMActivationStatus": "Activation status",
"eSIMCellularStatus": "Cellular status",
"eSIMICCID": "ICCID",
"eSIMPoolName": "Cellular subscription",
"eSIMState": "eSIM state",
"eSIMTokenAmount": "Total eSIM activation codes",
"enabled": "Enabled",
"enabledPlatforms": "Enabled Platforms",
"encryptionReadiness": "Encryption Readiness",
"encryptionStatus": "Encryption Status",
"endTime": "End time",
"enrollment": "Enrollment",
"enrollmentAttempt": "Enrollment start",
"eventDateTime": "Timestamp",
"eventIdentifier": "Event ID",
"eventLevel": "Level",
"excluded": "Excluded",
"failure": "Failure",
"featureUpdateDeferral": "Feature Deferral",
"featureUpdateVersion": "Feature Update Version",
"featureUpdatesPaused": "Feature (Paused)",
"featureUpdatesStatus": "Feature",
"from": "From",
"groups": "Groups",
"groupsSelected": "Groups Selected",
"installationStatus": "Installation Status",
"issueId": "Issue id",
"lastCheckinTime": "Last Check-in Time",
"lastModified": "Last modified",
"lastScanTime": "Last Scan Time",
"lastSuccessfulSync": "Last Successful Sync",
"lastUpdated": "Last Updated",
"location": "Location",
"loggedInUser": "Logged in user",
"message": "Message",
"model": "Model",
"mtdConnector": "MTD Connector",
"name": "Profile name",
"oSVersion": "OS Version",
"os": "OS",
"packageName": "Package name",
"partnerName": "Partner",
"partnerStatus": "Partner status",
"permission": "Permission",
"platform": "Platform",
"policies": "Policies",
"policy": "Policy",
"policyType": "Policy type",
"preventedUpdateDays": "Restricted days",
"priority": "Priority",
"profiles": "Profiles",
"publicAddress": "Public address",
"publisher": "Publisher",
"qualityUpdateDeferral": "Quality Deferral",
"qualityUpdateRelease": "Quality Update Release",
"qualityUpdateVersion": "Quality Update Version",
"qualityUpdatesPaused": "Quality (Paused)",
"qualityUpdatesStatus": "Quality",
"reason": "Reason",
"resource": "Resource",
"roleName": "Name",
"roles": "Roles",
"scopeGroups": "Scope groups",
"scopeSize": "Assigned Scope Groups",
"scopeTags": "Scope tags",
"scriptName": "Script name",
"scriptType": "Script type",
"servicingOption": "Servicing channel",
"setting": "Setting",
"settings": "Settings",
"siteName": "Site name",
"source": "Source",
"sourceProfile": "Source Profile",
"startTime": "Start time",
"state": "State",
"stateDetails": "State details",
"status": "Status",
"subject": "Subject",
"support": "Support",
"supportEndDate": "Support End Date",
"tPMVersion": "TPM Version",
"target": "Target",
"timeWindows": "Time windows",
"timeZone": "Time zone",
"type": "Type",
"updateScheduleType": "Schedule type",
"updateStatus": "Update Status",
"user": "User",
"userPrincipalName": "User principal name",
"users": "Users",
"usersExcluded": "Users excluded",
"usersTargeted": "Users targeted",
"value": "Value",
"includedGroups": "Included Groups",
"excludedGroups": "Excluded Groups",
"licenseType": "License type"
},
"TAP": {
"AccessRequirements": {
"infoText": "Configure the PIN and credential requirements that users must meet to access apps in a work context."
},
"DataProtection": {
"infoText": "This group includes the Data Loss Prevention (DLP) controls, like cut, copy, paste, and save-as restrictions. These settings determine how users interact with data in the apps."
},
"DeviceTypes": {
"selectOne": "Select at least one device type."
},
"TargetedApps": {
"TargetToAll": {
"label": "Target to apps on all device types"
},
"infoText": "Choose how you want to apply this policy to apps on different devices. Then add at least one app.",
"selectOne": "Select at least one app to create a policy."
}
},
"AssignmentAction": {
"exclude": "Excluded",
"include": "Included",
"includeAllDevicesVirtualGroup": "Included",
"includeAllUsersVirtualGroup": "Included"
},
"CoManagementAuthority": {
"Confirmation": {
"deleteMessage": "Affected users will be restricted by the next highest priority co-management authority page assigned or the default co-management authority page, if no other co-management authority page is assigned.",
"deleteTitle": "{0} is the display name of a configured Co-management authority policy"
},
"Grid": {
"description": "The co-management authority page appears during initial device setup and during first user sign in. If enabled, users can see the configuration progress of assigned apps and profiles targeted to their device.",
"hyperlink": "https://go.microsoft.com/fwlink/?linkid=86016",
"label": "Co-management authority"
},
"Header": {
"description": "The co-management authority page appears during initial device setup and during first user sign in. If enabled, users can see the configuration progress of assigned apps and profiles targeted to their device."
},
"Main": {
"title": "Co-management Authority"
},
"MessageSaved": {
"body": "Co-management authority policy created."
},
"Notification": {
"createError": "An error occurred while creating Co-management authority policy \"{0}\"",
"created": "This Co-management authority policy has not been assigned to any users.",
"creating": "Creating Co-management authority policy",
"creatingMessage": "Creating {0} Co-management authority policy",
"deleteError": "An error occurred while deleting Co-management authority policy",
"deleted": "Co-management authority policy deleted.",
"deletedMessage": "{0} Co-management authority policy is deleted.",
"deleting": "Deleting Co-management Authority policy",
"deletingMessage": "Deleting {0} Co-management Authority policy",
"fetchError": "An error occurred while displaying Co-management authority policies",
"saved": "Co-management Authority saved.",
"savedMessage": "{0} Co-management Authority policy successfully saved.",
"saving": "Saving Co-management authority",
"savingMessage": "Saving {0} Co-management authority policy"
},
"Priority": {
"saveError": "An error occurred while saving Co-management authority priorities",
"saved": "Co-management authority priorities were successfully saved."
},
"ReloadNotification": {
"description": "Reload the Co-management authority policy to try again.",
"title": "Reload the Co-management authority blade"
},
"advancedProperty": "Advanced",
"commandLineArgs": "Client installation command line arguments.",
"deviceGroupOnlyMessage": "Co-management authority page profiles can only be assigned to user groups. The devices assigned won't display the co-management authority page.",
"enterArgument": "Enter argument",
"installAgent": "Automatically install Configuration Manager agent.",
"managedDeviceOwnership": "Override co-management policy and use Intune for all workloads.",
"noAssignmentMessage": "Assign Co-management authority policy to at least one group. Click Properties.",
"pageDescription": "Co-management authority profiles",
"pageSetting": "Co-management authority Setting",
"pageTitle": "Co-management authority",
"settingDescription": "The co-management settings determine who owns the workloads."
},
"AppType": {
"androidEnterpriseSystemApp": "Android Enterprise system app",
"androidForWorkApp": "Managed Google Play store app",
"androidLobApp": "Android line-of-business app",
"androidStoreApp": "Android store app",
"builtInAndroid": "Built-In Android app",
"builtInApp": "Built-In app",
"builtInIos": "Built-In iOS app",
"default": "",
"iosIPadOSWebClip": "iOS/iPadOS web clip",
"iosLobApp": "iOS line-of-business app",
"iosStoreApp": "iOS store app",
"iosVppApp": "iOS volume purchase program app",
"lineOfBusinessApp": "Line-of-business app",
"macOSDmgApp": "macOS app (DMG)",
"macOSEdgeApp": "Microsoft Edge (macOS)",
"macOSLobApp": "macOS line-of-business app",
"macOSMdatpApp": "Microsoft Defender ATP (macOS)",
"macOSOfficeSuiteApp": "Microsoft 365 Apps (macOS)",
"macOsVppApp": "macOS volume purchase program app",
"managedAndroidLobApp": "Managed Android line-of-business app",
"managedAndroidStoreApp": "Managed Android store app",
"managedGooglePlayApp": "Managed Google Play store app",
"managedGooglePlayPrivateApp": "Managed Google Play private app",
"managedGooglePlayWebApp": "Managed Google Play web link",
"managedIosLobApp": "Managed iOS line-of-business app",
"managedIosStoreApp": "Managed iOS store app",
"microsoftStoreForBusinessApp": "Microsoft Store for Business app",
"microsoftStoreForBusinessReleaseManagedApp": "Microsoft Store for Business",
"officeSuiteApp": "Microsoft 365 Apps (Windows 10 and later)",
"webApp": "Web link",
"windowsAppXLobApp": "Windows AppX line-of-business app",
"windowsClassicApp": "Windows app (Win32)",
"windowsEdgeApp": "Microsoft Edge (Windows 10 and later)",
"windowsMobileMsiLobApp": "Windows MSI line-of-business app",
"windowsPhone81AppXBundleLobApp": "Windows Phone 8.1 AppX line-of-business app",
"windowsPhone81AppXLobApp": "Windows Phone 8.1 AppX line-of-business app",
"windowsPhone81StoreApp": "Windows Phone 8.1 store app",
"windowsPhoneXapLobApp": "Windows Phone XAP line-of-business app",
"windowsStoreApp": "Microsoft Store app (legacy)",
"windowsUniversalAppXLobApp": "Windows Universal AppX line-of-business app",
"windowsUniversalLobApp": "Windows Universal line-of-business app",
"windowsWebApp": "Windows web link"
},
"TAPSettings": {
"AllowedDataIngestionLocations": {
"label": "Allow users to open data from selected services",
"tooltip": "Select the application storage services users can open data from. All other services are blocked. Selecting no services will prevent users from opening data."
},
"AndroidBackup": {
"label": "Backup org data to Android backup services",
"tooltip": "Select {0} to prevent backup of org data to Android backup services.\nSelect {1} to permit backup of org data to Android backup services.\nPersonal or unmanaged data is not affected."
},
"AndroidBiometricAuthentication": {
"label": "Biometrics instead of PIN for access",
"tooltip": "Allows use of Android biometric authentication methods, if any, in place of an app PIN."
},
"AndroidFingerprint": {
"label": "Fingerprint instead of PIN for access (Android 6.0+)",
"tooltip": "Android OS uses fingerprint scans to authenticate Android-device users. This feature supports the native biometric controls on Android devices. OEM-specific biometric settings, like Samsung Pass, are not supported. If allowed, native biometric controls must be used to access the app on a capable device."
},
"AndroidOverrideFingerprint": {
"label": "Override biometrics with PIN after timeout"
},
"AppPIN": {
"label": "App PIN when device PIN is set",
"tooltip": "If not required, an app PIN does not need to be used to access the app if the device PIN is set on an MDM enrolled device.<br/>\n\nNote: Intune cannot detect device enrollment with a third-party EMM solution on Android."
},
"BlockDataIngestionIntoOrganizationDocuments": {
"label": "Open data into Org documents",
"tooltip1": "Select <b>Block</b> to disable the use of the <i>Open</i> option or other options to share data between accounts in this app. Select <b>Allow</b> if you want to allow the use of <i>Open</i> and other options to share data between accounts in this app.",
"tooltip2": "When set to <b>Block</b>, you can configure the following setting, <i>Allow user to open data from selected services</i>, to specify which services are allowed for Org data locations.",
"tooltip3": "<b>Note:</b> This setting is only enforced if the setting \"Receive data from other apps\" is set to \"Policy managed apps\".<br />\n<b>Note:</b> This setting does not apply to all applications. For more information see <a href=\"{0}\" target=\"_blank\">{0}</a>.",
"tooltip4": "<b>Note:</b> This setting is only enforced if the setting \"Receive data from other apps\" is set to \"Policy managed apps\".<br />\n<b>Note:</b> This setting does not apply to all applications. For more information see <a href=\"{0}\" target=\"_blank\">{0}</a> or <a href=\"{0}\" target=\"_blank\">{0}</a>."
},
"ConnectToVpnOnLaunch": {
"label": "Start Microsoft Tunnel connection on app-launch",
"tooltip": "Allow connection to VPN when app is launch"
},
"CredentialsForAccess": {
"label": "Work or school account credentials for access",
"tooltip": "If required, work or school credentials must be used to access the policy-managed app. If PIN or biometric methods also required for access to the app, the work or school account credentials will be required on top of those prompts."
},
"CustomBrowserDisplayName": {
"label": "Unmanaged Browser Name",
"tooltip": "Enter the application name for browser associated with the \"Unmanaged Browser ID\". This name will be displayed to users if the specified browser is not installed."
},
"CustomBrowserPackageId": {
"label": "Unmanaged Browser ID",
"tooltip": "Enter the application ID for a single browser. Web content (http/s) from policy managed applications will open in the specified browser."
},
"CustomBrowserProtocol": {
"label": "Unmanaged browser protocol",
"tooltip": "<p>Enter the protocol for a single unmanaged browser. Web content (http/s) from policy managed applications will open in any app that supports this protocol. </p>\n\n<p><b>Note: </b>Include only the protocol prefix. If your browser requires links of the form \"mybrowser://www.microsoft.com\", enter \"mybrowser\".</p>"
},
"CustomDialerAppDisplayName": {
"label": "Dialer App Name"
},
"CustomDialerAppPackageId": {
"label": "Dialer App Package ID"
},
"CustomDialerAppProtocol": {
"label": "Dialer App URL Scheme"
},
"Cutcopypaste": {
"label": "Restrict cut, copy, and paste between other apps",
"tooltip": "<p>Cut, copy, and paste data between your app and other approved apps installed on the device. Choose to block these actions completely between apps, allow these actions for use with any app, or restrict use to apps that your organization manages.</p>\n\n<p><b>Policy-managed apps with paste in</b> gives you the option to accept incoming content pasted from another app. However, it blocks users from sharing content outwardly, unless sharing with a managed app. </p>"
},
"DialerRestrictionLevel": {
"iosTooltip": "Typically, when a user selects a hyperlinked phone number in an app, a dialer app will open with the phone number prepopulated and ready to call. For this setting, choose how to handle this type of content transfer when it's initiated from a policy-managed app. Additional steps may be necessary in order for this setting to take effect. First, verify that tel and telprompt have been removed from the Select apps to exempt list. Then, ensure the application is using a newer version of Intune SDK (Version 12.7.0+).",
"label": "Transfer telecommunication data to",
"tooltip": "Typically, when a user selects a hyperlinked phone number in an app, a dialer app will open with the phone number prepopulated and ready to call. For this setting, choose how to handle this type of content transfer when it's initiated from a policy-managed app."
},
"EncryptData": {
"label": "Encrypt org data",
"link": "https://docs.microsoft.com/en-us/intune/app-protection-policy-settings-android#data-relocation-settings",
"tooltip": "Select {0} to enforce encrypting org data with Intune app layer encryption.\n <br/>\nSelect {1} to not enforce encrypting org data with Intune app layer encryption.\n\n<br/>\nNote: For more information on Intune app layer encryption, see {2}."
},
"EncryptDataAndroid": {
"tooltip": "<p>Choose <b>Require</b> to enable encryption of work or school data in this app. Intune uses a wolfSSL, 256-bit AES encryption scheme along with the Android Keystore system to securely encrypt app data. Data is encrypted synchronously during file I/O tasks. Content on the device storage is always encrypted. New files will be encrypted with 256-bit keys. Existing 128-bit encrypted files will undergo a migration attempt to 256-bit keys, but the process is not guaranteed. Files encrypted with 128-bit keys will remain readable. </p>\n\n<p>The encryption method is FIPS 140-2 compliant.</p>"
},
"EncryptDataIos": {
"tooltip1": "Choose <b>Require</b> to enable encryption of work or school data in this app. Intune enforces iOS/iPadOS device encryption to protect app data while the device is locked. Applications may optionally encrypt app data using Intune APP SDK encryption. Intune APP SDK uses iOS/iPadOS cryptography methods to apply 128-bit AES encryption to app data.",
"tooltip2": "When you enable this setting, the user may be required to set up and use a PIN to access their device. If there's no device PIN and encryption is required, the user is prompted to set a PIN with the message \"Your organization has required you to first enable a device PIN to access this app.\"",
"tooltip3": "Go to the <a href=\"{0}\" target=\"_blank\">official Apple documentation</a> to see which iOS encryption modules are FIPS 140-2 compliant or pending FIPS 140-2 compliance."
},
"EncryptDataOnEnrolledDevices": {
"label": "Encrypt org data on enrolled devices",
"tooltip": "Select {0} to enforce encrypting org data with Intune app layer encryption on all devices. <br/>\n\nSelect {1} to not enforce encrypting org data with Intune app layer encryption on enrolled devices."
},
"IOSBackup": {
"label": "Backup org data to iTunes and iCloud backups",
"tooltip": "Select {0} to prevent backup of org data to iTunes or iCloud.  \nSelect {1} to permit backup of org data to iTunes or iCloud.  \nPersonal or unmanaged data is not affected."
},
"IOSFaceID": {
"label": "Face ID instead of PIN for access (iOS 11+/iPadOS)",
"tooltip": "Face ID uses facial recognition technology to authenticate users on iOS/iPadOS devices. Intune calls the LocalAuthentication API to authenticate users using Face ID. If allowed, Face ID must be used to access the app on a Face ID capable device."
},
"IOSOverrideTouchId": {
"label": "Override biometrics with PIN after timeout"
},
"IOSTouchId": {
"label": "Touch ID instead of PIN for access (iOS 8+/iPadOS)",
"tooltip": "Touch ID uses fingerprint recognition technology to authenticate users on iOS devices. Intune calls the LocalAuthentication API to authenticate users using Touch ID. If allowed, Touch ID must be used to access the app on a Touch ID capable device."
},
"NotificationRestriction": {
"label": "Org data notifications",
"tooltip": "<p>Select one of the following options to specify how notifications for org accounts are shown for this app and any connected devices such as wearables:</p>\n<p>{0}: Do not share notifications.</p>\n<p>{1}: Do not share org data in notifications. If not supported by the application, notifications are blocked. </p>\n<p>{2}: Share all notifications. </p>\n <p>Android only:\n Note: This setting does not apply to all applications. For more information see {3}</p>\n\n <p>iOS only:\nNote: This setting does not apply to all applications. For more information see {4}</p>"
},
"OpenLinksManagedBrowser": {
"label": "Restrict web content transfer with other apps",
"tooltip": "<p>Select one of the following options to specify the apps that this app can open web content in: </p>\n<p><b> Microsoft Edge:</b> Allow web content to open only in Microsoft Edge.<a href=\"{0}\" target=\"_blank\"> Learn how Microsoft Edge protects your data.</a></p>\n<p><b>Unmanaged browser:</b> Allow web content to open only in the unmanaged browser defined by \"Unmanaged browser protocol\" setting</p>\n<p><b>Any app:</b> Allow web links in any app</p>"
},
"OverrideBiometric": {
"tooltip": "If required, depending on the timeout (minutes of inactivity), a PIN prompt will override biometric prompts. If this timeout value is not met, the biometric prompt will continue to show. This timeout value should be greater than the value specified under 'Recheck the access requirements after (minutes of inactivity)'. "
},
"PinAccess": {
"label": "PIN for access",
"tooltip": "If required, a PIN must be used to access the policy-managed app. Users must create an access PIN the first time that they open the app from a work or school account."
},
"PinLength": {
"label": "Select minimum PIN length",
"tooltip": "This setting specifies the minimum number of digits of a PIN."
},
"PinType": {
"label": "PIN type",
"tooltip": "Numeric PINs are made up of all numbers. Passcodes are made up of alphanumeric characters and special characters. "
},
"Printing": {
"label": "Printing org data",
"tooltip": "If blocked, the app cannot print protected data."
},
"ReceiveData": {
"label": "Receive data from other apps",
"tooltip": "Select one of the following options to specify the apps that this app can receive data from: <br/>\n\n<b>None</b>: Do not allow receiving data in org documents or accounts from any app<br/>\n\n<b>Policy managed apps</b>: Only allow receiving data in org documents or accounts from other policy managed apps\n<br/>\n<b>Any app with incoming org data</b>: Allow receiving data in org documents or accounts from from any app and treat all incoming data without an user account as org data<br/>\n<b>\nAll apps</b>: Allow receiving data in org documents or accounts from any app"
},
"RecheckAccessAfter": {
"label": "Recheck the access requirements after (minutes of inactivity)\n\n",
"tooltip": "If the policy-managed app is inactive for longer than the number of minutes of inactivity specified, the app will prompt the access requirements (i.e PIN, conditional launch settings) to be rechecked after the app is launched."
},
"RequireClass3Biometrics": {
"label": "Class 3 Biometrics (Android 9.0+)",
"tooltip": "For more information on class 3 biometrics refer to the documentation available <a href=\"https://source.android.com/compatibility/12/android-12-cdd#7_3_10_biometric_sensors\">here</a>"
},
"RequirePinAfterBiometricChange": {
"label": "Override Biometrics with PIN after biometric updates",
"tooltip": "If class 3 biometrics are supported by the device (more info <a href=\"https://developer.android.com/reference/android/hardware/biometrics/BiometricPrompt#authenticate(android.hardware.biometrics.BiometricPrompt.CryptoObject,%20android.os.CancellationSignal,%20java.util.concurrent.Executor,%20android.hardware.biometrics.BiometricPrompt.AuthenticationCallback)\">here</a>), when a change in biometrics is detected, a PIN prompt will override biometric prompts. This setting only takes effect once a biometric has been used to access the app."
},
"RestrictKeyboards": {
"duplicatePackageError": "The package ID must be unique.",
"invalidPackageError": "Invalid package ID",
"label": "Approved keyboards",
"select": "Select keyboards to approve",
"subtitle": "Add all keyboards and input methods that users are allowed to use with targeted apps. Enter the keyboard name as you would like it to appear to the end user.",
"title": "Add approved keyboards",
"toolTip": "Select Require and then specify a list of approved keyboards for this policy. <a href='https://docs.microsoft.com/en-us/intune/app-protection-policy-settings-android#data-transfer'>Learn more.</a>"
},
"SaveData": {
"label": "Save copies of org data",
"tooltip": "Select {0} to prevent saving a copy of org data to a new location, other than the selected storage services, using \"Save As\".\n Select {1} to permit saving a copy of org data to a new location using \"Save As\". <br/>\n\n\nNote: This setting does not apply to all applications. For more information see {2}.\n"
},
"SaveDataToSelected": {
"label": "Allow user to save copies to selected services",
"tooltip": "Select the storage services users can save copies of org data to. All other services are blocked. Selecting no services will prevent users from saving a copy of org data."
},
"ScreenCaptureAndAndroidAssistant": {
"label": "Screen capture and Google Assistant\n",
"tooltip": "If blocked, both screen capture and Google Assistant app scanning capabilities will be disabled when using the policy-managed app. This feature supports the usual Google Assistant app. Third party assistants using Google's Assist API are not supported. Choosing Block will also blur the App-Switcher preview image when using the app with a work or school account."
},
"SendData": {
"label": "Send org data to other apps",
"tooltip": "Select one of the following options to specify the apps that this app can send org data to: <br/>\n\n\n<b>None</b>: Do not allow sending org data to any app <br/>\n\n\n<b>Policy managed apps</b>: Only allow sending org data to other policy managed apps <br/>\n\n\n<b>Policy managed apps with OS sharing</b>: Only allow sending org data to other policy managed apps and sending org documents to other MDM managed apps on enrolled devices <br/>\n\n<b>\nPolicy managed apps with Open-In/Share filtering</b>: Only allow sending org data to other policy managed apps and filter OS Open-in/Share dialogs to only display policy managed apps\n <br/>\n\n<b>All apps</b>: Allow sending org data to any app"
},
"SimplePin": {
"label": "Simple PIN",
"tooltip": "If blocked, users may not create a simple PIN. A simple PIN is a string of consecutive or repetitive digits, such as 1234, ABCD, or 1111. Please note that blocking simple PIN of type 'Passcode' requires the passcode to have at least one number, one letter, and one special character."
},
"SyncContacts": {
"label": "Sync policy managed app data with native apps or add-ins"
},
"ThirdPartyKeyboards": {
"infoBox": "Keyboard restrictions will apply to all areas of an app. Personal accounts for apps that support multiple identities will be affected by this restriction. <a href='https://docs.microsoft.com/en-us/intune/app-protection-policy-settings-ios#data-transfer' aria-label='Learn more about third party keyboards'>Learn more.</a>",
"label": "Third party keyboards"
},
"Timeout": {
"label": "Timeout (minutes of inactivity)"
},
"WinCutCopyPaste": {
"label": "Allow cut, copy, and paste for",
"tooltip": "Select one of the following options to specify the sources and destinations org users can cut or copy or paste org data: <br/>\n\n<b>Any destination and any source</b>: Org users can paste data from and cut/copy data to any account, document, location or application.<br/>\n\n<b>No destination or source</b>: Org users cannot cut, copy or paste data to or from external accounts, documents, locations or applications from or into the org context."
},
"WinPrintData": {
"label": "Print org data",
"tooltip": "Select <b>Block</b> to prevent printing of org data. Select <b>Allow</b> to permit printing of org data. Personal or unmanaged data is not affected."
},
"WinReceiveData": {
"label": "Receive data from",
"tooltip": "Select one of the following options to specify the sources org users can receive data from: <br/>\n\n<b>All sources</b>: Org users can open data from any account, document, location or application into the org context.<br/>\n\n<b>No sources</b>: Org users cannot open data from external accounts, documents, locations or applications into the org context."
},
"WinSendData": {
"label": "Send org data to",
"tooltip": "Select one of the following options to specify the destinations org users can send data to: <br/>\n\n<b>All destinations</b>: Org users can send org data to any account, document, location or application.<br/>\n\n<b>No destinations</b>: Org users cannot send org data to external accounts, documents, locations or applications from the org context."
},
"Tap": {
"numberOfDays": "Number of days",
"pinResetAfterNumberOfDays": "PIN reset after number of days",
"previousPinBlockCount": "Select number of previous PIN values to maintain"
}
},
"ScheduledAction": {
"Form": {
"editBlockActionInfo": "One block action is required for all compliance policies.",
"graceperiod": "Schedule (days after noncompliance)",
"graceperiodInfo": "Specify the number of days after noncompliance after which this action should be triggered for the user's device",
"subtitle": "Specify action parameters",
"title": "Action parameters"
},
"List": {
"gracePeriodDay": "{0} day after noncompliance",
"gracePeriodDays": "{0} days after noncompliance",
"gracePeriodHour": "{0} hour after noncompliance",
"gracePeriodHours": "{0} hours after noncompliance",
"gracePeriodMinute": "{0} minute after noncompliance",
"gracePeriodMinutes": "{0} minutes after noncompliance",
"immediately": "Immediately",
"schedule": "Schedule",
"scheduleInfoBalloon": "Days after noncompliance",
"subtitle": "Specify the sequence of actions on noncompliant devices",
"title": "Actions"
},
"Notification": {
"additionalEmailLabel": "Others",
"additionalRecipients": "Additional recipients (via email)",
"additionalRecipientsBladeTitle": "Select additional recipients",
"emailAddressPrompt": "Enter email addresses (separated by commas)",
"invalidEmail": "Invalid email address",
"messageTemplate": "Message template",
"noneSelected": "None selected",
"notSelected": "Not selected",
"numSelected": "{0} selected",
"selected": "Selected"
},
"block": "Mark device noncompliant",
"lockDevice": "Lock device (local action)",
"lockDeviceWithPasscode": "Lock device (local action)",
"noAction": "No action",
"noActionRow": "No actions, select 'Add' to add an action",
"pushNotification": "Send push notification to end user",
"remoteLock": "Remotely lock the noncompliant device",
"removeSourceAccessProfile": "Remove source access profile",
"retire": "Add device to retire list",
"wipe": "Wipe",
"emailNotification": "Send email to end user"
},
"InstallIntent": {
"available": "Available for enrolled devices",
"availableWithoutEnrollment": "Available with or without enrollment",
"required": "Required",
"uninstall": "Uninstall"
},
"CustomComplianceScript": {
"CustomScriptWizardTitle": {
"create": "Create custom script",
"edit": "Edit custom script"
},
"basicInfo": "Create a new custom script package from detection and remediation scripts that you've written.",
"customScriptCapitalized": "Custom script",
"customScriptLowercase": "custom script",
"detectionScript": "Detection script"
},
"Devices": {
"General": {
"android": "Android"
},
"aOSP": "Android open source project",
"android": "Android device administrator",
"androidWorkProfile": "Android Enterprise (work profile)",
"iOS": "iOS/iPadOS",
"mac": "macOS",
"windows": "Windows (MDM)",
"windows10": "Windows 10 and later",
"windowsHomeSku": "Windows Home Sku",
"windowsMobile": "Windows Mobile"
},
"AppInfoBalloonText": {
"Certificate": {
"customSubjectName": "CN={{UserName}},E={{EmailAddress}},OU=EnterpriseUsers,O=Contoso Corporation,L=Redmond,ST=WA,C=US\nor\nCN={{AAD_Device_ID}},E={{EmailAddress}},OU=EnterpriseUsers,O=Contoso Corporation,L=Redmond,ST=WA,C=US",
"keySize": "Select the number of bits contained in the key.",
"keyUsage": "Specify the cryptographic action that is required to exchange the certificates public key.",
"renewalThreshold": "Enter the percentage (between 1 and 99 percent) of remaining certificate lifetime that is allowed before a device can request renewal of the certificate. The recommended amount in Intune is 20%. (1-99)",
"rootCert": "Choose a previously configured and assigned root CA certificate profile. The CA certificate must match the root certificate of the CA that is issuing the certificate for this profile (the one you are currently configuring).",
"scepServerUrl": "Enter a URL for the NDES Server that issues certificates through SCEP (Must be HTTPS). e.g. https://contoso.com/certsrv/mscep/mscep.dll",
"scepServerUrls": "Add one or more URLs for the NDES Server that issues certificates through SCEP (Must be HTTPS). e.g. https://contoso.com/certsrv/mscep/mscep.dll",
"subjectAlternativeName": "Subject alternative name",
"subjectNameFormat": "Subject name format",
"validityPeriod": "The amount of time remaining before the certificate expires. Enter a value that is equal to or lower than the validity period shown in the certificate template. Default is set at one year."
},
"appInstallContext": "This specifies the install context to be associated with this app. For dual mode apps, select the desired context for this app. For all other apps, this is pre-selected based on the package and cannot be modified.",
"autoUpdateMode": "Configure the update priority for the app. Select Default to require the device to be connected to WiFi, to be charging, and not to be actively in use before updating the app. Select High Priority to update the app as soon as the developer has published the app, regardless of charge status, WiFi capability, or end user activity on the device. Select Postponed to forgo app updates for up to 90 days. High priority and postponed will only take effect on DO devices.",
"configurationSettingsFormat": "Configuration settings format text",
"ignoreVersionDetection": "Set this to “Yes” for apps that are automatically updated by the app developer (such as Google Chrome).",
"ignoreVersionDetectionMacOSLobApp": "Select \"Yes\" for apps that are automatically updated by app developer or to only check for app bundleID before installation. Select \"No\" to check for app bundleID and version number before installation.",
"installAsManagedMacOSLobApp": "This setting only applies to macOS 11 and higher. The app will be installed but not managed on macOS 10.15 and lower.",
"installContextDropdown": "Select the appropriate install context. User context will install the app only for the targeted user while device context will install the app for all users on the device.",
"ldapUrl": "This is the LDAP hostname where clients can get the public encryption keys for email recipients. Emails will be encrypted when a key is available. Supported formats: <ul><li>ldap.example.com</li>\n<li>ldap.example.com:123</li>\n<li>ldap://ldap.example.com</li><li>ldap://ldap.example.com:123</li><li>ldaps://ldap.example.com</li>\n<li>ldaps://ldap.example.com:123</li></ul>",
"permissionsSettings": "Select runtime permissions for the associated app.",
"policyAssociatedApp": "Select the app that this policy will be associated with.",
"policyConfigurationSettings": "Select the method you want to use to define configuration settings for this policy.",
"policyDescription": "Optionally, enter a description for this configuration policy.",
"policyEnrollmentType": "Choose whether these settings are managed through device management or apps made with Intune SDK.",
"policyName": "Enter a name for this configuration policy.",
"policyPlatform": "Select the platform this app configuration policy will apply to.",
"policyProfileType": "Select the device profile types that this app configuration profile will apply to",
"policySMime": "Configure S/MIME signing and encryption settings for Outlook.",
"sMimeDeployCertsFromIntune": "Specify whether or not S/MIME certificates will be delivered from Intune for use with Outlook.\nIntune can automatically deploy signing and encryption certificates to users through the Company Portal.",
"sMimeEnable": "Specify whether or not S/MIME controls are enabled when composing an email",
"sMimeEnableAllowChange": "Specify if the user is allowed to change the Enable S/MIME setting.",
"sMimeEncryptAllEmails": "Specify whether or not all emails must be encrypted.\nEncrypting converts data to cipher text so that only the intended recipient can read it.",
"sMimeEncryptAllEmailsAllowChange": "Specify if the user is allowed to change the Encrypt all emails setting.",
"sMimeEncryptionCertProfile": "Specify certificate profile for email encryption.",
"sMimeSignAllEmails": "Specify whether or not all emails must be signed.\nA digital signature verifies the authenticity of the email and ensures that the contents are not tampered with in transit.",
"sMimeSignAllEmailsAllowChange": "Specify if the user is allowed to change the Sign all emails setting.",
"sMimeSigningCertProfile": "Specify certificate profile for email signing.",
"sMimeUserNotificationType": "Method to notify users that they must open Company Portal to retrieve S/MIME certificates for Outlook."
},
"WindowsManagement": {
"Assignment": {
"noAssignmentCustomAttributeDisplayText": "Assign custom attribute to at least one group. Go to Properties to edit assignments.",
"noAssignmentDisplayText": "Assign Powershell script to at least one group. Go to Properties to edit assignments.",
"noAssignmentShellScriptDisplayText": "Assign shell script to at least one group. Go to Properties to edit assignments."
},
"CustomAttributes": {
"customAttributeScriptDescription": "Max file size 200 KB.",
"customAttributeScriptLabel": "Script",
"customAttributeTypeDescription": "Select the data type of the result.",
"customAttributeTypeLabel": "Data type of attribute",
"dateTypeOption": "Date",
"integerTypeOption": "Integer",
"noAttributes": "The custom attributes you add will appear here. Add a custom attribute to get started.",
"settingsTabHeader": "Attribute settings",
"stringTypeOption": "String"
},
"ExecutionStatus": {
"Columns": {
"deviceName": "Device",
"errorDeviceCount": "Failed",
"lastStateUpdateDateTime": "Last Updated",
"osVersion": "OS Version",
"result": "Result",
"runState": "Status",
"successDeviceCount": "Succeeded",
"userPrincipalName": "User name"
},
"fail": "Failed",
"notApplicable": "Not Applicable",
"success": "Succeeded",
"unknown": "Unknown"
},
"Mac": {
"blockNotifications": "Hide script notifications on devices",
"executionFrequency": "Script frequency",
"runMode": "Run script as signed-in user",
"scriptRetry": "Max number of times to retry if script fails",
"uploadFile": "Upload script",
"blockNotificationToolTip": {
"toolTip": "Device users wont receive script-related messages in Notification Center while the script is running. When not configured, these messages are shown in Notification Center."
},
"executionFrequencyToolTip": {
"toolTip": "How often the script runs."
},
"runModeToolTip": {
"toolTip": "By default, the script is run as the root user. The root user can make system changes that a standard user account can't."
},
"uploadFileToolTip": {
"toolTip": "Max file size 200 KB."
}
},
"PolicyFrequency": {
"days1": "Every 1 day",
"hours1": "Every 1 hour",
"hours12": "Every 12 hours",
"hours2": "Every 2 hours",
"hours3": "Every 3 hours",
"hours6": "Every 6 hours",
"minutes15": "Every 15 minutes",
"minutes30": "Every 30 minutes",
"title": "Frequency of execution",
"weeks1": "Every 1 week"
},
"PolicyListToolBarOption": {
"linux": "Linux",
"macOs": "macOS",
"windows": "Windows 10 and later"
},
"PolicyRetry": {
"times1": "1 time",
"times2": "2 times",
"times3": "3 times",
"title": "Number of times to retry"
},
"Titles": {
"editCustomAttribute": "Edit custom attribute",
"editShellScript": "Edit shell script"
},
"UploadFile": {
"contentRequiredWarning": "Script content required",
"invalidFile": "Invalid file type.",
"uploadInfoBalloonContent": "Specify the PowerShell script file. File must be less than 200KB.",
"uploadLabel": "Script location"
},
"bashScriptObjectName": "Bash script",
"createButtonText": "Add",
"createPowershellScriptFlowSectionName": "Add PowerShell script",
"customAttributeObjectName": "Custom attribute",
"editPowershellScriptFlowSectionName": "Edit PowerShell script",
"enforceSignatureCheckInfoBalloonContent": "The script must be signed by a trusted publisher. By default, no warning or prompt displays and the script runs unblocked.",
"enforceSignatureCheckLabel": "Enforce script signature check",
"executionFrequencyLabel": "Execution Frequency",
"failedToSavePolicy": "Failed to save {0}",
"newWMPolicyBladeSubtitle": "Windows 10 and later",
"newWMPolicyBladeSubtitleMac": "macOS",
"noScriptsTitle": "The scripts you add will appear here. Add a script to get started.",
"powerShellScriptObjectName": "PowerShell script",
"reviewButtonText": "Review + add ",
"runAs64BitInfoBalloonContent": "The script will run in a 64-bit PowerShell Host for a 64-bit client architecture. By default, the script will run in a 32-bit PowerShell Host.",
"runAs64BitLabel": "Run script in 64 bit PowerShell Host",
"scriptContextInfoBalloonContent": "The script runs with the users credentials on the client computer. By default, the script runs in system context.",
"scriptContextLabel": "Run this script using the logged on credentials",
"scriptsettingsTabHeader": "Script settings",
"settingsHeader": "Select a script to configure",
"shellScriptObjectName": "Shell script",
"successfullySavedPolicy": "Saved {0}"
},
"SettingDetails": {
"CustomPolicyConfigurationProfile": {
"uploadControlPlaceHolderText": "Select a configuration profile file"
},
"ProfileDescription": {
"androidDeviceOwnerDerivedCredentialAppAuthenticationConfiguration": "Set up a derived credential to enable certificate-based authentication in your org. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"androidDeviceOwnerGeneral": "Enable or disable device features, run apps on dedicated devices, control security, and more. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"androidDeviceOwnerImportedPFX": "Set up an imported public key pair (PKCS) certificate to enable S/MIME email encryption in your email profiles. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"androidDeviceOwnerPKCS": "Set up a public key pair (PKCS) certificate to enable certificate-based authentication in your org. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"androidDeviceOwnerSCEP": "Set up a Simple Certificate Enrollment Protocol (SCEP) certificate to enable certificate-based authentication in your org. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"androidDeviceOwnerTrustedCertificate": "Import the trusted root certificate from your Certification Authority and assign it to devices that use SCEP and PCKS certificates to authenticate with your org's resources. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"androidDeviceOwnerVpn": "Create and configure a VPN connection to your org's network. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"androidDeviceOwnerWiFi": "Set up a Wi-Fi network for people to access. This profile is for fully managed, dedicated, and corporate-owned work profile devices.",
"aospDeviceOwnerDevice": "Enable or disable device features, control security, and more.",
"complianceAndroidDeviceOwner": "This policy is for fully managed, dedicated, and corporate-owned work profile devices.",
"derivedCredentials": "Set up a derived credential to enable certificate-based authentication in your org.",
"email": "Configure an email server, SSL communication, and other built-in email settings.",
"iosCustom": "The custom configuration template allows IT admins to assign settings that aren't built into Intune yet. For iOS and iPadOS devices, you can import a .mobileconfig file that you created using Apple Configurator 2 or Profile Manager.",
"iosDeviceFeatures": "Device features control various aspects of the iOS/iPadOS device as a whole, such as the wallpaper, the dock layout, AirPrint settings, and web content filters.",
"iosGeneral": "Device restrictions control security, hardware, data sharing, and more settings on the devices. For example, create a device restriction profile that manages access to the App store or restricts certain apps from being installed on the device.",
"macCustom": "The custom configuration template allows IT admins to assign settings that aren't built into Intune yet. For macOS devices, you can import a .mobileconfig file that you created using Profile Manager or a different tool.",
"macCustomPreferences": "Configure a preference file that uses the standard property list (.plist) format to define preferences for apps and the device.",
"macDeviceFeatures": "Device features control various aspects of the macOS device as a whole, such as what items launch at login, the view of the login window, and AirPrint settings.",
"macEndpointProtection": "Endpoint protection settings control security on macOS devices such as FileVault 2 encryption, Gatekeeper, and the Firewall.",
"macExtensions": "Configuration of the extensions that are allowed to load on the device, and blocked from loading on the device.",
"macGeneral": "Device restrictions control security, hardware, data sharing, and more settings on the devices. For example, create a device restriction profile that requires a device to have a password or manages what the device can sync from iCloud.",
"pKCS": "Set up a public key pair (PKCS) certificate to enable certificate-based authentication in your org.",
"pKCSImport": "Set up an imported public key pair (PKCS) certificate to enable S/MIME email encryption in your email profiles.",
"sCEP": "Set up a Simple Certificate Enrollment Protocol (SCEP) certificate to enable certificate-based authentication in your org.",
"trustedRoot": "Import the trusted root certificate from your Certification Authority and assign it to devices that use SCEP and PCKS certificates to authenticate with your org's resources.",
"vPN": "Create and configure a VPN connection to your org's network.",
"wifi": "Set up a Wi-Fi network for people to access.",
"wifiImport": "Import and assign a Wi-Fi configuration profile that was previously exported to a file.",
"windows10Atp": "With Intune, you can use this device configuration profile to manage <a href=\"https://go.microsoft.com/fwlink/?linkid=2160932\" target=\"_blank\"> Microsoft Defender for Endpoint </a> onboarding and offboarding on Windows devices. <br><br>Did you know? Consider going to <a href=\"#blade/Microsoft_Intune_Workflows/SecurityManagementMenu\" target=\"_blank\"> Endpoint security </a>to create an endpoint security profile or security baseline profile to configure your common endpoint protection security features. <br><br>Endpoint security profiles provide a concise, curated set of security templates including Firewall, BitLocker, Antivirus and more. Security baseline profiles are templates with pre-configured settings values recommended by security experts.",
"windows10AtpStreamlinedOnboarding": "With Intune, you can use this device configuration profile to manage <a href=\"https://go.microsoft.com/fwlink/?linkid=2160932\" target=\"_blank\"> Microsoft Defender for Endpoint </a> onboarding and offboarding on Windows devices. <br><br>Did you know? Consider going to <a href=\"#blade/Microsoft_Intune_Workflows/SecurityManagementMenu\" target=\"_blank\"> Endpoint security </a>to create an endpoint security profile or security baseline profile to configure your common endpoint protection security features. <br><br>Endpoint security profiles provide a concise, curated set of security templates including Firewall, BitLocker, Antivirus and more. Security baseline profiles are templates with pre-configured settings values recommended by security experts.",
"windows10Custom": "Microsoft Intune includes many built-in settings to control different features on a device. You can also create custom profiles, which are created similar to built-in profiles. Custom profiles are great when you want to use device settings and features that aren't built in to Intune. These profiles include features and settings for you to control on devices in your organization. For example, you can create a custom profile that sets the same feature for every Windows device. <br><br> Did you know? Consider creating a Settings catalog profile instead. The Intune Settings catalog contains a lot of settings and values previously only available through a custom profile, in a native easy to search experience. More settings are continually being added.",
"windows10DeviceFirmwareConfigurationInterface": "When you use Intune to manage Autopilot devices, you can manage UEFI (BIOS) settings after they're enrolled, using the Device Firmware Configuration Interface (DFCI). DFCI enables Windows to pass management commands from Intune to UEFI (Unified Extensible Firmware Interface). In Intune, use this feature to control BIOS settings. Typically, firmware is more resilient to malicious attacks. It limits end users control over the BIOS, which is good in a compromised situation. For example, you use devices running Windows 10 or later in a secure environment, and want to disable the camera. You can disable the camera at the firmware-layer, so it doesn't matter what the end user does. Reinstalling the OS or wiping the computer won't turn the camera back on. In another example, lock down the boot options to prevent users from booting up another OS, or an older version of Windows that doesn't have the same security features.",
"windows10EndpointProtection": "With Intune, you can use device configuration profiles to manage common endpoint protection security features on Windows devices, including Firewall, BitLocker, Microsoft Defender and encryption.<br><br>Did you know? Consider going to <a href=\"#blade/Microsoft_Intune_Workflows/SecurityManagementMenu\" target=\"_blank\"> Endpoint security </a>to create an endpoint security profile or security baseline profile to configure your common endpoint protection security features. <br><br>Be sure to try the <a href=\"#blade/Microsoft_Intune_DeviceSettings/DevicesMonitorMenu/encryptionReport\" target=\"_blank\"> Bitlocker encryption report </a> for a comprehensive view of encryption status of all enrolled devices. <br><br>Endpoint security profiles provide a concise, curated set of security templates including Firewall, BitLocker, Antivirus and more. Security baseline profiles are templates with pre-configured settings values recommended by security experts.",
"windows10General": "Intune includes device restriction policies that help administrators control Windows devices. These restrictions let you control a wide range of settings and features to protect your organization's resources. For example, administrators can set a minimum password length, and block simple passwords. <br><br>Did you know? Consider going to <a href=\"#blade/Microsoft_Intune_Workflows/SecurityManagementMenu\" target=\"_blank\"> Endpoint security </a>to create an endpoint security profile or security baseline profile to configure your common endpoint protection security features. <br><br>Endpoint security profiles provide a concise, curated set of security templates including Firewall, BitLocker, Antivirus and more. Security baseline profiles are templates with pre-configured settings values recommended by security experts.",
"windows10Kiosk": "On devices running Windows 10 or later, use Intune to run devices as a kiosk, sometimes known as a dedicated device. A device in kiosk mode can run one app, or run many apps. You can show and customize a start menu, add different apps, including Win32 apps, add a specific home page to a web browser, and more. This feature applies to: Windows 10 and later and Windows Holographic for Business",
"windows10NetworkBoundary": "When using Microsoft Defender Application Guard and Microsoft Edge, you can protect your environment from sites that aren't trusted by your organization. This feature is called a network boundary. It allows you to add network domains, IPV4 and IPv6 ranges, proxy servers, and more to your network boundary. Items in this boundary are trusted.",
"windows10SecureAssessmentProfile": "Education profiles in Intune are designed for students to take a test or exam on devices. This feature includes the Take a Test app and settings to add a test URL, choose how end-users sign in to the test, and more. When the user signs in, the Take a Test app automatically opens with the test you entered. No other apps can run on the device while the test is in progress.",
"windows10SharedPC": "Devices that have multiple users are called shared devices, and are a common part of mobile device management (MDM) solutions. Using Microsoft Intune, you can customize shared devices running the following platforms: Windows 10 Professional and newer, Windows 10 Enterprise and newer, Windows Holographic for Business, such as the HoloLens. For example, schools have devices that are typically used by many students. With this setting, the school Intune administrator can turn on the Shared PC feature to allow one user at a time. Students can't switch between different signed-in accounts on the device. When the student signs out, you also choose to remove all user-specific settings. End users can sign in to these shared devices with a guest account. After users sign in, the credentials are cached. As they use the device, end-users only get access to features you allow. For example, you choose when the device goes in to sleep mode, if users can see and save files locally, enable or disable power management settings, and more. You also control if the guest account deletes when the user signs-off, or delete inactive accounts when a threshold is reached.",
"windows10TeamGeneral": "Intune includes device restriction policies that help administrators control Windows 10 Team devices. These restrictions let you control settings and features to protect your organization's resources such as controlling the display of meeting information on the welcome screen or preventing waking the screen when someone enters the room.",
"windowsDeliveryOptimization": "Delivery Optimization settings for your devices running Windows 10 or later can help reduce bandwidth consumption when those devices download applications and updates.",
"windowsDomainJoin": "Many environments use on-premises Active Directory (AD). When AD domain-joined devices are also joined to Azure AD, they're called hybrid Azure AD joined devices. Using Windows Autopilot, you can enroll hybrid Azure AD joined devices in Intune. To enroll, you also need a Domain Join configuration profile. A Domain Join configuration profile includes on-premises Active Directory domain information. When devices are provisioning (and typically offline), this profile deploys the AD domain details so devices know which on-premises domain to join. If you don't create a domain join profile, these devices might fail to deploy.",
"windowsEditionUpgrade": "As part of your mobile device management (MDM) solution, you may want to upgrade your Windows 10/11 devices. For example, you want to upgrade your Windows 10/11 Professional devices to Windows 10/11 Enterprise. Or, you want the device to switch out of S mode. Windows 10/11 S mode is designed for security and performance. You can use Intune to switch out of S mode. Switching out of S mode is one way. And once you switch out of S mode, you can't go back to Windows 10/11 S mode. This feature applies to: Windows 10 and later, Windows 10 1809 or later for S mode and Windows Holographic for Business. These features are available in Intune, and are configurable by the administrator. Intune uses configuration profiles to create and customize these settings for your organization's needs. After you add these features in a profile, you can then push or deploy the profile to devices running Windows 10 or later in your organization. When you deploy the profile, Intune automatically upgrades the devices or switches out of S mode.",
"windowsHealthMonitoring": "Microsoft can collect event data, and provide recommendations to improve performance on your Windows devices. Endpoint Analytics analyzes this data, and can recommend software, help improve startup performance, and fix common support issues. In Intune, you can create a Windows Health Monitoring device configuration profile to enable this data collection, and then deploy this profile to your devices. Use this profile as part of your mobile device management (MDM) solution to optimize your Windows devices.",
"windowsIdentityProtection": "With Intune, you can use this device configuration profile to manage Windows Hello for Business settings on Windows devices. <br><br>Did you know? Consider going to <a href=\"#blade/Microsoft_Intune_Workflows/SecurityManagementMenu\" target=\"_blank\"> Endpoint security </a>to create an endpoint security profile or security baseline profile to configure your common endpoint protection security features. <br><br>Endpoint security profiles provide a concise, curated set of security templates including Firewall, BitLocker, Antivirus and more. Security baseline profiles are templates with pre-configured settings values recommended by security experts.",
"wiredNetwork": "Set up a wired network for people to access."
},
"SupportMessagesLanguageDropdown": {
"chineseSimplified": "Chinese (Simplified)",
"chineseTraditional": "Chinese (Traditional)",
"czech": "Czech",
"dutch": "Dutch",
"englishUS": "English (United States)",
"frenchFrance": "French (France)",
"german": "German",
"hungarian": "Hungarian",
"indonesian": "Indonesian",
"italian": "Italian",
"japanese": "Japanese",
"korean": "Korean",
"polish": "Polish",
"portugueseBrazil": "Portuguese (Brazil)",
"portuguesePortugal": "Portuguese (Portugal)",
"russian": "Russian",
"spanishSpain": "Spanish (Spain)",
"swedish": "Swedish",
"turkish": "Turkish"
},
"TrustedCert": {
"uploadControlPlaceHolderText": "Select a valid .cer file"
},
"aADDeviceIdOption": "AzureAD Device ID",
"aADDomainOption": "AAD domain",
"aADNtDomainOption": "AAD NT domain",
"aCOption": "AC",
"aES128": "AES-128",
"aES192": "AES-192",
"aES256": "AES-256",
"aESGCM128": "AES-128-GCM (16-octet ICV)",
"aESGCM256": "AES-256-GCM (16-octet ICV)",
"aadSharedDeviceDataClearAppsDescription": "Add any app not optimized for shared device mode to the list. The app's local data will be cleared whenever a user signs out of an app that's optimized for shared device mode. Available for dedicated devices enrolled with Shared mode running Android 9 and later.",
"aadSharedDeviceDataClearAppsName": "Clear local data in apps not optimized for Shared device mode",
"accountsPageDescription": "Block access to Accounts in Settings app.",
"accountsPageName": "Accounts",
"accountsSignInAssistantSettingsDescription": "Block the Microsoft Sign-in Assistant service (wlidsvc). When this setting is not cofigured, the wlidsvc NT service is controllable by the user (manual start)",
"accountsSignInAssistantSettingsName": "Microsoft Account sign-in assistant",
"actionColumnName": "Action",
"activeDirectoryDomainNameDescription": "Fully Qualified Domain Name (FQDN) the computers are to be joined to.",
"activeDirectoryDomainNameName": "Domain name",
"activeHoursDescription": "Configure a period when restarts due to update installations will be suppressed.",
"activeHoursEndName": "Active hours end",
"activeHoursStartName": "Active hours start",
"addItem": "Enter item",
"addUserDisabledDescription": "Blocks users from adding and signing in to personal accounts while on the device.",
"addUserDisabledName": "Add new users",
"addWindows32AppTitle": "Add Win32 app by specifying local path",
"addingGameCenterFriendsBlockedMacDescription": "Yes prevents users from adding friends to Game Center. Available for devices running macOS versions 10.13 or later.",
"addingGameCenterFriendsBlockedMacName": "Block adding Game Center friends",
"additionalHelp": "For additional help, create a support request.",
"adjustVolumeDisabledDescription": "Block changes to volume.",
"adjustVolumeDisabledName": "Volume changes",
"adminConfiguredComplianceSettingDescription": "Default Policy. A custom, organization-defined setting has configured compliance.",
"adminConfiguredComplianceSettingName": "Custom compliance",
"airPrintIpAddressHint": "e.g. 10.0.0.1",
"airPrintPort": "Port",
"airPrintPortDescription": "The listening port of the AirPrint destination. If this key is not specified, AirPrint will use the default port.",
"airPrintResourcePathHint": "e.g. printers/Xerox_Phaser_7600",
"airPrintRestrictionsHeader": "AirPrint",
"airPrintTableName": "AirPrint destinations",
"airprintExceptionToolTip": "Choose what happens with AirPrint traffic when always-on VPN is enabled. The default value for this setting is the most secure option.",
"allAndroidCorpEnrollmentTypesHeaderDescription": "These settings work for fully managed, dedicated, and corporate-owned work profile devices.",
"allAndroidCorpEnrollmentTypesHeaderName": "Fully managed, dedicated, and corporate-owned work profile devices",
"allAndroidVersionsPasswordHeader": "All Android devices",
"allAndroidVersionsPasswordHeaderDescription": "These settings work for all Android OS versions and manufacturers.",
"allDomainsOption": "All domains",
"allEnrollmentTypesDescription": "These settings work for devices that were enrolled in Intune through device enrollment or user enrollment, and for devices enrolled using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP).",
"allEnrollmentTypesHeader": "All enrollment types",
"allEnrollmentTypesHeaderDescription": "These settings work for devices that were enrolled in Intune through device enrollment or user enrollment, and for devices enrolled using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP). This includes all supervised devices.",
"allEnrollmentTypesHeaderDescriptionMac": "These settings work for all devices enrolled in Intune, regardless of enrollment type.",
"allEnrollmentTypesHeaderName": "All enrollment types",
"allEnrollmentTypesHeaderNameMac": "All enrollment types",
"allEnrollmentTypesSecondDescription": "Requiring a password automatically enforces a non-simple, 6-digit PIN requirement on all user enrolled devices, regardless of what you configure for those settings.",
"allFeaturesOption": "All features",
"allManagedApps": "All managed apps",
"allOtherUpdatesBehaviorName": "All other updates (OS, built-in apps)",
"allowActivationLockWhenSupervisedDescription": "Activation Lock makes it harder for a lost or stolen device to be reactivated.",
"allowActivationLockWhenSupervisedName": "Allow activation lock",
"allowAllCaptiveNetworkPluginsName": "Allow traffic from non-native captive networking apps to pass outside VPN",
"allowAllTrustedAppsSideloading": "Trusted app installation",
"allowAllTrustedAppsSideloadingDescription": "Specifies whether apps from Appx packages signed with a trusted certificate can be sideloaded.",
"allowAutomaticRedeploymentDescription": "Allow users with administrative rights to delete all user data and settings using CTRL + Win + R at the device lock screen so that the device can be automatically re-configured and re-enrolled into management.",
"allowAutomaticRedeploymentName": "Autopilot Reset",
"allowCaptiveWebsheetName": "Traffic from Captive Websheet app to pass outside VPN",
"allowCurrentWebSiteCookiesOption": "Allow cookies from current web site",
"allowDeviceSharingDescription": "Allow multiple users to log into the Company Portal using their AAD credentials (Samsung KNOX Standard 4.0+).",
"allowDeviceSharingName": "Shared Devices",
"allowEncryptedDataAndStoreAppsToAppearInWindowsSearchDescription": "Allow encrypted data and store apps to appear in Windows Search (No recommended).",
"allowEncryptedDataAndStoreAppsToAppearInWindowsSearchName": "Allow encrypted data and store apps to appear in Windows search results",
"allowManagedToWriteUnmanagedContactsDescription": "Users can sync and add their managed contacts (including business and corporate ones) to an unmanaged app, such as the device's built-in contacts app. Available with iOS 12.0 or later. This setting isn't available unless you block viewing corporate documents in unmanaged apps.",
"allowManagedToWriteUnmanagedContactsName": "Allow managed apps to write contacts to unmanaged contacts accounts",
"allowNotEditableOption": "Allow (not editable)",
"allowOTAPKIUpdatesDescription": "Block your users from receiving updates without connecting their devices to a computer.",
"allowOTAPKIUpdatesName": "Block over-the-air PKI updates",
"allowOption": "Allow",
"allowPersonalToWork": "Apps in work profile can handle sharing request from personal profile",
"allowSecurityDebuggingFeaturesDescription": "Allow users to turn on debugging features",
"allowSecurityDebuggingFeaturesName": "Allow users to turn on debugging features",
"allowSharedUserAppData": "Shared user app data",
"allowSharedUserAppDataDescription": "Specifies whether multiple users of the same app can share data.",
"allowTrafficOutsideName": "Allow network traffic to pass outside VPN",
"allowUnmanagedToReadManagedContactsDescription": "An unmanaged app, such as the device's built-in contacts app, can access contact info in a managed app, such as Outlook. Available with iOS 12.0 and later.",
"allowUnmanagedToReadManagedContactsName": "Allow unmanaged apps to read from managed contacts accounts",
"allowVisitedSitesCookiesOption": "Allow cookies from visited web sites",
"allowWindows11UpgradeDescription": "Set to upgrade eligible Windows 10 devices to latest Windows 11 release.",
"allowWindows11UpgradeName": "Upgrade Windows 10 devices to Latest Windows 11 release",
"allowedList": "Allowed apps",
"allowedOption": "Allowed",
"alphabeticOption": "Alphabetic",
"alphanumericOption": "Alphanumeric",
"alphanumericPasswordTypeDescription": "Alphanumeric password type",
"alphanumericPasswordTypeName": "Alphanumeric",
"alphanumericWithSymbolsOption": "Alphanumeric with symbols",
"alternativeStartLayoutDescription": "Import a custom XML layout to change the Start layout display order and tile size.",
"alternativeStartLayoutName": "Use alternative Start layout",
"alwaysNotifyOption": "Always notify",
"alwaysOnVPNName": "Always-on VPN",
"alwaysOnVPNToolTip": "When enabled, the device automatically connects to the VPN. It'll stay connected or will automatically reconnect when the device restarts or changes networks.",
"alwaysPromptName": "Always prompt",
"alwaysPromptOption": "Always prompt",
"androidAppManagementHeaderName": "Specify apps to allow or block on Samsung KNOX devices.",
"androidAppStoreExample": "e.g. https://play.google.com/store/apps/details?id=com.microsoft.rdc.android",
"androidAppsAllowedToBeInstalled": "Apps allowed to be installed (Samsung KNOX Standard only)",
"androidAppsAllowedToBeInstalledtHeaderName": "Specify the apps that users can install. Users will not to be able to install apps that are not on the list.",
"androidAppsBlockedFromLaunch": "Apps blocked from launching (Samsung KNOX Standard only)",
"androidAppsBlockedFromLaunchHeaderName": "Specify the apps that users cannot run on their device.",
"androidDeviceOwnerAlwaysOnVpnClientDescription": "The specified VPN client must be installed on the device, and it must support per-app VPN; otherwise, an error will occur. Note that you will need to approve the app in the Managed Google Play Store, sync the app to Intune, and deploy it in order for it to be installed.",
"androidDeviceOwnerCustomPasswordDescription": "Create a device passcode for dedicated devices only. Can be 4-16 characters and contain numbers, letters, and special characters.",
"androidDeviceOwnerCustomPasswordName": "Custom passcode",
"androidElevenAndBelowPasswordHeader": "Android 11 and earlier",
"androidElevenAndBelowPasswordHeaderDescription": "These settings work for devices running Android 11 or earlier.",
"androidEnterpriseAlwaysOnVpnClientName": "VPN client",
"androidEnterpriseAlwaysOnVpnClientPackageIdentifierDescription": "Enter the package ID of the app in the Google Play store. For example, if the URL for the app in the Play store is https://play.google.com/store/details?id=com.contosovpn.android.prod, the package ID would be com.contosovpn.android.prod.",
"androidEnterpriseAlwaysOnVpnClientPackageIdentifierName": "Package ID",
"androidEnterpriseAlwaysOnVpnEnabledName": "Always-on VPN",
"androidEnterpriseAlwaysOnVpnEnabledNameWorkProfile": "Always-on VPN (work profile-level)",
"androidEnterpriseAlwaysOnVpnLinkDescription": "Learn more about configuring always-on VPN for Android Enterprise.",
"androidEnterpriseAlwaysOnVpnLinkName": "Always-on VPN can be configured in device restrictions.",
"androidEnterpriseAlwaysOnVpnLockdownModeEnabledName": "Lockdown mode",
"androidEnterpriseDeviceOwnerAlwaysOnVpnEnabledDescription": "Set a VPN client to automatically connect and reconnect to the VPN whenever possible. Choose Disabled to disable always-on VPN for all VPN clients on device. Only one VPN client can be configured for always-on VPN on a given device, so be sure to have no more than one always-on VPN policy deployed to a single device.",
"androidEnterpriseDeviceOwnerAlwaysOnVpnLockdownModeEnabledDescription": "Enabling this forces all network traffic through the VPN tunnel. If a connection to the VPN can't be established, no network traffic will be allowed.",
"androidEnterpriseDeviceSettingsBlockedDescription": "By default, users can access the Settings app while in kiosk mode.",
"androidEnterpriseDeviceSettingsBlockedName": "End-user access to device settings",
"androidEnterpriseGlobalProxyEnabledName": "Recommended global proxy",
"androidEnterpriseGlobalProxyExcludedHostsDescription": "Semicolon separated list of host names for which the proxy is bypassed. The host names may contain wildcards such as *.example.com.",
"androidEnterpriseGlobalProxyExcludedHostsName": "Excluded hosts",
"androidEnterpriseGlobalProxyHostName": "Host",
"androidEnterpriseGlobalProxyPortName": "Port number",
"androidEnterpriseGlobalProxyProxyAutoConfigURLName": "PAC URL",
"androidEnterpriseGlobalProxyTypeName": "Type",
"androidEnterprisePowerButtonActionsBlockedDescription": "By default, when a user holds down the power button on a device, they're shown power options such as Restart and Power off. Hiding these options prevent users from accidentally or intentionally shutting down devices.",
"androidEnterprisePowerButtonActionsBlockedName": "Power button menu",
"androidEnterpriseRequiredPasswordTypeDescription": "Set the passwords complexity requirements. Additional password requirements will become available based on your selection. <a href=\"https://docs.microsoft.com/en-us/intune/device-restrictions-android-for-work\">Learn more about password requirements.</a>",
"androidEnterpriseStatusBarDescription": "For devices running OS 9+, optionally allow end-users to access the device status bar and/or to receive notifications from the status bar. By default, the status bar and notifications are disabled on the device.",
"androidEnterpriseStatusBarName": "System notifications and information",
"androidEnterpriseSystemErrorWarningsEnabledDescription": "By default, system warnings about crashed or unresponsive apps aren't shown onscreen to the user. Instead, when one of these events occurs, the system forces the app to close.",
"androidEnterpriseSystemErrorWarningsEnabledName": "System error warnings",
"androidEnterpriseSystemNavigationDescription": "For devices running OS 9+, optionally allow end-users to access the device home and overview buttons. By default, the device home and overview buttoms are disabled on the device.",
"androidEnterpriseSystemNavigationName": "Enabled system navigation features",
"androidEnterpriseWorkProfileAlwaysOnVpnClientDescription": "The specified VPN client must be installed on the device, and it must support per-app VPN in work profiles; otherwise, an error will occur. Note that you will need to approve the app in the Managed Google Play Store, sync the app to Intune, and deploy it in order for it to be installed in the user's work profile.",
"androidEnterpriseWorkProfileAlwaysOnVpnEnabledDescription": "Set a VPN client in the work profile to automatically connect and reconnect to the VPN whenever possible. Choose Disabled to disable always-on VPN for all VPN clients in the work profile. Only one VPN client can be configured for always-on VPN on a given device, so be sure to have no more than one always-on VPN policy deployed to a single device.",
"androidEnterpriseWorkProfileAlwaysOnVpnLockdownModeEnabledDescription": "Enabling this forces all network traffic for the work profile through the VPN tunnel. If a connection to the VPN can't be established, no network traffic will be allowed in the device's work profile.",
"androidGeneralKiosk": "These settings apply to Samsung KNOX Standard devices only.",
"androidHiddenApps": "Apps hidden from user (Samsung KNOX Standard only)",
"androidHiddenAppsHeaderName": "Specify the apps that will be hidden on the device. Users cannot discover or run these apps.",
"androidHomeScreen": "Home screen",
"androidNineAndBelowPasswordHeader": "Android 9 and earlier or Samsung Knox",
"androidNineAndBelowPasswordHeaderDescription": "These settings work for devices running Android 9 or earlier, and will also work on all Samsung Knox devices running any Android OS version.",
"androidPasswordHeader": "Require a password to unlock the device. If not configured, the use of passwords is optional, and left up to the user to configure.",
"androidPersonalWorkProfileAlwaysOnVpnEnabledName": "Always-on VPN",
"androidSafetyNetBasicIntegrityAndCertified": "Check basic integrity & certified devices",
"androidSafetyNetbasicIntegrity": "Check basic integrity",
"androidTRDeprecation": "Trusted certificates can no longer install on devices that run Android 11 or later, except for Samsung Knox devices. If you use SCEP certificate profiles, you must continue to create and deploy a trusted certificate profile and associate it with the SCEP certificate profile, but you must manually deliver the trusted root certificate to those devices.",
"androidTenAndAbovePasswordHeader": "Android 10 and later",
"androidTenAndAbovePasswordHeaderDescription": "These settings work for devices running Android 10 or later.",
"androidTenDeprecationInfoBox": "Beginning in October 2020, some settings will not be supported on Android devices that are running Android 10 and later and are not Samsung Knox. These settings are labeled with Android 9 and earlier or Samsung Knox. Click to learn more.",
"androidTrustedServerCertificateNamesDescription": "This is the DNS name used in the certificate presented by the Radius Server during client authentication to the Wifi access point. If you have multiple Radius servers which have the same DNS suffix in their fully qualified domain name then the suffix alone may also be used. This allows devices to trust the server certificate presented to them. <a href=\"https://go.microsoft.com/fwlink/?linkid=2181354\" target=\"_blank\">Learn more</a>.<br>",
"androidTrustedServerCertificateNamesName": "Radius server name",
"androidTwelveAndAbovePasswordHeader": "Android 12 and later",
"androidTwelveAndAbovePasswordHeaderDescription": "These settings work for devices running Android 12 or later.",
"androidTwelveDeprecationInfoBox": "Beginning in November 2022, some settings are not supported on Android devices that are running Android 12 and later. These settings are labeled with Android 11 and earlier. Click to learn more.",
"androidZebraMxConfigurationFileXmlName": "Choose a valid Zebra MX XML file",
"androidZebraMxConfigurationLearnMore": "Learn more about managing Zebra devices",
"androidZebraMxConfigurationXmlName": "MX profile in .xml format",
"anonymousIdentityPrivacyName": "Anonymous identity",
"any": "Any",
"anyDNSAddressesInList": "Use the following DNS servers to resolve the domains you entered (optional)",
"anyDayOption": "Any Day",
"anyEthernet": "Any Ethernet",
"anywhereOption": "Anywhere",
"appBundleIdColumn": "App bundle ID",
"appColumnExamples": "Examples: Filename.exe, or %ProgramFiles%\\Path\\Filename.exe",
"appComplianceListName": "Apps to allow or restrict on device",
"appId": "App ID",
"appIdentifierDescription": "For desktop, use the file path; for universal, use the Package Family Name.",
"appIdentifierName": "App identifier",
"appListTableName": "Apps list",
"appManagementMSIAllowUserControlOverInstallDesc": "This policy setting permits users to change installation options that typically are available only to system administrators. The security features of Windows Installer prevent users from changing installation options typically reserved for system administrators, such as specifying the directory to which files are installed. If enabled, installations that may otherwise be stopped due to a security violation would be permitted to continue. Default: disabled.",
"appManagementMSIAllowUserControlOverInstallName": "User control over installations",
"appManagementMSIAlwaysInstallWithElevatedPrivilegesDesc": "This policy setting directs Windows Installer to use elevated permissions when it installs any program on the system. If you enable this policy setting, privileges are extended to all programs. This enables users to install programs that require access to directories that the user might not have permission to view or change, including directories on highly restricted computers. Default: disabled.",
"appManagementMSIAlwaysInstallWithElevatedPrivilegesName": "Install apps with elevated privileges",
"appManagementPackageFamilyNamesToLaunchAfterLogOnDescription": "This policy allows the IT admin to specify a list of applications that users can run after logging on to the device.\n For this policy to work, the Windows apps need to declare in their manifest that they will use the start up task",
"appManagementPackageFamilyNamesToLaunchAfterLogOnName": "Startup apps",
"appManagementPackageFamilyNamesToLaunchAfterLogOnPlaceholder": "Enter a semicolon-delimited list of Windows apps Package Family Names",
"appManagementUninstallBuiltInAppsDesc": "Indicates whether or not to uninstall a fixed list of built-in Windows apps.",
"appManagementUninstallBuiltInAppsName": "Remove built-in apps",
"appNameEmpty": "Calculator",
"appNameExample": "e.g. Calculator",
"appNameName": "App name",
"appNonComplianceTypeDescription": "We recommend asking your users to accept a Terms of Use, to acknowledge that apps on their device, including personal apps, will be evaluated, and noncompliant apps will be reported to the IT admin.",
"appNonComplianceTypeName": "Evaluate specified user installed applications on devices",
"appPackageFamilyNameDescription": "App package family name",
"appPackageIdExample": "com.contoso.app.id.package",
"appPublisherName": "Publisher",
"appReportCountofUserInstalledAppsName": "Report device compliance based on installed apps",
"appRulePrefix": "App rule: ",
"appScope": "App",
"appUrlName": "App store URL",
"applePersonalizedAdsBlockedDescription": "Available for devices running iOS/iPadOS 14.0 or later.",
"applePersonalizedAdsBlockedName": "Limit Apple personalized advertising",
"applicationGuardAllowFileSaveOnHostDescription": "Allow users to download files from the virtualized browser onto the host operating system.",
"applicationGuardAllowFileSaveOnHostName": "Download files to host file system",
"applicationGuardAllowPersistenceDescription": "Allow user data (e.g., passwords, favorites, and cookies) that is created during an Application Guard virtual browsing session to be saved.",
"applicationGuardAllowPersistenceName": "Retain user-generated browser data",
"applicationGuardAllowPrintToDescription": "Configure what content can be printed from unapproved websites in the Application Guard virtual browser.",
"applicationGuardAllowPrintToName": "Printing type(s)",
"applicationGuardAllowVirtualGPUDescription": "Load graphics-intensive websites faster when working within the Application Guard virtual browsing session by enabling access to a virtual graphics processing unit.",
"applicationGuardAllowVirtualGPUName": "Graphics acceleration",
"applicationGuardAuditingDescription": "Collect logs for events that occur within an Application Guard virtual browsing session.",
"applicationGuardAuditingName": "Collect logs",
"applicationGuardBlockNonEnterpriseContentDescription": "Block content from unapproved websites from loading.",
"applicationGuardBlockNonEnterpriseContentName": "External content on enterprise sites",
"applicationGuardClipboardAllowBothWayName": "Allow copy and paste between PC and browser",
"applicationGuardClipboardAllowBrowserToPCName": "Allow copy and paste from browser to PC only",
"applicationGuardClipboardAllowPCToBrowserName": "Allow copy and paste from PC to browser only",
"applicationGuardClipboardBehaviorDescription": "Choose what copy and paste actions are allowed from the local PC and an Application Guard virtual browser.",
"applicationGuardClipboardBehaviorName": "Clipboard behavior",
"applicationGuardClipboardBlockBothWayName": "Block copy and paste between PC and browser",
"applicationGuardClipboardContentBothName": "Text and images",
"applicationGuardClipboardContentDescription": "Select the allowed clipboard content.",
"applicationGuardClipboardContentImageName": "Images",
"applicationGuardClipboardContentName": "Clipboard content",
"applicationGuardClipboardContentNotConfiguredName": "Select the allowed clipboard content",
"applicationGuardClipboardContentTextName": "Text",
"applicationGuardEnabledDescription": "Application Guard opens unapproved sites in a Hyper-V virtualized browsing container.",
"applicationGuardEnabledName": "Application Guard",
"applicationGuardEnabledOptionsDescription": "If enabled for Edge, Application Guard opens unapproved sites in a Hyper-V virtualized browsing container.",
"applicationGuardEnabledOptionsEnabledForEdge": "Enabled for Edge",
"applicationGuardEnabledOptionsEnabledForEdgeAndOffice": "Enabled for Edge and Office",
"applicationGuardEnabledOptionsEnabledForOffice": "Enabled for Office",
"applicationGuardInstallationText": "This profile will install a Win32 component to activate Application Guard. End-users will need to restart the targeted devices to complete the successful installation and application of this profile.",
"applicationGuardPrintFromVirtualBrowserDescription": "Allow printing content from unapproved websites in the Application Guard virtual browser.",
"applicationGuardPrintFromVirtualBrowserName": "Print from virtual browser",
"applicationGuardPrintToLocalPrintersName": "Local printers",
"applicationGuardPrintToNetworkPrintersName": "Network printers",
"applicationGuardPrintToPDFName": "PDF",
"applicationGuardPrintToXPSName": "XPS",
"applicationNameName": "Application name",
"apps": "Apps",
"appsActivateAboveLockScreenDescription": "This policy setting specifies whether Windows apps can be activated by voice when the screen is locked.\n <br/><br/>If allowed, apps can be activated by voice from the lock screen and users in your organization cannot change it.\n <br/><br/>If blocked, Windows apps are not allowed to be activated by voice from the lock screen and users in your organization cannot change it.\n <br/><br/>If left not configured, users in your organization can decide whether Windows apps can be activated from the lock screen by voice using Settings > Privacy on the device.\n <br/><br/>\n ",
"appsActivateAboveLockScreenName": "Voice activate apps from locked screen",
"appsAndTrafficRules": "Apps and Traffic Rules",
"appsAutoUpdateAlways": "Always",
"appsAutoUpdateNever": "Never",
"appsAutoUpdateNotConfigured": "Not configured",
"appsAutoUpdatePolicyDescription": "Devices check for app updates daily. The default behavior is to let device users decide. Theyll be able to set their preferences in the managed Google Play app.",
"appsAutoUpdatePolicyName": "App auto-updates",
"appsAutoUpdatePolicyNameWorkProfile": "App auto-updates (work profile-level)",
"appsAutoUpdateUserChoice": "User choice",
"appsAutoUpdateWifiOnly": "Wi-Fi only",
"appsPageDescription": "Block access to Apps in Settings app.",
"appsPageName": "Apps",
"appsRecommendSkippingFirstUseHintsDescription": "Enable a suggestion to apps that they skip their user tutorials and any introductory hints when they first start up, if applicable.",
"appsRecommendSkippingFirstUseHintsName": "Skip first use hints",
"asMessagesArriveOption": "As messages arrive",
"associateAppsOption": "Associate apps with this connection",
"associatedDomainsAppIdDescription": "App ID typically takes the format <i>&lt;team ID&gt;.&lt;bundle ID&gt;</i>.",
"associatedDomainsAppIdExample": "ABCDE12345.com.example.app",
"associatedDomainsAppIdName": "App ID",
"associatedDomainsDomainExample": "webcredentials:www.example.com",
"associatedDomainsDomainName": "Domain",
"associatedDomainsDomainsListDescription": "Must be in the format <i>&lt;service type&gt;:&lt;domain&gt;</i>. Domain must be a fully qualified hostname, like www.example.com.",
"associatedDomainsDomainsListName": "Domains",
"associatedDomainsEnableDirectDownloadsDescription": "When enabled, the domain can download data directly instead of going through a content delivery network (CDN). Available for macOS 11 and later.",
"associatedDomainsEnableDirectDownloadsName": "Enable direct downloads",
"associatedDomainsTableDescription": "Can be used with SSO redirect-type extension, universal links, and password autofill on macOS 10.15+.",
"associatedDomainsTableName": "Associated domains",
"atLeastAlphabeticOption": "At least alphabetic",
"atLeastAlphanumericOption": "At least alphanumeric",
"atLeastAlphanumericWithSymbolsOption": "At least alphanumeric with symbols",
"atLeastNumericOption": "At least numeric",
"attribute": "Attribute",
"auditDiskModification": "Audit disk modification",
"auditMode": "Audit Mode",
"auditOnly": "Audit only",
"auditOption": "Audit",
"authentication": "Client Authentication",
"authenticationAllowSecondaryDeviceDescription": "Allow the use of Windows Hello companion devices for authenticating with Windows",
"authenticationAllowSecondaryDeviceName": "Windows Hello device authentication",
"authenticationCertificate": "Authentication certificate",
"authenticationMethodDescription": "Select how you want users to authenticate to the email server. Use certificates to provide the most secure and seamless experience for end users.",
"authenticationMethodDescriptionName": "Authentication method description",
"authenticationMethodIKEv2Description": "Select whether to authenticate using EAP or machine certificates.",
"authenticationMethodName": "Authentication method",
"authenticationMethodTLSDescription": "When you select Certificates, select one of the certificate profiles (SCEP or PKCS) that is also deployed to the device. This is the identity certificate that is presented by the device to the server.",
"authenticationMethodTTLSDescription": "When you select Certificates, select one of the certificate profiles (SCEP or PKCS) that is also deployed to the device. This is the identity certificate that is presented by the device to the server.",
"authenticationPreferredAzureADTenantDomainNameDescription": "Enable user to sign in without typing the domain name.",
"authenticationPreferredAzureADTenantDomainNameEmpty": "contoso.com",
"authenticationPreferredAzureADTenantDomainNameName": "Preferred Azure AD tenant domain",
"authenticationTransformAlgorithmDescription": "Hash algorithm to be used during child (quick mode) security association negotiation. Value must match VPN server settings.",
"authenticationTransformAlgorithmName": "Authentication transform algorithm",
"authenticationTransformConstantsGCMAES128": "GCM-AES-128",
"authenticationTransformConstantsGCMAES192": "GCM-AES-192",
"authenticationTransformConstantsGCMAES256": "GCM-AES-256",
"authenticationTransformConstantsMD596": "HMAC-MD5-96",
"authenticationTransformConstantsSHA196": "HMAC-SHA1-96",
"authenticationTransformConstantsSHA256128": "HMAC-SHA256-128",
"authenticationWebSignInDescription": "Allow the web credential provider for sign-in.",
"authenticationWebSignInName": "Web sign-in (deprecated setting)",
"authorizedAppRulesDescription": "Apply authorized firewall rules in the local store to be recognized and enforced.",
"authorizedAppRulesName": "Authorized application Microsoft Defender Firewall rules from the local store",
"authorizedUsersListHideAdminUsersName": "Hide computer's administrators",
"authorizedUsersListHideLocalUsersName": "Hide local users",
"authorizedUsersListHideMobileAccountsName": "Hide mobile accounts",
"authorizedUsersListIncludeNetworkUsersName": "Show network users",
"authorizedUsersListShowOtherManagedUsersName": "Show other users",
"autoDeny": "Auto deny",
"autoDetectIPRangesDescription": "Windows can detect IP ranges on domain joined devices that are connected to the enterprise network. If you wish to prevent the auto-detection of IP ranges, then enable this option to force Windows to treat the IP ranges you specified in the network boundary definition as the authoritative list of IP ranges and to not perform any additional detection.",
"autoDetectIPRangesName": "Enterprise IP Ranges list is authoritative (do not auto-detect)",
"autoDetectProxiesDescription": "Windows can detect proxy servers on domain joined devices that are connected to the enterprise network. If you wish to prevent the auto-detection of proxy servers, then enable this option to force Windows to treat the proxy servers you specified in the network boundary definition as the authoritative list of proxy servers and to not perform any additional detection.",
"autoDetectProxiesName": "Enterprise Proxy Servers list is authoritative (do not auto-detect)",
"autoGrant": "Auto grant",
"autoInstallAndRebootAtMaintenanceTimeOption": "Auto install and restart at maintenance time",
"autoInstallAndRebootAtScheduledTimeOption": "Auto install and restart at a scheduled time",
"autoInstallAndRebootAtTimeDescription": "Select automation update installation day and time",
"autoInstallAndRebootAtTimeName": "Install updates and reboot at scheduled time",
"autoInstallAndRebootDayDescription": "Select install day for scheduled updates",
"autoInstallAndRebootDayName": "Scheduled install day",
"autoInstallAndRebootTimeDescription": "Select install time for scheduled updates",
"autoInstallAndRebootTimeName": "Scheduled install time",
"autoInstallAndRebootWithoutEndUserControlOption": "Auto install and reboot without end-user control",
"autoInstallAtMaintenanceTimeOption": "Auto install at maintenance time",
"autoRestartNotificationDismissalDescription": "Specify the method by which the auto-restart required notification is dismissed.",
"autoRestartNotificationDismissalName": "Require user approval to dismiss restart notification",
"autoUnlockBlockedDescription": "Blocks users from unlocking their device with Apple Watch. Available for devices running iOS and iPadOS versions 14.5 or later.",
"autoUnlockBlockedName": "Block Apple Watch auto unlock",
"automatedDeviceEnrollmentHeaderDescription": "These settings work for supervised devices that were enrolled in Intune using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP). This includes devices supervised through Apple Configurator.",
"automatedDeviceEnrollmentHeaderDescriptionMac": "These settings work for devices that were enrolled in Intune using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP). This includes all supervised devices.",
"automatedDeviceEnrollmentHeaderName": "Automated device enrollment",
"automatedDeviceEnrollmentHeaderNameMac": "Automated device enrollment",
"automaticOption": "Automatic",
"automaticOptionNativeType": "Automatic (Native type)",
"automaticUpdateBehaviorDescription": "Manage automatic update behavior to scan, download, and install updates.",
"automaticUpdateBehaviorName": "Automatic update behavior",
"automaticUpdateFrequencyDescription": "Scheduled the update installation on the weeks of the month",
"automaticUpdateFrequencyName": "Automatic behavior frequency",
"automaticUpdatesDescription": "Windows automatically runs update activites during idle periods (maintenance times). Users can override this behavior.",
"automaticUpdatesName": "Automatic updates",
"automaticUpdatesSupervisedLearnMoreText": "Learn More",
"automaticUpdatesSupervisedLearnMoreTextAriaLabel": "Learn more about update policies settings",
"automaticUpdatesSupervisedName": "Create a profile to force targeted devices to scan and install the latest iOS updates. Updates will only apply to supervised iOS devices.",
"automaticVPNStory": "Select the type of Automatic VPN you would like to use. The type of VPN cannot be changed after the policy is saved. All other attributes can still be changed.",
"azureADAccountOption": "AzureAD account",
"azureOperationalInsightsDescription": "Software-as-a-service (Saas) solution in Microsoft Operations Management Suite (OMS) to let admins collect, store, and analyze log data from Windows 10 Team devices.",
"azureOperationalInsightsName": "Azure Operational Insights",
"backgroundColorDescription": "",
"backgroundColorName": "Background color",
"backgroundWallpaperDescription": "Customize the appearance of the screen background for assigned groups.",
"backgroundWallpaperEmptyValueKey": "Enter a valid URL",
"backgroundWallpaperName": "Set custom URL background",
"backwardSlashInvalidError": "The value must not contain '\\'.",
"base64Name": "Base64 (file)",
"basedOnMyUsageOption": "Based on my usage",
"basicOption": "Required",
"batteryHeader": "Battery",
"batteryLevelEmptyValue": "e.g. 70",
"batteryLevelTurnOnEnergySaverBatteryDescription": "This policy setting allows you to specify battery charge level at which Energy Saver is turned on when the device is powered by a battery.<br/>If you enable this policy setting, you must specify a percentage value that indicates the battery charge level. Energy Saver is automatically turned on at (and below) the specified battery charge level.<br/>If you disable or do not configure this policy setting, users control this setting.",
"batteryLevelTurnOnEnergySaverName": "Battery level to turn Energy Saver on",
"batteryLevelTurnOnEnergySaverPluggedInDescription": "This policy setting allows you to specify battery charge level at which Energy Saver is turned on when the device is plugged in.<br/>If you enable this policy setting, you must specify a percentage value that indicates the battery charge level. Energy Saver is automatically turned on at (and below) the specified battery charge level.<br/>If you disable or do not configure this policy setting, users control this setting.",
"bing": "Bing",
"biometricWeak": "Weak biometric",
"biometricsOption": "Biometrics authentication",
"bitLockerAllowStdUsersEncryptAADJoinDescription": "Allow users without Administrative rights the ability to enable BitLocker encryption on the local machine. This setting only applies to Azure Active Directory Joined (AADJ) devices.",
"bitLockerAllowStdUsersEncryptAADJoinName": "Allow standard users to enable encryption during Azure AD Join",
"bitLockerBaseConfigureEncryptionMethodsDescription": "Selecting \"Enable\" allows you to configure the encryption methods for OS drives, fixed data-drives and removable data-drives. By selecting \"Not configured\", BitLocker will use the default encryption method for the drive.",
"bitLockerBaseConfigureEncryptionMethodsName": "Configure encryption methods",
"bitLockerBaseSettingsDescription": "Base settings are universal BitLocker settings for all types of data drives. These settings only apply to Windows 10/11 Enterprise, Windows 10/11 Education and Windows 10 Mobile.",
"bitLockerBaseSettingsName": "BitLocker base settings",
"bitLockerDisableWarningForOtherDiskEncryptionDescription": "This setting prompts for any third party disk encryption on end users' machines. Selecting \"Block\" will disable the warning prompt for other disk encryption, and is required to allow standard users to enable encryption. Selecting \"Not configured\" will warn the end user that enabling BitLocker while third party encryption is in use will render the device unusable.",
"bitLockerDisableWarningForOtherDiskEncryptionName": "Warning for other disk encryption",
"bitLockerEnableStorageCardEncryptionOnMobileDescription": "Selecting \"Require\" will encrypt the storage card of the mobile device.",
"bitLockerEnableStorageCardEncryptionOnMobileName": "Encrypt storage card (mobile only)",
"bitLockerEnabledDescription": "Require BitLocker to be enabled on the device",
"bitLockerEnabledName": "Require BitLocker",
"bitLockerEncryptDeviceDescription": "Selecting \"Require\" will enable BitLocker device encryption. Depending on device hardware and Windows version, end users may be asked to confirm there is no third party encryption on their device. Turning on Windows encryption while third party encryption is in use will render the device unstable.",
"bitLockerEncryptDeviceName": "Encrypt devices",
"bitLockerEncryptMethodAesCbc128": "AES-CBC 128-bit",
"bitLockerEncryptMethodAesCbc256": "AES-CBC 256-bit",
"bitLockerEncryptMethodXtsAes128": "XTS-AES 128-bit",
"bitLockerEncryptMethodXtsAes256": "XTS-AES 256-bit",
"bitLockerFixedDriveSettingsDescription": "These settings apply specifically to fixed data drives. These settings only apply to Windows 10/11 Enterprise, Windows 10/11 Education and Windows 10 Mobile",
"bitLockerFixedDriveSettingsName": "BitLocker fixed data-drive settings",
"bitLockerFixedDriveWriteAccessDescription": "Selecting \"Block\" will block data write to any fixed data-drive that is not protected by BitLocker. Selecting \"Not configured\" will allow data to be written to unencrypted fixed data-drives.",
"bitLockerFixedDriveWriteAccessName": "Write access to fixed data-drive not protected by BitLocker",
"bitLockerFixedEncryptionMethodName": "Encryption for fixed data-drives",
"bitLockerRecoveryOptionsAfterRecoveryInformationToStoreDescription": "Prevent users from enabling BitLocker unless the computer successfully backs up the BitLocker recovery information to Azure Active Directory. Selecting \"Require\" will ensure the recovery keys are successfully stored in Azure Active Directory before enabling encryption. By selecting \"Not configured\", a device may become encrypted without recovery information stored in Azure Active Directory.",
"bitLockerRecoveryOptionsAfterRecoveryInformationToStoreName": "Store recovery information in Azure Active Directory before enabling BitLocker",
"bitLockerRecoveryOptionsHideDescription": "Block users from specifying recovery options when they turn on BitLocker.",
"bitLockerRecoveryOptionsHideName": "Recovery options in the BitLocker setup wizard",
"bitLockerRecoveryOptionsInformationToStoreDescription": "Configure what pieces of BitLocker recovery information are stored in Azure Active Directory.",
"bitLockerRecoveryOptionsInformationToStoreName": "BitLocker recovery Information stored to Azure Active Directory",
"bitLockerRecoveryOptionsKeyAllowedName": "Allow 256-bit recovery key",
"bitLockerRecoveryOptionsKeyBlockedName": "Do not allow 256-bit recovery key",
"bitLockerRecoveryOptionsKeyDescription": "Configure if users are allowed, required or not allowed to generate a 256-bit recovery key.",
"bitLockerRecoveryOptionsKeyName": "User creation of recovery key",
"bitLockerRecoveryOptionsKeyRequiredName": "Require 256-bit recovery key",
"bitLockerRecoveryOptionsPasswordAllowedName": "Allow 48-digit recovery password",
"bitLockerRecoveryOptionsPasswordAndKey": "Backup recovery passwords and key packages",
"bitLockerRecoveryOptionsPasswordBlockedName": "Do not allow 48-digit recovery password",
"bitLockerRecoveryOptionsPasswordDescription": "Configure if users are allowed, required or not allowed to generate a 48-digit recovery password.",
"bitLockerRecoveryOptionsPasswordName": "User creation of recovery password",
"bitLockerRecoveryOptionsPasswordOnly": "Backup recovery passwords only",
"bitLockerRecoveryOptionsPasswordRequiredName": "Require 48-digit recovery password",
"bitLockerRecoveryOptionsSaveToStoreDescription": "Enable BitLocker recovery information to be stored in Azure Active Directory.",
"bitLockerRecoveryOptionsSaveToStoreName": "Save BitLocker recovery information to Azure Active Directory",
"bitLockerRecoveryPasswordRotationDescription": "This setting initiates a client-driven recovery password rotation after an OS drive recovery (either by using bootmgr or WinRE).",
"bitLockerRecoveryPasswordRotationName": "Client-driven recovery password rotation",
"bitLockerRemovableDriveSettingsDescription": "These settings apply specifically to removable data drives. These settings only apply to Windows 10/11 Enterprise, Windows 10/11 Education and Windows 10 Mobile.",
"bitLockerRemovableDriveSettingsName": "BitLocker removable data-drive settings",
"bitLockerRemovableDriveWriteAccessCrossOrgDescription": "Determine if removable data-drives configured by an external organization can be written to.",
"bitLockerRemovableDriveWriteAccessCrossOrgName": "Write access to devices configured in another organization",
"bitLockerRemovableDriveWriteAccessDescription": "Determine whether BitLocker protection is required for removable data-drives to be writable on a computer.",
"bitLockerRemovableDriveWriteAccessName": "Write access to removable data-drive not protected by BitLocker",
"bitLockerRemovableEncryptionMethodDescription": "AES-CBC algorithm is recommended if the removable drive will be used with other devices that are not running Windows 10 (Version 1511+).",
"bitLockerRemovableEncryptionMethodName": "Encryption for removable data-drives",
"bitLockerSyntheticFixedDrivePolicyDriveRecoveryAgentDescription": "Block the use of data recovery agent with BitLocker-protected fixed drives Policy Editor.",
"bitLockerSyntheticFixedDrivePolicyDriveRecoveryAgentName": "Data recovery agent",
"bitLockerSyntheticFixedDrivePolicyDriveRecoveryDescription": "Control how BitLocker-protected fixed data-drives are recovered in the absence of the required startup key information. Selecting \"Enable\" allows you to configure various drive recovery techniques. By selecting \"Not configured\", the default recovery options are supported including DRA, the end user can specify recovery options and recovery information is not backed up to Azure Active Directory.",
"bitLockerSyntheticFixedDrivePolicyDriveRecoveryName": "Fixed drive recovery",
"bitLockerSyntheticSystemDrivePolicyDriveRecoveryAgentDescription": "Block the use of data recovery agent with BitLocker-protected OS drives Policy Editor.",
"bitLockerSyntheticSystemDrivePolicyDriveRecoveryAgentName": "Certificate-based data recovery agent",
"bitLockerSyntheticSystemDrivePolicyDriveRecoveryDescription": "Control how BitLocker-protected OS drives are recovered in the absence of the required startup key information. Selecting \"Enable\" allows you to configure various drive recovery techniques. By selecting \"Not configured\", the default recovery options are supported including DRA, the end user can specify recovery options and recovery information is not backed up to Azure Active Directory.",
"bitLockerSyntheticSystemDrivePolicyDriveRecoveryName": "OS drive recovery",
"bitLockerSystemDriveMiniumPinLengthDescription": "Startup PINs can range between 4-20 digits in length.",
"bitLockerSystemDriveMiniumPinLengthEnableDescription": "Selecting \"Enable\" allows you to configure the minimum startup PIN length. If left \"Not configured\" and a TPM PIN is required, the default value will be 6 characters.",
"bitLockerSystemDriveMiniumPinLengthEnableName": "Minimum PIN Length ",
"bitLockerSystemDriveMiniumPinLengthName": "Minimum characters",
"bitLockerSystemDrivePrebootRecoveryCustomMsgDescription": "Define a custom recovery message.",
"bitLockerSystemDrivePrebootRecoveryCustomMsgName": "Custom Recovery message",
"bitLockerSystemDrivePrebootRecoveryCustomURLDescription": "Replace the default recovery URL that is displayed in the pre-boot BitLocker recovery screen.",
"bitLockerSystemDrivePrebootRecoveryCustomURLName": "Custom Recovery URL",
"bitLockerSystemDrivePrebootRecoveryEnableDescription": "Enable the recovery message and URL that are displayed on the pre-boot key recovery screen.",
"bitLockerSystemDrivePrebootRecoveryEnableName": "Pre-boot recovery message and URL",
"bitLockerSystemDrivePrebootRecoveryMsgURLOptionCustomMsg": "Use custom recovery message",
"bitLockerSystemDrivePrebootRecoveryMsgURLOptionCustomURL": "Use custom recovery URL",
"bitLockerSystemDrivePrebootRecoveryMsgURLOptionDefault": "Use default recovery message and URL",
"bitLockerSystemDrivePrebootRecoveryMsgURLOptionDescription": "Configure the option for the pre-boot recovery message.",
"bitLockerSystemDrivePrebootRecoveryMsgURLOptionEmpty": "Use empty recovery message and URL",
"bitLockerSystemDrivePrebootRecoveryMsgURLOptionName": "Pre-boot recovery message",
"bitLockerSystemDriveSettingsDescription": "These settings apply specifically to operating system data drives. These settings only apply to Windows 10/11 Enterprise, Windows 10/11 Education and Windows 10 Mobile.",
"bitLockerSystemDriveSettingsName": "BitLocker OS drive settings",
"bitLockerSystemDriveStartupAuthenticationBlockWithoutTpmChipDescription": "Block the use of BitLocker on a computer without a compatible TPM chip.",
"bitLockerSystemDriveStartupAuthenticationBlockWithoutTpmChipName": "BitLocker with non-compatible TPM chip",
"bitLockerSystemDriveStartupAuthenticationRequiredDescription": "Selecting \"Require\" allows you to configure the additional authentication requirements at system start up, including utilizing the use of Trusted Platform Module (TPM) or startup PIN requirements.",
"bitLockerSystemDriveStartupAuthenticationRequiredName": "Additional authentication at startup",
"bitLockerSystemDriveStartupAuthenticationTpmAllowed": "Allow TPM",
"bitLockerSystemDriveStartupAuthenticationTpmBlocked": "Do not allow TPM",
"bitLockerSystemDriveStartupAuthenticationTpmDescription": "Configure if TPM is allowed, required or not allowed.",
"bitLockerSystemDriveStartupAuthenticationTpmKeyAllowed": "Allow startup key with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmKeyBlocked": "Do not allow startup key with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmKeyDescription": "Configure if a TPM start up key is allowed, required or not allowed.",
"bitLockerSystemDriveStartupAuthenticationTpmKeyName": "Compatible TPM startup key",
"bitLockerSystemDriveStartupAuthenticationTpmKeyRequired": "Require startup key with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmName": "Compatible TPM startup",
"bitLockerSystemDriveStartupAuthenticationTpmPinAllowed": "Allow startup PIN with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmPinBlocked": "Do not allow startup PIN with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmPinDescription": "Configure if a TPM start up PIN is allowed, required or not allowed.",
"bitLockerSystemDriveStartupAuthenticationTpmPinKeyAllowed": "Allow startup key and PIN with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmPinKeyBlocked": "Do not allow startup key and PIN with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmPinKeyDescription": "Configure if a TPM start up key and PIN is allowed, required or not allowed.",
"bitLockerSystemDriveStartupAuthenticationTpmPinKeyName": "Compatible TPM startup key and PIN",
"bitLockerSystemDriveStartupAuthenticationTpmPinKeyRequired": "Require startup key and PIN with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmPinName": "Compatible TPM startup PIN",
"bitLockerSystemDriveStartupAuthenticationTpmPinRequired": "Require startup PIN with TPM",
"bitLockerSystemDriveStartupAuthenticationTpmRequired": "Require TPM",
"bitLockerSystemEncryptionMethodName": "Encryption for operating system drives",
"bitLockerWindowsSettingsDescription": "These encryption settings apply to all versions of Windows 10 and later.",
"bitLockerWindowsSettingsName": "Windows Settings",
"bitLockerXTSAESEncryptionMethodDescription": "XTS-AES algorithm is recommended. Note: Changing the encryption method has no effect if the drive is already encrypted, or if encryption is in progress.",
"bitlockerWarningInfoBox": "Note: devices enabled with automatic encryption will require decryption before changing encryption method.",
"blockAccessToAboutFlagsDescription": "Users can access the about:flags page in Microsoft Edge, to change developer settings and enable experimental features. Select No, to block access to about:flags page.",
"blockAccessToAboutFlagsName": "Allow about flags page",
"blockAccountModificationName": "Block modification of account settings",
"blockAddNewPrintersDescription": "Prevent user installation of additional printers from printers settings.",
"blockAddNewPrintersName": "Add new printers",
"blockAddingAccountsDescription": "Prevent end users from adding or removing accounts in the work profile.",
"blockAddingAccountsName": "Add and remove accounts",
"blockAdultContentInItunesDescription": "Block explicit iTunes music, podcast, or news content. For supervised devices as of iOS 13.0.",
"blockAdultContentInItunesName": "Block playback of explicit music, podcast, and iTunes U",
"blockAirDropName": "Block AirDrop",
"blockAirDropNameMacOS": "Block AirDrop",
"blockAirPrintCredentialsStorageDescription": "Blocks keychain storage of username and password. Available with iOS 11.0 and later.",
"blockAirPrintCredentialsStorageName": "Block storage of AirPrint credentials in Keychain",
"blockAirPrintDescriptionIOS": "Available with iOS 11.0 and later.",
"blockAirPrintDescriptionMacOS": "Blocks AirPrint",
"blockAirPrintNameIOS": "Block AirPrint",
"blockAirPrintNameMacOS": "Block AirPrint",
"blockAirPrintiBeaconDiscoveryDescriptionIOS": "Blocking prevents malicious AirPrint BlueTooth beacons phishing for network traffic. Available with iOS 11.0 and later.",
"blockAirPrintiBeaconDiscoveryDescriptionMacOS": "Blocking prevents malicious AirPrint Bluetooth beacons phishing for network traffic",
"blockAirPrintiBeaconDiscoveryNameIOS": "Block iBeacon discovery of AirPrint printers",
"blockAirPrintiBeaconDiscoveryNameMacOS": "Block discovery of AirPrint printers using iBeacons",
"blockAllCookiesOption": "Block all cookies",
"blockAllDataSharingBetweenWorkAndPersonalProfilesOption": "Block all sharing between profiles",
"blockAndroidBluetoothDescription": "Disable Bluetooth",
"blockAndroidBluetoothName": "Disable Bluetooth",
"blockAndroidCameraDescription": "Block access to camera",
"blockAndroidCameraName": "Block access to camera",
"blockAndroidFactoryResetDescription": "Disable factory reset",
"blockAndroidFactoryResetName": "Disable factory reset",
"blockAndroidScreenCaptureDescription": "Block screen capture",
"blockAndroidScreenCaptureName": "Block screen capture",
"blockAntiTheftModeDescription": "Block user from selecting AntiTheft mode preference",
"blockAntiTheftModeName": "AntiTheft mode (mobile only)",
"blockAppClipsDescription": "If you block app clips, users won't be allowed to add them to their devices, and their existing app clips will be removed. Available for devices running iOS and iPadOS versions 14.0 or later.",
"blockAppClipsName": "Block app clips",
"blockAppRemovalDescription": "Blocks users from removing apps",
"blockAppRemovalName": "Block removing apps",
"blockAppStoreAutoUpdate": "Auto-update apps from store",
"blockAppStoreAutoUpdateDescription": "Specifies whether apps from the Windows Store can automatically update.",
"blockAppStoreAutomaticDownloadsDescription": "Blocks automatic downloading of apps purchased on other devices. Does not affect updates to existing apps.",
"blockAppStoreAutomaticDownloadsName": "Block automatic app downloads",
"blockAppStoreDescription": "For supervised devices as of iOS 13.0.",
"blockAppStoreName": "Block App store",
"blockAppStoreUIAppInstallationDescription": "Block App Store from Home Screen. Users may continue to use iTunes or Apple Configurator to install or update apps.",
"blockAppStoreUIAppInstallationName": "Block installing apps using App Store",
"blockAppStoreWindowsMobileOnlyName": "App store (mobile only)",
"blockAppleNewsName": "Block Apple News",
"blockAppleWatchAutoUnlockDescription": "Blocks users from unlocking their Mac with Apple Watch.",
"blockAppleWatchAutoUnlockName": "Block Apple Watch auto unlock",
"blockAppleWatchPairingName": "Block pairing with Apple Watch",
"blockApplicationStoreName": "App store",
"blockAppsFromSendingEmailDescription": "Block the user from sending email from third party applications",
"blockAppsFromSendingEmailName": "Sending email from third party applications",
"blockAppsInstallFromUnknownSourcesDescription": "Block user from turning on unknown sources",
"blockAppsInstallFromUnknownSourcesName": "Block user from turning on unknown sources",
"blockAutoCorrectName": "Block auto-correction",
"blockAutofillDescription": "Block autofill.",
"blockAutofillName": "Autofill",
"blockBluetoothAdvertisingDescription": "Specifies whether the device can act as a source for Bluetooth advertisements and be discoverable to other devices.",
"blockBluetoothAdvertisingName": "Bluetooth advertising",
"blockBluetoothAndroidDescription": "Block Bluetooth (Samsung KNOX Standard 4.0+).",
"blockBluetoothConfigurationDescription": "Block Bluetooth configuration",
"blockBluetoothConfigurationName": "Block Bluetooth configuration",
"blockBluetoothContactSharingDescription": "Block Bluetooth contact sharing",
"blockBluetoothContactSharingName": "Block Bluetooth contact sharing",
"blockBluetoothDescription": "Block bluetooth connections to and from the device.",
"blockBluetoothDiscoverableModeDescription": "Specifies whether other Bluetooth devices like a headset would be discoverable to the device.",
"blockBluetoothDiscoverableModeName": "Bluetooth discoverability",
"blockBluetoothModificationDescription": "Block modification of Bluetooth settings. Available with iOS 11.0 or later.",
"blockBluetoothModificationName": "Block modifying Bluetooth settings",
"blockBluetoothName": "Bluetooth",
"blockBluetoothPrepairingDescription": "Specifies whether to allow specific bundled Bluetooth peripherals to automatically pair with the host device.",
"blockBluetoothPrepairingName": "Bluetooth pre-pairing",
"blockCameraDescription": "Block use of camera",
"blockCameraDescriptionMacOS": "Blocks users from taking photographs and videos.",
"blockCameraName": "Camera",
"blockCameraNameMacOS": "Block use of camera",
"blockCellularAppDataModificationDescription": "Block changes to app cellular data usage settings.",
"blockCellularAppDataModificationName": "Block changes to app cellular data usage settings",
"blockCellularPlanModificationName": "Block changes to cellular plan settings",
"blockClassroomAppRemoteScreenObservationDescription": "Block remote screen observation by Classroom app. This setting isn't available if screen capture is blocked. Available with iOS 9.3 or later.",
"blockClassroomAppRemoteScreenObservationName": "Block remote AirPlay, view screen by Classroom app, and screen sharing",
"blockClipboardAndroidDescription": "Block clipboard sharing between apps (Samsung KNOX Standard 4.0+).",
"blockClipboardName": "Clipboard sharing between apps (Samsung KNOX only)",
"blockConfigurationProfileChangesName": "Block configuration profile changes",
"blockConnectedDevicesServiceDescription": "Specifies whether to allow the connected devices service which enables discovery and connection to other devices.",
"blockConnectedDevicesServiceName": "Connected devices service",
"blockContentCachingName": "Block content caching",
"blockControlCenterInLockScreenName": "Block Control Center access in lock screen",
"blockCookiesDescription": "Allow or block browser cookies.",
"blockCookiesDescriptionIOS": "Companies use cookies to track browsing history, and they can track browsing across multiple websites. By default, Apple allows all cookies, and blocks cross site tracking. Use this setting to allow users to enable or disable these features. Available on iOS and iPadOS versions 4 and later.",
"blockCookiesName": "Cookies",
"blockCookiesNameIOS": "Safari cookies",
"blockCopyAndPasteDescription": "Block copy and paste functionality.",
"blockCopyAndPasteName": "Copy and paste",
"blockCopyPasteBetweenWorkAndPersonalProfilesOption": "Block copy from work to personal profile",
"blockCrossProfileCallerIdDescription": "Display work contact caller-id in personal profile",
"blockCrossProfileCallerIdName": "Display work contact caller-id in personal profile",
"blockCrossProfileContactsSearchDescription": "Search work profile contacts from personal profile.",
"blockCrossProfileContactsSearchName": "Search work contacts from personal profile",
"blockCrossProfileCopyPasteDescription": "This setting controls whether or not apps in the work profile are allowed to share data with apps in the personal profile through copy and paste actions.",
"blockCrossProfileCopyPasteName": "Copy and paste between work and personal profiles",
"blockCustomEmailDescription": "Allow the device to sync with Custom email accounts",
"blockCustomEmailName": "Custom email accounts sync",
"blockDataRoamingAndroidDescription": "Block data roaming over the cellular network (Samsung KNOX Standard 4.0+).",
"blockDataRoamingDescription": "Block data roaming over the cellular network.",
"blockDataRoamingName": "Data roaming",
"blockDefinitionLookupDescriptionMacOS": "Block look up, a feature that looks up the definition of a highlighted word.",
"blockDefinitionLookupName": "Block word definition lookup",
"blockDefinitionLookupNameMacOS": "Block look up",
"blockDeveloperToolsDescription": "Users can access the develop tools in Microsoft Edge. Select No, to block access to developer tools.",
"blockDeveloperToolsName": "Allow developer tools",
"blockDeviceDiscoveryDescription": "Block device discovery by other devices",
"blockDeviceDiscoveryName": "Device discovery",
"blockDeviceEnablingRestrictionsDescription": "On iOS 12.0 or later, this blocks users from setting their own Screen Time settings, which includes device restrictions. On iOS 11.4.1 and earlier, this blocks the user from enabling restrictions in the device settings. The blocking effect is the same on any supervised iOS device.",
"blockDeviceEnablingRestrictionsName": "Block Screen Time",
"blockDeviceEraseContentAndSettingsDescription": "Block the use of the erase all content and settings option on the device.",
"blockDeviceEraseContentAndSettingsIosDescription": "Disables the reset option on supervised devices. Available for devices running iOS/iPadOS versions 8 and later.",
"blockDeviceEraseContentAndSettingsIosName": "Block users from erasing all content and settings on device",
"blockDeviceEraseContentAndSettingsMacOsDescription": "Disables the reset option on supervised devices. Available for devices running macOS versions 12 and later.",
"blockDeviceEraseContentAndSettingsMacOsName": "Block users from erasing all content and settings on device",
"blockDeviceEraseContentAndSettingsName": "Block use of erase all content and settings",
"blockDeviceNameModificationDescription": "Block device name from being changed.",
"blockDeviceNameModificationName": "Block modification of device name",
"blockDiagnosticDataSubmissionDescription": "Block the device from sending diagnostic and usage telemetry data.",
"blockDiagnosticDataSubmissionModificationDescription": "Block the modification of the diagnostic submission and app analytics settings in the Diagnostics and Usage pane in Settings. This setting isn't available if sharing usage data is blocked. Available with iOS 9.3.2 or later.",
"blockDiagnosticDataSubmissionModificationName": "Block modification of diagnostics settings",
"blockDiagnosticDataSubmissionName": "Share usage data",
"blockDiskModification": "Block disk modification",
"blockDoNotTrackHeaderDescription": "Block device from sending do-not-track headers to websites requesting tracking info.",
"blockDoNotTrackHeaderName": "Do-not-track headers",
"blockESIMModificationDescription": "Block the modification of eSIM settings.",
"blockESIMModificationName": "Block modification of eSIM settings",
"blockEdgeBrowserDescription": "Microsoft Edge browser is allowed on mobile devices. Select No, to block Edge on mobile.",
"blockEdgeBrowserName": "Allow Microsoft Edge browser (Mobile only)",
"blockEmailAddressSyncDescription": "Synchronize recently used email addresses.",
"blockEmailAddressSyncName": "Synchronizing recently used email addresses",
"blockEmailMessageMoveDescription": "Block moving email messages between different email accounts.",
"blockEmailMessageMoveName": "Moving messages to other email accounts",
"blockEnterpriseAppTrustDescription": "Removes the Trust Enterprise Developer button in Settings->General->Profiles & Device Management.",
"blockEnterpriseAppTrustModificationDescription": "Block the changing of enterprise app trust settings.",
"blockEnterpriseAppTrustModificationName": "Enterprise app trust settings modification",
"blockEnterpriseAppTrustName": "Block trusting new enterprise app authors",
"blockEnterpriseBookBackupName": "Block backup of enterprise books",
"blockEnterpriseBookMetadataSyncName": "Block notes and highlights sync for enterprise books",
"blockExtensionsDescription": "Users are allowed to add or personalize extensions in Microsoft Edge. Select No, to block users from modifying extensions.",
"blockExtensionsName": "User can install extensions",
"blockFaceUnlockDescription": "Block using facial recognition to unlock device.",
"blockFaceUnlockName": "Face unlock",
"blockFacetimeName": "Block FaceTime",
"blockFactoryResetDescription": "Block factory reset on device.",
"blockFactoryResetName": "Factory reset (Samsung KNOX only)",
"blockFilesNetworkDriveAccessDescription": "Using the Server Message Block (SMB) protocol, devices can access files or other resources on a network server. Available for devices running iOS and iPadOS, versions 13.0 and later.",
"blockFilesNetworkDriveAccessName": "Block access to network drive in Files app",
"blockFilesUsbDriveAccessDescription": "Devices with access can connect to and open files on a USB drive. Available for devices running iOS and iPadOS, versions 13.0 or later.",
"blockFilesUsbDriveAccessName": "Block access to USB drive in Files app",
"blockFindMyDeviceDescription": "A Find My app feature. Used to locate the approximate location of an Apple device. For devices running iOS 13 or later, or iPadOS 13 or later.",
"blockFindMyDeviceName": "Block Find My iPhone",
"blockFindMyFriendsDescription": "A Find My app feature. Used to locate family and friends from an Apple device or iCloud.com. For device running iOS 13 and later, and iPadOS 13 and later.",
"blockFindMyFriendsModificationDescription": "Block changes to the Find My Friends app settings.",
"blockFindMyFriendsModificationName": "Block user modification to the Find My Friends settings",
"blockFindMyFriendsName": "Block Find My Friends",
"blockFingerprintUnlockDescription": "Block using fingerprint to unlock device.",
"blockFingerprintUnlockName": "Fingerprint unlock",
"blockFirewallDescription": "Block firewall",
"blockFirewallName": "Firewall",
"blockGameCenterFriendsDescription": "Block adding Game Center friends. For supervised devices as of iOS 13.0.",
"blockGameCenterFriendsName": "Block adding Game Center friends",
"blockGameCenterName": "Block Game Center",
"blockGameDvr": "Game DVR (desktop only)",
"blockGameDvrDescription": "Specifies whether DVR and broadcasting is allowed.",
"blockGeolocationDescription": "Specifies whether location services are enabled and can track the location of the device.",
"blockGeolocationName": "Geolocation",
"blockGlobalBackgroundFetchWhileRoamingDescription": "Block global background fetch while roaming over the cellular network.",
"blockGlobalBackgroundFetchWhileRoamingName": "Block global background fetch while roaming",
"blockGoogleAccountAutoSyncDescription": "Block Google account auto sync functionality on device.",
"blockGoogleAccountAutoSyncName": "Google account auto sync (Samsung KNOX only)",
"blockGoogleBackupDescription": "Block sync with Google backup.",
"blockGoogleBackupName": "Google backup (Samsung KNOX only)",
"blockGooglePlayStoreDescription": "Block Google Play store (Samsung KNOX Standard 4.0+).",
"blockGooglePlayStoreName": "Google Play store (Samsung KNOX only) ",
"blockHostPairingDescription": "Block host pairing to control the devices an iOS device can pair with.",
"blockHostPairingName": "Block pairing with non-Configurator hosts",
"blockIBooksStoreEroticaDescription": "User will not be able to download media from the iBook store that has been tagged as erotica.",
"blockIBooksStoreEroticaName": "Block download of explicit sexual content in Apple Books",
"blockIBooksStoreName": "Block Apple Books",
"blockICloudAddressBookDescription": "Blocks iCloud from syncing contacts.",
"blockICloudAddressBookName": "Block iCloud Contact Backup",
"blockICloudBackupDescription": "Block backing up device to iCloud. For supervised devices as of iOS 13.0.",
"blockICloudBackupName": "Block iCloud backup",
"blockICloudBookmarksDescription": "Blocks iCloud from syncing bookmarks.",
"blockICloudBookmarksName": "Block iCloud Bookmark Backup",
"blockICloudCalendarDescription": "Blocks iCloud from syncing calendars.",
"blockICloudCalendarName": "Block iCloud Calendar Backup",
"blockICloudDesktopAndDocumentsDescription": "Blocks iCloud from syncing the Desktop and Documents folders to the cloud.",
"blockICloudDesktopAndDocumentsName": "Block iCloud desktop and documents sync",
"blockICloudDocumentSyncDescription": "Blocks iCloud from syncing documents and data.",
"blockICloudDocumentSyncName": "Block iCloud document and data sync",
"blockICloudMailDescription": "Blocks iCloud from syncing mail.",
"blockICloudMailName": "Block iCloud Mail backup",
"blockICloudNotesDescription": "Blocks iCloud from syncing notes.",
"blockICloudNotesName": "Block iCloud Notes Backup",
"blockICloudPhotoLibraryDescription": "Any photos not fully downloaded from iCloud Photo Library to device will be removed from local storage.",
"blockICloudPhotoLibraryName": "Block iCloud Photo Library",
"blockICloudPhotoStreamSyncDescription": "Block photo stream syncing to iCloud.",
"blockICloudPhotoStreamSyncName": "Block iCloud Photos sync",
"blockICloudRemindersDescription": "Blocks iCloud from syncing reminders.",
"blockICloudRemindersName": "Block iCloud Reminder Backup",
"blockITunesFileSharingDescription": "Blocks files from being transferred using iTunes.",
"blockITunesFileSharingName": "Block file transfer using Finder or iTunes",
"blockITunesMusicServiceDescription": "Block Music service. If true, Music app reverts to classic mode and Music service is disabled.",
"blockITunesMusicServiceName": "Music service",
"blockITunesMusicServiceNameMacOS": "Block Apple Music",
"blockITunesRadioName": "Block iTunes Radio",
"blockITunesStoreName": "Block iTunes store",
"blockInAppPurchasesName": "Block in-app purchases",
"blockInPrivateBrowsingDescription": "InPrivate browsing is allowed. Select No, to block InPrivate browsing.",
"blockInPrivateBrowsingName": "Allow InPrivate browsing",
"blockInternetSharingDescription": "Specifies whether internet sharing is possible on the device.",
"blockInternetSharingName": "Internet sharing",
"blockIntranetAutoDetectDescription": "Block automatic detection of intranet site (allow is recommended).",
"blockIntranetAutoDetectName": "Auto detect of intranet site",
"blockIntranetTrafficDescription": "Send intranet traffic to Internet Explorer (instead of Microsoft Edge, for backward compatibility issues)",
"blockIntranetTrafficName": "Send intranet traffic to Internet Explorer",
"blockIosActivityContinuationDescription": "Handoff lets users start work on one iOS device, and continue it on another MacOS or iOS device.",
"blockIosActivityContinuationName": "Block Handoff",
"blockIosCameraName": "Block camera",
"blockIosICloudDocumentSyncDescription": "Blocks iCloud from syncing documents and data. For supervised devices as of iOS 13.0.",
"blockIosICloudDocumentSyncName": "Block iCloud document and data sync",
"blockIosICloudPrivateRelayDescription": "iCloud private relay is an iCloud+ service that prevents networks and servers from monitoring a person's activity across the internet. By blocking iCloud private relay, Apple will not encrypt the traffic leaving the device. Available for supervised devices running iOS 15 and later.",
"blockIosICloudPrivateRelayName": "Block iCloud Private Relay",
"blockIosKeychainCloudSyncDescription": "Disables syncing credentials stored in the Keychain to iCloud. For supervised devices as of iOS 13.0.",
"blockIosKeychainCloudSyncName": "Block iCloud Keychain sync",
"blockIosSafariAutofillName": "Block Safari Autofill",
"blockIrisUnlockDescription": "Block using iris scanning to unlock device.",
"blockIrisUnlockName": "Iris unlock",
"blockJavaScriptDescription": "JavaScript is allowed. Select No, to block JavaScript.",
"blockJavaScriptName": "Allow JavaScript",
"blockJavaScriptNameIOS": "Block Safari JavaScript",
"blockKeyboardShortcutsName": "Block keyboard shortcuts",
"blockKeychainCloudSyncDescription": "Disables syncing credentials stored in the Keychain to iCloud.",
"blockKeychainCloudSyncName": "Block iCloud Keychain sync",
"blockMacActivityContinuationDescription": "Handoff lets users start work on one MacOS device, and continue it on another MacOS or iOS device. Available for macOS 10.15 and later.",
"blockMacActivityContinuationName": "Block Handoff",
"blockMacICloudPrivateRelayDescription": "iCloud private relay is an iCloud+ service that prevents networks and servers from monitoring a person's activity across the internet. By blocking iCloud private relay, Apple will not encrypt the traffic leaving the device. Available for supervised devices running macOS 12 and later.",
"blockMacICloudPrivateRelayName": "Block iCloud Private Relay",
"blockManagedAppsCloudSyncDescription": "Block managed apps from syncing to iCloud.",
"blockManagedAppsCloudSyncName": "Block managed apps from storing data in iCloud",
"blockManagedDocumentsInUnmanagedAppsName": "Block viewing corporate documents in unmanaged apps",
"blockManualRootCertificateInstallationDescription": "Block manual root certificate and intermediate CAP certificates installation",
"blockManualRootCertificateInstallationName": "Manual root certificate installation (mobile only)",
"blockManualUnenrollmentDescription": "Block the user from manually unenrolling device",
"blockManualUnenrollmentName": "Manual unenrollment",
"blockManualWifiConfigurationDescription": "Specifies whether users can manually connect to Wi-Fi networks not specified in the MDM list of configured Wi-Fi networks.",
"blockManualWifiConfigurationName": "Manual Wi-Fi configuration",
"blockMessagesName": "Block iMessage",
"blockMicrosoftAccountDescription": "Block Microsoft account from linking to device",
"blockMicrosoftAccountName": "Microsoft account",
"blockMultiplayerGamingDescription": "For supervised devices as of iOS 13.0.",
"blockMultiplayerGamingName": "Block multiplayer gaming in the Game Center",
"blockNFCAndroidDescription": "Block Near Field Communication (NFC) technology (Samsung KNOX Standard 4.0+).",
"blockNFCDescription": "Block Near Field Communication technology",
"blockNFCName": "NFC",
"blockNonMicrosoftAccountDescription": "Block user from adding non-Microsoft accounts",
"blockNonMicrosoftAccountName": "Non-Microsoft account",
"blockNotificationsModificationDescription": "Block modification of notification settings.",
"blockNotificationsModificationName": "Block modification of notifications settings",
"blockNotificationsWhileDeviceLockedDescription": "This setting controls whether notifications from apps in the work profile are visible when the device is locked. Recommended Value: Yes",
"blockNotificationsWhileDeviceLockedName": "Work profile notifications while device locked",
"blockNotificationsWhileLockedName": "Block Notification Center access in lock screen",
"blockOneDriveFileSyncDescription": "Block OneDrive file sync",
"blockOneDriveFileSyncName": "OneDrive file sync",
"blockOnlyThirdPartyCookiesOption": "Block only third party cookies",
"blockOption": "Block",
"blockPassbookWhileLockedDescription": "Block Wallet notifications while device is locked.",
"blockPassbookWhileLockedName": "Block Wallet notifications in lock screen",
"blockPasscodeModificationDescription": "Block passcode from being added, changed or removed. Changes to passcode restrictions will be ignored on supervised devices after blocking passcode modification. This setting is ignored on Shared iPads.",
"blockPasscodeModificationName": "Block passcode modification",
"blockPasswordAirDropSharingName": "Block password sharing",
"blockPasswordAirDropSharingNameMacOS": "Block password sharing",
"blockPasswordAutoFillName": "Block password AutoFill",
"blockPasswordAutoFillNameMacOS": "Block password AutoFill",
"blockPasswordFingerprintUnlockDescription": "Requires user to set a non-biometric passcode or password to unlock the device.",
"blockPasswordFingerprintUnlockName": "Block Touch ID to unlock device",
"blockPasswordModificationDescription": "Blocks user from changing the set passcode.",
"blockPasswordModificationName": "Block user from modifying passcode",
"blockPasswordProximityRequestsDescription": "Blocks password proximity requests. Available in iOS 12.0 and later.",
"blockPasswordProximityRequestsName": "Block password proximity requests",
"blockPasswordProximityRequestsNameMacOS": "Block password proximity requests",
"blockPersonalHotspotDescription": "Block personal hotspot. This value is available only with certain carriers.",
"blockPersonalHotspotModificationDescription": "For devices running iOS 12.2 or later. Users can't turn Personal Hotspot on or off. If you block this setting and block Personal Hotspot, Personal Hotspot will be turned off. Available with iOS 12.2 and later.",
"blockPersonalHotspotModificationName": "Block modification of personal hotspot",
"blockPersonalHotspotName": "Block personal hotspot",
"blockPhoneResetDescription": "Block factory reset of device",
"blockPhoneResetName": "Phone reset",
"blockPicturePasswordAndPINDescription": "Block use of picture password and PIN to unlock device (desktop devices running Windows 10 or later).",
"blockPicturePasswordAndPINName": "Picture password and PIN",
"blockPluginsDescription": "Block plugins (not blocking is recommended).",
"blockPluginsName": "Plugins",
"blockPodcastsName": "Block Podcasts",
"blockPopUpsDescription": "Block pop-ups in web browser.",
"blockPopUpsName": "Pop-ups",
"blockPopUpsNameIOS": "Block Safari pop-ups",
"blockPowerOffDescription": "Block user from powering off device. If this setting is disabled the setting 'Number of sign-in failures before wiping device' does not function.",
"blockPowerOffName": "Power off (Samsung KNOX only)",
"blockPredictiveKeyboardName": "Block predictive keyboards",
"blockProjectionToThisPCDescription": "Block other devices from discovering this PC for projection",
"blockProjectionToThisPCName": "Projection to this PC",
"blockProximitySetupToNewDeviceDescription": "Blocks user's from using their Apple device to set up and configure other Apple devices. Available with iOS 11.0 and later.",
"blockProximitySetupToNewDeviceName": "Block setting up new nearby devices",
"blockQuickPathDescription": "QuickPath enables continuous input on the device keyboard. Available with iOS 13 and later and iPadOS 13 and later.",
"blockQuickPathName": "Block QuickPath",
"blockRemovableStorageAndroidDescription": "Block removable storage usage (Samsung KNOX Standard 4.0+).",
"blockRemovableStorageDescription": "Block the use of removable storage on the device.",
"blockRemovableStorageName": "Removable storage",
"blockSIMCardErrorDialogDescription": "Block the error dialog from displaying if no SIM card is detected",
"blockSIMCardErrorDialogName": "SIM card error dialog (mobile only)",
"blockSMSAndMMSAndroidDescription": "Block SMS/MMS messaging functionality (Samsung KNOX Standard 4.0+).",
"blockSMSAndMMSName": "SMS/MMS messaging (Samsung KNOX only)",
"blockSafariAutofillDescription": "Blocks Safari from remembering what users enter in web forms.",
"blockSafariAutofillName": "Block Safari AutoFill",
"blockSafariDescription": "Block Safari web browser.",
"blockSafariName": "Block Safari",
"blockScreenCaptureDescription": "Screen capture",
"blockScreenCaptureName": "Screen capture",
"blockScreenshotDescription": "Block capturing contents of screen as an image.",
"blockScreenshotName": "Screen capture",
"blockSearchSuggestionsDescription": "Search suggestions in the address bar are allowed. Select No, to block search suggestions.",
"blockSearchSuggestionsName": "Show search suggestions",
"blockSettingsSynchronizationForMicrosoftAccountDescription": "Block synchronization between Microsoft accounts",
"blockSettingsSynchronizationForMicrosoftAccountName": "Settings synchronization for Microsoft account",
"blockSharedPhotoStreamDescription": "Block shared photo streaming. Blocking can cause data loss.",
"blockSharedPhotoStreamName": "Block My Photo Stream",
"blockSimplePasswordsDescription": "Block simple password sequences, such as 1234 or 1111.",
"blockSimplePasswordsName": "Block simple passwords",
"blockSingleWordEntryIntranetDescription": "Block single word entry on intranet site (Allow is recommended).",
"blockSingleWordEntryIntranetName": "Single word entry on intranet site",
"blockSiriName": "Block Siri",
"blockSiriUserGeneratedContentDescription": "Block Siri from querying user-generated content from the internet. This setting isn't available if you block Siri.",
"blockSiriUserGeneratedContentName": "Block user-generated content in Siri",
"blockSiriWhenLockedName": "Block Siri while device is locked",
"blockSmartLockDescription": "Block Smart Lock or other trust agents from adjusting lock screen settings (Samsung KNOX Standard 5.0+).",
"blockSmartLockName": "Smart Lock and other trust agents",
"blockSmartScreenDescription": "Enable Microsoft Edge SmartScreen for accessing site and file downloads (Microsoft Edge Legacy version 45 and earlier)",
"blockSmartScreenName": "SmartScreen for Microsoft Edge Legacy",
"blockSpellCheckName": "Block spell check",
"blockSpotlightInternetResultsDescription": "Blocks Spotlight from returning any results from an Internet search",
"blockSpotlightInternetResultsName": "Block internet search results from Spotlight",
"blockSpotlightInternetResultsNameMacOS": "Block spotlight suggestions",
"blockStorageExternalMediaDescription": "Block mounting of external media",
"blockStorageExternalMediaName": "Block mounting of external media",
"blockStorageUsbDescription": "Block USB storage",
"blockStorageUsbFileTransferDescription": "Block USB file transfer",
"blockStorageUsbFileTransferName": "Block USB file transfer",
"blockStorageUsbName": "Block USB storage",
"blockStoreOriginatedApps": "Store originated app launch",
"blockStoreOriginatedAppsDescription": "Disables the launch of all apps from Windows store that came pre-installed or were downloaded.",
"blockSystemAppRemovalDescription": "Blocking disables the ability to remove system apps from the device. Available with iOS 11.0 and later.",
"blockSystemAppRemovalName": "Block removal of system apps from device",
"blockTaskSwitcherDescription": "Block task switching on the device",
"blockTaskSwitcherName": "Task Switcher (mobile only)",
"blockTodayViewInLockScreenName": "Block Today view in lock screen",
"blockTouchIDAndFaceIDModificationDescription": "Block users from adding, changing, or removing fingerprints and faces. Face ID is avaliable in iOS 11.0 and later.",
"blockTouchIDAndFaceIDModificationName": "Block modification of Touch ID fingerprints and Face ID faces",
"blockTouchIDAndFaceIDUnlockDescription": "Face ID is available on iOS 11.0 and later.",
"blockTouchIDAndFaceIDUnlockName": "Block Touch ID and Face ID unlock",
"blockUSBConnectionDescription": "Specifies whether the USB connection on the device is enabled. USB charging will not be affected by this setting. This setting isn't supported on Windows desktop platforms.",
"blockUSBConnectionName": "USB connection",
"blockUnmanagedDocumentsInManagedAppsName": "Block viewing non-corporate documents in corporate apps",
"blockUntrustedTLSCertificatesDescription": "Block untrusted Transport Layer Security (TLS) certificates.",
"blockUntrustedTLSCertificatesName": "Block untrusted TLS certificates",
"blockUsageofSpecifiedUserInstalledApps": "Restrict apps",
"blockUsageofUserInstalledStoreApps": "Type of restricted apps list",
"blockUsbRestrictedModeDescription": "Allow USB accessories while device is locked. USB restricted mode allows USB accessories to exchange data with a device that has been locked for over an hour.",
"blockUsbRestrictedModeName": "Allow USB accessories while device is locked",
"blockUserInputFromWirelessDisplayReceiverDescription": "Block user input from wireless display receivers",
"blockUserInputFromWirelessDisplayReceiverName": "User input from wireless display receivers",
"blockVPNCreationDescription": "Blocks the creation of VPN configurations",
"blockVPNCreationName": "Block VPN creation",
"blockVoiceAssistantAndroidDescription": "Block voice assistant (Samsung KNOX Standard 4.0+).",
"blockVoiceAssistantName": "Voice assistant (Samsung KNOX only)",
"blockVoiceDialingAndroidDescription": "Block voice dialing (Samsung KNOX Standard 4.0+).",
"blockVoiceDialingDescription": "Block voice dialing on device.",
"blockVoiceDialingName": "Voice dialing",
"blockVoiceRoamingAndroidDescription": "Block voice roaming over the cellular network (Samsung KNOX Standard 4.0+).",
"blockVoiceRoamingDescription": "Block voice roaming over the cellular network.",
"blockVoiceRoamingName": "Voice roaming",
"blockWallpaperModificationDescription": "Block wallpaper from being changed.",
"blockWallpaperModificationName": "Block modification of Wallpaper",
"blockWebBrowserDescription": "Block web browser on device.",
"blockWebBrowserName": "Web browser",
"blockWiFiAndroidDescription": "Block Wi-Fi (Samsung KNOX Standard 4.0+).",
"blockWiFiDescription": "Block Wi-Fi connections on a device",
"blockWiFiEditConfigurationsDescription": "Block Wi-Fi setting changes",
"blockWiFiEditConfigurationsName": "Block Wi-Fi setting changes",
"blockWiFiHotspotAutoConnectDescription": "Block devices from automatically connecting to Wi-Fi hotspots and accepting the terms of service.",
"blockWiFiHotspotAutoConnectName": "Automatically connect to Wi-Fi hotspots",
"blockWiFiHotspotReportingDescription": "Send information about connections to help discover nearby Wi-Fi.",
"blockWiFiHotspotReportingName": "Wi-Fi hotspot reporting",
"blockWiFiName": "Wi-Fi",
"blockWiFiTetheringAndroidDescription": "Block Wi-Fi tethering (Samsung KNOX Standard 4.0+).",
"blockWiFiTetheringName": "Wi-Fi tethering",
"blockWorkProfileCameraDescription": "Block access to camera",
"blockWorkProfileCameraName": "Camera",
"blockWorkToPersonalDataSharingBetweenWorkAndPersonalProfilesOption": "Block sharing from work to personal profile",
"blockYouTubeAndroidDescription": "Block YouTube (Samsung KNOX Standard 4.0+).",
"blockYouTubeName": "YouTube (Samsung KNOX only)",
"blockedAndAllowUserOverride": "Block and enable user override",
"blockedList": "Blocked apps",
"bluetoothAllowedServicesDescription": "Using hex formatted strings, specify a list of allowed Bluetooth services and profiles.",
"bluetoothAllowedServicesName": "Bluetooth allowed services",
"bluetoothBlockConfigurationDescription": "Block configuring Bluetooth.",
"bluetoothBlockConfigurationName": "Bluetooth configuration",
"bluetoothBlockContactSharingDescription": "Block access to work contacts from another device such as a car system when an Android device is paired via Bluetooth.",
"bluetoothBlockContactSharingName": "Contact sharing via Bluetooth",
"bluetoothBlockPromptedProximalConnectionsDescription": "Block users from using Swift Pair and other proximity based scenarios.",
"bluetoothBlockPromptedProximalConnectionsName": "Bluetooth proximal connections",
"bluetoothEnableContactSharingDescription": "Allow Bluetooth devices to access enterprise contacts in the work profile.",
"bluetoothEnableContactSharingName": "Contact sharing via Bluetooth.",
"bluetoothName": "Bluetooth",
"boolean": "Boolean",
"booleanName": "Boolean",
"bootFromBuiltInNetworkAdaptersName": "Boot from network adapters",
"bootFromExternalMediaName": "Boot from external media (USB, SD)",
"bothOneToOneAndDeviceOption": "Both",
"browserDefault": "Browser default",
"builtinAppOption": "Built-in App",
"bundleId": "Bundle ID",
"bundleIdExample": "e.g. com.apple.calculator",
"bundleIdOption": "Bundle ID",
"bundleIdentifier": "Bundle identifier",
"buttonsTitleApplications": "Applications",
"buttonsTitleBrowsers": "Browsers",
"bypassModeOption": "Bypass mode (100)",
"cHAPName": "Challenge Handshake (CHAP)",
"cHAPTWOName": "Microsoft CHAP Version 2 (MS-CHAP v2)",
"cRLCheckingDescription": "Set a value for how certificate revocation list (CRL) verification is enforced.",
"cRLCheckingName": "Certificate revocation list verification",
"cRLDisableOption": "Disable CRL verification",
"cRLFailAnyErrorOption": "Fail CRL verification on any error encountered",
"cRLFailRevokedCertOption": "Fail CRL verification on revoked certificate only",
"cacheServerBackgroundDownloadFallbackToHttpDelayDescription": "Set this policy to delay the fallback from Cache Server to the HTTP source for a background content download by X seconds. Note: if you set the policy to delay background download from http, it will apply first (to allow downloads from peers first).",
"cacheServerBackgroundDownloadFallbackToHttpDelayName": "Delay background download Cache Server fallback (in seconds)",
"cacheServerColumns": "Cache server fully qualified domain names (FQDN) or IP addresses",
"cacheServerForegroundDownloadFallbackToHttpDelayDescription": "Set this policy to delay the fallback from Cache Server to the HTTP source for a foreground content download by X seconds. Note: if you set the policy to delay foreground download from http, it will apply first (to allow downloads from peers first).",
"cacheServerForegroundDownloadFallbackToHttpDelayName": "Delay foreground download Cache Server fallback (in seconds)",
"cacheServerHostNamesDescription": "This policy allows you to set one or more Delivery Optimization in Network Cache servers that will be used by your client(s). One or more values can be added as either fully qualified domain names (FQDN) or IP addresses.",
"cacheServerHostNamesName": "Cache server host names",
"calenderOption": "Calendar",
"cameraDescription": "Whether all cameras on the device are disabled.",
"cameraDisabledDescription": "Block all cameras on the device",
"cameraDisabledName": "Camera",
"cameraDisabledNameWorkProfile": "Camera (work profile-level)",
"cameraName": "Camera",
"cameraOption": "Secure camera",
"cameraOptionAndroid": "Secure camera (fully managed or dedicated)",
"camerasName": "Cameras",
"cbOption": "Semi-Annual Channel (Targeted) for 1809 and below",
"cbbOption": "Semi-Annual Channel",
"cellularBlockWiFiTetheringDescription": "Block tethering and access to portable hotspots.",
"cellularBlockWiFiTetheringName": "Tethering and access to hotspots",
"cellularDataDescription": "Block data usage over cellular networks. When not configured, data usage over cellular networks is allowed and editable by users.",
"cellularDataName": "Cellular data channel",
"cellularExceptionName": "Cellular services",
"cellularExceptionToolTip": "Choose what happens with cellular services traffic when always-on VPN is enabled. The default value for this setting is the most secure option.",
"cellularName": "Cellular",
"certificateCredentialConfigurationDisabledDescription": "Blocks users from making any changes to credentials associated with certificates associated with certificates assigned to them.",
"certificateCredentialConfigurationDisabledName": "User can configure credentials (work profile-level)",
"certificateNotFound": "Certificate policy not found. Was it deleted?",
"certificateOption": "Certificate",
"certificateRevocationCheck": "Certificate revocation check",
"certificateRevocationCheckDescription": "This is a best-effort revocation check; server timeouts will not cause the check to fail.",
"certificateTypeName": "Certificate type",
"certificatesOption": "Certificates",
"changeMicrosoftTunnelSite": "Change the site",
"changeUefiSettingsPermissionName": "Allow local user to alter UEFI settings",
"checkForSignaturesBeforeRunningScanName": "Check For Signatures Before Running Scan",
"checkPointCapsuleVPNOption": "Check Point Capsule VPN",
"childSecurityAssociationParamName": "Child Security Association Parameters",
"chooseSpecificApps": "Choose specific apps",
"cipherTransformAlgorithmDescription": "Encryption algorithm to be used during child (quick mode) security association negotiation. Value must match VPN server settings.",
"cipherTransformAlgorithmName": "Cipher transform algorithm",
"cipherTransformConstants3DES": "CBC-3DES",
"cipherTransformConstantsAES128": "CBC-AES-128",
"cipherTransformConstantsAES192": "CBC-AES-192",
"cipherTransformConstantsAES256": "CBC-AES-256",
"cipherTransformConstantsDES": "CBC-DES",
"ciscoAnyConnectAlwaysOnOption": "Cisco AnyConnect",
"ciscoAnyConnectOption": "Cisco AnyConnect",
"ciscoIPSecOption": "Cisco (IPSec)",
"ciscoLegacyAnyConnectOption": "Cisco Legacy AnyConnect",
"citrixOption": "Citrix",
"citrixSsoOption": "Citrix SSO",
"citrixVpnOption": "Citrix VPN",
"classroomAppForceUnpromptedScreenObservationDescription": "Student devices enrolled in a class via the Classroom app will automatically give permission to that courses teacher to silently observe the students screen. This setting isn't available if screen capture is blocked.",
"classroomAppForceUnpromptedScreenObservationName": "Allow Classroom app to perform AirPlay and view screen without prompting",
"cleanOption": "Clean",
"clear": "Clear",
"clientAuthenticationTypeDescription": "Choose whether to authenticate the user or the device to the VPN server.",
"clientAuthenticationTypeName": "Client Authentication type",
"clientCertForCertificateMachineAuthenticationDescription": "Select a certificate to be provisioned to the client device for authentication.",
"clientCertForClientAuthenticationDescription": "The certificate must include user principal name (UPN) as a subject alternative name.",
"clientCertForClientAuthenticationName": "Client certificate for client authentication (Identity certificate)",
"clientCertForEapXmlClientAuthenticationDescription": "Only select a certificate if the Eap XML includes certificate configuration.",
"clientCertTypeName": "Authentication method",
"clientEdgeSearch": "Search engine in client Edge settings",
"clientsInCustomLocalNetworksOption": "Devices using custom local networks",
"clientsInCustomLocalNetworksWithFallbackOption": "Device using custom local networks with fallback",
"clientsInLocalNetworkOption": "Devices using the same local network",
"clientsWithSamePublicIpAddressOption": "Devices using the same public IP address",
"cloudPrintDiscoveryEndPointDescription": "Endpoint for discovering cloud printers.",
"cloudPrintDiscoveryEndPointExample": "e.g. https://cloudprinterdiscovery.contoso.com",
"cloudPrintDiscoveryEndPointName": "Printer discovery URL",
"cloudPrintDiscoveryMaxLimitDescription": "Maximum number of printers that should be queried from a discovery endpoint",
"cloudPrintDiscoveryMaxLimitExample": "Enter a number",
"cloudPrintDiscoveryMaxLimitName": "Maximum printers to query(Mobile only)",
"cloudPrintOAuthAuthorityDescription": "Authentication endpoint for acquiring OAuth tokens",
"cloudPrintOAuthAuthorityExample": "e.g. https://azuretenant.contoso.com/adfs",
"cloudPrintOAuthAuthorityName": "Printer access authority URL",
"cloudPrintOAuthClientIdDescription": "GUID of a client application authorized to retrieve OAuth tokens from the OAuthAuthority",
"cloudPrintOAuthClientIdExample": "Enter a GUID",
"cloudPrintOAuthClientIdName": "Azure native client app GUID",
"cloudPrintResourceIdDescription": "OAuth resource URI for print service as configured in Azure portal",
"cloudPrintResourceIdExample": "e.g. http://MicrosoftEnterpriseCloudPrint/CloudPrint",
"cloudPrintResourceIdName": "Print service resource URI",
"cloudProtectionDescription": "Send the Microsoft Active Protection Service telemetry to allow detection of suspicious activity.",
"cloudProtectionName": "Cloud-delivered protection",
"codeIntegrityEnabledDescription": "Require code integrity to be enabled on the device",
"codeIntegrityEnabledName": "Require code integrity",
"complianceAntiSpywareRequirementDescription": "Require any AntiSpyware solution registered with Windows Security Center to be on and monitoring (e.g DigiCert, Microsoft Defender)",
"complianceAntiSpywareRequirementName": "Antispyware",
"complianceAntiSpywareSignatureUpToDateDescription": "Require AntiSpyware signature to be up-to-date",
"complianceAntiSpywareSignatureUpToDateName": "AntiSpyware signature up-to-date",
"complianceAntivirusRequirementDescription": "Require any Antivirus solution registered with Windows Security Center to be on and monitoring (e.g DigiCert, Microsoft Defender)",
"complianceAntivirusRequirementName": "Antivirus",
"complianceAntivirusSignatureUpToDateDescription": "Require Antivirus signature to be up-to-date",
"complianceAntivirusSignatureUpToDateName": "Antivirus signature up-to-date",
"complianceAtpDeviceRiskHeader": "Microsoft Defender for Endpoint rules",
"complianceBlockDAManagedDevicesDescription": "Device administrator capabilities have been superseded by Android Enterprise. Blocking device administrator will guide users to move to Android Enterprise work profile management to regain access.",
"complianceBlockDAManagedDevicesName": "Devices managed with device administrator",
"complianceBlockSimplePasswordsDescription": "This setting specifies whether to block mobile devices from using simple password sequences, such as 1234 or 1111. Recommended Value: Block",
"complianceBlockSimplePasswordsDeviceDescription": "This setting specifies whether to block devices from using simple password sequences, such as 1234 or 1111. Recommended Value: Block",
"complianceBlockSimplePasswordsName": "Simple passwords",
"complianceDeviceRiskATPRequirementDescription": "Select the maximum allowed machine risk score for devices evaluated by Microsoft Defender for Endpoint. Devices which exceed this score get marked as noncompliant.",
"complianceDeviceRiskATPRequirementName": "Require the device to be at or under the machine risk score:",
"complianceDeviceSecurityHeader": "Device Security",
"complianceDeviceThreatProtectionHeader": "Device Threat Protection",
"complianceDeviceThreatProtectionRequirementDescription": "Select the maximum allowed device threat level for devices evaluated by your connected Threat Defense services. Devices which exceed this threat level get marked as noncompliant.",
"complianceDeviceThreatProtectionRequirementName": "Require the device to be at or under the Device Threat Level",
"complianceEmailProfileHeader": "Email",
"complianceEmailProfileManagementDescription": "Require device email accounts to be managed by Intune",
"complianceEmailProfileManagementName": "Email account must be managed by Intune",
"complianceEmailProfileRequired": "Unable to set up email on the device",
"complianceEmailProfileRequiredDescription": "A managed email account is required. If the user already has an email account on the device, the email account must be removed so Intune can set one up correctly. If no email account exists on the device, the user should contact the IT administrator to configure a managed email account.",
"complianceEncryptionHeader": "Encryption",
"complianceFirewallBlockAllIncomingDescription": "Block all incoming connections except those required for basic internet services such as DHCP, Bonjour, and IPSec. This will block all sharing services.",
"complianceFirewallBlockAllIncomingName": "Incoming connections",
"complianceFirewallEnableStealthModeDescription": "Enabling stealth mode prevents the computer from responding to probing requests. The computer still answers incoming requests for authorized apps.",
"complianceFirewallEnableStealthModeName": "Stealth Mode",
"complianceFirewallRequirementDescription": "Enable Firewall to configure how incoming connections are handled in your environment.",
"complianceFirewallRequirementName": "Firewall",
"complianceGatekeeperHeader": "Gatekeeper",
"complianceIosEmailProfileConfigurationHeader": "Configuration",
"complianceIosEmailProfileManagementDescription": "Configure settings if email accounts are to be managed by Intune",
"complianceIosEmailProfileManagementName": "Manage email account by Intune",
"complianceIosEmailProfileSecurityHeader": "Security",
"complianceIosEmailProfileSyncOptionsHeader": "Synchronization",
"complianceJailbreakAllowedDescription": "Prevent jailbroken devices to have corporate access",
"complianceJailbreakAllowedHeader": "Jailbreak",
"complianceJailbreakAllowedName": "Jailbroken devices",
"complianceMinimumPasswordLengthDescription": "This setting specifies the minimum number of digits or characters in the password. Recommended Value: 4",
"complianceMinimumPasswordLengthName": "Minimum password length",
"complianceMinimumPasswordLengthPlaceholder": "4",
"complianceMinimumSecurityPatchLevelDescription": "Select the oldest security patch level a device can have",
"complianceMinimumSecurityPatchLevelName": "Minimum security patch level",
"complianceMinutesOfInactivityBeforePasswordRequiredDescription": "This setting specifies the length of time without user input after which the mobile device screen is locked. Recommended value: 15 min",
"complianceMinutesOfInactivityBeforePasswordRequiredDeviceDescription": "This setting specifies the length of time without user input after which the device is locked. Recommended value: 15 min",
"complianceMinutesOfInactivityBeforePasswordRequiredName": "Maximum minutes of inactivity before password is required",
"complianceMobileOsVersionRestrictionMaximumDescription": "Select the newest OS version a mobile device can have.",
"complianceMobileOsVersionRestrictionMaximumName": "Maximum OS version for mobile devices",
"complianceMobileOsVersionRestrictionMinimumDescription": "Select the oldest OS version a mobile device can have.",
"complianceMobileOsVersionRestrictionMinimumName": "Minimum OS version for mobile devices",
"complianceNumberOfPreviousPasswordsToBlockDescription": "This setting specifies the number of recent passwords that cannot be reused. Recommended value: 5",
"complianceNumberOfPreviousPasswordsToBlockName": "Number of previous passwords to prevent reuse",
"complianceNumberOfPreviousPasswordsToBlockPlaceholder": "5",
"complianceOsBuildVersionRestrictionMaximumDescription": "Select the newest OS build version a device can have.",
"complianceOsBuildVersionRestrictionMaximumName": "Maximum OS build version",
"complianceOsBuildVersionRestrictionMinimumDescription": "Select the oldest OS build version a device can have.",
"complianceOsBuildVersionRestrictionMinimumName": "Minimum OS build version",
"complianceOsVersionRestrictionHeader": "Operating System Version",
"complianceOsVersionRestrictionMaximumAndroidDescription": "Specify the max OS version compliance requirement for devices. E.g. specify “7.1” in this field for Nougat ",
"complianceOsVersionRestrictionMaximumDescription": "Select the newest OS version a device can have.",
"complianceOsVersionRestrictionMaximumName": "Maximum OS version",
"complianceOsVersionRestrictionMinimumAndroidDescription": "Specify the min OS version compliance requirement for devices. E.g. specify “7.1” in this field for Nougat ",
"complianceOsVersionRestrictionMinimumDescription": "Select the oldest OS version a device can have.",
"complianceOsVersionRestrictionMinimumName": "Minimum OS version",
"complianceOsVersionRestrictionMinimumPatchLevelDescription": "Minimum security patch level",
"complianceOsVersionRestrictionMinimumPatchLevelName": "Minimum security patch level",
"compliancePasswordExpirationDescription": "This setting specifies the number of days after which a device password must be changed. Recommended value: 41",
"compliancePasswordExpirationDescriptionAndroid": "Number of days until device password must be changed. Android 4.0+, Samsung KNOX Standard 4.0+",
"compliancePasswordExpirationName": "Password expiration (days)",
"compliancePasswordExpirationPlaceholder": "41",
"compliancePasswordHeader": "Password",
"compliancePasswordQualityDescription": "Specify the quality of the password.",
"compliancePasswordQualityDescriptionAndroid": "Specify the quality of the password. Android 4.0+, Samsung KNOX Standard 4.0+",
"compliancePasswordQualityName": "Password quality",
"compliancePasswordRequireToUnlockFromIdleDescription": "When the device enters an idle state, require a password to unlock it.",
"compliancePasswordRequireToUnlockFromIdleName": "Require password to unlock from idle",
"compliancePasswordRequirementDescription": "This setting specifies whether to require users to enter a password before access is granted to information on their mobile devices. Recommended value: Require",
"compliancePasswordRequirementDeviceDescription": "This setting specifies whether to require users to enter a password before access is granted to information on their devices. Recommended value: Require",
"compliancePasswordRequirementDeviceName": "Require a password to unlock devices.",
"compliancePasswordRequirementName": "Require a password to unlock mobile devices",
"complianceRememberPreviousPasswordsDescription": "Remember previous passwords used by the device.",
"complianceRememberPreviousPasswordsName": "Remember password history",
"complianceRequireEncryptionDescription": "Require encryption of data storage on device.",
"complianceRequireEncryptionName": "Require encryption of data storage on device.",
"complianceRequireFirewallDescription": "Require firewall to be on and monitoring.",
"complianceRequireFirewallName": "Firewall",
"complianceRequireHealthyDeviceReportDescription": "Force devices to be reported as healthy in order to be compliant.",
"complianceRequireHealthyDeviceReportName": "Require devices to be reported as healthy by windows device Health Attestation Service (HAS)",
"complianceRequireRealTimeProtectionDescription": "Require real-time protection prompts for known malware detection.",
"complianceRequireRealTimeProtectionName": "Real-time protection",
"complianceRequireUacDescription": "Require User Account Control to help prevent potentially harmful programs from making changes on the device.",
"complianceRequireUacName": "User Account Control (UAC)",
"complianceRequireWindowsDefenderAntimalwareDescription": "Require the Microsoft Defender service to be enabled.",
"complianceRequireWindowsDefenderAntimalwareName": "Microsoft Defender Antimalware",
"complianceRequireWindowsDefenderSignatureDescription": "Require Microsoft Defender security intelligence to be up-to-date.",
"complianceRequireWindowsDefenderSignatureName": "Microsoft Defender Antimalware security intelligence up-to-date",
"complianceRequiredPasswordTypeDescription": "This setting specifies whether passwords are allowed to be comprised only of numeric characters, or whether they must contain characters other than numbers. Recommendations: Required password type: Alphanumeric, Minimum number of character sets: 1",
"complianceRootedAllowedDescription": "Prevent rooted devices from having corporate access.",
"complianceRootedAllowedName": "Rooted devices",
"complianceSecurityDisableUSBDebuggingDescription": "This setting specifies whether to prevent the device from using the USB debugging feature.",
"complianceSecurityDisableUSBDebuggingName": "Block USB debugging on device",
"complianceSecurityDisallowAppsFromUnknownSourcesDescription": "This setting specifies whether to block devices with \"Security > Unknown Sources\" enabled sources (Android 4.0 Android 7.x. Not supported by Android 8.0 and later). Important: To side-load apps, Unknown sources must be enabled. Enable this compliance policy only if you are not side-loading Android apps. Recommended value: Block",
"complianceSecurityDisallowAppsFromUnknownSourcesName": "Block apps from unknown sources",
"complianceSecurityEnableThreatScanOnAppsDescription": "This setting specifies whether to require that the Android \"Verify apps\" feature is enabled. Recommended value: Require",
"complianceSecurityEnableThreatScanOnAppsName": "Threat scan on apps",
"complianceSystemIntegrityProtectionDescription": "Require System integrity protection to be enabled on this device",
"complianceSystemIntegrityProtectionName": "Require system integrity protection",
"complianceSystemUpdatesHeader": "System Updates",
"complianceTermsAndConditionsHeader": "Terms and Conditions",
"complianceTermsAndConditionsRequireAcceptanceDescription": "Require that the device accepts the most recent terms and conditions",
"complianceTermsAndConditionsRequireAcceptanceName": "Most recent terms and conditions accepted",
"complianceTpmRequiredDescription": "Require Trusted Platform Module (TPM) to be present",
"complianceTpmRequirementName": "Trusted Platform Module (TPM)",
"complianceUpdatesRequireAutomaticUpdatesDescription": "Force the device to automatically update for security patches and improvements.",
"complianceUpdatesRequireAutomaticUpdatesName": "Require automatic updates from Microsoft",
"complianceWin10RequiredPasswordTypeDescription": "This setting determines the type of Password/PIN required.<br>\nDevice Default (Password, Numeric PIN, or Alphanumeric PIN required)<br>\nAlphanumeric (Password or Alphanumberic PIN required)<br>\nNumeric (Password or Numeric PIN required)<br>\nRecommendations: Required password type: Alphanumeric, Password complexity: Require digits and lowercase letters",
"complianceWindowsDefenderHeader": "Defender",
"complianceWindowsDefenderMinimumVersionDescription": "Minimum version of Microsoft Defender (e.g. 4.11.0.0)",
"complianceWindowsDefenderMinimumVersionName": "Microsoft Defender Antimalware minimum version",
"complianceWindowsDeviceHealthAttestationHeader": "Windows Health Attestation Service evaluation rules",
"complianceWindowsMobileOsVersionRestrictionMaximumDescription": "Select the newest OS version a mobile device can have. The operating system version is defined as major.minor.build.revision.",
"complianceWindowsMobileOsVersionRestrictionMinimumDescription": "Select the oldest OS version a mobile device can have. The operating system version is defined as major.minor.build.revision.",
"complianceWindowsOsVersionRestrictionHeaderDescription": "The operating system version is defined as major.minor.build.revision. ",
"complianceWindowsOsVersionRestrictionMaximumDescription": "Select the newest OS version a device can have. The operating system version is defined as major.minor.build.revision.",
"complianceWindowsOsVersionRestrictionMinimumDescription": "Select the oldest OS version a device can have. The operating system version is defined as major.minor.build.revision. ",
"complianceWindowsRequiredPasswordTypeDescription": "Select the password type that will be on the device.",
"complianceWindowsRequiredPasswordTypeName": "Password type",
"compliantAppsOption": "Compliant apps list. Report noncompliance for any installed apps not in list",
"computerNameStaticPrefixDescription": "Computers are assigned 15 characters long name. Specify a prefix, rest of 15 characters will be random.",
"computerNameStaticPrefixName": "Computer name prefix",
"conditionalAccess": "Conditional Access",
"configurationDataFileUpdatesBehaviorName": "Configuration file updates",
"configurationKey": "Configuration key",
"configurationValue": "Configuration value",
"configureChildSecurityAssociationsName": "Configure a separate set of parameters for child security associations",
"configureSecurityAssociationParamName": "Configure security association parameters",
"connectAppBlockAutoLaunchDescription": "Blocks the Connect app from automatically launching. If blocked, users can manually launch the Connect app from the Hub's settings.",
"connectAppBlockAutoLaunchName": "Auto-launch Connect",
"connectIfNeeded": "Connect if needed",
"connectIfNeededDNSListDescription": "Enter the IP address(es) of the DNS servers that will resolve the domains in the list. This setting only applies to domains in the list. Domains and DNS servers are internal resources that cannot be accessed on external networks. So if the domain doesn't resolve, then the VPN connection is created on-demand.",
"connectIfNeededDomainsDescription": "When users access a domain in this list, the device tries to resolve the domain using DNS. Domains are internal resources that aren't resolved by public DNS. So if the domain doesn't resolve, meaning it doesn't have access to internal resources, then a VPN connection is created on-demand.",
"connectIfNeededOption": "Connect if needed",
"connectOption": "Connect VPN",
"connectionHeading": "Connection",
"consumerFeaturesDescription": "Allows IT admins to turn on experiences that are typically for consumers only, such as Start suggestions, Membership notifications, Post-OOBE app install and redirect tiles.",
"consumerFeaturesName": "Consumer Features",
"contactsOption": "Contacts",
"containsBadCharacters": "Contains bad characters",
"contentCachingBlockDeletionDescription": "Available for macOS 10.13.4 and later. Also known as tethered caching. If you dont configure this setting, users will be able to share their internet connection and cached content with iOS or iPadOS devices that are connected to their Mac via USB.",
"contentCachingBlockDeletionName": "Always keep content from the cache, even when the system needs disk space for other apps",
"contentCachingClientListenRangesDescription": "Available for macOS 10.13.4 and later. Enter a range of client IP addresses that can use your cache.",
"contentCachingClientListenRangesName": "Client listen ranges",
"contentCachingClientPolicyDescription": "Available for macOS 10.13.4 and later.",
"contentCachingClientPolicyName": "Devices to cache",
"contentCachingDataPathDescription": "Available for macOS 10.13.4 and later. The path of the directory that stores the cached content. Must be or end with /Library/Application Support/Apple/AssetCache/Data. If you change this setting later, your cached content wont automatically move from the old to the new location. To move it automatically, device users will need to edit the location in System Preferences > Sharing > Content Caching.",
"contentCachingDataPathEmptyValue": "/Library/Application Support/Apple/AssetCache/Data",
"contentCachingDataPathName": "Cache location",
"contentCachingDisableConnectionSharingDescription": "Available for macOS 10.15 and later. If you dont configure, cached content will be deleted when the system needs more storage space.",
"contentCachingDisableConnectionSharingName": "Block internet connection and cache content sharing",
"contentCachingEnabledDescription": "Available for macOS 10.13.4 and later. If enabled, content caching will occur whenever possible, and users wont be able to disable it.",
"contentCachingEnabledName": "Enable content caching",
"contentCachingForceConnectionSharingDescription": "Available for macOS 10.15.4 and later. Also known as tethered caching. If you enable, users will be able to share their internet connection and cached content with iOS or iPadOS devices that are connected to their Mac via USB. They wont be able to disable this feature.",
"contentCachingForceConnectionSharingName": "Enable internet connection sharing",
"contentCachingKeepAwakeDescription": "Available for macOS 10.15 and later.",
"contentCachingKeepAwakeName": "Prevent the device from sleeping while caching is turned on",
"contentCachingLogClientIdentitiesDescription": "Available for macOS 10.13.4 and later. Can be helpful to pinpoint client problems. Details logged include the IP address and port number of the clients using the device.",
"contentCachingLogClientIdentitiesName": "Enable cache to log client details",
"contentCachingMaxSizeBytesDescription": "Available for macOS 10.13.4 and later. The maximum amount of disk space (in bytes) you want to dedicate to cached content. When not configured, the number defaults to 0 bytes, which gives unlimited disk space to the cache.",
"contentCachingMaxSizeBytesEmptyValue": "0",
"contentCachingMaxSizeBytesName": "Maximum cache size",
"contentCachingParentSelectionPolicyDescription": "Available for macOS 10.13.4 and later. The policy to use when a client needs help choosing a parent cache.",
"contentCachingParentSelectionPolicyName": "Parent selection policy",
"contentCachingParentsDescription": "Available for macOS 10.13.4 and later. Enter the local IP address of another content cache to add it as a parent cache. Your cache will upload and download content to these caches instead of doing so directly with Apple.",
"contentCachingParentsName": "Parent IP addresses",
"contentCachingPeerFilterRangesDescription": "Available for macOS 10.13.4 and later. Enter a range of cache IP addresses to add other caches as peers. Peers can query each other about available content.",
"contentCachingPeerFilterRangesName": "Peer filter ranges",
"contentCachingPeerListenRangesDescription": "Available for macOS 10.13.4 and later. Enter a range of cache IP addresses to add other caches as peers. Peers can share and download content with each other as needed.",
"contentCachingPeerListenRangesName": "Peer listen ranges",
"contentCachingPeerPolicyDescription": "Available for macOS 10.13.4 and later.",
"contentCachingPeerPolicyName": "Share content with other caches",
"contentCachingPortDescription": "Available for macOS 10.13.4 and later. The number of the TCP port on the device. Used by your cache to accept requests for downloads/uploads. Enter 0 to use whatever port is available.",
"contentCachingPortName": "Port",
"contentCachingPublicRangesDescription": "Available for macOS 10.13.4 and later. Enter a range of public cache IP addresses that the cloud servers should use to match client devices to caches.",
"contentCachingPublicRangesName": "Custom public IP addresses",
"contentCachingShowAlertsDescription": "Available for macOS 10.15 and later.",
"contentCachingShowAlertsName": "Show status alerts",
"contentCachingTypeAllContentOption": "All content",
"contentCachingTypeDescription": "Available for macOS 10.13.4 and later. Shared content includes apps and software updates. iCloud content includes photos and documents.",
"contentCachingTypeName": "Type of content to cache",
"contentCachingTypeSharedContentOnlyOption": "Shared content only",
"contentCachingTypeUserContentOnlyOption": "User content only",
"contentTypeToSyncAndroidDescription": "User can temporarily turn syncing back on, until the policy syncs again.",
"contentTypeToSyncDescription": "In addition to email, you can use these settings to configure other items you want to synchronize like contacts, calendar, and tasks. Email is still synchronized, regardless of these settings.",
"contentTypeToSyncName": "Content type to sync",
"copyPasteBetweenWorkAndPersonalProfilesDescription": "This setting controls whether or not apps in the work profile are allowed to share data with apps in the personal profile through copy and paste actions.",
"copyPasteBetweenWorkAndPersonalProfilesName": "Copy and paste between work and personal profiles.",
"createAttributes": "Create attributes",
"criticalUpdatesBehaviorName": "Critical updates",
"cryptographyAllowFipsAlgorithmPolicyDescription": "Allow the Federal Information Processing Standard (FIPS) policy",
"cryptographyAllowFipsAlgorithmPolicyName": "Federal Information Processing Standard (FIPS) policy",
"customAlwaysOnVpnClientPackageIdentifierOption": "Custom",
"customAppConfigurationDomainDescription": "Enter a Bundle ID",
"customAppConfigurationDomainEmptyValue": "com.company.application",
"customAppConfigurationDomainName": "Preference domain name",
"customAppConfigurationFileDescription": "For the correct format of the uploaded file, please view the Intune documentation. <a href=\"https://aka.ms/AA6z0o4\">Learn more</a>",
"customAppConfigurationFileName": "Property list file",
"customBoolError": "All configuration keys of type Boolean must have a value of either \"true\" or \"false\".",
"customEapXmlOption": "Custom EAP Xml",
"customIntError": "All configuration keys of type integer must be a whole number value.",
"customItemHideFromUserConfiguration": "Hide",
"customItemHideFromUserConfigurationDescription": "Configure this setting if you dont want an items window to be visible after login. This does not apply to servers.",
"customItemLocation": "Location",
"customItemLocationHint": "/Applications/Calculator.app",
"customItemPathOfItem": "Path of item",
"customPasswordOption": "Custom",
"customPolicyConfigurationDeploymentChannelDescription": "Select the channel you want to use to deploy your configuration profile. If the channel doesnt match whats listed for the payload in Apple documentation, deployment could fail. The selected channel cannot be changed once the profile has been created.",
"customPolicyConfigurationDeploymentChannelName": "Deployment channel",
"customPolicyConfigurationDeviceChannel": "Device channel",
"customPolicyConfigurationProfileDescription": "The profile name displayed to users.",
"customPolicyConfigurationProfileFileName": "Configuration profile file",
"customPolicyConfigurationProfileName": "Custom configuration profile name",
"customPolicyConfigurationUserChannel": "User channel",
"customPolicyOMAURISettingsName": "OMA-URI Settings",
"customPolicyOMAURISettingsWin10Description": "More Information",
"customSettingsSummaryTitle": "Custom settings",
"customVPNOption": "Custom VPN",
"customValue": "Custom Value",
"customWiFiPolicyFileName": "Profile XML",
"customWiFiPolicyProfileDescription": "Wi-Fi connection name displayed to users",
"customWiFiPolicyProfileName": "Connection name",
"dES": "DES",
"dHGroupDescription": "Diffie-Hellman group to be used during IKE (main mode) security association negotiation. Value must match VPN server settings.",
"dHGroupName": "Diffie-Hellman group",
"dNSColumnDescription": "DNS (e.g. http://al.com)",
"dNSColumnName": "DNS",
"dNSName": "Domain",
"dNSNameDescription": "Domain that automatically starts the VPN connection.",
"dNSNameDescription1809": "Indicates the namespace to which this rule applies. Enter either a fully-qualified domain name (FQDN) or a DNS suffix. Enter a period (.) at the beginning for a DNS suffix.",
"dNSNameExample": "e.g. contoso.com or .allcontososubdomains.com",
"dNSSearchDomainOption": "DNS search domains",
"dNSSearchDomainsName": "When domains resolve using any of these DNS servers",
"dNSServer": "DNS servers",
"dNSServerDescription": "DNS servers used to resolve the specified domain",
"dNSSettings": "DNS Settings",
"dNSSuffixExample": "domain1.contoso.com",
"dNSTriggersTableDescription": "DNS Triggers are for per-APP VPN.",
"dNSTriggersTableIOSDescription": "DNS Triggers are for per-APP VPN. For iOS, they only apply when authentication is set to certificates.",
"dNSTriggersTableName": "DNS Triggers",
"daily": "Daily",
"dataProtectionBlockDirectMemoryAccessDescription": "This policy setting allows you to block direct memory access (DMA) for all hot pluggable PCI downstream ports until a user logs into Windows.",
"dataProtectionBlockDirectMemoryAccessName": "Direct Memory Access",
"dataRoamingBlockedDescription": "Block data roaming.",
"dataRoamingBlockedName": "Roaming data services",
"dataSharingBetweenWorkAndPersonalProfilesDescription": "This setting specifies whether or not apps in the work profile are allowed to share data with apps in the personal profile.",
"dataSharingBetweenWorkAndPersonalProfilesName": "Data sharing between work and personal profiles.",
"dataSharingTypeDescription": "This setting specifies whether or not apps in the work profile are allowed to share data with apps in the personal profile.",
"dataSharingTypeName": "Data sharing between work and personal profiles",
"dataTypeName": "Data type",
"dateAndTimeBlockChangesDescription": "Block user from changing date and time on device (Samsung KNOX).",
"dateAndTimeBlockChangesName": "Block date and time changes (Samsung KNOX)",
"dateTimeConfigurationBlockedDescription": "Block user from manually setting the date and time.",
"dateTimeConfigurationBlockedName": "Date and Time changes",
"dateTimeName": "Date and time",
"dayOfMonth": "Day of month",
"dayOfWeek": "Day of week",
"dayScheduled": "Day scheduled",
"days": "Days",
"daysDescription": "Select days to stop updates from installing.",
"daysMonthsOrYears": "Enter number of days, months, or years",
"daysName": "Days",
"daysOfEmailToSynchronizeDescription": "Control how much email the client will synchronize.",
"daysOfEmailToSynchronizeName": "Amount of email to synchronize",
"daysRangeHintText": "Number of days, {0} to {1}",
"daysToTrackResolvedMalwareDescription": "Days to wait before deleting quarantined malware. 0-90, 0 means never delete.",
"daysToTrackResolvedMalwareName": "Days before deleting quarantined malware",
"daysToTrackResolvedMalwarePlaceholder": "Enter number of days (0-90)",
"deadPeerDetectionRate": "Dead peer detection rate",
"deadPeerDetectionRateDescription": "Determine how often to check if a peer connection is still active. Low sends a keepalive message every 30 minutes, Medium sends a keepalive message every 10 minutes, and High sends a keepalive message every 60 seconds. Select None to disable dead peer detection.",
"deadlineForFeatureUpdatesDescription": "Specifies the number of days a user has before feature updates are installed on their devices automatically",
"deadlineForFeatureUpdatesName": "Deadline for feature updates",
"deadlineForQualityUpdatesDescription": "Specifies the number of days a user has before quality updates are installed on their devices automatically",
"deadlineForQualityUpdatesName": "Deadline for quality updates",
"deadlineGracePeriodDescription": "Specifies a minimum number of days after deadline until restarts occur automatically",
"deadlineGracePeriodName": "Grace period",
"dedicatedAndroidEnrollmentTypesHeaderDescription": "These settings only work for dedicated devices.",
"dedicatedAndroidEnrollmentTypesHeaderName": "Dedicated devices",
"default": "Default",
"defaultAppPermissionPolicyDescription": "This setting specifies the default permission policy for all apps in the work profile. Recommended value: Prompt",
"defaultAppPermissionPolicyName": "Default app permissions",
"defaultMostSecureToolTip": "The default value for this setting is the most secure option.",
"defaultNotificationsOption": "Use the default Windows Update notifications",
"defaultOption": "Download and install",
"defaultPermissionPolicyDescription": "Define the default permission policy for requests for runtime permissions.",
"defaultPermissionPolicyName": "Default permission policy",
"defaultPermissionPolicyNameWorkProfile": "Default permission policy (work profile-level)",
"defaultPrinterDescription": "Name (network host name) of an installed printer.",
"defaultPrinterExample": "e.g. printer DNS name",
"defaultPrinterName": "Default printer",
"defaultServerColumn": "Default server",
"defenderBlockOnAccessProtectionDesc": "Microsoft Defender On Access Protection",
"defenderBlockOnAccessProtectionName": "On Access Protection",
"defenderDetectedMalwareActionsDescription": "Allow to specify any valid threat severity levels and the corresponding default action to take. Only enforced in desktop devices running Windows 10 or later.",
"defenderDetectedMalwareActionsName": "Actions on detected malware threats",
"defenderDisableCatchupFullScanDescription": "This setting allows you to configure catch-up scans for scheduled full scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. If you block this setting, catch-up scans for scheduled full scans will be turned off.",
"defenderDisableCatchupFullScanName": "Catch-up full scan",
"defenderDisableCatchupQuickScanDescription": "This setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that is initiated because a regularly scheduled scan was missed. If you block this setting, catch-up scans for scheduled quick scans will be turned off.",
"defenderDisableCatchupQuickScanName": "Catch-up quick scan",
"defenderExclusions": "Microsoft Defender Antivirus Exclusions",
"defenderPotentiallyUnwantedAppActionDescription": "Added in Windows 10, version 1607. Specifies the level of detection for potentially unwanted applications. Default is off.",
"defenderPotentiallyUnwantedAppActionName": "Detect potentially unwanted applications",
"defenderScheduleScanDayDesc": "Selects the day that the Microsoft Defender scan should run",
"defenderScheduleScanDayName": "Schedule scan day",
"defenderScheduleScanEnableLowCpuPriorityDescription": "This setting allows you to enable or disable low CPU priority for scheduled scans. If you enable this setting, low CPU priority will be used during scheduled scans.",
"defenderScheduleScanEnableLowCpuPriorityName": "Configure low CPU priority for scheduled scans",
"defenderSecurityCenterContactOptionsText": "Specify at least one of the following contact options.",
"defenderSecurityCenterDisableAccountUIDescription": "Configure if end users can view the Account protection area in the Microsoft Defender Security Center. Hiding this section will also block all notifications related to Account protection.",
"defenderSecurityCenterDisableAccountUIName": "Account protection",
"defenderSecurityCenterDisableAppBrowserUIDescription": "Configure if end users can view the App and browser control area in the Microsoft Defender Security center. Hiding this section will also block all notifications related to App and browser control.",
"defenderSecurityCenterDisableAppBrowserUIName": "App and browser Control",
"defenderSecurityCenterDisableClearTpmUIDescription": "Configure the display of the Clear TPM button.",
"defenderSecurityCenterDisableClearTpmUIName": "Clear TPM button",
"defenderSecurityCenterDisableFamilyUIDescription": "Configure if end users can view the Family options area in the Microsoft Defender Security center. Hiding this section will also block all notifications related Family options.",
"defenderSecurityCenterDisableFamilyUIName": "Family options",
"defenderSecurityCenterDisableHardwareUIDescription": "Configure if end users can view the Hardware protection area in the Microsoft Defender Security Center. Hiding this section will also block all notifications related to Hardware protection.",
"defenderSecurityCenterDisableHardwareUIName": "Hardware protection",
"defenderSecurityCenterDisableHealthUIDescription": "Configure if end users can view the Device performance and health area in the Microsoft Defender Security center. Hiding this section will also block all notifications related to Device performance and health.",
"defenderSecurityCenterDisableHealthUIName": "Device performance and health",
"defenderSecurityCenterDisableNetworkUIDescription": "Configure if end users can view the Firewall and network protection area in the Microsoft Defender Security center. Hiding this section will also block all notifications related to Firewall and network protection.",
"defenderSecurityCenterDisableNetworkUIName": "Firewall and network protection",
"defenderSecurityCenterDisableNotificationAreaUIDescription": "Configure the display of the notification area control. The user needs to either sign out and sign in or reboot the computer for this setting to take effect.",
"defenderSecurityCenterDisableNotificationAreaUIName": "Windows Security Center icon in the system tray",
"defenderSecurityCenterDisableRansomwareUIDescription": "Configure if end users can view the Ransomware protection area in the Microsoft Defender Security Center. Hiding this section will also block all notifications related to Ransomware protection.",
"defenderSecurityCenterDisableRansomwareUIName": "Ransomware protection",
"defenderSecurityCenterDisableSecureBootUIDescription": "Configure if end users can view the Secure boot protection area in the Microsoft Defender Security Center. Hiding this section will also block all notifications related to Secure boot protection.",
"defenderSecurityCenterDisableSecureBootUIName": "Secure boot protection",
"defenderSecurityCenterDisableTroubleshootingUIDescription": "Configure if end users can view the Security process troubleshooting area in the Microsoft Defender Security Center. Hiding this section will also block all notifications related to Security process troubleshooting.",
"defenderSecurityCenterDisableTroubleshootingUIName": "Security process troubleshooting",
"defenderSecurityCenterDisableVirusUIDescription": "Configure if end users can view the Virus and threat protection area in the Microsoft Defender Security Center. Hiding this section will also block all notifications related to Virus and threat protection.",
"defenderSecurityCenterDisableVirusUIName": "Virus and threat protection",
"defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUIDescription": "Configure the display of update TPM Firmware when a vulnerable firmware is detected.",
"defenderSecurityCenterDisableVulnerableTpmFirmwareUpdateUIName": "TPM firmware update warning",
"defenderSecurityCenterHeaderText": "Microsoft Defender Security Center app and notifications",
"defenderSecurityCenterHelpEmailDescription": "Enter an email address end users can use to reach the IT department.",
"defenderSecurityCenterHelpEmailName": "IT department email address",
"defenderSecurityCenterHelpEmailPlaceholder": "e.g it@contoso.com",
"defenderSecurityCenterHelpPhoneDescription": "Enter a phone number or Skype ID end users can use to reach the IT department.",
"defenderSecurityCenterHelpPhoneName": "IT department phone number or Skype ID",
"defenderSecurityCenterHelpPhonePlaceholder": "e.g 414-555-888",
"defenderSecurityCenterHelpURLDescription": "Enter the IT departments support website URL.",
"defenderSecurityCenterHelpURLName": "IT support website URL",
"defenderSecurityCenterHelpURLPlaceholder": "e.g. Ask@ContosoIT.com",
"defenderSecurityCenterITContactDisplayDescription": "Configure where to display IT contact information to end users.",
"defenderSecurityCenterITContactDisplayDisplayEmailName": "Email",
"defenderSecurityCenterITContactDisplayDisplayInAppAndInNotificationsName": "Display in app and in notifications",
"defenderSecurityCenterITContactDisplayDisplayOnlyInAppName": "Display only in app",
"defenderSecurityCenterITContactDisplayDisplayOnlyInNotificationsName": "Display only in notifications",
"defenderSecurityCenterITContactDisplayDisplayPhoneName": "Phone",
"defenderSecurityCenterITContactDisplayDisplayUrlName": "URL",
"defenderSecurityCenterITContactDisplayDontDisplayName": "Don't display",
"defenderSecurityCenterITContactDisplayName": "IT contact information",
"defenderSecurityCenterITContactInformationHeaderText": "IT contact information",
"defenderSecurityCenterITContactInformationSubHeaderText": "Provide IT contact information to appear in Microsoft Defender Security Center app and the app notifications.",
"defenderSecurityCenterNotificationsFromAppBlockAllNotificationsName": "Block all notifications",
"defenderSecurityCenterNotificationsFromAppBlockNoncriticalNotificationsName": "Block non-critical notifications",
"defenderSecurityCenterNotificationsFromAppDescription": "Choose which notifications to display to end users. Non-critical notifications include summaries of Microsoft Defender Antivirus activity, including notifications when scans have completed. All other notifications are considered critical.",
"defenderSecurityCenterNotificationsFromAppName": "Notifications from the displayed areas of app",
"defenderSecurityCenterOrganizationDisplayNameDescription": "Enter the IT organizations name.",
"defenderSecurityCenterOrganizationDisplayNameName": "IT organization name",
"defenderSecurityCenterOrganizationDisplayNamePlaceholder": "e.g. Contoso IT",
"defenderSecurityCenterSubHeaderText": "Block end user access to the various areas of Microsoft Defender Security Center app. Hiding a section will also block  related notifications.",
"defenderSecurityCenterTamperProtectionDescription": "Not Configured state is default and will have no impact. <br>Enabled will enable the Tamper Protection restrictions. <br>Disabled will disable the Tamper Protection restrictions. <br>When the Enabled or Disabled state exists on a client, deploying Not configured will have no impact on the setting. To change the state from currently Enabled/Disabled, you must deploy the opposite setting to have effect. ",
"defenderSecurityCenterTamperProtectionDisable": "Disabled",
"defenderSecurityCenterTamperProtectionEnable": "Enabled",
"defenderSecurityCenterTamperProtectionName": "Tamper Protection",
"defenderSubmitSamplesConsentTypeDesc": "Checks for the user consent level in Microsoft Defender to send data",
"defenderSubmitSamplesConsentTypeName": "Submit samples consent",
"delayAllUpdateVisibilityOption": "Major, minor, and non-OS software updates",
"delayAppUpdateVisibilityOption": "Non-OS software updates",
"delayMajorAndMinorOSUpdateVisibilityOption": "Major and Minor OS software updates",
"delayMajorAndNonOSUpdateVisibilityOption": "Major OS and non-OS software updates",
"delayMajorOSUpdateVisibilityOption": "Major OS software updates",
"delayMinorAndNonOSUpdateVisibilityOption": "Minor OS and non-OS software updates",
"delayMinorOSUpdateVisibilityOption": "Minor OS software updates",
"delayOSUpdateVisibilityOption": "Operating system updates",
"deliveryOptimizationBandwidthHeader": "Bandwidth",
"deliveryOptimizationCachingHeader": "Caching",
"deliveryOptimizationDODescription": "Specifies the download method that Delivery Optimization can use to manage network bandwidth consumption for content distribution scenarios.",
"deliveryOptimizationDescription": "Specify the download method that will be used to download Windows Updates.",
"deliveryOptimizationDownloadModeName": "Download mode",
"deliveryOptimizationName": "Delivery optimization download mode",
"deliveryOptimizationWUfBHeader": "This setting has been replaced, going forward configure the “Download mode” setting from Device Configuration as a “Windows 10 and later” profile, with profile type Delivery Optimization. <a href=\"https://go.microsoft.com/fwlink/?linkid=2031138\" target=\"_blank\">Learn more</a> about this setting's migration.",
"dellSoniceWallMobileConnectOption": "SonicWall Mobile Connect",
"derivedCredentialAppAuthenticationHeader": "Create and assign a derived credential profile. This profile enables certificate-based authentication in apps.",
"derivedCredentialAppAuthenticationHeaderLearnMore": "Learn more about using derived credentials.",
"derivedCredentialsOption": "Derived credential",
"derivedCredentialsSearchingForTenantLevel": "Searching for derived credential issuer...",
"derivedCredentialsTenantLevelNotConfigured": "You have not specified a derived credential issuer for your tenant so that this policy can successfully apply to devices. Click here to specify the issuer.",
"descriptionName": "Description",
"desktopAnalytics": "Configuration Manager",
"desktopOption": "Desktop",
"destinationPrefix": "Destination Prefix/Size (e.g. 192.168.0.1/255)",
"developerUnlock": "Developer unlock",
"developerUnlockDescription": "Specifies whether developer unlock is allowed.",
"deviceDefault": "Device default",
"deviceDefaultCopyPasteBetweenWorkAndPersonalProfilesOption": "Device Default",
"deviceDefaultDataSharingBetweenWorkAndPersonalProfilesOption": "Device default",
"deviceEnrollmentAndAutomatedDeviceEnrollmentDescription": "These settings work for devices that were enrolled in Intune through device enrollment, and for devices enrolled using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP).",
"deviceEnrollmentAndAutomatedDeviceEnrollmentHeaderDescription": "These settings work for devices that were enrolled in Intune through device enrollment, and for devices enrolled using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP). This includes all supervised devices.",
"deviceEnrollmentAndAutomatedDeviceEnrollmentHeaderDescriptionMac": "These settings work for devices that were enrolled with or without user approval through device enrollment, and for devices enrolled with automated device enrollment (formerly DEP).",
"deviceEnrollmentAndAutomatedDeviceEnrollmentHeaderName": "Device enrollment and automated device enrollment",
"deviceEnrollmentAndAutomatedDeviceEnrollmentHeaderNameMac": "Device enrollment and automated device enrollment",
"deviceGuardCredentialGuardDescription": "Enabling with UEFI lock ensures that Credential Guard cannot be remotely disabled. Enabling without UEFI lock allows Credential Guard to be disabled remotely via Group Policy.",
"deviceGuardCredentialGuardName": "Credential Guard",
"deviceIdOption": "Intune Device ID",
"deviceLocalIdentifier": "Device FQDN",
"deviceOwnerKioskHeadingText": "Configure a kiosk-style experience on your dedicated devices. Prior to configuring these settings, go to Client apps and deploy any apps you want to the devices.",
"deviceOwnerKioskLearnMoreText": "Learn about Android Enterprise dedicated devices.",
"devicePasswordBlockKeyguardFeaturesReportingName": "Device password: Disabled lock screen features",
"devicePasswordExpirationDaysReportingName": "Device password: Number of days until password expires",
"devicePasswordHeader": "Configure settings that apply to the personal profile on devices using a work profile.",
"devicePasswordMinimumLengthReportingName": "Device password: Minimum password length",
"devicePasswordMinimumLetterCharactersReportingName": "Device password: Number of characters required",
"devicePasswordMinimumLowerCaseCharactersReportingName": "Device password: Number of lowercase characters required",
"devicePasswordMinimumNonLetterCharactersReportingName": "Device password: Number of non-letter characters required",
"devicePasswordMinimumNumericCharactersReportingName": "Device password: Number of numeric characters required",
"devicePasswordMinimumSymbolCharactersReportingName": "Device password: Number of symbol characters required",
"devicePasswordMinimumUpperCaseCharactersReportingName": "Device password: Number of uppercase characters required",
"devicePasswordPreviousPasswordBlockCountReportingName": "Device password: Number of passwords required before user can reuse a password",
"devicePasswordRequiredTypeReportingName": "Device password: Required password type",
"devicePasswordSignInFailureCountBeforeFactoryResetReportingName": "Device password: Number of sign-in failures before wiping device",
"devicePfxCertHeading": "Device PKCS#12 certificate",
"deviceRootCertificate": "Device root certificate",
"deviceSharingAssetTagInformationDescription": "Message displayed at the bottom of the login window and lock screen.",
"deviceSharingAssetTagInformationExample": "e.g. School's Asset# 112ABC",
"deviceSharingAssetTagInformationName": "Asset tag information",
"deviceSharingLockScreenFootnoteDescription": "Message displayed on the login window and lock screen.",
"deviceSharingLockScreenFootnoteExample": "e.g. \"If Lost, Return to\"",
"deviceSharingLockScreenFootnoteName": "\"If Lost, Return to...\" Message",
"deviceTunnelValidationErrorMessage": "Device Tunnel requires AlwaysOn to be enabled, authentication set to \"Machine Certificates\" and Device Scope to be \"Device\".",
"deviceWideScope": "Device-wide",
"devicesPageDescription": "Block access to Devices in Settings app.",
"devicesPageName": "Devices",
"dfciBuiltinHeaderDescName": "DFCI can only manage hardware components built into the device. These settings cannot manage attached peripherals (e.g. USB webcams).",
"dfciGranularSettingsWarningInfoBox": "Warning! The options below are only applicable to certain types of devices. If targeted to non-eligible device, they will report as Non complaint and the devices might not be protected. <a href=\"https://docs.microsoft.com/mem/intune/configuration/device-firmware-configuration-interface-windows-settings\" >Learn more</a> ",
"dfciHeaderName": "Use the Device Firmware Configuration Interface (DFCI) to remotely manage a device's UEFI settings. <a href=\"https://go.microsoft.com/fwlink/?linkid=2028892\" target=\"_blank\">Learn more</a>.<br>\n <br>You can only manage these settings for devices that meet the following requirements:\n <li>The device manufacturer supports DFCI.</li>\n <li>The device is registered with the Windows Autopilot deployment service.</li>\n <li>The device has been rebooted since the last MDM sync.</li>",
"diagnosticDataSubmissionLevelDescription": "Select level of diagnostic data submission. The enhanced level is not supported after Windows version 1903.",
"diffieHellmanGroupName": "Diffie-Hellman group",
"digiCertCA": "DigiCert",
"digitsLowerLettersOption": "Require digits and lowercase letters",
"digitsLowerUpperLettersOption": "Require digits, lowercase and uppercase letters",
"digitsLowerUpperLettersSpecialCharsOption": "Require digits, lowercase, uppercase, and special characters",
"directGlobalProxyOption": "Direct",
"disableAllNotificationsOption": "Turn off all notifications, including restart warnings",
"disableBitLockerRecoveryPasswordRotationOption": "Key rotation disabled",
"disableMacAddressRandomization": "Disable MAC address randomization",
"disableMacAddressRandomizationDescriptionIOS": "Force devices connecting using this profile to present their actual Wi-Fi MAC address instead of a random MAC address. Since this allows devices to be tracked by MAC address, you should only do this when necessary, such as for network access control (NAC) support. Applies to iOS 14 and later.",
"disableOnDemandUserOverrideDescription": "Force the On-demand VPN setting to turn on. If you block them, your users will see the on-demand VPN setting on their device but won't be able to make changes to it. Applies to iOS 14 and later.",
"disableOnDemandUserOverrideMacOSDescription": "Force the On-demand VPN setting to turn on. If you block them, your users will see the on-demand VPN setting on their device but won't be able to make changes to it. Applies to MacOS 11 and later.",
"disableOnDemandUserOverrideName": "Block users from disabling automatic VPN",
"disableOption": "Disable",
"disableSMIMEOption": "Disable S/MIME",
"disableUserPromptForServerValidation": "Disable user prompts for server validation",
"disableUserPromptForServerValidationDescription": "Disable to prevent the user from being prompted to authorize new PEAP servers for trusted certification authorities.",
"disabledOption": "Disabled",
"disconnectOnIdle": "Disconnect on idle",
"disconnectOnIdleDescription": "Enable to disconnect the VPN connection after a specified number of seconds of inactivity.",
"disconnectOnIdleInfo": "Disconnect on idle and Disconnect on idle timer apply to only when per-app VPN or on-demand VPN is configured.",
"disconnectOnIdleTimer": "Disconnect on idle timer",
"disconnectOnIdleTimerDescription": "The length of time in seconds to wait before disconnecting a per-app VPN or on-demand VPN connection.",
"disconnectOnSleep": "Disconnect on sleep",
"disconnectOnSleepDescription": "Enable to disconnect the VPN connection when the device goes to sleep.",
"disconnectOption": "Disconnect VPN",
"displayAppListWithGdiDPIScalingTurnedOffDescription": "GDI DPI Scaling lets apps that are not DPI aware to become per-monitor DPI aware. Specify the legacy apps that will have GDI DPI Scaling turned off. With GDI DPI Scaling configured to both turn on and turn off on an app, scaling is turned off for the app.",
"displayAppListWithGdiDPIScalingTurnedOffName": "Turn off GDI scaling for apps.",
"displayAppListWithGdiDPIScalingTurnedOnDescription": "GDI DPI Scaling lets apps that are not DPI aware to become per-monitor DPI aware. Specify the legacy apps that will have GDI DPI Scaling turned on. With GDI DPI Scaling configured to both turn on and turn off on an app, scaling is turned off for the app.",
"displayAppListWithGdiDPIScalingTurnedOnName": "Turn on GDI scaling for apps.",
"doAbsoluteName": "Absolute",
"doBackgroundDownloadFromHttpDelayInSecondsDescription": "Delay the use of the HTTP source in a background download to prioritize the download from peers. After the max delay is reached, the download will resume from the http source. Recommended value is 60 seconds. ",
"doBackgroundDownloadFromHttpDelayInSecondsEmpty": "Enter value in seconds",
"doBackgroundDownloadFromHttpDelayInSecondsName": "Delay background HTTP download (in seconds)",
"doBandwidthModeDescription": "Select the maximum bandwidth that Delivery Optimization uses across all concurrent download activities. Downloads from LAN peers are not throttled even when this policy is set.",
"doBandwidthModeName": "Bandwidth optimization type",
"doBandwidthModePercentageHoursName": "Percentage with business hours",
"doBusinessBeginName": "Business hours start",
"doBusinessEndName": "Business hours end",
"doBusinessPercentageDuringName": "During business hours (in %)",
"doBusinessPercentageOutsideName": "Outside business hours (in %)",
"doForegroundDownloadFromHttpDelayInSecondsDescription": "Delay of the use of the HTTP source in a foreground download to prioritize the download from peers. After the max delay is reached, the download will resume from the http source. Recommended value is 60 seconds. ",
"doForegroundDownloadFromHttpDelayInSecondsEmpty": "Enter value in seconds",
"doForegroundDownloadFromHttpDelayInSecondsName": "Delay foreground HTTP download (in seconds)",
"doGroupIdCustomDescription": "Use a GUID as the Group ID to create your own custom peer groups, for example if you need to create a group for all devices in a branch office.",
"doGroupIdCustomName": "Group ID (as GUID)",
"doGroupIdOptionCustomName": "Custom",
"doGroupIdOptionsAdSidName": "Authenticated domain SID",
"doGroupIdOptionsAdSiteName": "AD site",
"doGroupIdOptionsCustomEmpty": "Enter GUID",
"doGroupIdOptionsDhcpName": "DHCP user option",
"doGroupIdOptionsDnsName": "DNS Suffix",
"doGroupIdSourceDescription": "Group ID is assigned automatically from the selected source. To set your own Group ID select “Custom” and provide a GUID.",
"doGroupIdSourceName": "Group ID source",
"doMaxBackgroundBandwidthHeader": "Maximum background download bandwidth",
"doMaxCacheAgeDescription": "The maximum retention period for each content item in the cache. The recommended value is 7 days.",
"doMaxCacheAgeName": "Maximum cache age (in days)",
"doMaxCacheSizeDescription": "The maximum cache size Delivery Optimization can utilize, in GB.",
"doMaxCacheSizeEmpty": "Enter value in GB",
"doMaxCacheSizeName": "Absolute maximum cache size (in GB)",
"doMaxCacheSizePercentageDescription": "The maximum cache size Delivery Optimization can utilize, as a percentage of disk size.",
"doMaxCacheSizePercentageEmpty": "Enter value in % (1-100).",
"doMaxCacheSizePercentageName": "Maximum cache size (in %)",
"doMaxCacheTypeDescription": "The maximum cache size that Delivery Optimization can utilize as a either a percentage of disk size, or absolute value (in GB).",
"doMaxCacheTypeName": "Maximum cache size type ",
"doMaxForegroundBandwidthHeader": "Maximum foreground download bandwidth",
"doMaximumBackgroundBandwidthDescription": "The maximum background download bandwidth as a percentage of available download bandwidth. The recommended value is 25%. The minimum Value is 5%.",
"doMaximumBackgroundBandwidthName": "Maximum background download bandwidth (in %)",
"doMaximumDownloadBandwidthDescription": "The maximum download bandwidth that can be used across all concurrent Delivery Optimization downloads in kilobytes per second (KB/s).",
"doMaximumDownloadBandwidthName": "Maximum download bandwidth (in KB/s)",
"doMaximumForegroundBandwidthDescription": "The maximum foreground download bandwidth as a percentage of available download bandwidth. The recommended value is 70%. The minimum Value is 5%.",
"doMaximumForegroundBandwidthName": "Maximum foreground download bandwidth (in %)",
"doMaximumUploadBandwidthDescription": "The maximum upload bandwidth that can be used across all concurrent Delivery Optimization uploads in kilobytes per second (KB/s).",
"doMaximumUploadBandwidthName": "Maximum upload bandwidth (in KB/s)",
"doMinBatteryDescription": "Minimum battery level required to upload data to peers while on battery power. Uploads will automatically pause when the battery level drops below the set minimum battery level. The recommended value is 40%.",
"doMinBatteryName": "Minimum battery level required to upload (in %)",
"doMinDiskDescription": "Minimum disk size required on devices to use peer caching. The recommended value is 32 GB.",
"doMinDiskName": "Minimum disk size required for peer caching (in GB)",
"doMinFileEmpty": "Enter a value in MBs",
"doMinFileSizeDescription": "Minimum content file size required to use peer caching. The recommended value is 10 MB.",
"doMinFileSizeName": "Minimum content file size for peer caching (in MB)",
"doMinRamDescription": "Minimum RAM required on devices to use peer caching. The recommended value is 4 GB.",
"doMinRamEmpty": "Enter a value in GBs",
"doMinRamName": "Minimum RAM required for peer caching (in GB)",
"doModifyCacheDescription": "The device drive that Delivery Optimization will use for its cache. The drive location can be specified using environment variables, drive letter or full path. ",
"doModifyCacheEmpty": "%SystemDrive%",
"doModifyCacheName": "Modify cache drive",
"doNotCheckOption": "Do not check",
"doPercentageName": "Percentage",
"doSubnetMaskOption": "Subnet mask",
"doVpnPeerCachingDescription": "Enables the device to participate in peer caching while connected via VPN to the domain network.",
"doVpnPeerCachingName": "VPN peer caching",
"domain": "domain added",
"domainAccountOption": "Domain account",
"domainActionName": "Domain action",
"domainAuthorizedAppRulesSummaryLabel": "Authorized application Microsoft Defender Firewall rules from the local store (Domain networks)",
"domainFirewallEnabledSummaryLabel": "Microsoft Defender Firewall (Domain networks)",
"domainGlobalRulesSummaryLabel": "Global port Microsoft Defender Firewall rules from the local store (Domain networks)",
"domainIPsecRulesSummaryLabel": "IPsec rules from the local store (Domain networks)",
"domainIPsecSecuredPacketExemptionSummaryLabel": "IPsec secured packet exemption with Stealth Mode (Domain networks)",
"domainInboundConnectionsSummaryLabel": "Default action for inbound connections (Domain networks)",
"domainInboundNotificationsSummaryLabel": "Inbound notifications (Domain networks)",
"domainLocalStoreSummaryLabel": "Microsoft Defender Firewall rules from the local store (Domain networks)",
"domainNameSourceOption": "User domain name source",
"domainNetworkName": "Domain (workplace) network",
"domainOutboundConnectionsSummaryLabel": "Default action for outbound connections (Domain networks)",
"domainShieldedSummaryLabel": "Shielded (Domain networks)",
"domainStealthModeSummaryLabel": "Stealth mode (Domain networks)",
"domainUnicastResponsesToMulticastBroadcastsSummaryLabel": "Unicast responses to multicast broadcasts (Domain networks)",
"domains": "domains added",
"domainsEmailDomainsBladeDescription": "Emails that the user sends or receives which don't match the domains you specify here will be marked as untrusted.",
"domainsEmailDomainsBladeName": "Unmarked email domains",
"domainsEmailDomainsTableColumnName": "Email domain URL",
"domainsEmailDomainsTableDescription": "Emails that the user sends or receives which don't match the domains you specify here will be marked as untrusted.",
"domainsEmailDomainsTableName": "Unmarked email domains",
"domainsInList": "Search domains in the following list",
"domainsOptional": "When users try to access these domains",
"domainsSafariPasswordAutoFillDomainsBladeDescription": "Users can save passwords in Safari only from URLs matching the patterns you specify here. To use this setting, the device must be in supervised mode and not configured for multiple users. (iOS 9.3+)",
"domainsSafariPasswordAutoFillDomainsBladeName": "Safari password domains",
"domainsSafariPasswordAutoFillDomainsTableName": "Domain URL",
"domainsUrlExample": "e.g. microsoft.com",
"domainsWebDomainsBladeDescription": "Documents downloaded from the URLs you specify here will be considered managed (Safari only).",
"domainsWebDomainsBladeName": "Managed Safari web domains",
"domainsWebDomainsTableName": "Web Domain URL",
"dontShowMessage": "Don't show message",
"dontUsePACName": "Do not use (PAC)",
"downloadOnly": "Download only",
"driverExtensionsAllowedOption": "Driver extensions",
"dropTrafficName": "Drop network traffic",
"durationInHours": "Duration in hours",
"dynamicDomainNameOption": "AAD",
"eAPCustomName": "Custom",
"eAPFASTName": "EAP - FAST",
"eAPName": "EAP",
"eAPSIMName": "EAP - SIM",
"eAPTLSName": "EAP - TLS",
"eAPTTLSName": "EAP - TTLS",
"eAPTypeDescription": "Select the Extensible Authentication Protocol (EAP) type that is configured on your Wi-Fi network.",
"eAPTypeName": "EAP type",
"eAPXmlName": "EAP XML",
"eCDSA256": "ECDSA256",
"eCDSA384": "ECDSA384",
"eCDSA521": "ECDSA521",
"eDPPolicyAllowAzureRMSName": "Allow Azure RMS",
"eDPPolicyAllowDecryptAppDataName": "Allow decryption of data created or edited by above apps",
"eDPPolicyAllowedAppsName": "Allowed apps",
"eDPPolicyAppManagementModeAuditName": "Audit enterprise data leaving app. User is not prompted.",
"eDPPolicyAppManagementModeBlockName": "Block enterprise data from leaving app",
"eDPPolicyAppManagementModeName": "App management mode for these apps",
"eDPPolicyAppManagementModeOffName": "No prompting or auditing of enterprise data leaving app.",
"eDPPolicyAppManagementModePromptName": "Prompt user to allow enterprise data to leave app. Affirmative prompts are audited.",
"eDPPolicyAppsListFileName": "File",
"eDPPolicyAppsListNameDescription": "Name for EKU (Extended Key Usage)",
"eDPPolicyAppsListNameName": "Name",
"eDPPolicyAppsListProductName": "Product",
"eDPPolicyAppsListPublisherName": "Publisher",
"eDPPolicyAppsListVersionName": "Version",
"eDPPolicyAppsListVersionRuleName": "VersionRule",
"eDPPolicyAzureTemplateGuidName": "Azure RMS template GUID",
"eDPPolicyDesktopAppsName": "Desktop",
"eDPPolicyEnterpriseCloudName": "Enterprise Cloud Domain",
"eDPPolicyEnterpriseIPv4Name": "Enterprise IPv4 Range (start-end)",
"eDPPolicyEnterpriseIPv6Name": "Enterprise IPv6 Range (start-end)",
"eDPPolicyEnterpriseInternalProxyServerName": "Enterprise Internal Proxy Server",
"eDPPolicyEnterpriseNetworkName": "Enterprise Network Domain",
"eDPPolicyEnterpriseProxyServerName": "Enterprise Proxy Server",
"eDPPolicyIntroductionDescription": "Before beginning, ensure you understand the implications of deploying EDP policies to managed devices. Learn more about EDP policies http://go.microsoft.com/fwlink/?LinkId=627529",
"eDPPolicyIntroductionName": "Before beginning, ensure you understand the implications of deploying EDP policies to managed devices.",
"eDPPolicyNetworkLocationsListDescriptionName": "Description",
"eDPPolicyNetworkLocationsListLocationName": "Location",
"eDPPolicyNetworkLocationsListName": "Network locations.",
"eDPPolicyNetworkLocationsListTypeName": "Type",
"eDPPolicyNetworkLocationsName": "Specify network locations the above apps can access. No other apps can access these locations.",
"eDPPolicyOptionalRecoveryCertificateDescription": "When a Windows Information Protection policy is configured, Windows encrypts corporate data on the local disk. In the event that the local encryption keys are lost or revoked, the encrypted data becomes unrecoverable. Providing a DRA (Data Recovery Agent) cert will help mitigate this. Windows uses the public key in the DRA cert to encrypt local data. The private key is in your control, allowing recovery of the encrypted data.",
"eDPPolicyOptionalRecoveryCertificateName": "Data Recovery Agent (DRA) certificate to allow recovery of encrypted data",
"eDPPolicyPrimaryDomainDescription": "(e.g. contoso.com) Data accessed by protected apps is encrypted and tagged with the first domain name specified. Specify multiple domains with a pipe character (e.g. one.com|two.com).",
"eDPPolicyPrimaryDomainName": "Primary domain",
"eDPPolicyProhibitedAppsName": "Prohibited apps",
"eDPPolicyProtectAppContentWhenDeviceLockedName": "Protect app content when device is locked for above apps",
"eDPPolicyUniversalAppsName": "Universal",
"eDPPolicyVersionAndAboveName": "And Above",
"eDPPolicyVersionAndBelowName": "And Below",
"eDPPolicyVersionEqualsName": "Equals",
"earlyLaunchAntiMalwareDriverEnabledDescription": "Require early launch anti malware driver to be enabled",
"earlyLaunchAntiMalwareDriverEnabledName": "Require early launch anti malware driver",
"easAccountSettingsHeader": "Exchange ActiveSync account settings",
"easAllData": "All data",
"easCalendarContactsOnly": "Calendar and Contacts only",
"easCalendarOnly": "Calendar only",
"easContactsOnly": "Contacts only",
"easEmailOnly": "Email only",
"easEmailSettingsHeader": "Exchange ActiveSync email settings",
"easProfileConfigurationHeader": "Exchange ActiveSync profile configuration",
"easServicesDescription": "For devices running iOS/iPadOS 13.0 or later. By default, Exchange ActiveSync syncs all Exchange data types to iOS devices. Alternatively, you can select to sync only certain data.",
"easServicesLinkText": "Learn more about each data type.",
"easServicesName": "Exchange data to sync",
"easServicesUserOverrideEnabledDescription": "For devices running iOS/iPadOS 13.0 or later. By default, iOS users can change the Exchange sync settings on their device. If in the previous setting you selected to sync only certain data, we recommend selecting No for this setting, as this\n will prevent the user from modifying what's synced. ",
"easServicesUserOverrideEnabledName": "Allow users to change sync settings",
"easeOfAccessPageDescription": "Block access to Ease of Access in Settings app.",
"easeOfAccessPageName": "Ease of Access",
"edgeAdditionalChevronName": "Additional",
"edgeAllowAddressBarDropdownDescription": "Address bar dropdown is allowed.<br>Select No, to block address bar dropdown which will also disable search suggestions and minimize network connections from Microsoft Edge to Microsoft Services.",
"edgeAllowAddressBarDropdownName": "Allow address bar dropdown",
"edgeAllowAutofillDescription": "Autofill to populate form fields automatically is allowed. Select No, to disable.",
"edgeAllowAutofillName": "Allow Autofill in forms",
"edgeAllowChangesToFavoritesDescription": "Users are blocked from making changes to favorites. To allow users to change favorites. Select Yes, and the favorites list setting must be blank.",
"edgeAllowChangesToFavoritesName": "Allow changes to favorites",
"edgeAllowExtensionsDescription": "Users are allowed to add or personalize extensions in Microsoft Edge. Select No, to block users from modifying extensions.",
"edgeAllowExtensionsName": "User can install extensions",
"edgeAllowInPrivateBrowsingDescription": "InPrivate browsing is allowed. Select No, to block InPrivate browsing.",
"edgeAllowInPrivateBrowsingName": "Allow InPrivate browsing",
"edgeAllowLiveTileDataCollectionDescription": "Microsoft Edge collects the Live Tile metadata and sends to Microsoft. Select No, to block collection of Live Tile metadata",
"edgeAllowLiveTileDataCollectionName": "Allow live tile data collection",
"edgeAllowPasswordManagerDescription": "Password manager is enabled to save and manage passwords. Select No, to disable.",
"edgeAllowPasswordManagerName": "Allow Password Manager",
"edgeAllowPopUpsDescription": "Pop-ups are allowed. Select No, to block pop-ups with pop-up blocker.",
"edgeAllowPopUpsName": "Allow pop-ups",
"edgeAllowSearchEngineCustomizationDescription": "Choose whether end users are allowed to make changes to the search engine.",
"edgeAllowSearchEngineCustomizationName": "Allow changes to search engine",
"edgeAllowStartPagesModificationDescription": "Users are allowed to change Start pages. Select No to prevent users from modifying the start pages.",
"edgeAllowStartPagesModificationName": "Allow user to change Start pages",
"edgeBlockCompatibilityListDescription": "This list from Microsoft helps Edge properly display sites with known compatibility issues. Set No, to block.",
"edgeBlockCompatibilityListName": "Allow Microsoft compatibility list",
"edgeBlockFullScreenModeDescription": "Full screen mode is enabled. Select No, to disable entering full screen mode.",
"edgeBlockFullScreenModeName": "Allow full screen mode",
"edgeBlockLiveTileDataCollectionDescription": "Microsoft Edge collects the Live Tile metadata and sends to Microsoft. Select No, to block collection of Live Tile metadata.",
"edgeBlockLiveTileDataCollectionName": "Allow live tile data collection",
"edgeBlockPrelaunchDescription": "Pre-launching helps the performance of Microsoft Edge and minimizes the amount of time required to start Microsoft Edge. Set No, to prevent pre-launching of Microsoft Edge.",
"edgeBlockPrelaunchName": "Prelaunch Start pages and new Tab page",
"edgeBlockPrintingDescription": "Printing is enabled. Select No, to disable the \"print\" option in More Actions and Context menus in Microsoft Edge.",
"edgeBlockPrintingName": "Allow printing",
"edgeBlockSavingHistoryDescription": "Microsoft Edge saves the browsing history. Select No, to prevent saving history.",
"edgeBlockSavingHistoryName": "Save browsing history",
"edgeBlockSideloadingExtensionsDescription": "Users are allowed to sideload extensions in Microsoft Edge using the \"Load extensions\" feature. Select No, to block users from sideloading extensions.",
"edgeBlockSideloadingExtensionsName": "Allow sideloading of developer extensions",
"edgeBlockTabPreloadingDescription": "Preloading minimizes the amount of time required to start Microsoft Edge and load web page. Set No, to prevent preloading of tabs.",
"edgeBlockTabPreloadingName": "Preload Start pages and new Tab page",
"edgeBlockWebContentOnNewTabPageDescription": "When set to Yes, Microsoft Edge will open the URL specified in the \"New Tab URL\" setting. If \"New Tab URL\" setting is blank, Microsoft Edge opens the new Tab page listed in Edge settings, and users can change it. When set to No, Microsoft Edge opens a new tab with a blank page and users cannot change it.",
"edgeBlockWebContentOnNewTabPageName": "Allow web content on new Tab page",
"edgeClearBrowsingDataOnExitDescription": "Microsoft Edge doesn't clear browsing data on exit. Select Yes, to clear browsing data on exiting Microsoft Edge.",
"edgeClearBrowsingDataOnExitName": "Clear browsing data on exit (Desktop only)",
"edgeClearBrowsingDataOnExitV2Description": "Microsoft Edge doesn't clear browsing data on exit. Select Yes, to clear browsing data on exiting Microsoft Edge.",
"edgeClearBrowsingDataOnExitV2Name": "Clear browsing data on exit",
"edgeDisableFirstRunPageDescription": "Microsoft Edge displays webpage on first use of Microsoft Edge. Set No, to disable this webpage.",
"edgeDisableFirstRunPageName": "Show First Run Experience page (Mobile only)",
"edgeDisplayHomeButtonDescription": "Show or hide the Home button.",
"edgeDisplayHomeButtonName": "Display Home button",
"edgeFavoritesBarOptionDefault": "On Start and new Tab pages",
"edgeFavoritesBarOptionHide": "Hidden",
"edgeFavoritesBarOptionShow": "On all pages",
"edgeFavoritesDescription": "By default this setting is blank and users can customize favorites. To publish favorites to Edge and prevent users from changing them, provide a list of favorites (HTML file type).",
"edgeFavoritesExampleName": "http://co.com/favorites.html",
"edgeFavoritesName": "Favorites List",
"edgeFavoritesSearchChevronName": "Favorites and search",
"edgeFavoritesV2Description": "Add the path to the file location of the favorites list, example: http://contoso.com/Kioskfavorites.html.",
"edgeHomeButtonConfigurationEnabledDescription": "Users are blocked from changing the home button. Select Yes, to allow users to modify the home page(s).",
"edgeHomeButtonConfigurationEnabledName": "Allow Users to change Home button",
"edgeHomeButtonDescription": "Select what the Home button opens. To allow users to modify the Home button, set Yes to \"Allow user to change Home button\" setting.",
"edgeHomeButtonName": "Home button",
"edgeHomeButtonOptionCustomURL": "Home button URL",
"edgeHomeButtonOptionHide": "Hide Home button",
"edgeHomeButtonOptionNewTab": "New Tab page",
"edgeHomeButtonOptionStartPage": "Start pages",
"edgeHomeButtonUrlDescription": "Set the URL that opens from the Home button.",
"edgeHomeButtonUrlExample": "http://www.contoso.com",
"edgeHomeButtonUrlName": "Home button URL",
"edgeKioskEnablePublicBrowsingName": "Public browsing",
"edgeKioskFooter": "Additional settings for Microsoft Edge Kiosk mode are available in the Microsoft Edge Browser section of the device restrictions policy for devices running Windows 10 or later. Microsoft Edge Browser settings configured in device restrictions for devices running Windows 10 or later only apply to Microsoft Edge version 45 and earlier.",
"edgeKioskFooterInPrivateNormalMode": "Additional settings for Microsoft Edge Kiosk mode; Normal mode, need to be set in a separate profile: <a href=\"#blade/Microsoft_Intune_DeviceSettings/DevicesMenu/configurationProfiles\" target=\"_blank\">Device Configuration/ Device Restrictions/ Microsoft Edge Browser</a>.",
"edgeKioskHeader": "By default Microsoft Edge runs in digital / interactive signage mode for Windows 10 and later single app kiosk mode. <a href=\"https://go.microsoft.com/fwlink/?linkid=2027521\" target=\"_blank\">Learn more about Microsoft Edge kiosk mode</a>.",
"edgeKioskHeader1": "When kiosk mode is single full-screen app, not configured means Microsoft Edge runs InPrivate full screen for digital signage or interactive displays. When kiosk mode is multi app, not configured means Microsoft Edge runs as normal. Use setting below to configure Microsoft Edge to support public browsing.",
"edgeKioskHeaderEdge86": "This kiosk profile requires Microsoft Edge version 87 and later with Windows 10 version 1909 and later. <a href=\"https://go.microsoft.com/fwlink/?linkid=2137578\" target=\"_blank\">Learn more about Microsoft Edge kiosk mode.</a>",
"edgeKioskHeaderMultiApp": "By default, Microsoft Edge runs in normal mode (full version of Microsoft Edge). <a href=\"https://go.microsoft.com/fwlink/?linkid=2027521\" target=\"_blank\">Learn more about Microsoft Edge kiosk mode</a>",
"edgeKioskLearnMore": "Learn more about configuring Microsoft Edge in Kiosk Mode.",
"edgeKioskModeType": "Microsoft Edge kiosk mode type",
"edgeKioskModeTypeDescription": "Identifies Microsoft Edge kiosk mode type for Windows 10/11 kiosks.",
"edgeKioskModeTypeDigitalSignage": "Digital/Interactive signage",
"edgeKioskModeTypeNormalMode": "Normal mode (full version of Microsoft Edge)",
"edgeKioskModeTypePublicBrowsing": "InPrivate Public browsing",
"edgeKioskModeTypePublicBrowsingInPrivate": "Public browsing (InPrivate)",
"edgeKioskResetAfterIdleTimeInMinutes0": "0 (off) default, or enter 0-1440",
"edgeKioskResetAfterIdleTimeInMinutes5": "5 min default, or enter 0-1440",
"edgeKioskResetAfterIdleTimeInMinutesDescription": "Edge kiosk mode will reset after inactivity. Available range in minutes:",
"edgeKioskResetAfterIdleTimeInMinutesExample": "5 min default, or enter 0-1440",
"edgeKioskResetAfterIdleTimeInMinutesName": "Refresh browser after idle time",
"edgeKioskSettings": "Microsoft Edge browser",
"edgeKioskSettingsEmpty": "Defaults configured",
"edgeKioskTypeFullScreen": "Digital/Interactive Signage (InPrivate)",
"edgeKioskTypePublicBrowsing": "Public Browsing (InPrivate)",
"edgeNewTabPageUrlDescription": "New tabs will open a blank page. Enter a URL to open a web page, example: http://contoso.com",
"edgeNewTabPageUrlExample": "Default is new Tab page",
"edgeNewTabPageUrlName": "New Tab URL",
"edgeNewTabUrlDescription": "New tabs will open a blank page. Enter a URL to open a web page, example: http://contoso.com",
"edgeNewTabUrlExample": "about:blank",
"edgeNewTabUrlName": "New Tab URL",
"edgeOpensWithDescription": "Specify which pages open in Microsoft Edge at start.",
"edgeOpensWithName": "Start Microsoft Edge with",
"edgeOpensWithOptionNewTabtPage": "New Tab page",
"edgeOpensWithOptionPreviousPages": "Last session's page",
"edgeOpensWithOptionSpecificPages": "Custom Start pages",
"edgeOpensWithOptionStartPage": "Start pages in local app settings",
"edgePreventCertificateErrorOverrideDescription": "Users can access webpages that contain Secure Sockets Layer/Transport Layer Security (SSL/TLS) errors. Select No, to block users from accessing these websites with certificate errors - recommended for increased security.",
"edgePreventCertificateErrorOverrideName": "User can override certificate errors",
"edgePrivacySecurityChevronName": "Privacy and security",
"edgeProfileKioskModeDescription": "Filter Edge browser settings appropriate for the selected Edge kiosk mode. Default is not to use Edge kiosk mode and all Edge browser settings are available to configure. All settings apply to Microsoft Edge Legacy (Version 45 and earlier).",
"edgeProfileKioskModeDigitalSignage": "Digital / Interactive signage (single app kiosk)",
"edgeProfileKioskModeDigitalSignageHeader": "Displays a specific site in full-screen mode, running Microsoft Edge InPrivate protecting user data",
"edgeProfileKioskModeName": "Use Microsoft Edge kiosk mode",
"edgeProfileKioskModeNormal": "Normal mode (multi-app kiosk)",
"edgeProfileKioskModeNotConfigured": "No",
"edgeProfileKioskModePublicBrowsingMultiApp": "Public browsing (multi-app kiosk)",
"edgeProfileKioskModePublicBrowsingSingleApp": "InPrivate Public browsing (single app kiosk)",
"edgeProfileKioskModePublicBrowsingSingleAppHeader": "There are three settings available for loading websites from Edge: Home button URL, Start pages, and new tab URL.",
"edgeProvideFavoritesListDescription": "Select Yes, to provide a list of favorites. Users are blocked from making changes to favorites.",
"edgeProvideFavoritesListName": "Provide favorites list",
"edgeRequiredExtensionPackageFamilyNamesDescription": "This setting allows you to specify a list of extensions that cannot be turned off by the user in Microsoft Edge. To learn how to find the package family name of an extension, refer here: https://docs.microsoft.com/en-us/sccm/protect/deploy-use/find-a-pfn-for-per-app-vpn. ",
"edgeRequiredExtensionPackageFamilyNamesName": "Required extensions",
"edgeRestrictChangesToFavoritesDescription": "Users are allowed to make changes to favorites. Set No, to block users from changing favorites.",
"edgeRestrictChangesToFavoritesName": "Allow changes to favorites",
"edgeSearchEngineDescription": "Choose the default search engine.",
"edgeSearchEngineName": "Default search engine",
"edgeShowFavoritesBarDescription": "Show or hide the favorites bar.",
"edgeShowFavoritesBarName": "Show favorites bar",
"edgeShowFavoritesDescription": "Show or hide the Favorites bar.",
"edgeShowFavoritesName": "Show Favorites bar",
"edgeShowMessageWhenOpeningInternetExplorerSitesDescription": "Configure Microsoft Edge to display a notification before a site opens in Internet Explorer 11.",
"edgeShowMessageWhenOpeningInternetExplorerSitesName": "Message when opening sites in Internet Explorer",
"edgeShowSearchSuggestionsDescription": "Search suggestions in the address bar are allowed. Select No, to block search suggestions.",
"edgeShowSearchSuggestionsName": "Show search suggestions",
"edgeStartExperienceChevronName": "Start experience",
"edgeStartPageDescription": "List of URLs that specify the Start page for MDM-enrolled devices (Desktop only).",
"edgeStartPageEmpty": "http://contoso.com",
"edgeStartPageName": "Start page",
"edgeStartPagesDescription": "List of URLs that specify Start pages for MDM-enrolled devices (Desktop only). Enter URLs on separate lines.",
"edgeStartPagesEmpty": "http://shop.contoso.com\nhttp://bing.com\n ",
"edgeStartPagesName": "Custom Start pages",
"edgeSyncFavoritesWithIEDescription": "Enable favorites sync between Internet Explorer and Microsoft Edge. Additions, deletions, modifications and order changes to favorites are shared between browsers.",
"edgeSyncFavoritesWithIEName": "Sync favorites between Microsoft browsers (Desktop only)",
"edgeTelemetryForMicrosoft365AnalyticsDescription": "To see available options for this setting, you must set Share usage data to Enhanced or Optional. Select how you want to share browsing history data with Microsoft 365 Analytics. When set to the default, Not configured, browsing history data is not collected or shared.",
"edgeTelemetryForMicrosoft365AnalyticsName": "Send Microsoft Edge browsing data to Microsoft 365 Analytics",
"editionToUpgradeFrom": "Edition to upgrade from",
"editionToUpgradeTo": "Edition to upgrade to",
"editionUpgradeReportStatus": "Edition upgrade status",
"educationDevicePfxCertName": "Device PKCS12 / PFX profile",
"educationProfileAccountName": "Account user name",
"educationProfileAccountNameDesc": "The user name of the test taking account. The user can be a domain account (domain\\user), an AAD account (username@tenant.com) or a local account (username).",
"educationProfileAccountNameTypeDesc": "The account type of test taking account.",
"educationProfileAccountTypeName": "Account type",
"educationProfileAzureAccountNameExample": "e.g. tester@contoso.edu",
"educationProfileDomainAccountNameExample": "e.g. contoso\\tester",
"educationProfileLaunchUri": "Assessment URL",
"educationProfileLaunchUriDesc": "Url link to an assessment that's automatically loaded when the secure assessment browser is launched.",
"educationProfileLaunchUriExample": "e.g. http://mobile.tds.airas.edu",
"educationProfileLocalAccountNameExample": "e.g. tester",
"educationProfileTakeATestHeader": "Specify the URL of a high-stakes test, and the account users must use to sign into the test. When the user signs in,\n the Take a Test app automatically launches with the test you specified. No other apps can be run on the device while the test is in progress.",
"educationProfileTakeATestHeaderDesc": "The account can be a local guest account or be in one of the following formats: username, domain\\username, computer name\\username, username@tenant.com",
"educationProfileTakeATestPrintingCap": "Printer connection",
"educationProfileTakeATestPrintingCapDesc": "Students can only access the Take a Test app from devices that are connected to a printer. Also makes the apps print button available to students.",
"educationProfileTakeATestScreenCapture": "Screen monitoring",
"educationProfileTakeATestScreenCaptureDesc": "Allow students and teachers to use screen capture and screen recording tools in the Take a Test app. Teachers can use these tools to see what students are doing in the app.",
"educationProfileTakeATestTextSuggestion": "Text suggestions",
"educationProfileTakeATestTextSuggestionDesc": "Indicates whether or not to block text suggestions during the test.",
"eightAMOption": "8 AM",
"eightHoursOption": "8 hours",
"eightMonthsNumberOption": "8 months",
"eightNumberOption": "8",
"eightPMOption": "8 PM",
"elevenAMOption": "11 AM",
"elevenMonthsNumberOption": "11 months",
"elevenPMOption": "11 PM",
"emailAddressTypeDescription": "The attribute Intune gets from Azure AD to dynamically generate the email address that will be used by this profile e.g. MyName@contoso.com (UPN).",
"emailAddressTypeLinkText": "Learn more about AAD attributes for Email profiles.",
"emailAddressTypeName": "Email address attribute from AAD",
"emailAppDescription": "Select the app that will be configured with properties specified in this profile.",
"emailAppGmail": "Gmail",
"emailAppName": "Email app",
"emailAppNineWork": "Nine Work",
"emailAppNotConfigured": "Select an app to begin",
"emailDescription": "Email syncing is always allowed in email profiles.",
"emailOption": "Email",
"empty": "",
"emptyLocalIdentifier": "Empty",
"enableAppInstallControlDescription": "Specify whether users are allowed to install apps from places other than the Windows App Store.",
"enableAppInstallControlName": "Apps from store only",
"enableAppsFromSendingEmailDescription": "Control whether the user can send email from third party applications",
"enableAppsFromSendingEmailName": "Allow email to be sent from third party applications",
"enableAutomaticUpdates": "Enable automatic updates",
"enableBehaviorMonitoringDescription": "Check for patterns of suspicious behavior.",
"enableBehaviorMonitoringName": "Behavior monitoring",
"enableConditionalAccessDescription": "Enables Device Compliance flow from the client. When enabled, the VPN client will attempt to communicate with AAD (Azure Active Directory) to get a certificate to use for authentication.\n The VPN should be set up to use certificate authentication and the VPN server must trust the server returned by AAD.\n ",
"enableConditionalAccessName": "Conditional access for this VPN connection",
"enableEmailAddressSyncDescription": "Control Synchronizing recently used email addresses.",
"enableEmailAddressSyncName": "Synchronize recently used email addresses",
"enableEmailMessageMoveDescription": "Control moving email messages between different email accounts.",
"enableEmailMessageMoveName": "Allow messages to be moved to other email accounts",
"enableEndUserAccessToDefenderName": "End-user access to Defender",
"enableEngagedRestartDescription": "Enables settings to allow user switch to engaged restart.",
"enableEngagedRestartName": "Allow user to restart (engaged restart)",
"enableIdentityPrivacyDescription": "This property masks user names with the text you enter. For example, if you type 'anonymous', each user that authenticates with this Wi-Fi connection using their real user name is displayed as 'anonymous'. This may be required if using device-based certificate authentication.",
"enableIdentityPrivacyName": "Identity privacy (outer identity)",
"enableNetworkInspectionSystemDescription": "Block malicious traffic detected by signatures in the Network Inspection System (NIS)",
"enableNetworkInspectionSystemName": "Network Inspection System (NIS)",
"enableOption": "Enable",
"enablePerAppVPNDescription": "Setting per-app VPN allows you to select this VPN during app assignment.",
"enablePerAppVPNName": "Enable per-app VPN",
"enableRealTimeMonitoringName": "Real-time monitoring",
"enableSingleSignOnDescription": "Choose a certificate different from the VPN authentication certificate for Kerberos authentication, in the case of device compliance.",
"enableSingleSignOnName": "Single sign-on (SSO) with alternate certificate",
"enableUsePrivateStoreOnly": "Use private store only",
"enableUsePrivateStoreOnlyDescription": "Only allows apps to be downloaded from a private store and not the public store.",
"enableWindowsDefenderFirewallName": "Microsoft Defender Firewall",
"enableWithUEFILock": "Enable with UEFI lock",
"enableWithoutUEFILock": "Enable without UEFI lock",
"enabledForAzureAdAndHybridOption": "Key rotation enabled for Azure AD and Hybrid-joined devices",
"enabledForAzureAdOption": "Key rotation enabled for Azure AD-joined devices",
"enabledNoKeepGoing": "Show message that site is opened in Internet Explorer 11",
"enabledOption": "Enabled",
"encryptionAlgorithmName": "Encryption algorithm",
"encryptionCertificateType": "Encryption certificate type",
"encryptionMethodDescription": "Encryption algorithm to be used during IKE (main mode) security association negotiation. Value must match VPN server settings.",
"encryptionMethodName": "Encryption algorithm",
"endDayName": "End day",
"endTime": "End time",
"endTimeDescription": "Select the end of the interval to stop updates from installing.",
"endTimeName": "End time",
"endTimeUtc": "End time (UTC)",
"endpointSecurityExtensionsAllowedOption": "Endpoint security extensions",
"enforcedSoftwareUpdateDelayDescription": "Specify the number of days (1-90) to delay the default visibility of all software updates. Available for devices running macOS versions 10.13.4 and later.",
"enforcedSoftwareUpdateDelayEmptyValue": "30",
"enforcedSoftwareUpdateDelayInDaysDescription": "This setting does not impact any scheduled updates from other settings in this profile. It represents days before software updates are visible to end users after release.",
"enforcedSoftwareUpdateDelayInDaysName": "Delay visibility of software updates to end users with no change to scheduled updates (days)",
"enforcedSoftwareUpdateDelayName": "Delay default visibility of software updates",
"enforcedSoftwareUpdateDelayNamePlaceholder": "30",
"engagedRestartDeadlineDescription": "Deadline in days before automatically scheduling and executing a pending restart outside of active hours.",
"engagedRestartDeadlineName": "Set deadline for pending restarts (days)",
"engagedRestartDeprecationMessage": "Engaged restart settings are no longer recommended to use. Use the new deadline settings below.",
"engagedRestartSnoozeScheduleDescription": "Number of days a user can snooze Engaged Restart reminder notifications.",
"engagedRestartSnoozeScheduleName": "Snooze engaged restart reminder (days)",
"engagedRestartTransitionScheduleDescription": "Number of days before transitioning from Auto Restarts scheduled outside of active hours to Engaged Restart, which requires the user to schedule.",
"engagedRestartTransitionScheduleName": "Transition users to engaged restart after an auto-restart (days)",
"enhancedOption": "Enhanced (1903 and earlier)",
"enrollmentProfileTypeDedicatedDevice": "Dedicated device",
"enrollmentProfileTypeDescription": "Select an enrollment profile type to start configuring Microsoft Launcher or Microsoft Managed Home Screen on your devices. If you don't select a profile type, users will see the device's default home screen experience.",
"enrollmentProfileTypeFullyManaged": "Fully managed",
"enrollmentProfileTypeFullyManagedConfigureMicrosoftLauncher": "Configure Microsoft Launcher on your fully managed devices.",
"enrollmentProfileTypeFullyManagedMakeMicrosoftLauncherDefaultDescription": "Use Microsoft Launcher to customize the home screen experience on your org's managed devices. If you make Launcher the default, device users won't be able to use another launcher.",
"enrollmentProfileTypeFullyManagedMakeMicrosoftLauncherDefaultName": "Make Microsoft Launcher the default launcher",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureCustomWallpaperAllowUserModifyDescription": "Users will not be able to change the wallpaper unless you allow them to. This setting is only available if you configure a custom wallpaper.",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureCustomWallpaperAllowUserModifyName": "Allow user to modify wallpaper",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureCustomWallpaperDescription": "Lets you apply your own image as the home screen wallpaper and choose if the user can change it. If you don't configure a custom wallpaper, the device will keep its current wallpaper.",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureCustomWallpaperName": "Configure custom wallpaper",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureCustomWallpaperUrlDescription": "This image will be appear as the wallpaper on the device home screen. This field is only available if you configure a custom wallpaper.",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureCustomWallpaperUrlEmptyValueKey": "http://www.contoso.com/img.jpg",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureCustomWallpaperUrlName": "Enter URL of wallpaper image",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureDockPresenceDisabled": "Disabled",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureDockPresenceHide": "Hide",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureDockPresenceShow": "Show",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherDockPresenceAllowUserModifyDescription": "If you allow the user to change the dock's presence, the previous setting will be enforced for the initial deployment. For subsequent deployments, the setting will not be enforced to respect any changes the user may have made. This setting is only available if you configure the dock's presence.",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherDockPresenceAllowUserModifyName": "Allow user to change dock presence",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherDockPresenceDescription": "The dock is a menu that gives device users quick access to their apps and tools. When it's hidden, users must swipe up to access it.",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherDockPresenceName": "Dock presence",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherFeedAllowUserModifyDescription": "If you allow the user to enable/disable the feed, the previous setting will be enforced for the initial deployment. For subsequent deployments, the setting will not be enforced to respect any changes the user may have made. This setting is only available if you enable the launcher feed.",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherFeedAllowUserModifyName": "Allow user to enable/disable feed",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherFeedDescription": "The feed is an additional screen to the right of the home screen where device users can access their calendars, documents, and recent activities. If you don't enable it, it will remain disabled. ",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherFeedName": "Enable launcher feed",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherSearchBarPlacementDescription": "",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureEnableLauncherSearchBarPlacementName": "Search bar placement",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureSearchBarPlacementBottom": "Bottom",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureSearchBarPlacementHide": "Hide",
"enrollmentProfileTypeFullyManagedMicrosoftLauncherConfigureSearchBarPlacementTop": "Top",
"enrollmentProfileTypeName": "Enrollment profile type",
"enrollmentSettingsHeading": "Enrollment Settings",
"enterOnlyOneForDns": "Enter a list of DNS servers and/or a proxy server.",
"enterpriseModeLoggingExample": "e.g. http://DC1/log.asp",
"enterpriseModeMenuAccessDescription": "Block users from accessing Enterprise mode in browser tools menu (Recommended)",
"enterpriseModeMenuAccessName": "Enterprise mode menu access",
"enterpriseModeSiteListExample": "https://co.com/sites.xml",
"enterpriseModeSiteListLocationDescription": "Location of the list of websites to be opened in Enterprise mode (Desktop only).",
"enterpriseModeSiteListLocationName": "Enterprise mode site list location (Desktop only)",
"evaluateOption": "Evaluate each connection attempt",
"everyDayOption": "Every day",
"exceptions": "Exceptions",
"exchangeActiveSyncAccountDescription": "Exchange ActiveSync account name, displayed to user as name of EAS profile.",
"exchangeActiveSyncAccountExample": "e.g. Corporate Email",
"exchangeActiveSyncAccountName": "Account name",
"exchangeActiveSyncHostDescription": "The Exchange location (URL) of the email server to which the app you specified connects to get email.",
"exchangeActiveSyncHostExample": "e.g. outlook.office365.com",
"exchangeActiveSyncHostName": "Email server",
"exclusionAppListColumn": "App to exclude",
"experienceAllowBrowserSyncSettingsDescription": "Specifies whether user can turn on browser setting to sync using the sync your settings options to sync information such as history and favorites between users devices. To configure this setting you must enable “Sync browser settings between users devices” setting.",
"experienceAllowBrowserSyncSettingsName": "User can turn on sync browser settings",
"experienceDoNotSyncBrowserSettingsDescription": "When blocked, the default configuration (allow sync browser settings between devices) is turned off so that users cannot sync between devices. When \"block and enable user override\" is selected, user can override admin designation.",
"experienceDoNotSyncBrowserSettingsName": "Sync browser settings between user's devices",
"exploitGuardASRAdobeReaderLaunchChildProcessDesc": "Block child process creation from Adobe Reader.",
"exploitGuardASRAdobeReaderLaunchChildProcessName": "Process creation from Adobe Reader (beta)",
"exploitGuardASRAdvancedRansomewareDesc": "Use aggressive ransomware protection.",
"exploitGuardASRAdvancedRansomewareName": "Advanced ransomware protection",
"exploitGuardASRAdvancedRansomewareTitle": "Rules to protect against ransomware",
"exploitGuardASRChevronName": "Attack Surface Reduction",
"exploitGuardASREmailEcecutableContentDesc": "Block execution of executable content (exe, dll, ps, js, vbs, etc) dropped from email (webmail/mail-client).",
"exploitGuardASREmailEcecutableContentName": "Execution of executable content (exe, dll, ps, js, vbs, etc.) dropped from email (webmail/mail client) (no exceptions)",
"exploitGuardASREmailHeader": "Rules to prevent email threats",
"exploitGuardASRExceptionTableDesc": "Supports file and folder exclusions applied to the configured rules",
"exploitGuardASRExceptionTableName": "Files and folder to exclude from attack surface reduction rules",
"exploitGuardASRExceptionsTitle": "Attack Surface Reduction exceptions",
"exploitGuardASRExecutingDownloadedContentDesc": "Block js/vbs from executing payload downloaded from Internet.",
"exploitGuardASRExecutingDownloadedContentName": "js/vbs executing payload downloaded from Internet (no exceptions)",
"exploitGuardASRFilesandFoldersDesc": "Add a path to local file or folder",
"exploitGuardASRFilesandFoldersHint": "Examples: C:\\Path, %ProgramFiles%\\Path\\Filename.exe",
"exploitGuardASRFilesandFoldersName": "Files and folders",
"exploitGuardASRHeaderText": "Create rules to reduce the attack surface on the managed devices. You can block running of suspicious executables in macros, scripts and emails or you can allow them while still auditing.",
"exploitGuardASRLinkText": "Learn more about Attack Surface Reduction",
"exploitGuardASRObfuscatedMacroCodeDesc": "Block any obfuscated js/vbs/ps/macro code.",
"exploitGuardASRObfuscatedMacroCodeName": "Obfuscated js/vbs/ps/macro code",
"exploitGuardASROfficeAppLanchChildDesc": "Block Office apps from launching child processes.",
"exploitGuardASROfficeAppLanchChildName": "Office apps launching child processes",
"exploitGuardASROfficeAppWin32ImportsDesc": "Block Win32 imports from macro code in Office.",
"exploitGuardASROfficeAppWin32ImportsName": "Win32 imports from Office macro code",
"exploitGuardASROfficeAppsCreatingExecutableContentDesc": "Block Office apps and macros from creating executable content.",
"exploitGuardASROfficeAppsCreatingExecutableContentName": "Office apps/macros creating executable content",
"exploitGuardASROfficeAppsInjectionDesc": "Block Office apps from injecting into other processes.",
"exploitGuardASROfficeAppsInjectionName": "Office apps injecting into other processes (no exceptions)",
"exploitGuardASROfficeCommunicationAppsLaunchChildProcessDesc": "Block child process creation from Office communications apps.",
"exploitGuardASROfficeCommunicationAppsLaunchChildProcessName": "Process creation from Office communication products (beta)",
"exploitGuardASROfficeMacros": "Rules to prevent Office Macro threats",
"exploitGuardASRPreventCredentialStealingDesc": "Flag credential stealing from the Windows local security authority subsystem (lsass.exe).",
"exploitGuardASRPreventCredentialStealingName": "Flag credential stealing from the Windows local security authority subsystem",
"exploitGuardASRProcessCreationDesc": "Block process creations originating from PSExec and WMI commands.",
"exploitGuardASRProcessCreationName": "Process creation from PSExec and WMI commands",
"exploitGuardASRRulesName": "Attack Surface Reduction rules",
"exploitGuardASRScriptThreatsHeader": "Rules to prevent script threats",
"exploitGuardASRUntrustedExecutableDesc": "Block executable files from running unless they meet a prevalence, age, or trusted list criteria.",
"exploitGuardASRUntrustedExecutableName": "Executables that dont meet a prevalence, age, or trusted list criteria",
"exploitGuardASRUntrustedUSBProcessDesc": "Block untrusted and unsigned processes that run from USB.",
"exploitGuardASRUntrustedUSBProcessName": "Untrusted and unsigned processes that run from USB",
"exploitGuardCFAdditionalFoldersDesc": "Add folders to this list",
"exploitGuardCFAdditionalFoldersHint": "Example: C:\\Path",
"exploitGuardCFAdditionalFoldersName": "List of additional folders that need to be protected",
"exploitGuardCFAdditonalAppsDesc": "Add apps to this list.",
"exploitGuardCFAdditonalAppsHint": "Example: C:\\Path\\Filename.exe",
"exploitGuardCFAdditonalAppsName": "List of apps that have access to protected folders",
"exploitGuardCFChevronName": "Controlled folder access",
"exploitGuardCFFolderProtectionOptionDesc": "Protect files and folders from unauthorized changes by unfriendly apps",
"exploitGuardCFFolderProtectionOptionName": "Folder protection",
"exploitGuardCFHeadingText": "Automatically block access to content in protected folders. This can be enabled in Audit/Block mode.",
"exploitGuardEPBlockEditingDesc": "Block users from editing the Exploit Guard protection interface",
"exploitGuardEPBlockEditingName": "User editing of exploit protection interface",
"exploitGuardEPChevronName": "Exploit protection",
"exploitGuardEPExplainationPart1": "Configure memory, control flow and policy restrictions that can be used to protect an application from exploits. Each mitigation can be enabled in Audit/Block mode.",
"exploitGuardEPExplainationPart2": "To enable exploit protection create an XML file representing the system and application mitigation settings of your choice. You can do so using one of two methods:",
"exploitGuardEPExplainationPart3": "PowerShell: Use one or more of the Get-ProcessMitigation, Set-ProcessMitigation, and ConvertTo-ProcessMitigationPolicy PowerShell cmdlets to configure mitigation settings and export an XML representation of them.",
"exploitGuardEPExplainationPart4": "Microsoft Defender Security Center UI: In the Microsoft Defender Security Center, click on App & browser control and then scroll to the bottom of the resulting screen to find Exploit Protection. First, use the System settings and Program settings tabs to configure mitigation settings. Then, find the Export settings link at the bottom of the screen to export an XML representation of them.",
"exploitGuardEPExplainationUrlText": "Learn more about Exploit Guard",
"exploitGuardEPWarningMessage": "You can only revert these settings by manually applying XML to objects in this group.",
"exploitGuardEPXmlText": "Upload XML",
"exploitGuardNFChevronName": "Network filtering",
"exploitGuardNFProtectionDesc": "Block outbound connection from any app to IP/domains with low reputations",
"exploitGuardNFProtectionName": "Network protection",
"exploitGuardNFTitle": "Block outbound connection from any app to low reputation IP/domain · This can be enabled in Audit/Block mode.",
"extensionsColumn": "File extensions",
"extensionsColumnExamples": "Examples: jpeg, txt",
"f5NetworksF5AccessOption": "F5 Access",
"fFiveEdgeClientOption": "F5 Access",
"fFiveLegacyAccessOption": "F5 Access Legacy",
"faceOption": "Face authentication",
"factoryResetDisabledDescription": "Block factory resetting from settings.",
"factoryResetDisabledName": "Factory reset",
"factoryResetName": "Factory reset",
"factoryResetProtectionDisabled": "Factory reset protection disabled",
"factoryResetProtectionEmailsDescription": "Email addresses of device admins for factory reset protection. When a device is factory reset, it will require that one of these admins log in with their Google account to unlock the device. If none are specified, factory reset protection is not enabled.",
"factoryResetProtectionEmailsName": "Factory reset protection emails",
"falseOption": "False",
"featureUpdatesDeferralPeriodDescription": "Defer feature updates for the specified number of days.",
"featureUpdatesDeferralPeriodName": "Feature update deferral period (days)",
"featureUpdatesUninstallPeriodDescription": "Set feature update uninstall period",
"featureUpdatesUninstallPeriodName": "Set feature update uninstall period (2 - 60 days)",
"fencingConditionStatementStateDescription": "Device is present within an approved location",
"fencingConditionStatementStateName": "Present in approved location",
"fencingConditionStatementStatusDescription": "Locations have been evaluated on the device",
"fencingConditionStatementStatusName": "Evaluated locations",
"fifteenMinutes": "15 Minutes",
"fifteenMinutesOption": "15 minutes",
"fileBlockHighOption": "High",
"fileBlockHighPlusOption": "High +",
"fileBlockZeroToleranceOption": "Zero Tolerance",
"fileBlockingLevelDescription": "Specify the level of cloud-delivered protection.</br>\nNot Configured uses the default Microsoft Defender Antivirus blocking level and provides strong detection without increasing the risk of detecting legitimate files.</br>High applies a strong level of detection.</br>High + uses the High level and applies addition protection measures (may impact client performance).</br>Zero tolerance blocks all unknown executables</br>\nWhile unlikely, setting to High may cause some legitimate files to be detected.</br>\nWe recommend you set this to the default level (Not configured).\n ",
"fileBlockingLevelName": "File Blocking Level",
"fileExtensionsToExcludeName": "File extensions to exclude from scans and real-time protection",
"fileName": "Filename (required but unused, for Custom XML and Base64)",
"fileNameBlankError": "File path cannot be blank.",
"fileTransferProtocolDescription": "Blocks stateful File Transfer Protocol (FTP).",
"fileTransferProtocolName": "File Transfer Protocol",
"filesAndFoldersToExcludeName": "Files and folders to exclude from scans and real-time protection",
"fingerprintName": "Fingerprint",
"fingerprintOption": "Fingerprint unlock",
"fingerprintOptionAndroid": "Fingerprint unlock (work profile-level)",
"firewallAppsAllowedHeader": "Allow incoming connections for the following apps.",
"firewallAppsAllowedPageDescription": "Select apps that are explicitly allowed to receive incoming connections.",
"firewallAppsAllowedPageName": "Apps allowed",
"firewallAppsBlockedHeader": "Block incoming connections for the following apps.",
"firewallAppsBlockedPageDescription": "Select apps that should block incoming connections.",
"firewallAppsBlockedPageName": "Apps blocked",
"firewallCreateRules": "Create Microsoft Defender Firewall rules. One Endpoint Protection profile may contain up to 150 rules.",
"firewallRequiredDescription": "Require firewall to be on",
"firewallRequiredName": "Firewall",
"firewallRuleAction": "Action",
"firewallRuleActionTooltip": "Specifies whether this rule should block or allow network traffic. If \"Not configured,\" the rule defaults to allow traffic.",
"firewallRuleAdvancedConfigurationHeader": "Advanced configuration",
"firewallRuleAllOption": "All",
"firewallRuleAllPortsOption": "All ports",
"firewallRuleAnyOption": "Any",
"firewallRuleApplication": "Application(s)",
"firewallRuleApplicationSettingsHeader": "Application settings",
"firewallRuleApplicationSettingsSubheader": "Application(s) targeted with this rule",
"firewallRuleApplicationTooltip": "Control connections for an app or program. Apps and programs can be specified either by file path, package family name, or service name.",
"firewallRuleAuthorizedUsersHeader": "Authorized users",
"firewallRuleAuthorizedUsersHeaderTooltip": "Specifies the list of authorized local users for this rule. A list of authorized users cannot be specified if the rule being authored is targeting a Windows service. If not specified, the default is all users.",
"firewallRuleAuthorizedUsersPlaceholder": "Enter a list of users in SDDL format",
"firewallRuleAuthorizedUsersSubheader": "Only allow connections from these users",
"firewallRuleDescription": "Description",
"firewallRuleDescriptionPlaceholder": "Enter a description...",
"firewallRuleDescriptionTooltip": "The description of the rule.",
"firewallRuleDirection": "Direction",
"firewallRuleDirectionInbound": "Inbound",
"firewallRuleDirectionOutbound": "Outbound",
"firewallRuleDirectionTooltip": "Specifies whether the rule applies to inbound or outbound network traffic. If \"Not configured,\" the rule defaults to outbound traffic.",
"firewallRuleFileName": "File path",
"firewallRuleFileNamePlaceholder": "i.e. C:\\Apps\\Setup.exe",
"firewallRuleFileNameTooltip": "The file path of an app is simply its location on the client device. For example, C:\\Windows\\System\\Notepad.exe or %WINDIR%\\Notepad.exe.",
"firewallRuleHeader": "RULE",
"firewallRuleIPAddressSettingsAddresses": "Addresses",
"firewallRuleIPAddressSettingsHeader": "IP address settings",
"firewallRuleIPAddressSettingsLocal": "Local addresses",
"firewallRuleIPAddressSettingsLocalPlaceholder": "Comma separated list of local addresses",
"firewallRuleIPAddressSettingsLocalTooltip": "\n Comma separated list of local addresses covered by the rule. Valid tokens include:<br>\n<ul><li>\"*\" indicates any local address. If present, this must be the only token included.</li>\n<li>A subnet can be specified using either the subnet mask or network prefix notation. If neither a subnet mask nor a network prefix is specified, the subnet mask defaults to 255.255.255.255.</li>\n<li>A valid IPv6 address.</li>\n<li>An IPv4 address range in the format of \"start address - end address\" with no spaces included.</li>\n<li>An IPv6 address range in the format of \"start address - end address\" with no spaces included.</li></ul>\nIf not specified, the default is \"Any address.\"<br>\n<a target=\"_blank\" href=\"https://aka.ms/intunefirewalllocaladdressrule\">Learn more</a>",
"firewallRuleIPAddressSettingsRemote": "Remote addresses",
"firewallRuleIPAddressSettingsRemotePlaceholder": "Comma separated list of remote addresses",
"firewallRuleIPAddressSettingsRemoteTooltip": "\n Comma separated list of remote addresses covered by the rule. Tokens are case insensitive. Valid tokens include:<br>\n<ul><li>\"*\" indicates any remote address. If present, this must be the only token included.</li>\n<li>\"Defaultgateway\"</li>\n<li>\"DHCP\"</li>\n<li>\"DNS\"</li>\n<li>\"WINS\"</li>\n<li>\"Intranet\" (supported on Windows versions 1809+)</li>\n<li>\"RmtIntranet\" (supported on Windows versions 1809+)</li>\n<li>\"Internet\" (supported on Windows versions 1809+)</li>\n<li>\"Ply2Renders\" (supported on Windows versions 1809+)</li>\n<li>\"LocalSubnet\" indicates any local address on the local subnet.</li>\n<li>A subnet can be specified using either the subnet mask or network prefix notation. If neither a subnet mask nor a network prefix is specified, the subnet mask defaults to 255.255.255.255.</li>\n<li>A valid IPv6 address.</li>\n<li>An IPv4 address range in the format of \"start address - end address\" with no spaces included.</li>\n<li>An IPv6 address range in the format of \"start address - end address\" with no spaces included.</li></ul>\nIf not specified, the default is \"Any address.\"<br>\n<a target=\"_blank\" href=\"https://aka.ms/intunefirewallremoteaddressrule\">Learn more</a>",
"firewallRuleIPAddressSettingsSpecifiedAddressOption": "Specified address",
"firewallRuleIPAddressSettingsSubheader": "Specify the local and remote addresses to which this rule applies",
"firewallRuleInterfaceTypesLocalAreaNetwork": "Local area network",
"firewallRuleInterfaceTypesMobileBroadband": "Mobile broadband",
"firewallRuleInterfaceTypesRemoteAccess": "Remote access",
"firewallRuleInterfaceTypesSetting": "Interface types",
"firewallRuleInterfaceTypesTooltip": "Specifies the interface types to which the rule belongs: \"Remote access\", \"Wireless\", or \"Local area network.\" If none selected, the rule applies to all interface types.",
"firewallRuleInterfaceTypesWireless": "Wireless",
"firewallRuleLocalPortsPlaceholder": "Comma separated list of local ports",
"firewallRuleLocalPortsSetting": "Local ports",
"firewallRuleName": "Name",
"firewallRuleNamePlaceholder": "Enter a name...",
"firewallRuleNameTooltip": "The name of the rule.",
"firewallRuleNetworkType": "Network type",
"firewallRuleNetworkTypeDomain": "Domain",
"firewallRuleNetworkTypePrivate": "Private",
"firewallRuleNetworkTypePublic": "Public",
"firewallRuleNetworkTypeTooltip": "Specifies the network type to which the rule belongs: \"Domain,\" \"Private,\" or \"Public.\" If none selected, the rule applies to all network types.",
"firewallRulePackageFamilyName": "Package family name",
"firewallRulePackageFamilyNamePlaceholder": "e.g. Microsoft.Office.OneNote_8wekyb3d8bbwe",
"firewallRulePackageFamilyNameTooltip": "Package family names can be retrieved by running the Get-AppxPackage command from PowerShell.",
"firewallRulePortAndProtocolHeader": "Port and protocol settings",
"firewallRulePortAndProtocolSubheader": "Specify the local and remote ports to which this rule applies",
"firewallRulePortSettingTooltip": "Comma separated list of ranges. For example, 100-200, 200, 300-320. If not specified, the default is \"All ports.\"",
"firewallRulePortsLabel": "Ports",
"firewallRuleProtocolCustomOption": "Custom",
"firewallRuleProtocolPlaceholder": "Enter custom protocol (0 - 255)",
"firewallRuleProtocolSetting": "Protocol",
"firewallRuleProtocolTCPOption": "TCP",
"firewallRuleProtocolTooltip": "Select the protocol for this port rule. Transport layer protocols, TCP and UDP, allow you to specify ports or port ranges. For custom protocols, enter a number between 0 and 255 representing the IP protocol. If not specified, the default is\"Any.\"",
"firewallRuleProtocolUDPOption": "UDP",
"firewallRuleRemotePortsPlaceholder": "Comma separated list of remote ports",
"firewallRuleRemotePortsSetting": "Remote ports",
"firewallRuleServiceName": "Windows service",
"firewallRuleServiceNamePlaceholder": "i.e. eventlog",
"firewallRuleServiceNameSetWithPopulatedUserListConflict": "Firewall rules for a Windows service cannot be scoped to a list of authorized users. To resolve this conflict, either change the targeted application from \"Windows service\" to another value, or clear the authorized users list and then enter the Windows service.",
"firewallRuleServiceNameTooltip": "Windows service short names are used in cases when a service, not an application, is sending or receiving traffic. Service short names can be retrieved by running the Get-Service command from PowerShell.",
"firewallRuleSpecifiedPortsOption": "Specified ports",
"firewallRuleUserListSetWithPopulatedServiceNameConflict": "Firewall rules for a Windows service cannot be scoped to a list of authorized users. To resolve this conflict, either clear the authorized users list, or change the targeted application from \"Windows service\" to another value and then enter the authorized users list.",
"firewallRules": "Firewall rules",
"firewallRulesAnyAddressOption": "Any address",
"firewallRulesPortOrPortRangeInvalidCharacterError": "Port list can only contain numbers, '-', or ','.",
"firewallRulesPortOrPortRangeInvalidError": "Port list contains invalid ports and/or port ranges.",
"firmwareUpdatesBehaviorName": "Firmware updates",
"firstActiveEthernet": "First active Ethernet",
"firstAvailableOption": "First available",
"firstEthernet": "First Ethernet",
"firstRunUrlDescription": "URL that Microsoft edge will use when it is opened for the first time (Mobile only).",
"firstRunUrlExample": "https://co.com/sites.xml",
"firstRunUrlName": "First Run Experience URL list location",
"fiveAMOption": "5 AM",
"fiveMinutes": "5 Minutes",
"fiveMinutesOption": "5 minutes",
"fiveMonthsNumberOption": "5 months",
"fiveNumberOption": "5",
"fivePMOption": "5 PM",
"floatingPointName": "Floating point",
"folderNameExample": "e.g. Productivity",
"folders": "Folders",
"forYourOwnReference": "For your own reference. Does not need to be exact.",
"forceAirDropToBeUnmanagedTargetDescription": "Force AirDrop to be considered an unmanaged drop target.",
"forceAirDropToBeUnmanagedTargetName": "Treat AirDrop as an unmanaged destination",
"forceAirPlayOutgoingRequestsPairingPasswordDescription": "Force requiring a pairing password for outgoing AirPlay requests.",
"forceAirPlayOutgoingRequestsPairingPasswordName": "Require AirPlay outgoing requests pairing password",
"forceAirPrintTrustedTLSDescriptionIOS": "Requires trusted certificates for TLS printing communication. Available with iOS 11.0 and later.",
"forceAirPrintTrustedTLSDescriptionMacOS": "Requires trusted certificates for TLS printing communication",
"forceAirPrintTrustedTLSNameIOS": "Require AirPrint to destinations with trusted certificates",
"forceAirPrintTrustedTLSNameMacOS": "Require a trusted TLS certificate for AirPrint",
"forceAuthenticationBeforeAutoFillDescription": "Require Touch ID or Face ID before passwords or credit card information can be auto filled in Safari and Apps. Available with iOS 12.0 and later.",
"forceAuthenticationBeforeAutoFillName": "Require Touch ID or Face ID authentication for AutoFill of password or credit card information",
"forceClassroomAutomaticallyJoinClassesDescription": "Students can join a class without prompting the teacher.",
"forceClassroomAutomaticallyJoinClassesName": "Allow students to automatically join Classroom classes without prompting",
"forceClassroomUnpromptedAppAndDeviceLockDescription": "Teachers can lock an app open or lock the device without first prompting the user.",
"forceClassroomUnpromptedAppAndDeviceLockName": "Allow Classroom to lock to an app and lock the device without prompting ",
"forceDateAndTimeSetAutomaticallyDescription": "Forces device to Set Date & Time Automatically. The device's time zone will only be updated when the device has cellular connections or wifi with location services enabled.",
"forceDateAndTimeSetAutomaticallyName": "Force automatic date and time",
"forceDelayedSoftwareUpdatesDescription": "This does not impact any scheduled updates. It represents days before software updates are visible to end users after release.",
"forceDelayedSoftwareUpdatesName": "Defer software updates",
"forceDelayedSoftwareUpdatesNameMac": "Defer software updates",
"forceITunesPasswordEntryDescription": "Requires iTunes password for each transaction",
"forceITunesPasswordEntryName": "Require iTunes password for all purchases",
"forceLimitAdTrackingDescription": "Disables device advertising identifier",
"forceLimitAdTrackingName": "Force limited ad tracking",
"forceTls": "Force TLS",
"forceTlsDescription": "Secures AirPrint connections by Transport Layer Security (TLS). Defaults to false. Available in iOS 11.0 and later.",
"forceTrafficViaVPNName": "Force network traffic through VPN",
"forceTunnelOption": "Force tunnel",
"forceWatchWristDetectionDescription": "Force paired Apple watch to use wrist detection.",
"forceWatchWristDetectionName": "Force Apple Watch wrist detection",
"forwardSlashInvalidError": "The value must not contain '/'.",
"fourAMOption": "4 AM",
"fourHoursOption": "4 hours",
"fourMinutesOption": "4 Minutes",
"fourMonthsNumberOption": "4 months",
"fourNumberOption": "4",
"fourPMOption": "4 PM",
"friday": "Friday",
"fridayOption": "Friday",
"frontCamerasName": "Front cameras",
"fullDomainNameOption": "Full domain name",
"fullOption": "Optional",
"fullScanOption": "Full scan",
"fullyManagedAndDedicatedAndroidEnrollmentTypesHeaderDescription": "These settings only work for fully managed and dedicated devices.",
"fullyManagedAndDedicatedAndroidEnrollmentTypesHeaderName": "Fully managed and dedicated devices",
"gameCenterBlockedMacDescription": "Yes disables Game Center, and the Game Center icon is removed from the Home screen. Available for devices running macOS versions 10.13 or later.",
"gameCenterBlockedMacName": "Block Game Center",
"gamingPageDescription": "Block access to Gaming in Settings app.",
"gamingPageName": "Gaming",
"gatekeeperAllowedAppSourceDescription": "Protect devices from malware by limiting apps from launching based on the location where they were downloaded.",
"gatekeeperAllowedAppSourceName": "Allow apps downloaded from these locations",
"gatekeeperBlockOverrideDescription": "Prevent the user from temporarily overriding the Gatekeeper setting by control-clicking to install any app.",
"gatekeeperBlockOverrideName": "Do not allow user to override Gatekeeper",
"generalAvailabilityChannel": "General Availability channel",
"generalNetworkSettingsHeader": "General",
"genericLocalUsersOrGroupsName": "Generic local users or groups",
"globalConfigurationsDescription": "Configure Microsoft Defender Firewall settings applicable to all network types.",
"globalConfigurationsName": "Global settings",
"globalRulesDescription": "Apply global port firewall rules in the local store to be recognized and enforced.",
"globalRulesName": "Global port Microsoft Defender Firewall rules from the local store",
"google": "Google",
"googleAccountEmailAddresses": "Google account email addresses",
"googleAccountEmailAddressesDescription": "Semicolon separated list of email addresses",
"googleAccountEmailAddressesName": "List of email addresses (Google account email addresses option only)",
"googleAccountsBlockedDescription": "Blocking prevents users from adding their personal Google account to their device.",
"googleAccountsBlockedName": "Personal Google accounts",
"googleAppUrlHelp": "Enter the Google Play Store URL of the app you want. For example, to specify the Microsoft Remote Desktop app for Android, enter https://play.google.com/store/apps/details?id=com.microsoft.rdc.android. To find the URL of an app, use a search engine to locate the store page. For example, to find the Remote Desktop app, you could search Microsoft Remote Desktop Play Store.",
"googlePlayProtectHeader": "Google Play Protect",
"guidExample": "e.g. 782AFCFC-7CAA-436C-8BF0-78CD0FFBD4AF",
"healthMonCustomScope": "Enter a custom scope",
"healthMonCustomScopeDescription": "Custom event sets",
"healthMonEnablement": "Health monitoring",
"healthMonEnablementDescription": "Enables event collection from devices running Windows 10 or later.",
"healthMonHeader": "Proactively monitor device health by tracking device events. Health monitoring is available for devices running Windows 10, version 1903 and later, or Windows 11.",
"healthMonScope": "Scope",
"healthMonScopeBasic": "Basic",
"healthMonScopeBootPerf": "Endpoint analytics",
"healthMonScopeDescription": "The Windows events you want to collect.",
"healthMonScopeWindowsUpdates": "Windows updates",
"healthmonEnablementDisabledOption": "Disable",
"healthmonEnablementEnabledOption": "Enable",
"hibernate": "Hibernate",
"hide": "Hide",
"hideAppsList": "Hidden apps",
"hideOption": "Hide",
"high": "High",
"highOption": "High",
"highSeverity": "High severity",
"holoLensSharedPCAccountDeletion": "Account Deletion(HoloLens)",
"holoLensSharedPCAccountDiskSpaceLeftBeforeDeletion": "Delete oldest accounts when free disk space drops below(HoloLens)",
"holoLensSharedPCAccountManager": "Account management(HoloLens)",
"holoLensSharedPCDaysBeforeInactive": "Number of days an account is unused before it's considered inactive(HoloLens)",
"holoLensSharedPCDiskSpaceLeftCached": "Stop account deletion when percentage storage/disk space is(HoloLens)",
"homeButtonOnlySystemNavigationOption": "Home button only",
"homeScreenLayoutAppAndFolderTableName": "Apps and folders",
"homeScreenLayoutAppAndFolderTableNameTooltip": "The list of apps and folders to add.",
"homeScreenLayoutDockDescription": "Apps and folders you select will be placed on the dock of end user's iOS devices that you assign this policy to. Items are added from left to right in the order you give them. You can select up to 6 items.",
"homeScreenLayoutDockHeader": "Select the apps or folders that you want to add to the dock. Apps and folders that you select will be placed on the dock for devices that have this policy assigned to them. Items will be added from left to right in the order that you add them.\n<br>\n<br>\n6 items maximum allowed.",
"homeScreenLayoutDockHeaderTooltip": "Generally, larger iOS devices have a maximum of 6 items that can be displayed.",
"homeScreenLayoutDockName": "Dock",
"homeScreenLayoutEntityNameAppPlural": "apps",
"homeScreenLayoutEntityNameAppSingular": "app",
"homeScreenLayoutEntityNameFolderPlural": "folders",
"homeScreenLayoutEntityNameFolderSingular": "folder",
"homeScreenLayoutEntityNamePagePlural": "pages",
"homeScreenLayoutEntityNamePageSingular": "page",
"homeScreenLayoutFolderHeader": "Add the pages you want to appear in this folder. Apps selected will be laid out on the pages in the folder, from left to right, in the order added below. Click and drag items to reorder them.\n<br>\n<br>\n20 pages maximum allowed.",
"homeScreenLayoutFolderHeaderTooltip": "20 pages maximum allowed.",
"homeScreenLayoutFolderNameDescription": "Displayed as folder name on iOS device",
"homeScreenLayoutFolderNameName": "Folder name",
"homeScreenLayoutFolderPagesHeader": "Add the apps you want to appear on this folder page. Apps selected will be laid out on the folder page on end users iOS device, from left to right, in the order they are given below. Any number of apps greater than the page can display on a single page will be moved to a subsequent pages. Click and drag items to reorder them.\n<br>\n<br>\n60 items maximum allowed.",
"homeScreenLayoutFolderTableName": "List of apps",
"homeScreenLayoutInfoBox": "Add apps to your layout row by row. Any positions you dont fill will be populated by your other apps in the order they install on devices.",
"homeScreenLayoutPageNameName": "Page name",
"homeScreenLayoutPageTableName": "List of pages",
"homeScreenLayoutPagesDescription": "Apps and folders you select will be placed on the main screen of end user's iOS devices that you assign this policy to. Items are added from the upper-left corner of the screen to the lower-right. If the screen becomes full, items will automatically be placed on the next screen.",
"homeScreenLayoutPagesHeader": "Add the pages you want to appear on the home screen. Apps selected will be laid out on the pages on the home screen, from left to right, in the order added below. Click and drag items to reorder them.\n<br>\n<br>\n40 pages maximum allowed.",
"homeScreenLayoutPagesName": "Pages",
"homeScreenLayoutPagesPageHeader": "Add the apps you want to appear on this page. Apps selected will be laid out on the page on the device, from left to right, in the order added below. Any number of apps greater than the page can display on a single screen will be moved to a subsequent screen. Click and drag items to reorder them.\n<br>\n<br>\n60 items maximum allowed.",
"homeScreenLayoutType": "Type",
"homeScreenLayoutTypeApp": "App",
"homeScreenLayoutTypeFolder": "Folder",
"homeScreenLayoutTypeTooltip": "Select apps or folders from the dropdown to add to the device.",
"homepagesColumn": "e.g. https://co.com/sites.xml",
"httpOnlyOption": "HTTP only, no peering (0)",
"httpWithInternetPeeringOption": "HTTP blended with internet peering (3)",
"httpWithPeeringNatOption": "HTTP blended with peering behind same NAT (1)",
"httpWithPeeringPrivateGroupOption": "HTTP blended with peering across private group (2)",
"hybridSleepBatteryDescription": "This policy setting allows you to turn off hybrid sleep when the device is powered by a battery.<br/>If this policy is disabled, the device will not allow hybrid sleep or hibernate.<br/>If this policy is not configured, users control this setting.",
"hybridSleepName": "Hybrid sleep",
"hybridSleepPluggedInDescription": "This policy setting allows you to turn off hybrid sleep when the device is plugged in.<br/>If this policy is disabled, the device will not allow hybrid sleep or hibernate.<br/>If this policy is not configured, users control this setting.",
"iKEOption": "IKEv2",
"iKEOptionNativeType": "IKEv2 (Native type)",
"iKESecurityAssociationParamName": "IKE Security Association Parameters",
"iKEv2AuthenticationMethodDescription": "Specify how you want to authenticate to the VPN server. Using certificate-based authentication provides enhances capabilities such as zero-touch experience, on-demand VPN, and per-app VPN.",
"iOSAirPrintPortDescription": "The listening port of the AirPrint destination. If this key is not specified, AirPrint will use the default port. Available in iOS 11.0 and later.",
"iOSBlockDataRoamingName": "Block data roaming",
"iOSBlockDiagnosticDataSubmissionName": "Block sending diagnostic and usage data to Apple",
"iOSBlockScreenshotName": "Block screenshots and screen recording",
"iOSBlockVoiceDialingName": "Block voice dialing while device is locked",
"iOSBlockVoiceRoamingName": "Block voice roaming",
"iOSEduStudentCertPickerDescription": "Configure trusted root and PKCS#12 certificates for the student device certificates type you choose.",
"iOSEduStudentScenario": "Student device certificates type",
"iOSEduTeacherDescription": "Configure trusted root and PKCS#12 certificates for teachers.",
"iOSMacPasswordExpirationInDaysEmptyValueKey": "Enter number of days (1-65535)",
"iOSRequirePasswordName": "Require password",
"iPAddressOrFQDNColumn": "IP address or FQDN",
"iPRangeAddressTypeName": "IP address type",
"iPRangeLowerAddressEmptyValue": "10.0.0.0",
"iPRangeLowerAddressName": "Start IP address",
"iPRangeUpperAddressEmptyValue": "10.255.255.255",
"iPRangeUpperAddressName": "End IP address",
"iPsecExemptionsBothOption": "Both IPv4 and IPv6 DHCP traffic",
"iPsecExemptionsDescription": "Configure specific traffic to be exempt from performing IPsec.",
"iPsecExemptionsICMPOption": "ICMP",
"iPsecExemptionsName": "IPsec exemptions",
"iPsecExemptionsNeighborOption": "Neighbor discover IPv6 ICMP type-codes",
"iPsecExemptionsNoExemptionOption": "No exemptions",
"iPsecExemptionsRouterOption": "Router discover IPv6 ICMP type-codes",
"iPsecRulesDescription": "Apply connection security rules from the local store, regardless of schema or connection security rule versions.",
"iPsecRulesName": "IPsec rules from the local store",
"iPsecSecuredPacketExemptionDescription": "If enabled, firewall's stealth mode MUST NOT prevent the host computer from responding to unsolicited network traffic that is secured by IPsec. This option is ignored if stealth mode is blocked.",
"iPsecSecuredPacketExemptionName": "IPsec secured packet exemption with Stealth Mode",
"iPv4Option": "IPv4",
"iPv6Option": "IPv6",
"iWantToDescription": "The Connect VPN, Disconnect VPN and Ignore actions apply when a user connects to a network. These actions continue to apply while the user is connected to the network. The Evaluate each connection attempt action applies to all connections to the domains you enter for the action but only if the VPN isnt already connected.",
"iWantToName": "I want to do the following",
"iconSortOrderAlphabetic": "Alphabetic",
"iconSortOrderDescription": "",
"iconSortOrderName": "Icon sort order",
"identityPrivacyExample": "e.g. anonymous",
"ignoreOption": "Ignore",
"ikeTlsMissing": "TLS Version Min and Max must be set when using user authentication and certificates.",
"immediatelyOption": "Immediately",
"importCSVBladeAppListWarning": "Save the profile by using a CSV with file values in separate columns that match the order displayed in the table below: APP URL, APP BUNDLE ID, APP NAME, PUBLISHER.",
"importantOptionName": "Important",
"inList": "Approved apps",
"inboundConnectionsDescription": "Configure the default action firewall performs on inbound connections.",
"inboundConnectionsName": "Default action for inbound connections",
"inboundNotificationsDescription": "Block notifications from displaying to users when an application is blocked from listening on a port.",
"inboundNotificationsName": "Inbound notifications",
"inclusionAppListColumn": "App to include",
"incorrectPortNumber": "Incorrect or missing port number",
"individualEdgeBrowserSettingsName": "Individual Microsoft Edge settings",
"infraredCamerasName": "Infrared (IR) cameras",
"inkWorkspaceAccessDescription": "Block users from accessing the ink workspace. When this setting is not configured, the ink workspace is enabled (feature is turned on), and the user is allowed to use it above the lock screen.",
"inkWorkspaceAccessName": "Ink Workspace",
"inkWorkspaceBlockSuggestedAppsDescription": "Block recommended apps suggestions in the Ink workspace",
"inkWorkspaceBlockSuggestedAppsName": "Apps suggestions in Ink workspace",
"inkWorkspaceDisabledOption": "Disabled",
"inkWorkspaceEnabledOption": "Disabled on lock screen",
"installASAP": "Install immediately",
"installLater": "Install later",
"installUnknownSourcesAllowedDescription": "When allowed, users can enable the “unknown sources” setting to install apps from sources other than the Google Play Store.",
"installUnknownSourcesAllowedName": "Allow installation from unknown sources",
"integer": "Integer",
"integerName": "Integer",
"integrityAlgorithmName": "Integrity algorithm",
"integrityCheckMethodDescription": "Integrity check algorithm to be used during IKE (main mode) security association negotiation. Value must match VPN server settings.",
"integrityCheckMethodName": "Integrity check algorithm",
"internetSecurityLevelDescription": "Internet security level (Medium-high recommended).",
"internetSecurityLevelName": "Internet security level",
"intranetSecurityLevelDescription": "Intranet security level (Medium recommended).",
"intranetSecurityLevelName": "Intranet security level",
"intuneDocumentation": "Intune documentation.",
"invalidValuesInSettings": "One or more settings have invalid values",
"iosAppUrlHelp": "Enter the iTunes App Store URL of the app you want. For example, to specify the Microsoft Work Folders app for iOS, enter https://itunes.apple.com/us/app/work-folders/id950878067?mt=8. To find the URL of an app, use a search engine to locate the store page. For example, to find the Work Folders app, you could search Microsoft Work Folders ITunes.",
"iosDeviceFeaturesAirprintHeader": "Use these settings to configure iOS devices to automatically connect to AirPrint compatible printers on your network. You'll need the IP address and resource path of your printers.<br><br><a href=\"https://go.microsoft.com/fwlink/?linkid=839649\" target=\"_blank\">Learn more about obtaining printer IP addresses</a>",
"iosDeviceFeaturesAirprintHelpLinkText": "Learn more about obtaining printer IP addresses",
"iosDeviceFeaturesExtensibleSingleSignOnHeader": "Configure an app extension that enables single sign-on (SSO) for devices running iOS 13.0 or later.",
"iosDeviceFeaturesHomeScreenLayoutHeader": "Configure the layout for the dock and Home Screens on iOS devices. Certain devices may have limits to how many items can be displayed.<br><br><a href=\"https://go.microsoft.com/fwlink/?linkid=845300\" target=\"_blank\">Find out how this can impact different form factors here.</a>",
"iosDeviceFeaturesHomeScreenLayoutHelpLinkText": "Find out how this can impact different form factors here.",
"iosDeviceFeaturesIOSWallpaperHeader": "Display an image that will appear on the Home Screen and/or the lock screen of iOS devices.\n To display a unique image in each location, create one profile with the lock screen image, and one with the Home Screen image.\n Then assign both profiles to your users.\n <br>\n <ul>\n <li>Max file size: 750 KB</li>\n <li>File type: PNG, JPG or JPEG</li>\n </ul>",
"iosDeviceFeaturesLockScreenMessageHeader": "Specify optional text displayed on the locked screen. It is supported on iOS 9.3 and later. <a href=\"https://go.microsoft.com/fwlink/?linkid=2056394\" target=\"_blank\">Learn More</a>",
"iosDeviceFeaturesNotificationsHeader": "Specify notification settings for apps. Supports iOS 9.3 and later.",
"iosDeviceFeaturesSharedDeviceUnsupportedVariables": "Unsupported Variable",
"iosGeneralApplicationRestrictionsHeader": "Use these settings to stay informed about which users install apps that are not approved for use in your company. Select the type of restricted app list:<br><br>\n Prohibited apps - A list of apps that you want to be informed about when users install them.<br>\n Approved apps - A list of apps that are approved for use in your company. When users install an app that is not in this list, you will be informed.<br>",
"iosGeneralApplicationVisibilityHeader": "Use the show apps list to specify the iOS apps that user can view or launch. Use the hidden apps list to specify the iOS apps that user cannot view or launch.",
"iosGeneralAutonomousSingleAppModeHeader": "Apps you add to this list and assign to a device can lock the device to run only that app once launched, or lock the device while a certain action is running (for example taking a test). Once the action is complete, or you remove the restriction, the device returns to its normal state.",
"iosGeneralKioskHeader": "Kiosk mode locks various settings into a device, or specifies a single app that can be run on a device. This can be useful in environments like a retail store where you want a device to run only a single demo app.",
"iosGeneralSharedDeviceHeader": "Configure settings for Apple Shared iPad set up with Apple Business Manager or Apple School Manager. These settings require devices running iOS 13.4 or later. ",
"ipAddress": "IP address",
"ipAddressDescription": "If you use hostnames to identify printer destinations, you can obtain their respective IP address by pinging them in the terminal. Can contain IPv4 or IPv6 addresses and ports.",
"ipAutoDetectionName": "Auto detection of other enterprise IP ranges",
"irisOption": "Iris authentication",
"issuerHashDescription": "Thumbprint for the single sign-on (SSO) certificate",
"issuerHashName": "Issuer hash",
"keepGoing": "Show message with option to open sites in Microsoft Edge",
"keyColumn": "Key",
"keyboardBlockDictationDescriptionMacOS": "Block dictation, which is a feature that converts the user's voice to text.",
"keyboardBlockDictationNameIOS": "Block dictation",
"keyboardBlockDictationNameMacOS": "Block dictation",
"keyguardDisabledDescription": "Block keyguard",
"keyguardDisabledDescriptionAndroid": "If the lock screen is disabled, the lock screen features cannot be disabled individually.",
"keyguardDisabledName": "Disable lock screen",
"kioskAADGroup": "AzureAD user group",
"kioskAADUser": "AzureAD user",
"kioskAADUserAndGroup": "Azure AD user or group (Windows 10, version 1803 and later, or Windows 11)",
"kioskAUMIDDesc": "You can find the AUMID by either using Windows PowerShell or querying the registry.",
"kioskAUMIDEmpty": "Microsoft.WindowsCalculator_8wekyb3d8bbwe!App",
"kioskAUMIDName": "Application user model ID (AUMID) ",
"kioskActiveDirectoryGroup": "Active Directory group",
"kioskAddAppByAUMIDHeader": "Enter the Application User Model ID (AUMID) of the app you want to run in kiosk mode.",
"kioskAddByAumidName": "Add app by specifying AUMID",
"kioskAddStoreAppFilter": "Filter by name",
"kioskAddWin32AppDescription": "To run a Win32 or line-of-business app in kiosk mode, enter the local path of the apps executable (.exe) file. Before adding a line-of-business app, go to the Mobile Apps blade and make sure youve assigned it to your kiosk devices.",
"kioskAppID": "App ID",
"kioskAppIdentifier": "Local path to app executable file (also known as the Identifier)",
"kioskAppIdentifierDesc": "Enter the local path where the executable is installed.",
"kioskAppIdentifierEmpty": "C:\\Program Files\\TimesheetLOB\\ts32.exe",
"kioskAppName": "Name",
"kioskAppNameDesc": "Friendly name used to identify the app",
"kioskAppNameEmpty": "e.g. Contoso Kiosk app",
"kioskAppNotificationBadgeDescription": "Badges appear on app icons, and show the number of new, unread notifications.",
"kioskAppNotificationBadgeName": "App notification badges",
"kioskAppTableDesc": "Add all apps and dependant apps to the grid. This allows these apps to work in Assigned Access. This is required even if using a Custom Start Layout.",
"kioskAppTableName": "Browsers and Applications",
"kioskAppTableSummary": "Apps are pinned to the full Start layout in the order and tile size you choose below. Click and drag any row in the table to change its display order. <a href=\"https://go.microsoft.com/fwlink/?linkid=2027092\" target=\"_blank\">Learn more</a>.",
"kioskAppTypeAUID": "UWP App",
"kioskAppTypeAUMID": "AUMID",
"kioskAppTypeDesc": "The multiple app mode locks the device to run multiple Universal Windows Platform (UWP) apps, or Win32 apps that you specify.",
"kioskAppTypeDesktop": "Win32 App",
"kioskAppTypeName": "Type",
"kioskAppTypeNotConfigured": "Not configured",
"kioskAppTypeStore": "Store app",
"kioskAppTypeUnknown": "Unknown",
"kioskAppTypeWin32": "Win32 App",
"kioskApplicationType": "Application type",
"kioskApplicationTypeDescription": "Identifies the type of applications added to this kiosk device.",
"kioskAppsDescription": "",
"kioskAppsInFolderOrderedByName": "Apps in folder ordered by name",
"kioskAppsName": "Dedicated devices apps",
"kioskAssignedAccessConfiguration": "Kiosk",
"kioskAssignedAccessStatus": "Full screen kiosk app status",
"kioskAumidAbbreviation": "AUMID",
"kioskAumidPath": "AUMID/PATH",
"kioskAutologon": "Autologon",
"kioskBluetoothConfigDescription": "Enable end-users to configure and pair devices over Bluetooth.",
"kioskBluetoothConfigName": "Bluetooth configuration",
"kioskBrowserSettings": "Kiosk browser settings",
"kioskBrowserSettingsEmpty": "Defaults configured",
"kioskConfigurableColumnHeaderName": "Settings",
"kioskConfigurationHeader": "Configure your devices to run in kiosk mode. Before you select a kiosk mode, review your app assignments in the Mobile Apps blade. Apps that you want to run in kiosk mode should be assigned to a Windows device. <a href=\"https://go.microsoft.com/fwlink/?linkid=2027267\" target=\"_blank\">Learn more about Windows kiosk mode</a>.",
"kioskCustomAppLayout": "Custom app layout",
"kioskCustomAppLayoutInfoBalloon": "Choose where apps and folders appear on Managed Home Screen. When not configured, apps and folders can be added and populate the home screen in alphabetical order.",
"kioskDaily": "Daily (recommended)",
"kioskDebugMenuDescription": "Enable users to more easily access debugging tools in Managed Home Screen by adding an entry point in the settings menu. Users simply swipe down and tap the device info icon to view the available tools. If you don't enable quick access, users can still get to the debug menu by tapping the back button about 15 times while in Managed Home Screen.",
"kioskDebugMenuName": "Quick access to debug menu",
"kioskDesktopApplicationIdDesc": "description.",
"kioskDesktopApplicationIdExample": "Microsoft.WindowsCalculator_8wekyb3d8bbwe!App",
"kioskDesktopApplicationIdName": "Application user model ID (AUMID) for the Win32 app. <a href=\"https://go.microsoft.com/fwlink/p/?LinkId=614867\" target=\"_blank\">Learn how to locate the AUMID</a>",
"kioskDesktopApplicationIdShortName": "DesktopApplicationId/AUMID for the Win32 app",
"kioskDeviceInfoDescription": "Enable users to more easily access device information by adding an entry point in the Managed Home Screen settings menu. Users simply swipe down and tap the device info icon to view device OEM, model, serial number, and SDK level. If you don't enable quick access, users can still discover this information by accessing the Managed Home Screen debug menu.",
"kioskDeviceInfoName": "Quick access to device information",
"kioskDropOutCodeEmptyValueKey": "Enter a 4-6 digit PIN",
"kioskDropOutDescription": "Enable IT administrators to temporarily leave multi-app kiosk mode to make changes on the device.",
"kioskDropOutName": "Leave kiosk mode",
"kioskEnterAumid": "Enter UWP app AUMID",
"kioskFlashlightConfigName": "Flashlight access",
"kioskFolderIconDarkCircle": "Dark theme circle",
"kioskFolderIconDarkSquare": "Dark theme rectangle",
"kioskFolderIconDescription": "A graphic image that represents a folder on the home screen. The default is a dark theme rectangle.",
"kioskFolderIconLightCircle": "Light theme circle",
"kioskFolderIconLightSquare": "Light theme rectangle",
"kioskFolderIconName": "Folder icon",
"kioskFolderIconNotConfigured": "Not configured",
"kioskForceRestart": "Specify Maintenance Window for App Restarts",
"kioskForceRestartDescription": "Some apps require restart in order to complete app updates. Set the maintenance window for these app restarts. The default start time is midnight, or zero minutes. If blank, apps will restart at an unscheduled time 3 days after an app update is installed.",
"kioskGridSize": "Grid size",
"kioskGridSizeInfoBalloon": "Choose the grid size of the home screen for your device. An app or folder uses one position in the grid. Apps that don't fit in the grid are moved to the next available position on a new page.",
"kioskGridSizeOption": "{0} columns x {1} rows",
"kioskIconSizeDescription": "How big the icons appear on the home screen. Actual size may vary depending on screen width and grid size.",
"kioskIconSizeLarge": "Large",
"kioskIconSizeLargest": "Extra large",
"kioskIconSizeName": "App and folder icon size",
"kioskIconSizeNotConfigured": "Not configured",
"kioskIconSizeRegular": "Average",
"kioskIconSizeSmall": "Extra small",
"kioskIconSizeSmallest": "Small",
"kioskInfoBoxText": "Multiple app kiosk mode Locks the device to run multiple apps that are launched from the Managed Home Screen app. To use this mode, you must first approve and assign the Managed Home Screen app from the client apps workload.",
"kioskLocalGroup": "Local user groups",
"kioskLocalUser": "Local user account",
"kioskLocalUsers": "Local user accounts",
"kioskLockHomeScreen": "Lock home screen",
"kioskLockHomeScreenInfoBalloon": "A locked home screen prevents device users from repositioning or creating items on the home screen. ",
"kioskLogonName": "LOGON NAME",
"kioskLogonType": "TYPE",
"kioskManagedAppLink": "Select app",
"kioskManagedAppsHeader": "The following apps for Windows 10 and later have been purchased and synchronized with Intune. Sign in to <a href=\"https://go.microsoft.com/fwlink/?linkid=2027274\" target=\"_blank\">Microsoft Store for Business</a> to purchase additional apps.",
"kioskManagedHomeScreenAutoSignOutDescription": "Automatically sign users out of Managed Home Screen after a period of inactivity and choose whether to not to give end-users option to extend their sign-in session. Sign-in screen must be enabled to configure this setting. This setting is intended for use on dedicated devices enrolled with AAD Shared device mode and will sign end-users out of all applications on the device that are integrated with Shared device mode. ",
"kioskManagedHomeScreenAutoSignOutName": "Automatically sign-out of MHS and Shared device mode applications after inactive",
"kioskManagedHomeScreenInactiveNoticeDelayDescription": "Define the amount of time, in seconds, for user to have option to resume their session before getting automatically signed out from Managed Home Screen. By default, this value is set to 60 seconds. Automatically sign-out after inactivity must be enabled to configure this setting. This setting is intended for use on dedicated devices enrolled with AAD Shared device mode and will sign users out of all applications on the device that are integrated with Shared device mode. ",
"kioskManagedHomeScreenInactiveNoticeDelayName": "Number of seconds to give user notice before automatically signing them out",
"kioskManagedHomeScreenInactiveSignOutDelayDescription": "Define the period of inactivity, in seconds, before user is automatically signed out from Managed Home Screen. By default, this value is set to 300 seconds. Automatically sign-out after inactivity must be enabled to configure this setting. This setting is intended for use on dedicated devices enrolled with AAD Shared device mode and will sign users out of all applications on the device that are integrated with Shared device mode. ",
"kioskManagedHomeScreenInactiveSignOutDelayName": "Number of seconds device is inactive before automatically signing user out",
"kioskManagedHomeScreenPINComplexityComplex": "Complex",
"kioskManagedHomeScreenPINComplexityDescription": "Choose the complexity of the session PIN. Complex requires alphanumerical characters and simple only requires numbers. Require user to set a PIN for sign-in session must be enabled to configure this setting. This setting is for use on dedicated devices enrolled with AAD Shared device mode.",
"kioskManagedHomeScreenPINComplexityName": "Choose complexity of PIN for sign-in session",
"kioskManagedHomeScreenPINComplexityNotConfigured": "Not configured",
"kioskManagedHomeScreenPINComplexitySimple": "Simple",
"kioskManagedHomeScreenPINRequiredDescription": "Enable users to create a PIN that exists for the duration of a single sign-in session. Upon sign-out, this PIN will be cleared. Sign-in screen must be enabled to configure this setting. This setting is for use on dedicated devices enrolled with AAD Shared device mode.",
"kioskManagedHomeScreenPINRequiredName": "Require user to set a PIN for sign-in session",
"kioskManagedHomeScreenPINRequiredToResumeDescription": "Require users to enter their session PIN to resume using the Managed Home Screen after the screensaver has appeared. Require user to set a PIN for sign-in session must be enabled to configure this setting. This setting has no effect if screen saver mode is not configured. This setting is for use on dedicated devices enrolled with AAD Shared device mode. ",
"kioskManagedHomeScreenPINRequiredToResumeName": "Required user to enter session PIN if screensaver has appeared",
"kioskManagedHomeScreenSignInBackgroundDescription": "Customize the appearance of the sign-in screen. Sign-in screen must be enabled to configure this setting. This setting is intended for use on dedicated devices enrolled with AAD Shared device mode. ",
"kioskManagedHomeScreenSignInBackgroundEmptyValueKey": "http://www.contoso.com/img.jpg",
"kioskManagedHomeScreenSignInBackgroundName": "Set custom URL background for sign-in screen",
"kioskManagedHomeScreenSignInBrandingLogoDescription": "Customize a branding logo for the sign-in screen and session pin prompt. Sign-in screen must be enabled to configure this setting. This setting is intended for use on dedicated devices enrolled with AAD Shared device mode. ",
"kioskManagedHomeScreenSignInBrandingLogoEmptyValueKey": "http://www.contoso.com/img.jpg",
"kioskManagedHomeScreenSignInBrandingLogoName": "Set custom URL branding logo for sign-in screen and session pin page",
"kioskManagedHomeScreenSignInEnabledDescription": "Enable a sign-in screen on Managed Home Screen. This sign-in screen is intended for use on dedicated devices enrolled with AAD Shared device mode.",
"kioskManagedHomeScreenSignInEnabledName": "MHS sign-in screen",
"kioskManagedSettingsDescription": "This shortcut gives users another way to access settings. It appears as a non-customizable icon on the home screen (much like an app) and is called Managed Settings. If you disable the shortcut, users can still swipe down on their screen to access these settings.",
"kioskManagedSettingsName": "Shortcut to settings menu",
"kioskMediaVolumeConfigDescription": "Device setting used to adjust media volume.",
"kioskMediaVolumeConfigName": "Media volume control",
"kioskModeAllowAssistiveSpeakName": "Speak on selected text",
"kioskModeAllowAssistiveTouchSettingsName": "Allow AssistiveTouch control",
"kioskModeAllowAutoLockName": "Auto lock",
"kioskModeAllowColorInversionSettingsName": "Allow invert colors control",
"kioskModeAllowRingerSwitchName": "Ringer switch",
"kioskModeAllowScreenRotationName": "Screen rotation",
"kioskModeAllowSleepButtonName": "Screen sleep button",
"kioskModeAllowVoiceControlModificationDescription": "If allowed, users can turn Voice Control on and off.",
"kioskModeAllowVoiceControlModificationName": "Allow Voice Control",
"kioskModeAllowVoiceOverSettingsName": "Allow VoiceOver control",
"kioskModeAllowVolumeButtonsName": "Volume buttons",
"kioskModeAllowZoomSettingsName": "Allow zoom control",
"kioskModeAppIdDescription": "Managed app allowed to run when device is in kiosk mode. No other apps will be allowed to run on device.",
"kioskModeAppIdName": "Managed app that runs in kiosk mode",
"kioskModeAppStoreExample": "e.g. https://itunes.apple.com/us/app/work-folders/id950878067?mt=8",
"kioskModeAppStoreUrlDescription": "URL of app for kiosk mode, e.g. https://itunes.apple.com/us/app/work-folders/id950878067?mt=8",
"kioskModeAppStoreUrlName": "URL of app for kiosk mode",
"kioskModeAppStoreUrlOrManagedAppIdName": "App to run in kiosk mode",
"kioskModeBlockAutoLockName": "Block auto lock",
"kioskModeBlockRingerSwitchName": "Block ringer switch",
"kioskModeBlockScreenRotationName": "Block screen rotation",
"kioskModeBlockSleepButtonName": "Block screen sleep button",
"kioskModeBlockTouchscreenName": "Block touch",
"kioskModeBlockVolumeButtonsName": "Block volume buttons",
"kioskModeBuiltinAppExample": "e.g. com.apple.mobilesafari",
"kioskModeBuiltinAppIdDescription": "To see a list of bundle IDs for common built-in iOS apps, see the ",
"kioskModeBuiltinAppIdName": "Enter the app's bundle ID",
"kioskModeDescription": "",
"kioskModeExitCodeDescription": "The 4-6 digit PIN will be the code an IT administrator enters on a multi-app dedicated device to pause kiosk mode.",
"kioskModeExitCodeName": "Leave kiosk mode code",
"kioskModeForceAssistiveTouchName": "Require AssistiveTouch",
"kioskModeForceColorInversionName": "Require invert colors",
"kioskModeForceMonoAudioName": "Require mono audio",
"kioskModeForceVoiceControlName": "Require Voice Control",
"kioskModeForceVoiceOverName": "Require VoiceOver",
"kioskModeForceZoomName": "Require zoom",
"kioskModeManagedAppChevronName": "Managed Intune app to use for kiosk mode",
"kioskModeManagedAppDescription": "Showing up to 500 managed apps. Use search to find more items.",
"kioskModeManagedAppName": "Select an app to use for kiosk mode",
"kioskModeMulti": "Multi-app",
"kioskModeName": "Kiosk mode",
"kioskModeSingle": "Single app",
"kioskMonthly": "Monthly",
"kioskProfileHeader": "Use these settings to configure kiosk mode. Prior to configuring these settings, make sure you have deployed the apps you want to run in Kiosk mode to the devices from the client apps workload.",
"kioskProfileLearnMore": "Learn more about Windows kiosk mode.",
"kioskProfileName": "Kiosk configuration name",
"kioskProfileNameDesc": "This is a friendly name used to identify a group of applications, the layout of these apps on the start menu and the users to whom this kiosk configuration is assigned.",
"kioskProfileNameEmpty": "e.g. nurse station",
"kioskProfileTableDescription": "Set up a kiosk configuration including the list of apps that can be used in kiosk mode, and permitted users.",
"kioskProfileTableName": "Kiosk configuration",
"kioskRecurrence": "Maintenance Window Recurrence",
"kioskRecurrenceDescription": "Set how often Maintenance windows for app updates will take place. Recommendation is daily to avoid unscheduled app restarts.",
"kioskScreenOrientationAutoRotate": "Autorotate",
"kioskScreenOrientationDescription": "The direction that the Managed Home Screen appears on the device.",
"kioskScreenOrientationLandscape": "Landscape",
"kioskScreenOrientationName": "Screen orientation",
"kioskScreenOrientationNotConfigured": "Not configured",
"kioskScreenOrientationPortrait": "Portrait",
"kioskScreenSaverConfigDescription": "Start screen saver when the device screen times out or locks.",
"kioskScreenSaverConfigName": "Screen saver mode",
"kioskScreenSaverDetectMediaConfigDescription": "Screen saver mode won't start if audio or video is playing on the device.",
"kioskScreenSaverDetectMediaConfigName": "Detect media before starting screen saver",
"kioskScreenSaverDisplayTimeConfigDescription": "When left blank or set to 0 seconds, the screen saver remains active until a user interacts with the device.",
"kioskScreenSaverDisplayTimeConfigName": "Number of seconds the device shows screen saver before turning off screen",
"kioskScreenSaverImageConfigName": "Set custom screen saver image",
"kioskScreenSaverImageEmptyValueKey": "http://www.contoso.com/img.jpg",
"kioskScreenSaverSecondsEmptyValueKey": "Enter a number of seconds",
"kioskScreenSaverStartDelayConfigDescription": "Requires a number greater than zero when screen saver mode is enabled.",
"kioskScreenSaverStartDelayConfigName": "Number of seconds the device is inactive before showing screen saver.",
"kioskSelectionDescription": "Single app, full-screen kiosk mode will lock a single Store app above the Windows Lockscreen to be used by a Local user account or guests via Autologon. Multi-app kiosk mode locks the device to run multiple Store apps, Win32 apps, or apps by specified by AUMID. Multi-app kiosk mode can be used by guests via Autologon, AAD accounts, or Local user accounts.",
"kioskSelectionMultiMode": "Multi app kiosk",
"kioskSelectionName": "Select a kiosk mode",
"kioskSelectionNone": "Not Configured",
"kioskSelectionSingleMode": "Single app, full-screen kiosk",
"kioskSelectionUsers": "User logon type",
"kioskSelectionUsersDescription": "Configures the logon type to access the applications on this kiosk device.",
"kioskShowTaskbarDesc": "Show or hide the Windows taskbar on the kiosk.",
"kioskShowTaskbarName": "Windows Taskbar",
"kioskStartDateTime": "Maintenance Window Start Time",
"kioskStartMenuLayoutXmlDesc": "Provide an XML layout that defines in what order apps should be displayed on the Start Menu",
"kioskStartMenuLayoutXmlDescV2": "Importing an XML file configuring the Start layout overrides the existing display order and tile size selections. <a href=\"https://go.microsoft.com/fwlink/?linkid=2027083\" target=\"_blank\">Learn more</a>",
"kioskStartMenuLayoutXmlName": "Start menu layout",
"kioskTargetSModeDescription": "Set to Yes, will exclude Win32 apps in the kiosk profile. Set to No, Win32 apps are available, but this kiosk profile will not deploy to S-mode devices.",
"kioskTargetSModeName": "Target devices running Windows 10/11 in S mode",
"kioskTileLarge": "Large",
"kioskTileMedium": "Medium",
"kioskTileSize": "Tile size",
"kioskTileSmall": "Small",
"kioskTileWide": "Wide",
"kioskUniversalWindowsPlatformAppIdentifier": "Universal Windows Platform (UWP) app identifier",
"kioskUserAccountDesc": "For kiosks in public-facing environments with auto logon enabled, a user type with least privilege (e.g. local standard user account) should be used. To configure an AAD account for kiosk mode, use this format: AzureAD\\user@contoso.com.",
"kioskUserAccountEmpty": "e.g. localkioskuser",
"kioskUserAccountName": "User logon name",
"kioskUserLogonTypeAutologon": "Auto logon (Windows 10, version 1803 and later, or Windows 11)",
"kioskUsersTableDesc": "The user accounts that will be locked to this kiosk configuration. For kiosks in public-facing environments with auto logon enabled, a user type with least privilege (e.g. local standard user account) should be used. To configure an AAD account to kiosk mode, use this format: AzureAD\\user@contoso.com.",
"kioskUsersTableName": "User account",
"kioskVisitor": "HoloLens visitor",
"kioskWeekly": "Weekly",
"kioskWifiConfigDescription": "Enable end-users to connect to different Wi-Fi networks.",
"kioskWifiConfigName": "Wi-Fi configuration",
"kioskWifiSsidColumnName": "SSID",
"kioskWifiSsidEmptyValueKey": "Enter a Wi-Fi SSID name",
"kioskWifiSsidsDescription": "Further control or limit Wi-Fi access by manually adding or importing a list of allowed networks by SSID. Managed Home Screen users will only be able to connect to these networks. Wi-Fi configuration must be enabled to configure this setting. If you don't add anything, all available networks will be shown to the device user.",
"kioskWifiSsidsName": "Wi-Fi allow-list",
"knoxBlockAutofillDescription": "Block autofill.",
"knoxBlockAutofillName": "Autofill (Samsung KNOX only)",
"knoxBlockBluetoothName": "Bluetooth (Samsung KNOX only)",
"knoxBlockCookiesDescription": "Allow or block browser cookies",
"knoxBlockCookiesName": "Cookies (Samsung KNOX only)",
"knoxBlockCopyAndPasteDescription": "Block copy and paste functionality.",
"knoxBlockCopyAndPasteName": "Copy and paste (Samsung KNOX only)",
"knoxBlockDataRoamingDescription": "Block data roaming over the cellular network.",
"knoxBlockDataRoamingName": "Data roaming (Samsung KNOX only)",
"knoxBlockDiagnosticDataSubmissionDescription": "Block submitting diagnostic data from device.",
"knoxBlockDiagnosticDataSubmissionName": "Diagnostic data submission (Samsung KNOX only)",
"knoxBlockFingerprintUnlockDescription": "Block using fingerprint to unlock device.",
"knoxBlockFingerprintUnlockName": "Fingerprint unlock (Samsung KNOX only)",
"knoxBlockGeolocationAndroidDescription": "When blocked, devices are disabled from using location information. When not configured, Intune does not change or update the default behavior on the device.",
"knoxBlockGeolocationDescription": "Specifies whether location services are enabled and can track the location of the device.",
"knoxBlockGeolocationName": "Geolocation (Samsung KNOX only)",
"knoxBlockJavaScriptDescription": "Block javascript in the browser.",
"knoxBlockJavaScriptName": "JavaScript (Samsung KNOX only)",
"knoxBlockNFCName": "NFC (Samsung KNOX only)",
"knoxBlockPopUpsDescription": "Block pop-ups in web browser.",
"knoxBlockPopUpsName": "Pop-ups (Samsung KNOX only)",
"knoxBlockRemovableStorageName": "Removable storage (Samsung KNOX only)",
"knoxBlockScreenshotDescription": "Block capturing contents of screen as an image.",
"knoxBlockScreenshotName": "Screen capture (Samsung KNOX only)",
"knoxBlockVoiceDialingName": "Voice dialing (Samsung KNOX only)",
"knoxBlockVoiceRoamingName": "Voice roaming (Samsung KNOX only)",
"knoxBlockWebBrowserDescription": "Block web browser on device.",
"knoxBlockWebBrowserName": "Web browser (Samsung KNOX only)",
"knoxBlockWiFiName": "Wi-Fi (Samsung KNOX only)",
"knoxBlockWiFiTetheringName": "Wi-Fi tethering (Samsung KNOX only)",
"knoxCellularDataDescription": "Block data usage over cellular networks. When not configured, data usage over cellular networks is allowed and editable by users.",
"knoxCellularDataName": "Cellular data channel (Samsung KNOX only)",
"knoxRequireEncryptionOnRemovableStorageDescription": "Storage cards must be encrypted. Not all devices support storage card encryption. For more information, see the device and mobile operating system documentation.",
"knoxRequireEncryptionOnRemovableStorageName": "Encryption on storage cards (Samsung KNOX only)",
"lEAPName": "LEAP",
"lTPOptionNativeType": "L2TP (Native type)",
"lanManagerAuthenticationLevelDesc": "This security setting determines which challenge/response authentication protocol is used for network logons.",
"lanManagerAuthenticationLevelName": "LAN Manager Authentication Level",
"lanManagerWorkstationDisableInsecureGuestLogonsDesc": "If you enable this setting, the SMB client will reject insecure guest logons.",
"lanManagerWorkstationEnableInsecureGuestLogonsDesc": "If you enable this policy setting or if you do not configure this policy setting, the SMB client will allow insecure guest logons. If not configured, the SMB client will reject insecure guest logons.",
"lanManagerWorkstationEnableInsecureGuestLogonsName": "Insecure Guest Logons",
"learnMore": "Learn more",
"learnMoreAboutVPNName": "Learn more about setting up a VPN",
"licenseFile": "License File",
"lidClosePowerActionBatteryDescription": "This policy setting specifies the action that Windows takes when a user closes the lid on a mobile PC when the device is powered by a battery.<br/>If you enable this policy setting, you must select the desired action.<br/>If you disable this policy setting or do not configure it, users can see and change this setting.",
"lidClosePowerActionName": "Lid close (mobile only)",
"lidClosePowerActionPluggedInDescription": "This policy setting specifies the action that Windows takes when a user closes the lid on a mobile PC when the device is plugged in.<br/>If you enable this policy setting, you must select the desired action.<br/>If you disable this policy setting or do not configure it, users can see and change this setting.",
"lifetimeDescription": "Specify the security association lifetime (key interval). Choose a whole value between 10 and 1440.",
"lifetimeName": "Lifetime (minutes)",
"limitCPUUsageDuringScanDescription": "Maximum CPU % usage during a scan (50 recommended).",
"limitCPUUsageDuringScanName": "CPU usage limit during a scan",
"limitCPUUsageDuringScanPlaceholder": "Enter CPU % usage (0-100)",
"localAccountOption": "Local account",
"localAddressInvalidError": "\nLocal addresses must be a comma separated list of valid tokens:\n\"*\" to indicate any local address which, if present, must be the only token included;\nIPv4 address or address range;\nIPv6 address or address range;\nA subnet.\n ",
"localAddressRangesDescription": "These local address ranges will be allowed over the VPN interface. <br>For a single IP address, enter the same address in both fields.",
"localAddressRangesName": "Local address ranges",
"localGuestAccountDesc": "When configured, a local guest account tile is added to the bottom-left of the devices sign-in screen. When the student clicks on the tile, the Take a Test app launches a focused test-taking environment with the specified assessment URL.",
"localGuestAccountName": "Local guest account",
"localGuestAccountOption": "Local guest account",
"localIdentifierDescription": "Local identifier description",
"localIdentifierName": "Local identifier",
"localPortRangesDescription": "\n List of allowed ports (e.g. 100-120, 200, 300-320).\n <br>\n For a single port, enter the same port number in both fields.\n <br>\n Local port range should be set only when protocol is either TCP or UDP (6 or 17), otherwise you will get an error trying to save the profile.\n ",
"localPortRangesName": "Local port ranges",
"localSecurityOptionsAccountsChevronName": "Accounts",
"localSecurityOptionsAdminApprovalModeText": "Admin Approval Mode",
"localSecurityOptionsAdminPlaceholder": "e.g admin01",
"localSecurityOptionsAdminText": "Admin",
"localSecurityOptionsAdministratorAccountNameDesc": "Define a different account name to be associated with the security identifier (SID) for the account “Administrator”.",
"localSecurityOptionsAdministratorAccountNameName": "Rename admin account",
"localSecurityOptionsAdministratorElevationPromptBehaviorDesc": "Define the behavior of the elevation prompt for admins in Admin Approval Mode.",
"localSecurityOptionsAdministratorElevationPromptBehaviorName": "Elevation prompt for admins",
"localSecurityOptionsAdministratorsAndInteractiveUsersName": "Administrators and Interactive Users",
"localSecurityOptionsAdministratorsAndPowerUsersName": "Administrators and Power Users",
"localSecurityOptionsAdministratorsName": "Administrators",
"localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndSharesDesc": "Windows allows anonymous users to perform certain activities, such as enumerating the names of domain accounts and network shares. Enable this policy to prevent anonymous enumeration of SAM accounts and shares.",
"localSecurityOptionsAllowAnonymousEnumerationOfSAMAccountsAndSharesName": "Anonymous enumeration of SAM accounts and shares",
"localSecurityOptionsAllowPKU2UAuthenticationRequestsDesc": "Block PKU2U authentication requests to this device to use online identities.",
"localSecurityOptionsAllowPKU2UAuthenticationRequestsName": "PKU2U authentication requests",
"localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerName": "Security Descriptor",
"localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerSwitchDesc": "Edit the default Security Descriptor Definition Language string to allow or deny users and groups to make remote calls to the SAM.",
"localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerSwitchName": "Restrict remote RPC connections to SAM",
"localSecurityOptionsAllowRemoteCallsToSecurityAccountsManagerTextPlaceholder": "Enter descriptor...",
"localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOnDesc": "Block the option to shut down the computer from the Windows logon screen. In this case, users must be able to log on to the computer successfully and before they can perform a system shutdown.",
"localSecurityOptionsAllowSystemToBeShutDownWithoutHavingToLogOnName": "Shutdown without logon",
"localSecurityOptionsAllowUIAccessApplicationElevationDesc": "Enable apps from unsecure locations in the file system to run with UIAccess integrity level.",
"localSecurityOptionsAllowUIAccessApplicationElevationName": "UIA integrity without secure location",
"localSecurityOptionsAllowUIAccessApplicationsForSecureLocationsDesc": "Allow UIAccess apps to prompt for elevation without using the secure desktop.",
"localSecurityOptionsAllowUIAccessApplicationsForSecureLocationsName": "UIA elevation prompt without secure desktop",
"localSecurityOptionsAllowUndockWithoutHavingToLogonDesc": "Prevent a portable computer from being undocked without having to log in.",
"localSecurityOptionsAllowUndockWithoutHavingToLogonName": "Undock device without logon",
"localSecurityOptionsBlockMicrosoftAccountsDesc": "Prevent users from adding new Microsoft accounts to this computer.",
"localSecurityOptionsBlockMicrosoftAccountsName": "Add new Microsoft accounts",
"localSecurityOptionsBlockRemoteLogonWithBlankPasswordDesc": "Block local accounts that are not password protected from logging on from locations other than the physical device.",
"localSecurityOptionsBlockRemoteLogonWithBlankPasswordName": "Remote log on without password",
"localSecurityOptionsBlockRemoteOpticalDriveAccessDesc": "Enabling this settings allows only interactively logged on user to access CD-ROM media.",
"localSecurityOptionsBlockRemoteOpticalDriveAccessName": "Restrict CD-ROM access to local active user",
"localSecurityOptionsBlockUsersInstallingPrinterDriversDesc": "Restrict installing printer drivers as part of connecting to a shared printer to admins only.",
"localSecurityOptionsBlockUsersInstallingPrinterDriversName": "Install printer drivers for shared printers",
"localSecurityOptionsClearVirtualMemoryPageFileDesc": "Clear the virtual memory pagefile when the device is powered down.",
"localSecurityOptionsClearVirtualMemoryPageFileName": "Clear virtual memory pagefile when shutting down",
"localSecurityOptionsClientDigitallySignCommunicationsAlwaysDesc": "This security setting determines whether packet signing is required by the SMB client component. If this setting is enabled, the Microsoft network client will not communicate with a Microsoft network server unless that server agrees to perform SMB packet signing. If this policy is disabled (default), SMB packet signing is negotiated between the client and server.",
"localSecurityOptionsClientDigitallySignCommunicationsAlwaysName": "Digitally sign communications (always)",
"localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServersDesc": "Enable this setting to block the Server Message Block (SMB) redirector from sending plaintext passwords to non-Microsoft SMB servers that do not support password encryption during authentication.",
"localSecurityOptionsClientSendUnencryptedPasswordToThirdPartySMBServersName": "Send unencrypted password to third-party SMB servers",
"localSecurityOptionsDetectApplicationInstallationsAndPromptForElevationDesc": "App installations requiring elevated privileges will prompt for admin credentials.",
"localSecurityOptionsDetectApplicationInstallationsAndPromptForElevationName": "Elevated prompt for app installations",
"localSecurityOptionsDevicesChevronName": "Devices",
"localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgreesDesc": "This security setting determines whether the SMB client attempts to negotiate SMB packet signing. If this setting is enabled (default), the Microsoft network client will ask the server to perform SMB packet signing upon session setup. If packet signing has been enabled on the server, packet signing will be negotiated. If this policy is disabled, the SMB client will never negotiate SMB packet signing.",
"localSecurityOptionsDisableClientDigitallySignCommunicationsIfServerAgreesName": "Digitally sign communications (if server agrees)",
"localSecurityOptionsDisableServerDigitallySignCommunicationsAlwaysDesc": "This security setting determines whether packet signing is required by the SMB server component. If this setting is enabled, the Microsoft network server will not communicate with a Microsoft network client unless that client agrees to perform SMB packet signing. If this setting is disabled, SMB packet signing is negotiated between the client and server. Default: Disabled.",
"localSecurityOptionsDisableServerDigitallySignCommunicationsAlwaysName": "Digitally sign communications (always)",
"localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgreesDesc": "This security setting determines whether the SMB server will negotiate SMB packet signing with clients that request it. If this setting is enabled, the Microsoft network server will negotiate SMB packet signing as requested by the client. That is, if packet signing has been enabled on the client, packet signing will be negotiated. If this policy is disabled, the SMB client will never negotiate SMB packet signing. Default: Disabled",
"localSecurityOptionsDisableServerDigitallySignCommunicationsIfClientAgreesName": "Digitally sign communications (if client agrees)",
"localSecurityOptionsDisplayText": "Display",
"localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccountsDesc": "Windows allows anonymous users to perform certain activities, such as enumerating the names of domain accounts and network shares. Enable this setting to allow anonymous users to enumerate the SAM accounts.",
"localSecurityOptionsDoNotAllowAnonymousEnumerationOfSAMAccountsName": "Anonymous enumeration of SAM accounts",
"localSecurityOptionsDoNotRequireCtrlAltDelDesc": "Require CTRL+ALT+DEL to be pressed before a user can log on.",
"localSecurityOptionsDoNotRequireCtrlAltDelName": "Require CTRL + ALT + DEL to log on",
"localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChangeDesc": "This security setting determines if, at the next password change, the LAN Manager (LM) hash value for the new password is stored. Its not stored by default.",
"localSecurityOptionsDoNotStoreLANManagerHashValueOnNextPasswordChangeName": "LAN Manager hash value stored on password change",
"localSecurityOptionsEnableAdministratorAccountDesc": "This security setting determines whether the local Administrator account is enabled or disabled.",
"localSecurityOptionsEnableAdministratorAccountName": "Local admin account",
"localSecurityOptionsEnableGuestAccountDesc": "This security setting determines if the Guest account is enabled or disabled.",
"localSecurityOptionsEnableGuestAccountName": "Guest account",
"localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserDesc": "Define who is allowed to format and eject removable NTFS media.",
"localSecurityOptionsFormatAndEjectOfRemovableMediaAllowedUserName": "Format and eject removable media",
"localSecurityOptionsGuestAccountNameDesc": "Define a different account name to be associated with the security identifier (SID) for the account “Guest”.",
"localSecurityOptionsGuestAccountNameName": "Rename guest account",
"localSecurityOptionsGuestPlaceholder": "e.g guest01",
"localSecurityOptionsGuestText": "Guest",
"localSecurityOptionsHideLastSignedInUserDesc": "Do not display the username of the last person who signed in on this device.",
"localSecurityOptionsHideLastSignedInUserName": "Hide last signed-in user",
"localSecurityOptionsHideUsernameAtSignInDesc": "Do not display the username of the person signing in to this device after credentials are entered and before the devices desktop is shown.",
"localSecurityOptionsHideUsernameAtSignInName": "Hide username at sign in",
"localSecurityOptionsInformationShownOnLockScreenDesc": "Configure the user information that is displayed when the session is locked. If not configured, user display name, domain and username are shown.",
"localSecurityOptionsInformationShownOnLockScreenDoNotDisplayUserInformationName": "Do not display user information",
"localSecurityOptionsInformationShownOnLockScreenName": "User information on lock screen",
"localSecurityOptionsInformationShownOnLockScreenNotConfiguredName": "User display name, domain and user names",
"localSecurityOptionsInformationShownOnLockScreenUserDisplayNameOnlyName": "User display name only",
"localSecurityOptionsInteractiveLogonChevronName": "Interactive Logon",
"localSecurityOptionsLmAndNltmName": "LM and NTLM",
"localSecurityOptionsLmAndNtlmOnlyName": "NTLM",
"localSecurityOptionsLmAndNtlmV2Name": "NTLMv2",
"localSecurityOptionsLmNtlmAndNtlmV2Name": "LM, NTLM and NTLMv2",
"localSecurityOptionsLmNtlmV2AndNotLmName": "NTLMv2 and not LM",
"localSecurityOptionsLmNtlmV2AndNotLmOrNtmName": "NTLMv2 and not LM or NTLM",
"localSecurityOptionsLogOnMessageTextDesc": "Set message text for users attempting to log in.",
"localSecurityOptionsLogOnMessageTextName": "Login message text",
"localSecurityOptionsLogOnMessageTextPlaceholder": "e.g. Use your corporate login…",
"localSecurityOptionsLogOnMessageTitleDesc": "Set message title for users attempting to log in.",
"localSecurityOptionsLogOnMessageTitleName": "Login message title",
"localSecurityOptionsLogOnMessageTitlePlaceholder": "e.g. Welcome to Microsoft…",
"localSecurityOptionsMachineInactivityLimitDesc": "Define maximum minutes of inactivity on the interactive desktops login screen until the screen saver runs.",
"localSecurityOptionsMachineInactivityLimitName": "Minutes of lock screen inactivity until screen saver activates",
"localSecurityOptionsMachineInactivityLimitPlaceholderText": "Enter number in minutes (0 - 9999)",
"localSecurityOptionsMicrosoftNetworkClientName": "Microsoft Network Client",
"localSecurityOptionsMicrosoftNetworkServerName": "Microsoft Network Server",
"localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClientsDesc": "This security setting allows a client to require the negotiation of 128-bit encryption and/or NTLMv2 session security.",
"localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedClientsName": "Minimum Session Security For NTLM SSP Based Clients",
"localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServersDesc": "This security setting allows a server to require the negotiation of 128-bit encryption and/or NTLMv2 session security.",
"localSecurityOptionsMinimumSessionSecurityForNtlmSspBasedServersName": "Minimum Session Security For NTLM SSP Based Server",
"localSecurityOptionsNetworkAccessAndSecurityChevronName": "Network access and security",
"localSecurityOptionsNotConfiguredName": "Not configured",
"localSecurityOptionsNtlmV2And128BitEncryptionName": "NTLMv2 and 128-bit encryption",
"localSecurityOptionsOnlyElevateSignedExecutablesDesc": "Enforce PKI certification path validation for a given executable file before it is permitted to run.",
"localSecurityOptionsOnlyElevateSignedExecutablesName": "Only elevate executable files that are signed and validated",
"localSecurityOptionsRecoveryConsoleAndShutdownChevronName": "Recovery console and shutdown",
"localSecurityOptionsRequire128BitEncryptionName": "Require 128-bit encryption",
"localSecurityOptionsRequireNtmlV2SessionSecurityName": "Require NTLMv2 session security",
"localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndSharesDesc": "By default, this security setting restricts anonymous access to shares and pipes to the settings for Named pipes that can be accessed anonymously and Shares that can be accessed anonymously",
"localSecurityOptionsRestrictAnonymousAccessToNamedPipesAndSharesName": "Anonymous access to Named Pipes and Shares",
"localSecurityOptionsSmartCardRemovalBehaviorDesc": "This security setting determines what happens when the smart card for a logged-on user is removed from the smart card reader.",
"localSecurityOptionsSmartCardRemovalBehaviorDisconnectRemoteDesktopSession": "Disconnect if a Remote Desktop Services session",
"localSecurityOptionsSmartCardRemovalBehaviorForceLogoff": "Force Logoff",
"localSecurityOptionsSmartCardRemovalBehaviorLockWorkstation": "Lock workstation",
"localSecurityOptionsSmartCardRemovalBehaviorName": "Smart card removal behavior",
"localSecurityOptionsSmartCardRemovalBehaviorNoAction": "No Action",
"localSecurityOptionsStandardUserElevationPromptBehaviorDesc": "Define the behavior of the elevation prompt for standard users.",
"localSecurityOptionsStandardUserElevationPromptBehaviorName": "Elevation prompt for standard users",
"localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevationDesc": "Enable all elevation requests to go to the interactive user's desktop rather than the secure desktop. Prompt behavior policy settings for admins and standard users are used.",
"localSecurityOptionsSwitchToSecureDesktopWhenPromptingForElevationName": "Route elevation prompts to users interactive desktop",
"localSecurityOptionsUIAElevationPromptText": "UIA elevation prompt behavior",
"localSecurityOptionsUseAdminApprovalModeDesc": "",
"localSecurityOptionsUseAdminApprovalModeForAdministratorsDesc": "Define whether Admin Approval Mode and all UAC policy settings are enabled.",
"localSecurityOptionsUseAdminApprovalModeForAdministratorsName": "Run all admins in Admin Approval Mode",
"localSecurityOptionsUseAdminApprovalModeName": "Admin Approval Mode For Built-in Administrator",
"localSecurityOptionsUserAccountControlChevronName": "User account control",
"localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocationsDesc": "Determine whether app write failures are redirected to defined registry and file system locations instead of causing the app to fail.",
"localSecurityOptionsVirtualizeFileAndRegistryWriteFailuresToPerUserLocationsName": "Virtualize file and registry write failures to per-user locations",
"localSecurityOptionsautomaticallyDenyElevationRequestsName": "Automatically deny elevation requests",
"localSecurityOptionselevateWithoutPromptingName": "Elevate without prompting",
"localSecurityOptionspromptForConsentForNonWindowsBinariesName": "Prompt for consent for non-Windows binaries",
"localSecurityOptionspromptForConsentName": "Prompt for consent",
"localSecurityOptionspromptForConsentOnTheSecureDesktopName": "Prompt for consent on the secure desktop",
"localSecurityOptionspromptForCredentialsName": "Prompt for credentials",
"localSecurityOptionspromptForCredentialsOnTheSecureDesktopName": "Prompt for credentials on the secure desktop",
"localServerCachingHeader": "Local Server Caching",
"localStoreDescription": "Apply global firewall rules from the local store to be recognized and enforced.",
"localStoreName": "Microsoft Defender Firewall rules from the local store",
"lockScreenAllowTimeoutConfigurationDescription": "Specify whether to show a user-configurable setting to control the screen timeout while on the lock screen of Windows 10 Mobile devices. If this policy is set to Allow, the value set by \"Screen timeout\" is ignored.",
"lockScreenAllowTimeoutConfigurationName": "User configurable screen timeout (mobile only)",
"lockScreenBackgroundImageURLDescription": "Custom welcome screen background image URL. Must be a .png file with endpoint https://",
"lockScreenBackgroundImageURLExample": "e.g. https://...png",
"lockScreenBackgroundImageURLName": "Welcome screen background image URL",
"lockScreenBlockCortanaDescription": "Block the user from interacting with Cortana through speech while the system is locked.",
"lockScreenBlockCortanaName": "Cortana on locked screen (Desktop only)",
"lockScreenBlockToastNotificationsDescription": "Block toast notifications above the device lock screen.",
"lockScreenBlockToastNotificationsName": "Toast notifications on locked screen",
"lockScreenMessageDescription": "Specify optional text displayed on the locked screen. The \"All, except when specified\" Language message is shown if a custom message is not specified for a device's default language. ",
"lockScreenMessageGridHeader": "Localized lock screen message",
"lockScreenMessageHint": "(max 4096 characters)",
"lockScreenMessageLearnMoreLink": "https://docs.microsoft.com/en-us/mem/intune/configuration/device-restrictions-android-for-work",
"lockScreenMessageLearnMoreText": "Learn more about lock screen messages. ",
"lockScreenMessageLengthValidation": "Input can't exceed 4096 characters.",
"lockScreenMessageName": "Lock screen message",
"lockScreenMessagesSummaryKey": "Lock Screen Message",
"lockScreenTimeoutInSecondsDescription": "Set the duration (in seconds) from the screen locking to the screen turning off for Windows 10 Mobile devices. Supported values are 11-1800.",
"lockScreenTimeoutInSecondsName": "Screen timeout (mobile only)",
"lockScreenTimeoutInSecondsPlaceholder": "Enter number of seconds (11-1800)",
"lockdownTenantRequireNetworkDuringOutOfBoxExperienceDescription": "Prevent the user from proceeding past the Network page in Windows setup until the device successfully connects to a network.",
"lockdownTenantRequireNetworkDuringOutOfBoxExperienceName": "Require users to connect to network during device setup",
"loggingReportLocationDescription": "Where to get reports (through post messages) about websites turned on in Enterprise mode.",
"loggingReportLocationName": "Logging report location URL",
"loginGroupOrDomain": "Login group or domain",
"loginItemsCustomItemsTableDescription": "Enter the path of the file, folder, or custom app that you want to open at login. Apps that have been built or customized for your org are typically located in the Applications folder, with a path that looks like <i>/Applications/Example.app</i>",
"loginItemsCustomItemsTableName": "Add the files, folders, and custom apps that will launch at login",
"loginWindowAdminShowHostInfoDescription": "Show the host name and macOS version when the menu bar is clicked.",
"loginWindowAdminShowHostInfoName": "Show additional information in the menu bar",
"loginWindowAppleMenuHeaderDescription": "After users log in, they can access Software Update, System Preferences, and all power settings from the Apple Menu.",
"loginWindowAppleMenuHeaderName": "Apple Menu",
"loginWindowConsoleAccessDisabledName": "Disable user login from Console",
"loginWindowFormatDescription": "Choose how users log in to the device. Require users to type a username and password; or set to not configured to require users to select their username from a list, and then type their password. If you choose the latter, more settings will appear to let you control the visibility of the list.",
"loginWindowFormatListAuthorizedUsersOptionName": "List all users, prompt for password",
"loginWindowFormatName": "Require username and password text fields",
"loginWindowFormatUsernamePasswordOptionName": "Prompt for username and password",
"loginWindowLayoutHeader": "Window Layout",
"loginWindowLogOutDisabledWhileLoggedInName": "Disable Log Out while logged in",
"loginWindowOtherHeader": "Other",
"loginWindowPowerOffDisabledWhileLoggedInName": "Disable Power Off while logged in",
"loginWindowPowerSettingsHeader": "Login screen power settings",
"loginWindowRestartDisabledName": "Hide restart button",
"loginWindowRestartDisabledWhileLoggedInName": "Disable Restart while logged in",
"loginWindowScreenLockDisableImmediateDescription": "Available on macOS 10.13 and later.",
"loginWindowScreenLockDisableImmediateName": "Disable Lock Screen while logged in",
"loginWindowShutDownDisabledName": "Hide shut down button",
"loginWindowShutDownDisabledWhileLoggedInName": "Disable Shut Down while logged in",
"loginWindowSleepDisabledUsersName": "Hide sleep button",
"loginWindowTextDescription": "A message that appears to users on the login screen. The message could be, for example, a welcome, a warning, or your organizations lost and found contact information.",
"loginWindowTextName": "Banner",
"longSupportMessageDefault": "The organization's IT admin can monitor and manage apps and data associated with this device, including settings, permissions, corporate access, network activity and the device's location information.",
"longSupportMessageDescription": "A long support message is text shown to the end user by the platform in the Device Policy page in Settings > Security > Device admin apps. Per the platform, this is usually accessible by clicking \"Learn More\" in a short support message's dialog. The \"All\" Language message is shown if a custom message is not specificed for the device's default language. ",
"longSupportMessageGridHeader": "Localized long support message",
"longSupportMessageName": "Long support message",
"longSystemMessageHint": "(max 4096 characters)",
"longSystemMessageLengthValidation": "Input can't exceed 4096 characters.",
"longSystemMessagesSummaryKey": "Long Support Message",
"low": "Low",
"lowOption": "Low",
"lowSecurityBiometricOption": "Low security biometric",
"lowSeverity": "Low severity",
"lowerIPv4AddressName": "Lower IPv4 address",
"lowerPortName": "Lower port",
"mD5": "MD5",
"mSCHAPName": "Microsoft CHAP (MS-CHAP)",
"mTUSizeInBytesBounds": "MTU must be between 1280 and 1400 bytes",
"mTUSizeInBytesName": "Maximum transmission unit",
"mTUSizeInBytesToolTip": "The largest packet of data, in bytes, that can be transmitted on the network. When not configured, the Apple default size is 1280 bytes. Applies to iOS 14 and later.",
"macAppStoreAndIdentifiedDevelopersOption": "Mac App Store and identified developers",
"macAppStoreOption": "Mac App Store",
"macBlockClassroomAppRemoteScreenObservationDescription": "Blocks AirPlay, screen sharing to other devices, and a Classroom app feature used by teachers to view their students' screens. This setting isn't available if you've blocked screenshots.",
"macBlockClassroomAppRemoteScreenObservationName": "Disable AirPlay, view screen by Classroom app, and screen sharing",
"macBlockICloudPhotoLibraryName": "Block iCloud Photos backup",
"macBlockScreenshotName": "Block screenshots and screen recording",
"macBlockSimplePasswordsName": "Block simple passwords",
"macBundleIdentifierExample": "com.company.application",
"macClassroomAppForceUnpromptedScreenObservationDescription": "Unprompted observation means that teachers can view screens without warning students first. This setting isn't available if you've blocked screenshots.",
"macClassroomAppForceUnpromptedScreenObservationName": "Allow Classroom app to perform AirPlay and view screen without prompting",
"macDeviceFeaturesAirprintHeader": "Use these settings to configure macOS devices to automatically connect to AirPrint compatible printers on your network. You'll need the IP address and resource path of your printers.<br><br><a href=\"https://go.microsoft.com/fwlink/?linkid=2100064\" target=\"_blank\">Learn more about obtaining printer IP addresses.</a>",
"macDeviceFeaturesAirprintHelpLinkText": "Learn more about obtaining printer IP addresses",
"macDeviceFeaturesAssociatedDomainsHeader": "Configure associated domains to share data and sign-in credentials between your orgs apps and websites. This profile can be applied to devices running macOS 10.15 or later.",
"macDeviceFeaturesExtensibleSingleSignOnHeader": "Configure an app extension that enables single sign-on (SSO) for devices running macOS 10.15 or later.",
"macDeviceFeaturesLoginItemsHeader": "Choose which apps, files, and folders open when users log in to their devices. If you don't want users to change how the selected apps open, you can hide the app from the user configuration.",
"macDeviceFeaturesLoginWindowHeader": "Configure the appearance of the macOS login screen and the functions that are available to users before and after they log in.",
"macExtensionsKernelExtensionsHeader": "Use these settings to configure kernel extension policy on macOS devices running 10.13.2 or later.",
"macExtensionsSystemExtensionsHeader": "Use these settings to configure system extension policy on macOS devices running 10.15 or later.",
"macFailedLoginResetInMinutesDescription": "How long the lockout will last, in number of minutes. During a device lockout, the sign-in screen becomes inactive so that the user can't sign in. As soon as the lockout ends, the user can try to sign in again.<br>For devices running macOS 10.10 or later.",
"macFailedLoginResetInMinutesName": "Lockout duration",
"macFileVaultDeferCountDescription": "Set the number of times the user can ignore prompts to enable FileVault before FileVault will be required for the user to sign in. Set to '0' to require FileVault to be enabled at the next login. Set to 'No limit, always prompt' to always prompt the user to enable FileVault, however the user will never be required to do so. Set to 'Disable' to disable this feature.",
"macFileVaultDeferCountName": "Number of times allowed to bypass",
"macFileVaultDeferDisablePromptDescription": "Disable the prompt for the user to enable FileVault when they sign out.",
"macFileVaultDeferDisablePromptName": "Disable prompt at sign out",
"macFileVaultDeferUnlimited": "No limit, always prompt",
"macFileVaultEnableName": "Enable FileVault",
"macFileVaultForceReEncryptionDescription": "Available for macOS 10.15 and later. If enabled, Intune will de-crypt the encrypted macOS device, and then re-encrypt it, applying all other settings youve configured on this page.",
"macFileVaultForceReEncryptionName": "Take over encryption",
"macFileVaultHeader": "Enable Full Disk Encryption using XTS-AES 128 with FileVault 2.",
"macFileVaultHideRecoveryKeyDescription": "A hidden personal recovery key does not appear on the user's screen during FileVault encryption, reducing the risk of it ending up in the wrong hands.",
"macFileVaultHideRecoveryKeyName": "Hide recovery key",
"macFileVaultPersonalRecoveryKeyHeader": "A personal recovery key will be generated for the device during encryption. The following settings will apply to that personal recovery key.",
"macFileVaultPersonalRecoveryLocationDescription": "Remind users how to retrieve their stored personal recovery key. They'll see this message if they try to sign in to their device with the recovery key option on the lock screen, or if they manually disable and re-enable FileVault.",
"macFileVaultPersonalRecoveryLocationHint": "Example message: \"You can retrieve the personal recovery key for your macOS device from the Microsoft Intune app, Company Portal website, or Company Portal apps for Android and iOS/iPadOS. Contoso support cannot access recovery keys that belong to personal devices.\"",
"macFileVaultPersonalRecoveryLocationName": "Escrow location description of personal recovery key",
"macFileVaultPersonalRecoveryRotationDescription": "Specify how frequently in months the personal recovery key for this device will rotate.",
"macFileVaultPersonalRecoveryRotationName": "Personal recovery key rotation",
"macFileVaultRecoveryKeyTypeDescription": "Determine which type of recovery key should be generated for this device. Currently, there is only support for a personal recovery key to be set during encryption.",
"macFileVaultRecoveryKeyTypeName": "Recovery key type",
"macFileVaultRecoveryKeyTypePersonal": "Personal key",
"macFirewallAppsHeader": "Allow or block incoming connections for specific apps.",
"macFirewallBlockAllIncomingDescription": "Block all incoming connections except those required for basic Internet services such as DHCP, Bonjour, and IPSec. This will block all sharing services.",
"macFirewallBlockAllIncomingName": "Block all incoming connections",
"macFirewallBundleIdHint": "com.company.app",
"macFirewallBundleIdName": "Bundle identifier",
"macFirewallEnableFirewallDescription": "Enable Firewall to configure how incoming connections are handled in your environment.",
"macFirewallEnableFirewallName": "Enable Firewall",
"macFirewallEnableStealthModeDescription": "Enabling stealth mode prevents the computer from responding to probing requests. The computer still answers incoming requests for authorized apps.",
"macFirewallEnableStealthModeName": "Enable stealth mode",
"macFirewallHeader": "Use firewall to protect devices from unauthorized network access by controlling connections on a per-app basis.",
"macFirewallTableName": "App lists",
"macForceClassroomAutomaticallyJoinClassesDescription": "Students can join a class without prompting the teacher.",
"macForceClassroomAutomaticallyJoinClassesName": "Students can automatically join Classroom class without prompting",
"macForceClassroomUnpromptedAppAndDeviceLockDescription": "Teachers can lock a student's device or app without the student's approval.",
"macForceClassroomUnpromptedAppAndDeviceLockName": "Allow Classroom to lock the device without prompting",
"macGeneralDomainsHeader": "Emails that the user sends or receives which don't match the domains you specify here will be marked as untrusted.",
"macGeneralPrivacyPreferencesHeader": "Configure an app's access to specific data, folders, and apps on a device. These settings apply to devices running macOS Mojave 10.14 and later.",
"macKernelExtensionsAllowUserOverridesDescription": "Identifiers that define which validly signed kernel extensions will be allowed to load.",
"macKernelExtensionsAllowUserOverridesName": "Allow user overrides",
"macKernelExtensionsAllowedExtensionsBundleIdColumnName": "Bundle identifier",
"macKernelExtensionsAllowedExtensionsTableDescription": "Bundle identifier and team identifiers of kernel extensions that will be allowed. Use an empty team identifier for unsigned legacy kernel extensions.",
"macKernelExtensionsAllowedExtensionsTableName": "Allowed kernel extensions",
"macKernelExtensionsAllowedExtensionsTeamIdColumnName": "Team identifier",
"macKernelExtensionsAllowedTeamIdsTableDescription": "Identifiers that define which validly signed kernel extensions will be allowed to load.",
"macKernelExtensionsAllowedTeamIdsTableName": "Allowed team identifiers",
"macNumberOfSignInFailuresBeforeLockDescription": "The maximum number (2-11)of times that a user can try to sign in (consecutively) before their device locks them out. ",
"macNumberOfSignInFailuresBeforeLockName": "Maximum allowed sign-in attempts",
"macOSAllowAllAppsAccess": "Allow all apps access to private key",
"macOSAppleEventReceiverAccessName": "Access",
"macOSAppleEventReceiverCodeRequirementDescription": "See the Intune docs to learn how to request and enter the code requirement. <a href=\"https://aka.ms/AA7allw\">Learn more</a>",
"macOSAppleEventReceiverCodeRequirementEmptyValue": "(anchor apple generic and certificate leaf [field.1.2.345.678901.234.5.6.7] /* exists */ or anchor apple) and identifier \"com.apple.appname.ui\"",
"macOSAppleEventReceiverCodeRequirementName": "Code requirement",
"macOSAppleEventReceiverIdentifierDescription": "Enter the bundle ID or file path of an app, process, or executable.",
"macOSAppleEventReceiverIdentifierName": "Identifier",
"macOSAppleEventReceiverIdentifierTypeDescription": "A bundle ID is used to identify an app; a path is used to identify a process or executable.",
"macOSAppleEventReceiverIdentifierTypeName": "Identifier type",
"macOSAppleEventReceiverTableDescription": "Allow the app or process to send a restricted Apple event to another app or process. You will need to know the identifier, identifier type, and code requirement of the receiving app or process.",
"macOSAppleEventReceiverTableName": "Apple events",
"macOSPrivacyAccessControlItemAccessibilityDescription": "Control access to the accessibility app on the device, which houses features such as closed captions, hover text, and voice control.",
"macOSPrivacyAccessControlItemAccessibilityName": "Accessibility",
"macOSPrivacyAccessControlItemAddressBookName": "Contacts",
"macOSPrivacyAccessControlItemAppAccessHeader": "Configure app access",
"macOSPrivacyAccessControlItemBlockCameraName": "Block Camera",
"macOSPrivacyAccessControlItemBlockListenEventDescription": "A way for apps and processes to listen to and collect data from input devices such as a mouse, keyboard, or trackpad. Block if you dont want apps and processes to have access to this data. Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemBlockListenEventName": "Block input monitoring",
"macOSPrivacyAccessControlItemBlockMicrophoneName": "Block Microphone",
"macOSPrivacyAccessControlItemBlockScreenCaptureDescription": "Block app from capturing contents of system display. Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemBlockScreenCaptureName": "Block screen recording",
"macOSPrivacyAccessControlItemCalendarName": "Calendar",
"macOSPrivacyAccessControlItemCodeRequirementDescription": "See the Intune docs to learn how to request and enter the code requirement. <a href=\"https://aka.ms/AA7allw\">Learn more</a>",
"macOSPrivacyAccessControlItemCodeRequirementEmptyValue": "(anchor apple generic and certificate leaf [field.1.2.345.678901.234.5.6.7] /* exists */ or anchor apple) and identifier \"com.apple.appname.ui\"",
"macOSPrivacyAccessControlItemCodeRequirementName": "Code requirement",
"macOSPrivacyAccessControlItemDisplayNameDescription": "The display name of the app, process, or executable.",
"macOSPrivacyAccessControlItemDisplayNameEmptyValue": "AppName",
"macOSPrivacyAccessControlItemDisplayNameName": "Name",
"macOSPrivacyAccessControlItemFileProviderPresenceDescription": "Control access to the user's file activity. If allowed, the app can know when a user accesses files managed by a file provider and what app they were using to access them. Requires macOS 10.15 and later.",
"macOSPrivacyAccessControlItemFileProviderPresenceName": "File provider presence",
"macOSPrivacyAccessControlItemIdentifierDescription": "Enter the bundle ID or file path of an app, process, or executable.",
"macOSPrivacyAccessControlItemIdentifierEmptyValue": "com.MyCompany.AppName",
"macOSPrivacyAccessControlItemIdentifierName": "Identifier",
"macOSPrivacyAccessControlItemIdentifierTypeDescription": "A bundle ID is used to identify an app; a path is used to identify a process or executable.",
"macOSPrivacyAccessControlItemIdentifierTypeName": "Identifier type",
"macOSPrivacyAccessControlItemMediaLibraryDescription": "Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemMediaLibraryName": "Media library",
"macOSPrivacyAccessControlItemPhotosDescription": "Images wont be protected from an app or process if theyre stored somewhere other than the Photos app.",
"macOSPrivacyAccessControlItemPhotosName": "Photos",
"macOSPrivacyAccessControlItemPostEventDescription": "Control access to CoreGraphics APIs, which are used to send CGEvents to the system event stream.",
"macOSPrivacyAccessControlItemPostEventName": "System events",
"macOSPrivacyAccessControlItemRemindersName": "Reminders",
"macOSPrivacyAccessControlItemSpeechRecognitionDescription": "Allow or block access to system speech recognition facility. Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemSpeechRecognitionName": "Speech recognition",
"macOSPrivacyAccessControlItemStaticCodeValidationDescription": "Statically validates the code requirement. Use this setting if the process invalidates its dynamic code signature.",
"macOSPrivacyAccessControlItemStaticCodeValidationName": "Enable static code validation",
"macOSPrivacyAccessControlItemSystemPolicyAllFilesDescription": "Control access to all protected files on a device. Files might be in locations such as emails, messages, apps, and administrative settings. Apply this setting with caution.",
"macOSPrivacyAccessControlItemSystemPolicyAllFilesName": "Full disk access",
"macOSPrivacyAccessControlItemSystemPolicyDesktopFolderDescription": "Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemSystemPolicyDesktopFolderName": "Desktop folder",
"macOSPrivacyAccessControlItemSystemPolicyDocumentsFolderDescription": "Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemSystemPolicyDocumentsFolderName": "Documents folder",
"macOSPrivacyAccessControlItemSystemPolicyDownloadsFolderDescription": "Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemSystemPolicyDownloadsFolderName": "Downloads folder",
"macOSPrivacyAccessControlItemSystemPolicyNetworkVolumesDescription": "Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemSystemPolicyNetworkVolumesName": "Network volumes",
"macOSPrivacyAccessControlItemSystemPolicyRemovableVolumesDescription": "Requires macOS 10.15 or later.",
"macOSPrivacyAccessControlItemSystemPolicyRemovableVolumesName": "Removable volumes",
"macOSPrivacyAccessControlItemSystemPolicySystemAdminFilesDescription": "MacOSPrivacyAccessControlItemSystemPolicySystemAdminFilesDescription",
"macOSPrivacyAccessControlItemSystemPolicySystemAdminFilesName": "System admin files",
"macOSSoftwareUpdatePolicyAlwaysSchedule": "Update at next check-in",
"macOSSoftwareUpdatePolicyBehaviorSettingsName": "Update policy behavior settings",
"macOSSoftwareUpdatePolicyDefinedScheduleAllow": "Update during scheduled time",
"macOSSoftwareUpdatePolicyDefinedSchedulePrevent": "Update outside of scheduled time",
"macOSSoftwareUpdatePolicyScheduleSettingsName": "Update policy schedule settings",
"macOSSoftwareUpdatePolicyScheduleTypeDescription": "When updates will be available to install. Updates made during or outside of scheduled times require additional input.",
"macOSSoftwareUpdatePolicyScheduleTypeName": "Schedule type",
"macOSSoftwareUpdatePolicySectionDescription": "Create a profile to force assigned devices to automatically install the latest macOS updates. These settings determine how and when software updates deploy. This profile doesn't prevent users from updating the OS manually. Updates will only apply to devices enrolled through Apple's Automated Device Enrollment (with ABM or ASM).",
"macOSSoftwareUpdatePolicySectionDescriptionLearnMoreText": "Learn More",
"macOSSoftwareUpdatePolicySupervisedLearnMoreText": "Learn More",
"macOSSoftwareUpdatePolicySupervisedName": "Create a profile to force assigned devices to automatically install the latest macOS updates. These settings determine how and when software updates deploy. This profile doesn't prevent users from updating the OS manually. Updates will only apply to supervised devices.",
"macOSSoftwareUpdatePolicyWeeklyScheduleName": "Weekly schedule",
"macOSSoftwareUpdateSelectScheduleTypeName": "By default, when an update policy is assigned to a device, Intune deploys the latest updates at device check-in. You can instead create a weekly schedule with customized start and end times. If you choose to update outside of the scheduled time, Intune won't deploy updates until the scheduled time ends.",
"macOSSoftwareUpdateSelectUpdateBehaviorName": "Select how downloads, installations, and/or notifications should occur for each type of update.",
"macOSSystemExtensionsExtensionTypeName": "Allowed system extension types",
"macRequireClassroomRequestPermissionToLeaveClassesDescription": "Students enrolled in an unmanaged Classroom course must get teacher consent to leave the course.",
"macRequireClassroomRequestPermissionToLeaveClassesName": "Require teacher permission to leave Classroom app unmanaged classes",
"macRequirePasswordName": "Require password",
"macSystemExtensionsAllowedExtensionTypesTableDescription": "For devices running macOS 10.15 or later. Select the system extension types that can be installed on the device for a given team ID. Configuring this setting for a team ID found in allowed system extensions could prevent those system extensions from running if they are not an allowed type. If a team ID is specified in allowed team identifiers and not in this one as well, then all extension types will be allowed for that specific team ID.",
"macSystemExtensionsAllowedExtensionTypesTableName": "Allowed system extension types",
"macSystemExtensionsAllowedExtensionsTableDescription": "For devices running macOS 10.15 or later. Allow specific system extensions to always run on the device by adding the bundle ID and team ID of the extension. If you configure this setting and want specific extension types that are allowed, configure the system extension type setting by adding the team ID there as well. Entering a team ID that matches a team ID in allowed team identifiers will prevent the policy from being properly deployed.",
"macSystemExtensionsAllowedExtensionsTableName": "Allowed system extensions",
"macSystemExtensionsAllowedTeamIdsTableDescription": "For devices running macOS 10.15 or later. A team identifier is 10 alphanumeric characters long. Any system extension signed with the team IDs you enter will be allowed and trusted on devices. You can find your team ID on <a href=\"https://developer.apple.com/\">developer.apple.com</a>. If you configure this setting and want specific extension types that are allowed, configure the system extension type setting by adding the team ID there as well. Entering a team ID that matches a team ID in allowed system extensions will prevent the policy from being properly deployed.",
"macSystemExtensionsAllowedTeamIdsTableName": "Allowed team identifiers",
"macSystemExtensionsBlockUserOverridesDescription": "For devices running macOS 10.15 or later. Blocks device users from approving system extensions that aren't on the allowed list. When not configured, users are allowed to approve unknown extensions even if those extensions are not listed in the configuration profile.",
"macSystemExtensionsBlockUserOverridesName": "Block user overrides",
"macTeamIdentifierExample": "e.g. ABCDE12345",
"macTouchIdTimeoutInHoursDescription": "Maximum hours after which the user must enter their password to unlock the device instead of using Touch ID. Available for devices running macOS 12 and later. ",
"macTouchIdTimeoutInHoursEmptyValueKey": "Enter number of hours (1-65535)",
"macTouchIdTimeoutInHoursName": "Timeout (hours of inactivity)",
"machineAuthentication": "Machine authentication",
"machineCertificatesName": "Machine Certificates",
"maintenanceWindowForUpdatesName": "Maintenance window for updates",
"managedAppOption": "Managed App",
"managedPasteboardRequiredDescription": "Open-in management controls how people share data between unmanaged and managed apps. If you configure this setting, Intune will enforce copy/paste restrictions based on how you configured Block viewing corporate documents in unmanaged apps and Block viewing non-corporate documents in corporate apps.",
"managedPasteboardRequiredName": "Allow copy/paste to be affected by managed open-in",
"manualOption": "Manual",
"mediaContentRatingAppsAgesAbove12Option": "12+",
"mediaContentRatingAppsAgesAbove17Option": "17+",
"mediaContentRatingAppsAgesAbove4Option": "4+",
"mediaContentRatingAppsAgesAbove9Option": "9+",
"mediaContentRatingAppsAllAllowedOption": "Allow All Apps",
"mediaContentRatingAppsAllBlockedOption": "Don't Allow Apps",
"mediaContentRatingAppsDescription": "Apps",
"mediaContentRatingAppsName": "Apps",
"mediaContentRatingAustraliaDescription": "Australia",
"mediaContentRatingAustraliaMoviesGeneralOption": "G",
"mediaContentRatingAustraliaMoviesMA15Option": "MA15+",
"mediaContentRatingAustraliaMoviesMatureOption": "M",
"mediaContentRatingAustraliaMoviesParentalGuidancelOption": "PG",
"mediaContentRatingAustraliaMoviesR18Option": "R18+",
"mediaContentRatingAustraliaName": "Australia",
"mediaContentRatingAustraliaTvAV15Option": "AV15+",
"mediaContentRatingAustraliaTvChildrenOption": "C",
"mediaContentRatingAustraliaTvGeneralOption": "G",
"mediaContentRatingAustraliaTvMA15Option": "MA15+",
"mediaContentRatingAustraliaTvMatureOption": "M",
"mediaContentRatingAustraliaTvParentalGuidanceOption": "PG",
"mediaContentRatingAustraliaTvPreschoolersOption": "P",
"mediaContentRatingCanadaDescription": "Canada",
"mediaContentRatingCanadaMovies14AOption": "14A",
"mediaContentRatingCanadaMovies18AOption": "18A",
"mediaContentRatingCanadaMoviesGeneralOption": "G",
"mediaContentRatingCanadaMoviesParentalGuidanceOption": "PG",
"mediaContentRatingCanadaMoviesRestrictedOption": "R",
"mediaContentRatingCanadaName": "Canada",
"mediaContentRatingCanadaTvAgesAbove14Option": "14+",
"mediaContentRatingCanadaTvAgesAbove18Option": "18+",
"mediaContentRatingCanadaTvChildrenAbove8Option": "C8",
"mediaContentRatingCanadaTvChildrenOption": "C",
"mediaContentRatingCanadaTvGeneralOption": "G",
"mediaContentRatingCanadaTvParentalGuidanceOption": "PG",
"mediaContentRatingCountryRegionDescription": "Ratings region",
"mediaContentRatingCountryRegionName": "Ratings region",
"mediaContentRatingEnableRatingRegionDescription": "Enable media content ratings",
"mediaContentRatingEnableRatingRegionName": "Enable media content ratings",
"mediaContentRatingFranceDescription": "France",
"mediaContentRatingFranceMoviesAgesAbove10Option": "10",
"mediaContentRatingFranceMoviesAgesAbove12Option": "12",
"mediaContentRatingFranceMoviesAgesAbove16Option": "16",
"mediaContentRatingFranceMoviesAgesAbove18Option": "18",
"mediaContentRatingFranceName": "France",
"mediaContentRatingFranceTvAgesAbove10Option": "-10",
"mediaContentRatingFranceTvAgesAbove12Option": "-12",
"mediaContentRatingFranceTvAgesAbove16Option": "-16",
"mediaContentRatingFranceTvAgesAbove18Option": "-18",
"mediaContentRatingGermanyDescription": "Germany",
"mediaContentRatingGermanyMoviesAdultsOption": "Ab 18 Jahren",
"mediaContentRatingGermanyMoviesAgesAbove12Option": "Ab 12 Jahren",
"mediaContentRatingGermanyMoviesAgesAbove16Option": "Ab 16 Jahren",
"mediaContentRatingGermanyMoviesAgesAbove6Option": "Ab 6 Jahren",
"mediaContentRatingGermanyMoviesGeneralOption": "Ab 0 Jahren",
"mediaContentRatingGermanyName": "Germany",
"mediaContentRatingGermanyTvAdultsOption": "Ab 18 Jahren",
"mediaContentRatingGermanyTvAgesAbove12Option": "Ab 12 Jahren",
"mediaContentRatingGermanyTvAgesAbove16Option": "Ab 16 Jahren",
"mediaContentRatingGermanyTvAgesAbove6Option": "Ab 6 Jahren",
"mediaContentRatingGermanyTvGeneralOption": "Ab 0 Jahren",
"mediaContentRatingIrelandDescription": "Ireland",
"mediaContentRatingIrelandMoviesAdultsOption": "18",
"mediaContentRatingIrelandMoviesAgesAbove12Option": "12A",
"mediaContentRatingIrelandMoviesAgesAbove15Option": "15A",
"mediaContentRatingIrelandMoviesAgesAbove16Option": "16",
"mediaContentRatingIrelandMoviesGeneralOption": "G",
"mediaContentRatingIrelandMoviesParentalGuidanceOption": "PG",
"mediaContentRatingIrelandName": "Ireland",
"mediaContentRatingIrelandTvChildrenOption": "CH",
"mediaContentRatingIrelandTvGeneralOption": "GA",
"mediaContentRatingIrelandTvMatureOption": "MA",
"mediaContentRatingIrelandTvParentalSupervisionOption": "PS",
"mediaContentRatingIrelandTvYoungAdultsOption": "YA",
"mediaContentRatingJapanDescription": "Japan",
"mediaContentRatingJapanMoviesAgesAbove15Option": "R15+",
"mediaContentRatingJapanMoviesAgesAbove18Option": "R18+",
"mediaContentRatingJapanMoviesGeneralOption": "G",
"mediaContentRatingJapanMoviesParentalGuidanceOption": "PG-12",
"mediaContentRatingJapanName": "Japan",
"mediaContentRatingJapanTvExplicitAllowedOption": "Explicit Allowed",
"mediaContentRatingMoviesAllAllowedOption": "Allow All Movies",
"mediaContentRatingMoviesAllBlockedOption": "Don't Allow Movies",
"mediaContentRatingMoviesDescription": "Movies",
"mediaContentRatingMoviesName": "Movies",
"mediaContentRatingNewZealandDescription": "New Zealand",
"mediaContentRatingNewZealandMoviesAgesAbove13Option": "R13",
"mediaContentRatingNewZealandMoviesAgesAbove15Option": "R15",
"mediaContentRatingNewZealandMoviesAgesAbove16Option": "R16",
"mediaContentRatingNewZealandMoviesAgesAbove16RestrictedOption": "RP16",
"mediaContentRatingNewZealandMoviesAgesAbove18Option": "R18",
"mediaContentRatingNewZealandMoviesGeneralOption": "G",
"mediaContentRatingNewZealandMoviesMatureOption": "M",
"mediaContentRatingNewZealandMoviesParentalGuidanceOption": "PG",
"mediaContentRatingNewZealandMoviesRestrictedOption": "R",
"mediaContentRatingNewZealandName": "New Zealand",
"mediaContentRatingNewZealandTvAdultsOption": "AO",
"mediaContentRatingNewZealandTvGeneralOption": "G",
"mediaContentRatingNewZealandTvParentalGuidanceOption": "PGR",
"mediaContentRatingRegionNotConfiguredName": "No region configured",
"mediaContentRatingTVDescription": "TV Shows",
"mediaContentRatingTVName": "TV Shows",
"mediaContentRatingTelevisionAllAllowedOption": "Allow All TV Shows",
"mediaContentRatingTelevisionAllBlockedOption": "Don't Allow TV Shows",
"mediaContentRatingUnitedKingdomDescription": "United Kingdom",
"mediaContentRatingUnitedKingdomMoviesAdultsOption": "18",
"mediaContentRatingUnitedKingdomMoviesAgesAbove12CinemaOption": "12A",
"mediaContentRatingUnitedKingdomMoviesAgesAbove12VideoOption": "12",
"mediaContentRatingUnitedKingdomMoviesAgesAbove15Option": "15",
"mediaContentRatingUnitedKingdomMoviesGeneralOption": "U",
"mediaContentRatingUnitedKingdomMoviesParentalGuidanceOption": "PG",
"mediaContentRatingUnitedKingdomMoviesUniversalChildrenOption": "UC",
"mediaContentRatingUnitedKingdomName": "United Kingdom",
"mediaContentRatingUnitedKingdomTvCautionOption": "Caution",
"mediaContentRatingUnitedStatesDescription": "United States",
"mediaContentRatingUnitedStatesMoviesGeneralOption": "G",
"mediaContentRatingUnitedStatesMoviesNC17Option": "NC17",
"mediaContentRatingUnitedStatesMoviesParentalGuidance13Option": "PG13",
"mediaContentRatingUnitedStatesMoviesParentalGuidanceOption": "PG",
"mediaContentRatingUnitedStatesMoviesRestrictedOption": "R",
"mediaContentRatingUnitedStatesName": "United States",
"mediaContentRatingUnitedStatesTvAdultsOption": "TV-MA",
"mediaContentRatingUnitedStatesTvChildrenAbove14Option": "TV-14",
"mediaContentRatingUnitedStatesTvChildrenAbove7Option": "TV-Y7",
"mediaContentRatingUnitedStatesTvChildrenAllOption": "TV-Y",
"mediaContentRatingUnitedStatesTvGeneralOption": "TV-G",
"mediaContentRatingUnitedStatesTvParentalGuidanceOption": "TV-PG",
"medium": "Medium",
"mediumHighOption": "Medium-high",
"mediumLowOption": "Medium-low",
"mediumOption": "Medium",
"meetingInformationDisplayedOnWelcomeScreenName": "Meeting information displayed on welcome screen",
"messagingBlockMMSDescription": "Disable the MMS send/receive functionality on the device.",
"messagingBlockMMSName": "MMS (mobile only)",
"messagingBlockRCSDescription": "Disable the Rich Communication Services send/receive functionality on the device.",
"messagingBlockRCSName": "RCS (mobile only)",
"messagingBlockSyncDescription": "Disable Messaging Everywhere and text message back up and restore.",
"messagingBlockSyncName": "Message sync (mobile only)",
"microphonesAndSpeakersName": "Microphones and speakers",
"microphonesName": "Microphones",
"microsoftAccountOptionalForMailDescription": "Block access to Windows Mail app without a Microsoft account (Block access recommended)",
"microsoftAccountOptionalForMailName": "Access to Windows Mail app without a Microsoft account",
"microsoftCA": "Microsoft",
"microsoftProtectOption": "Microsoft Tunnel",
"microsoftTunnelForWindows": "Microsoft Tunnel (preview)",
"microsoftTunnelSite": "Microsoft Tunnel site",
"microsoftTunnelSiteDescription": "The VPN client will connect to the public IP address or FQDN of the site.",
"microsoftTunnelSiteNotExist": "The site does not exist. Select a new site.",
"microsoftUpdatesDescription": "Control whether to scan for updates from Microsoft Update.",
"microsoftUpdatesName": "Microsoft product updates",
"minimumNumberOfCharacterSetsDescription": "This setting specifies the minimum number of character sets that the password must contain. The four character sets are:\n<br>\nLowercase letters\n<br>\nUppercase letters\n<br>\nSymbols\n<br>\nNumbers",
"minimumNumberOfCharacterSetsName": "Number of character sets a password must contain",
"minimumPasswordLengthDescription": "Minimum number of digits or characters in password.",
"minimumPasswordLengthEmptyValueKeyFourToFourteen": "Enter a number (4-14)",
"minimumPasswordLengthEmptyValueKeyFourToSixteen": "Enter a number (4-16)",
"minimumPasswordLengthEmptyValueKeySixToSixteen": "Enter a number (6-16)",
"minimumPasswordLengthName": "Minimum password length",
"minimumUpdateAutoInstallClassificationDescription": "Missing updates will install automatically",
"minimumUpdateAutoInstallClassificationName": "Install specified classification of updates",
"minimumUpdateAutoInstallClassificationValueImportant": "Important",
"minimumUpdateAutoInstallClassificationValueNone": "Not configured",
"minimumUpdateAutoInstallClassificationValueRecommended": "Recommended",
"minutesOfInactivityBeforePassword": "Maximum minutes after screen lock before password is required",
"minutesOfInactivityBeforePasswordDescription": "Maximum minutes after screen lock before password is required. Immediately recommended. Ignored by device if new time is longer than what's currently set on device.",
"minutesOfInactivityBeforeScreenTurnsOffDescription": "Maximum minutes of inactivity until screen locks. Ignored by device if new time is longer than what's currently set on device. If set to Immediately, devices will use the minimum possible value per device.",
"minutesOfInactivityBeforeScreenTurnsOffName": "Maximum minutes of inactivity until screen locks",
"miracastWirelessProjectionChannelDescription": "If \"Miracast wireless projection\" is blocked, the value set by \"Miracast wireless projection channel\" is ignored.",
"miracastWirelessProjectionChannelName": "Miracast wireless projection channel",
"miracastWirelessProjectionName": "Miracast wireless projection",
"mobilityAndMultihomingName": "Mobility and multihoming (MOBIKE)",
"moderateOption": "Moderate",
"moderateSeverity": "Moderate severity",
"modifyAccountsDisabledDescription": "Block modification of accounts.",
"modifyAccountsDisabledDescriptionDedicatedOnly": "Block modification of accounts. Only supported on Dedicated devices.",
"modifyAccountsDisabledName": "Account changes",
"modifyAccountsDisabledNameDedicatedOnly": "Account changes (dedicated devices only)",
"monday": "Monday",
"mondayOption": "Monday",
"monitorAllFilesOption": "Monitor all files",
"monitorDisabledOption": "Monitoring disabled",
"monitorFileAndProgramActivityName": "Monitor file and program activity",
"monitorIncomingFilesOnlyOption": "Monitor incoming files only",
"monitorOutgoingFilesOnlyOption": "Monitor outgoing files only",
"monthly": "Monthly",
"months": "Months",
"mopriaDiscoveryResourceIdDescription": "OAuth resource URI for printer discovery service as configured in Azure portal",
"mopriaDiscoveryResourceIdExample": "e.g. http://MopriaDiscoveryService/CloudPrint",
"mopriaDiscoveryResourceIdName": "Printer discovery service resource URI",
"multiplayerGamingBlockedMacDescription": "Yes prevents multiplayer gaming when using Game Center. Available for devices running macOS versions 10.13 or later.",
"multiplayerGamingBlockedMacName": "Block multiplayer gaming in the Game Center",
"mustBeA4To6DigitPin": "Must be a 4-6 digit PIN",
"mustBeAPathToFolder": "Must be a path to local folder",
"mustBeAPathToLocalFile": "Must be a path to local file",
"mustBeAPathToLocalFileOrFolder": "Must be a path to local file or folder",
"mustBeAValidAppId": "Must be a valid App ID.",
"mustBeAValidAppleAppStoreUri": "Must be a valid app store URI with a country code and ID.",
"mustBeAValidApplicationId": "Must be a valid application id",
"mustBeAValidAumid": "Must be a valid application user model id",
"mustBeAValidBundleId": "Must be a valid bundle id",
"mustBeAValidDomain": "Must be a valid domain.",
"mustBeAValidExeFile": "Must be a .exe, .com, or .scr file",
"mustBeAValidFilePath": "Must be a valid file path",
"mustBeAValidHttpsUrl": "Must be a valid https url",
"mustBeAValidIPAddress": "Must be a valid IP address (e.g. 192.168.0.1 or 2001:0db8:85a3:0000:0000:8a2e:0370:7334)",
"mustBeAValidIPv4Address": "Must be a valid IPv4 address (e.g. 192.168.0.1)",
"mustBeAValidIPv6Address": "Must be a valid IPv6 address (e.g. 2001:0db8:85a3:0000:0000:8a2e:0370:7334)",
"mustBeAValidImageUrl": "Must be a valid image URL such as www.contoso.com/image.jpg",
"mustBeAValidLengthWEPPassword": "Must be a valid passphrase length (5 or 13 characters) or HEX key (10 or 26 characters)",
"mustBeAValidPort": "Must be a valid port (e.g. 0 to 65535)",
"mustBeAValidProductKey": "Must be a valid product key (format: 12345-22345-32345-42345-52345)",
"mustBeAValidTeamId": "Must be a valid team id",
"mustBeAValidUrl": "Must be a valid url",
"mustBeAValidUrlNoProtocol": "Must be a valid url or IP address with no protocol (no http or https)",
"mustBeAValidUrlOrIP": "Must be a valid url or IP address",
"mustBeAValidUrlWithIdParameter": "Must be a valid URI with an id query parameter. Example: https://play.google.com/store/apps/details?id=com.microsoft.test2",
"mustBeAWellFormedXMLString": "Must be a well formed XML string",
"mustBeGreaterThanMobileOsMinimumVersion": "Must be greater than the minimum OS version for mobile devices",
"mustBeGreaterThanOsMinimumVersion": "Must be greater than the minimum OS version",
"mustBeSingleObject": "Must be a single value. Commas not allowed",
"mustBeSmallerThanMobileOsMaximumVersion": "Must be smaller than the maximum OS version for mobile devices",
"mustBeSmallerThanOsMaximumVersion": "Must be smaller than the maximum OS version",
"mustBeValidAddress": "Must be a valid address. Example: 4.3.6.0, itgproxy.com, etc.",
"mustBeValidAndroidPackageName": "Package name must only contain letters, numbers, underscores, and periods. Must start with a letter.",
"mustBeValidBuildVersionFormat": "Must be a valid build version format. Example: 18A391, 16G1114, etc.",
"mustBeValidDNSSuffix": "Must be a valid DNS suffix. Example: itgproxy.com",
"mustBeValidDateFormat": "Must be a valid date format (YYYY-MM-DD). Example: 2016-10-01, 2016-10-31 etc.",
"mustBeValidDomain": "Must be a valid domain. Example: contoso.com",
"mustBeValidEmail": "Must be a valid Email address. Example: username@example.com etc.",
"mustBeValidEmailList": "Must be in a valid email list format of user1@gmail.com; user2@gmail.com.",
"mustBeValidFloatingPoint": "Must be a valid floating point number. Example: 1.0, 4.3, etc.",
"mustBeValidGuid": "Must be a valid UUID. Example: 782AFCFC-7CAA-436C-8BF0-78CD0FFBD4AF, etc.",
"mustBeValidHost": "Must be a valid host. Example: www.host.com etc.",
"mustBeValidHttpURL": "Must be a valid HTTP or HTTPS URL. Example: https://www.contoso.com",
"mustBeValidIpAddress": "Must be a valid IP address. Example: 4.3.6.0",
"mustBeValidKaiserWifiFormat": "The format is incorrect. User format example: abcd{{WifiMacAddress}}, Password format example: abcd{{WifiMacAddress}}{{PreSharedKey}}",
"mustBeValidMonthDayDateFormat": "Must be a valid date format (MM/DD). Example: 01/31, 02/28 etc.",
"mustBeValidObjectIdentifierFormat": "Must be a valid Object Identifier format. Example: 4.3.6.0, 7.01.4, etc.",
"mustBeValidOperatingSystemVersionFormat": "Must be a valid operating system version format. Example: 1.0.0.0",
"mustBeValidOrgUnit": "Must be a valid Organizational unit starting with OU and ending with DC. Example: OU=Autopilot,OU=Workstations,DC=contoso,DC=com",
"mustBeValidPort": "Must be a valid port. Example: 1, 2, 80, etc.",
"mustBeValidURL": "Must be a valid URL.",
"mustBeValidVersionFormat": "Must be a valid version format. Example: 4.3.06, 7.01.4, etc.",
"mustNotBeEmpty": "The value should not be empty.",
"mustSpecifyAddress": "Must also specify an address.",
"nATKeepAliveIntervalInSecondsName": "Network address translation (NAT) keepalive interval (seconds)",
"nATKeepAliveIntervalInSecondsToolTip": "How often, in seconds, the NAT system checks to make sure the device is still connected to the VPN.",
"nATKeepAliveIntervalSecondsBounds": "NAT keep alive interval must be between [20, 1440] for wifi and [110, 1440] for cellular, inclusive.",
"nATKeepAliveOffloadEnableName": "Offload NAT keepalive to hardware when device is asleep",
"nATKeepAliveOffloadEnableToolTip": "By default, when a device is asleep, the NAT system will continuously check to make sure it's connected to the VPN. This setting lets you disable that behavior.",
"nacIdCheckBoxLabel": "I agree.",
"nacIdDescCisco": "Cisco AnyConnect requires the Intune device ID to be included in the VPN profile in order to enable NAC.<br><br>I allow Microsoft to include device information in the VPN profile, which can be used by Cisco and their partners. Click to learn more, including what data is shared with the service provider.",
"nacIdDescCitrix": "Citrix SSO requires the Intune device ID to be included in the VPN profile in order to enable NAC.<br><br>I allow Microsoft to include device information in the VPN profile, which can be used by Citrix and their partners. Click to learn more, including what data is shared with the service provider.",
"nacIdDescF5": "F5 Access requires the Intune device ID to be included in the VPN profile in order to enable NAC.<br><br>I allow Microsoft to include device information in the VPN profile, which can be used by F5 Access and their partners. Click to learn more, including what data is shared with the service provider.",
"nacIdHeader": "Enable network access control (NAC)",
"nacIdHeaderCiscoToolTip": "The device ID will be encrypted and included in the VPN profile. When the user attempts to connect to the VPN, Cisco AnyConnect will pass this value to your NAC infrastructure, which will then query Intune with this value to determine if the device is enrolled and compliant.<br><br>Cisco AnyConnect is unable to access the device ID directly so in order to enable NAC, this value must be included in the VPN profile.",
"nacIdHeaderCitrixToolTip": "The device ID will be encrypted and included in the VPN profile. When the user attempts to connect to the VPN, Citrix SSO will pass this value to your NAC infrastructure, which will then query Intune with this value to determine if the device is enrolled and compliant.<br><br>Citrix SSO is unable to access the device ID directly so in order to enable NAC, this value must be included in the VPN profile.",
"nacIdHeaderF5ToolTip": "The device ID will be encrypted and included in the VPN profile. When the user attempts to connect to the VPN, F5 Access will pass this value to your NAC infrastructure, which will then query Intune with this value to determine if the device is enrolled and compliant.<br><br>F5 Access is unable to access the device ID directly so in order to enable NAC, this value must be included in the VPN profile.",
"nameBlankError": "Name cannot be blank.",
"nameColumn": "Files and folders",
"nameColumnExamples": "Examples: c:\\Path, %ProgramFiles%\\Path\\Filename.exe",
"nameName": "Name",
"navigationEnabledSystemNavigationOption": "Home and overview buttons",
"netBiosNameOption": "NetBIOS name",
"netMotionMobilityOption": "NetMotion Mobility",
"networkAndInternetPageDescription": "Block access to Network and Internet in Settings app.",
"networkAndInternetPageName": "Network and Internet",
"networkBoundaryCloudResourcesTypeName": "Cloud resources",
"networkBoundaryIPv4RangeTypeName": "IPv4 range",
"networkBoundaryIPv6RangeTypeName": "IPv6 range",
"networkBoundaryInternalProxyServersTypeName": "Internal proxy servers",
"networkBoundaryNetworkDomainsTypeName": "Network domains",
"networkBoundaryNeutralResourcesTypeName": "Neutral resources",
"networkBoundaryProxyServersTypeName": "Proxy servers",
"networkBoundaryTypeInputName": "Boundary type",
"networkBoundaryValueInputName": "Value",
"networkBoundaryValuesTableName": "Network boundary",
"networkEscapeHatchDescription": "Whether the network escape hatch is enabled. If a network connection can't be made at boot time, the escape hatch prompts the user to temporarily connect to a network in order to refresh the device policy. After applying policy, the temporary network will be forgotten and the device will continue booting. This prevents being unable to connect to a network if there is no suitable network in the last policy and the device boots into an app in lock task mode, or the user is otherwise unable to reach device settings.",
"networkEscapeHatchName": "Network escape hatch",
"networkExtensionsAllowedOption": "Network extensions",
"networkInterface": "Network Interface",
"networkInterfaceDescription": "Network interface to configure",
"networkProxyAutomaticConfigurationUrlDescription": "URL to the PAC script you want to use.",
"networkProxyAutomaticConfigurationUrlName": "Setup script address URL",
"networkProxyDisableAutoDetectDescription": "Automatically detect settings. If enabled, the system tries to find the path to a PAC script.",
"networkProxyDisableAutoDetectName": "Automatically detect proxy settings",
"networkProxyUseManualServerAddressDescription": "Address to the proxy server. Specify an address in the format server[“:”port]. ",
"networkProxyUseManualServerAddressName": "Proxy server address",
"networkProxyUseManualServerExceptionsDescription": "Addresses that should not use the proxy server. The system will not use the proxy server for addresses beginning with what is specified in this node. Use semicolons (;) to separate entries.",
"networkProxyUseManualServerExceptionsName": "Proxy exceptions",
"networkProxyUseManualServerForLocalAddressDescription": "Specifies whether the proxy server should be used for local (intranet) addresses.",
"networkProxyUseManualServerForLocalAddressName": "Bypass proxy server for local address",
"networkProxyUseManualServerName": "Use manual proxy server",
"networkProxyUseScriptUrlName": "Use proxy script",
"networkSettingsName": "Network settings",
"networkSettingsSubtitle": "Configure Microsoft Defender Firewall settings applicable to specific network types.",
"networkUsageRulesBlockCellularHeaderName": "Add managed iOS apps that should not be allowed to use any cellular data.",
"networkUsageRulesBlockCellularName": "Block use of cellular data",
"networkUsageRulesBlockCellularRoamingHeaderName": "Add managed iOS apps that should not be allowed to use any cellular data when roaming.",
"networkUsageRulesBlockCellularRoamingName": "Block use of cellular data when roaming",
"networkUsageRulesHeaderDescription": "Define what data managed apps can use over cellular networks.",
"networkUsageRulesHeaderName": "Cellular usage rules (managed apps only)",
"networkUsageRulesHeaderNameDescription": "Define what data managed apps can use over cellular networks.",
"networkUsageRulesManagedApps": "Managed apps",
"neverConnect": "Never connect",
"neverConnectOption": "Never connect",
"neverNotifyOption": "Never notify",
"neverOption": "Never",
"neverSendName": "Never send",
"neverSendOption": "Never send data",
"newRuleName": "New Rule {0}",
"nfcBlockOutgoingBeamDescription": "Block usage of NFC to beam data from apps.",
"nfcBlockOutgoingBeamName": "Beam data using NFC",
"nfcBlockOutgoingBeamNameWorkProfile": "Beam data using NFC (work profile-level)",
"nfcBlockedDescription": "Disable NFC to prevent devices from pairing with other NFC-enabled devices. Available for iOS/iPadOS devices running 14.2 or later.",
"nfcBlockedName": "Disable near-field communication (NFC)",
"nfcName": "NFC",
"nineAMOption": "9 AM",
"nineMonthsNumberOption": "9 months",
"nineNumberOption": "9",
"ninePMOption": "9 PM",
"no": "No",
"noAction": "No Action",
"noRestrictions": "No restrictions on sharing",
"noRestrictionsCopyPasteBetweenWorkAndPersonalProfilesOption": "No restrictions on copy/paste",
"noRestrictionsDataSharingBetweenWorkAndPersonalProfilesOption": "No restrictions on sharing",
"noScheduledScanOption": "No scheduled scan",
"nonCompliantAppsOption": "Evaluate",
"nonEAPMethod": "Non-EAP method for authentication (inner identity)",
"nonEapMethodDescription": "This property is used when the end-user is expected to enter a username and password for authenticating the Wi-Fi connection. CHAP protocols provide an additional handshake along with the credential exchange which provides better security. Ensure you select the same protocol that is configured on your Wi-Fi network.",
"nonEapMethodName": "Non-EAP method (Inner identity)",
"none": "None",
"noneOption": "None",
"notAllowedOption": "Not allowed",
"notApplicable": "Not applicable",
"notConfigured": "Not configured",
"notConfiguredAlwaysOnOption": "Not configured",
"notConfiguredOnly": "Only not configured settings",
"notInList": "Prohibited apps",
"notesOption": "Notes",
"nothing": ".",
"notificationAndSystemInfoStatusBarOption": "Show system notifications and information in device's status bar",
"notificationSettingsDescription": "Specifies the restriction enforced notification settings for apps, using their bundle identifiers.",
"notificationSettingsName": "App notifications",
"notificationsAlertTypeBannerOption": "Banner",
"notificationsAlertTypeDescription": "Choose the type of notification for this app: <br>\n 0: None <br>\n 1: Banner <br>\n 2: Modal. <br>\n Default is Banner.",
"notificationsAlertTypeModalOption": "Modal",
"notificationsAlertTypeName": "Alert type",
"notificationsAlertTypeNoneOption": "None",
"notificationsAppNameDescription": "Name of the app",
"notificationsAppNameName": "App name",
"notificationsBundleIdDescription": "Enter the Bundle ID of the app to which to apply these notification settings.",
"notificationsBundleIdName": "App bundle ID",
"notificationsEnableNotificationsDescription": "Show notifications for this app.",
"notificationsEnableNotificationsName": "Notifications",
"notificationsOption": "All notifications",
"notificationsOptionAndroid": "All notifications (fully managed or dedicated)",
"notificationsPreviewTypeAlwaysShowOption": "Always",
"notificationsPreviewTypeDescription": "Previews show the contents of recent app notifications. Select when to show previews on the device. Available for iOS/iPadOS 14.0 and later.",
"notificationsPreviewTypeHideWhenLockedOption": "When unlocked",
"notificationsPreviewTypeName": "Show previews",
"notificationsPreviewTypeNeverShowOption": "Never",
"notificationsPublisherDescription": "Publisher of the app",
"notificationsPublisherName": "Publisher",
"notificationsShowBadgeOnAppIconDescription": "Show badges on the icon for this app. Default is Enable.",
"notificationsShowBadgeOnAppIconName": "Badges on app icon",
"notificationsShowInLockScreenDescrption": "Show notifications on the Lock screen. Default is Enable.",
"notificationsShowInLockScreenName": "Show on Lock Screen",
"notificationsShowInNotificationCenterDescription": "Show notifications in Notification Center. Default is Enable.",
"notificationsShowInNotificationCenterName": "Show in notifications center",
"notificationsSoundsDescription": "Play a sound with the app notification. Default is Enable.",
"notificationsSoundsName": "Enable sounds",
"notifyAppChangesDoNotDimOption": "Notify on app changes (but do not dim desktop)",
"notifyAppChangesOption": "Notify on app changes",
"notifyDownloadOption": "Notify download",
"notifyOnly": "Notify only",
"numberOfComplexCharactersInPasswordDescription": "Minimum number of non-alphanumeric characters (like #, %, !, etc.) that the password must contain.",
"numberOfComplexCharactersInPasswordName": "Number of non-alphanumeric characters in password",
"numberOfPreviousPasswordsToBlockDescription": "Number of new passwords that must be used until an old one can be reused.",
"numberOfPreviousPasswordsToBlockEmptyValueKey": "Enter a number (1-24)",
"numberOfPreviousPasswordsToBlockName": "Prevent reuse of previous passwords",
"numberOfSignInFailuresBeforeWipeDescription": "Number of consecutive times an incorrect password can be entered before device is wiped of all data.",
"numberOfSignInFailuresBeforeWipeEmptyValueKey": "Enter a number (4-16)",
"numberOfSignInFailuresBeforeWipeName": "Number of sign-in failures before wiping device",
"numberOfSignInFailuresBeforeWipeWarning": "If you set this value to 2, all data on the device is wiped on the second failed passcode attempt. It's very common to enter the wrong passcode. Make sure you understand the impact of this setting.",
"numericComplex": "Numeric complex",
"numericOption": "Numeric",
"numericPasswordTypeDescription": "Numeric password type",
"numericPasswordTypeName": "Numeric",
"numsLowerLettersOption": "Numbers and lowercase letters required",
"numsLowerUpperLettersOption": "Numbers, lowercase and uppercase letters required",
"numsLowerUpperLettersSpecialCharsOption": "Numbers, lowercase, uppercase and special characters required",
"oMAURIName": "OMA-URI",
"offOption": "Off",
"offboardConfigurationPkgDescription": "Upload a signed configuration package that will be used to offboard the Microsoft Defender for Endpoint client",
"offboardConfigurationPkgName": "Offboard Configuration Package",
"offboardOption": "Offboard",
"omaBase64Name": "Certificate file",
"onDemandDefaultRule": "Default Rule: Do nothing",
"onDemandRuleName": "Rule {0}",
"onDemandRulesDescription": "These settings are used to create a rule. If there is a match with your rule, then the device does the action you choose, like create an on-demand VPN connection.",
"onDemandRulesExample": "e.g. disconnect VPN on corp Wi-Fi",
"onDemandRulesInfo": "Learn more about crafting on-demand rules.",
"onDemandRulesName": "On-demand rules",
"onDemandRulesStory": "These rules will be evaluated sequentially. Since order matters, keep the strictest rules towards the top, followed by a gradual progression of leniency. This will ensure proper rule evaluation on the device.",
"onDemandVPNOption": "On-demand VPN",
"onDeviceOnlyDictationForcedDescription": "Disables connections to Siri servers so that users cant use Siri to dictate text. Available for devices running iOS and iPadOS versions 14.5 or later.",
"onDeviceOnlyDictationForcedName": "Block Siri for dictation",
"onDeviceOnlyTranslationForcedDescription": "Disables connections to Siri servers so that users cant use Siri to translate text. Available for devices running iOS and iPadOS versions 15 and later.",
"onDeviceOnlyTranslationForcedName": "Block Siri for translation",
"onOption": "On",
"onPremisesSamAccountNameOption": "SAM account name",
"onboardConfigurationPkgDescription": "Upload a signed configuration package that will be used to onboard the Microsoft Defender for Endpoint client",
"onboardConfigurationPkgName": "Onboard Configuration Package",
"onboardOption": "Onboard",
"oneAMOption": "1 AM",
"oneDayOption": "One day",
"oneHour": "1 Hour",
"oneHourOption": "1 hour",
"oneMinute": "1 Minute",
"oneMinuteOption": "1 minute",
"oneMonthNumberOption": "1 month",
"oneMonthOption": "One month",
"oneNumberOption": "1",
"onePMOption": "1 PM",
"oneToOneOption": "1 : 1",
"oneWeekOption": "One week",
"onlySendInternetData": "Only send internet data",
"onlySendIntranetData": "Only send intranet data",
"openOption": "Open (no authentication)",
"openSearchXmlUrlDescription": "Points to a https link containing the OpenSearch xml file that contains, at minimum, the short name and the URL to the search Engine.",
"openSearchXmlUrlExample": "https://co.com/opensearch.xml",
"openSearchXmlUrlName": "OpenSearch Xml URL",
"opportunisticallyMatchAuthDescription": "Set keying modules to ignore the entire authentication set if they do not support all authentication suites in that set. If enabled, keying modules will ignore unsupported authentication suites.",
"opportunisticallyMatchAuthName": "Opportunistically match authentication set per keying module",
"optional": "Optional",
"organizationalUnitDescription": "Full path to Organizational Unit (OU) the computer accounts are to be created in. If not specified well known computer object container is used.",
"organizationalUnitName": "Organizational unit",
"originalProfileTypeTitle": "Original Profile Type:",
"outboundConnectionsDescription": "Configure the default action firewall performs on outbound connections. This setting will get applied to Windows version 1809 and above.",
"outboundConnectionsName": "Default action for outbound connections",
"pACHeading": "Protected Access Credential (PAC) Settings",
"pAPName": "Unencrypted password (PAP)",
"pEAPName": "PEAP",
"pFSGroupDescription": "Diffie-Hellman group used for perfect forward secrecy (PFS). Value must match VPN server settings.",
"pFSGroupName": "Perfect forward secrecy (PFS) group",
"pFSMMDescription": "Use parent Diffie-Hellman group",
"pFXImportCertType": "PFX Import certificate",
"pFXImportPolicyIntendedPurpose": "Intended Purpose",
"pFXImportPolicyIntendedPurposeSmimeEncryption": "S/MIME Encryption",
"pFXImportPolicyIntendedPurposeSmimeSigning": "S/MIME Signing",
"pFXImportPolicyIntendedPurposeUnassigned": "General Purpose",
"pINForWirelessProjectionName": "PIN for wireless projection",
"pKCSCertType": "PKCS certificate",
"pKCSPolicyAADAttributeDepartment": "Department",
"pKCSPolicyCertificateTemplateNameName": "Certificate template name",
"pKCSPolicyCertificationAuthorityName": "Certification authority",
"pKCSPolicyCertificationAuthorityNameDescription": "The fully qualified domain name of the server that hosts the Certification Authority role and issues certificates.",
"pKCSPolicyCertificationAuthorityNameName": "Certification authority name",
"pKCSPolicyCertificationAuthorityNameNameDescription": "A friendly name for the certification authority",
"pKCSPolicyCertificationAuthorityType": "Certification authority type",
"pKCSPolicyCustomSubjectAlternativeNameForMachineDescription": "Value can include allowed variables combined with static text. UPN and Email address should include an @, for example: “{{AAD_Device_ID}}@contoso.com”. DNS cannot end with a symbol or contain an @ sign, e.g. “{{DeviceName}}.contoso.com“ or “{{DeviceName}}”. See support variables here: https://go.microsoft.com/fwlink/?linkid=2104597",
"pKCSPolicySubjectAlternativeNameFormat": "Subject alternative name format",
"pKCSPolicySubjectNameFormatCustom": "Subject name format",
"pKCSPolicySubjectNameFormatString": "Subject name format string",
"pPTPOptionNativeType": "PPTP (Native type)",
"packageFamilyNameBlankError": "Package family name cannot be blank.",
"packageFamilyNameInvalidOrWrongFormatError": "Package family name contains invalid characters or is not formatted correctly. Please ensure the value is entered exactly as it appears in the \"PackageFamilyName\" field when \"Get-AppxPackage\" is executed.",
"packageName": "Package name",
"packetQueuingDescription": "Specify how scaling for the software on the receive side is enabled for the encrypted receive and clear text forward for the IPsec tunnel gateway scenario. This ensures that the packet order is preserved.",
"packetQueuingDisableOption": "Disable all packet queuing",
"packetQueuingForwardingOnlyOption": "Queue packets after decryption is performed for forwarding only",
"packetQueuingInboundOnlyOption": "Queue inbound encrypted packets only",
"packetQueuingInboundOutboundOption": "Configure both inbound and outbound packets",
"packetQueuingName": "Packet queuing",
"pageNameExample": "e.g. Microsoft Office",
"paloAltoGlobalProtectLegacyOption": "Palo Alto Networks GlobalProtect (Legacy)",
"paloAltoGlobalProtectOption": "Palo Alto Networks GlobalProtect",
"paloAltoNetworksGlobalProtectOption": "Palo Alto Networks GlobalProtect",
"passwordBlockKeyguardFeaturesDescription": "These features are accessible to users when the device is locked. Users will not be able to see or access disabled features.",
"passwordBlockKeyguardFeaturesName": "Disabled lock screen features",
"passwordBlockSimpleDescription": "Specify whether PINs or passwords such as \"1111\" or \"1234\" are allowed. For desktop devices running Windows 10 or later, it also controls the use of picture passwords.",
"passwordBlockSimpleName": "Simple passwords",
"passwordComplexityDescription": "This setting defines the occurrences of complex elements required for a strong PIN or password.<br>\nRequire digits, lowercase and uppercase letters is not supported in desktop Microsoft accounts and domain accounts<br>\nRequire digits, lowercase, uppercase, and special characters is not supported in desktop<br>\nDefault is Require digits and lowercase letters",
"passwordComplexityName": "Password Complexity",
"passwordEmptyValueKeyZeroToSixteen": "Enter a number (1-16)",
"passwordExpirationDescription": "Number of days until device password must be changed.",
"passwordExpirationInDaysDescription": "Number of days until device password must be changed.",
"passwordExpirationInDaysEmptyValueKey": "Enter number of days (1-255)",
"passwordExpirationInDaysEmptyValueOneYearKey": "Enter number of days (1-365)",
"passwordExpirationInDaysEmptyValueTwoYearsKey": "Enter number of days (1-730)",
"passwordExpirationInDaysName": "Password expiration (days)",
"passwordExpirationName": "Number of days until password expires",
"passwordFormat": "Password format:",
"passwordFormatDescription": "Password format example - abcd{{WifiMacAddress}}{{PreSharedKey}}",
"passwordMinimumAgeInDaysDescription": "This security setting determines the period of time (in days) that a password must be used before the user can change it. You can set a value between 1 and 998 days, or you can allow changes immediately by setting the number of days to 0.",
"passwordMinimumAgeInDaysEmptyValueKey": "Enter number of days(0 - 998)",
"passwordMinimumAgeInDaysName": "Minimum password age",
"passwordMinimumLengthDescription": "Minimum number of digits or characters required in password.",
"passwordMinimumLetterCharactersName": "Number of characters required",
"passwordMinimumLowerCaseCharactersName": "Number of lowercase characters required",
"passwordMinimumNonLetterCharactersName": "Number of non-letter characters required",
"passwordMinimumNumericCharactersName": "Number of numeric characters required",
"passwordMinimumSymbolCharactersDescription": "Minimum number of symbols required in password.",
"passwordMinimumSymbolCharactersName": "Number of symbol characters required",
"passwordMinimumUpperCaseCharactersName": "Number of uppercase characters required",
"passwordPreviousPasswordBlockCountDescription": "Enter the number of unique passwords required before a user can reuse an old one.",
"passwordPreviousPasswordBlockCountName": "Number of passwords required before user can reuse a password",
"passwordSignInFailureCountBeforeFactoryResetDescription": "Number of consecutive times (4-11) an incorrect password can be entered before device is wiped of all data.",
"passwordSignInFailureCountBeforeFactoryResetEmptyValueKey": "Enter a number (4-11)",
"passwordSignInFailureCountBeforeFactoryResetName": "Number of sign-in failures before wiping device",
"pathOption": "Path",
"peersInCustomLocalNetworksOption": "Content cachings using custom local networks",
"peersInLocalNetworkOption": "Content caches using the same local network",
"peersWithSamePublicIpAddressOption": "Content caches with the same public IP address",
"perAccountVPNProfileName": "VPN profile for per account VPN",
"perAccountVPNProfileTooltip": "If you choose a VPN profile from the list, any email that's sent to and from this account in the Mail app will use the VPN. Applies to iOS 14 and later.",
"perAppVPNDefenderEndpointInfoName": "When using Microsoft Defender for Endpoint with per-app VPN enabled, anti-phishing only applies to the apps associated with this VPN profile. Click here to learn more.",
"perAppVPNOnlyAppliesForCertAuth": "Choose On-demand VPN to specify a set of rules to automatically connect or disconnect the VPN connection. Choose per-app VPN to restrict the VPN connection to a set of apps or Safari domains.",
"perAppVPNOption": "Per-app VPN",
"perAppVPNnstructions": "\nNext steps to enable Per-app VPN for iOS devices\n<br>\n<br>\n1. Finish creating this VPN profile.\n<br>\n<br>\n2. Go to client apps.\n<br>\n<br>\n3. Select an app from the list.\n<br>\n<br>\n4. Go to Assignments.\n<br>\n<br>\n5. In the VPN dropdown, select the VPN profile you would like the app to use.\n<br>\n<br>\n6. Deploy the app.\n ",
"perAppVPNnstructionsName": "After creating this profile, additional steps are required to configure Per-app VPN.",
"perMessageSwitch": "Force per-message encryption",
"perMessageSwitchDescription": "Display the per-message encryption switch when composing a new email. Select whether or not users can opt in or out of encryption per message. If the “Encrypt by default” setting is enabled, enabling the per-message encryption switch allows the user to opt out of encryption per message. If the “Encrypt by default” setting is disabled, enabling the per-message encryption switch will allow users to opt in to encryption per message.",
"perfectForwardSecrecy": "Perfect forward secrecy",
"performServerValidation": "Perform server validation",
"performServerValidationDescription": "Enable to verify the servers identity by validating the certificate during exchange with the PEAP server. We recommend setting this to Yes when possible. Setting this to No or Not Configured is less secure.",
"personalProfileAppsAllowInstallFromUnknownSourcesDescription": "When allowed, users can enable the “unknown sources” setting to install apps from sources other than the Google Play Store.",
"personalProfileAppsAllowInstallFromUnknownSourcesName": "Allow users to enable app installation from unknown sources in the personal profile",
"personalProfileCameraBlockedDescription": "Block all cameras on the device",
"personalProfileCameraBlockedName": "Camera",
"personalProfilePersonalApplications": "Personal Applications",
"personalProfilePersonalApplicationsListTypeDescription": "Select \"Allowed apps\" to create a list of apps that are allowed and approved to install and run in the personal profile on the device. Select \"Blocked apps\" to create a list of apps that are prohibited and prevented from installing and running in the personal profile on the device.",
"personalProfilePersonalApplicationsListTypeName": "Type of restricted apps list",
"personalProfileScreenCaptureBlockedDescription": "Block screen capture",
"personalProfileScreenCaptureBlockedName": "Screen capture",
"personalizationDesktopImageUrlDescription": "Set a desktop background image that users cannot change. Applicable on devices running Windows 10/11 Enterprise and Windows 10/11 Education. Image file type must be PNG, JPG, or JPEG.",
"personalizationDesktopImageUrlName": "Desktop background picture URL (Desktop only)",
"personalizationImageUrlExample": "https://fabrikam.com/image.png",
"personalizationLockScreenImageUrlDescription": "Set a lock screen picture (jpg, jpeg, png) and prevent users from changing it.",
"personalizationLockScreenImageUrlName": "Locked screen picture URL (Desktop only)",
"personalizationPageDescription": "Block access to Personalization in Settings app.",
"personalizationPageName": "Personalization",
"pinnedFolderOptionHide": "Hide",
"pinnedFolderOptionShow": "Show",
"pipeInvalidError": "The value must not contain '|'.",
"pluggedInHeader": "Plugged In",
"policyDomainNameService": "DNS",
"policyEmailAddress": "Email address",
"policySubjectAlternativeName": "Subject alternative name",
"policySubjectAlternativeNameDescription": "Enter how Intune automatically creates the values for the SAN in the certificate request.",
"policySubjectAlternativeNameHelp": "Please review SAN documentation on how to best use the SAN field.",
"policyUniversalResourceIdentifier": "URI",
"policyUserPrincipalName": "User principal name (UPN)",
"portNumberDescription": "If your proxy server uses a particular port, enter it here.",
"portNumberName": "Port number",
"postponeRebootUntilAfterDeadlineDescription": "Specifies if the device should auto reboot before deadline",
"postponeRebootUntilAfterDeadlineName": "Auto reboot before deadline ",
"powerButtonActionBatteryDescription": "This policy setting specifies the action that Windows takes when a user presses the Power button while the device is powered by a battery.<br/>If you enable this policy setting, you must select the desired action.<br/>If you disable this policy setting or do not configure it, users can see and change this setting.",
"powerButtonActionName": "Power button",
"powerButtonActionPluggedInDescription": "This policy setting specifies the action that Windows takes when a user presses the Power button while the device is plugged in.<br/>If you enable this policy setting, you must select the desired action.<br/>If you disable this policy setting or do not configure it, users can see and change this setting.",
"powerSleepButtonActionBatteryDescription": "This policy setting specifies the action that Windows takes when a user presses the Sleep button while the device is powered by a battery.<br/>If you enable this policy setting, you must select the desired action.<br/>If you disable this policy setting or do not configure it, users can see and change this setting.",
"powerSleepButtonActionName": "Sleep button",
"powerSleepButtonActionPluggedInDescription": "This policy setting specifies the action that Windows takes when a user presses the Sleep button while the device is plugged in.<br/>If you enable this policy setting, you must select the desired action.<br/>If you disable this policy setting or do not configure it, users can see and change this setting.",
"preReleaseBuilds": "Enable pre-release builds",
"preReleaseBuildsDescription": "Enable pre-release builds if you want devices to be on a Windows Insider channel. Enabling pre-release builds will cause devices to reboot.",
"preReleaseChannel": "Select pre-release channel",
"preReleaseChannelEnabled": "Enable",
"preReleaseChannelNotConfigured": "Not Configured",
"preReleaseFeaturesDescription": "Microsoft runs, among others, anonymized tests to study user preferences and device behaviors. Use this setting to define the level of testing that Microsoft can run.\n<br>\n<br>\n Not configured - Permits Microsoft to only configure device settings\n<br>\n<br>\n Allow - Allows Microsoft to conduct all relevant testing, including configuring device settings\n<br>\n<br>\n Block - Blocks Microsoft from conducting any testing, including configuring device settings",
"preReleaseFeaturesName": "Microsoft testing",
"preSharedKeyDescription": "Pre-shared key",
"preSharedKeyName": "Pre-shared key",
"presharedKeyEncodingDescription": "Encode preshared keys using UTF-8.",
"presharedKeyEncodingName": "Pre-shared key encoding",
"preventAny": "Prevent any sharing across boundaries",
"primaryAuthenticationMethodName": "Primary authentication method",
"primaryAuthenticationMethodTEAPDescription": "Choose the primary way you want users to authenticate. When you select Certificates, select one of the certificate profiles (SCEP or PKCS) that is also deployed to the device. This is the identity certificate that is presented by the device to the server.",
"primarySMTPAddressOption": "Primary SMTP Address",
"printersColumns": "e.g. printer DNS name",
"printersDescription": "Automatically provision printers based on their network host names. This setting does not support shared printers.",
"printersName": "Printers",
"privacyAutoAcceptPairingAndConsentPromptsDescription": "Allow automatic acceptance of the pairing and privacy user consent dialogs when launching apps.",
"privacyAutoAcceptPairingAndConsentPromptsName": "Automatic acceptance of the pairing and privacy user consent prompts",
"privacyBlockInputPersonalizationDescription": "Block usage of cloud-based speech services for Cortana, dictation or Windows Store apps. If not configured, Microsoft may use user voice data to improve cloud speech services.",
"privacyBlockInputPersonalizationName": "Input personalization",
"privacyDisableLaunchExperienceDescription": "This policy prevents the privacy experience from launching during user logon for new and upgraded users.",
"privacyDisableLaunchExperienceName": "Privacy experience",
"privacyLetAppsAccessAccountInfoDefaultDescription": "Define whether apps can access the user name, picture and other contact info",
"privacyLetAppsAccessAccountInfoName": "Account information",
"privacyLetAppsAccessAccountInfoPerAppDescription": "Define whether this app can access the user name, picture and other contact info",
"privacyLetAppsAccessAppDiagnosticsDefaultDescription": "Define whether apps can access diagnostic information",
"privacyLetAppsAccessAppDiagnosticsPerAppDescription": "Define whether this app can access diagnostic information",
"privacyLetAppsAccessBackgroundAppsDefaultDescription": "Define whether apps can run in the background",
"privacyLetAppsAccessBackgroundAppsPerAppDescription": "Define whether this app can run in the background",
"privacyLetAppsAccessCalendarDefaultDescription": "Define whether apps can access the calendar",
"privacyLetAppsAccessCalendarName": "Calendar",
"privacyLetAppsAccessCalendarPerAppDescription": "Define whether this app can access the calendar",
"privacyLetAppsAccessCallHistoryDefaultDescription": "Define whether apps can access my call history",
"privacyLetAppsAccessCallHistoryName": "Call history",
"privacyLetAppsAccessCallHistoryPerAppDescription": "Define whether this app can access my call history",
"privacyLetAppsAccessCameraDefaultDescription": "Define whether apps can access the camera",
"privacyLetAppsAccessCameraName": "Camera",
"privacyLetAppsAccessCameraPerAppDescription": "Define whether this app can access the camera",
"privacyLetAppsAccessContactsDefaultDescription": "Define whether apps can access contacts",
"privacyLetAppsAccessContactsName": "Contacts",
"privacyLetAppsAccessContactsPerAppDescription": "Define whether this app can access contacts",
"privacyLetAppsAccessEmailDefaultDescription": "Define whether apps can access and send email",
"privacyLetAppsAccessEmailName": "Email",
"privacyLetAppsAccessEmailPerAppDescription": "Define whether this app can access and send email",
"privacyLetAppsAccessLocationDefaultDescription": "Define whether apps can access location information",
"privacyLetAppsAccessLocationName": "Location",
"privacyLetAppsAccessLocationPerAppDescription": "Define whether this app can access location information",
"privacyLetAppsAccessMessagingDefaultDescription": "Define whether apps can read or send text or MMS messages",
"privacyLetAppsAccessMessagingName": "Messaging",
"privacyLetAppsAccessMessagingPerAppDescription": "Define whether this app can read or send text or MMS messages",
"privacyLetAppsAccessMicrophoneDefaultDescription": "Define whether apps can use the microphone",
"privacyLetAppsAccessMicrophoneName": "Microphone",
"privacyLetAppsAccessMicrophonePerAppDescription": "Define whether this app can use the microphone",
"privacyLetAppsAccessMotionDefaultDescription": "Define whether apps can access device motion information",
"privacyLetAppsAccessMotionName": "Motion",
"privacyLetAppsAccessMotionPerAppDescription": "Define whether this app can access device motion information",
"privacyLetAppsAccessNotificationsDefaultDescription": "Define whether apps can access notifications",
"privacyLetAppsAccessNotificationsName": "Notifications",
"privacyLetAppsAccessNotificationsPerAppDescription": "Define whether this app can access notifications",
"privacyLetAppsAccessPhoneDefaultDescription": "Define whether apps can access the phone",
"privacyLetAppsAccessPhoneName": "Phone",
"privacyLetAppsAccessPhonePerAppDescription": "Define whether this app can access the phone",
"privacyLetAppsAccessRadioDefaultDescription": "Some apps use radios - like Bluetooth - in your device to send and receive date and need to turn on or off these radios. Define whether apps can control these radios.",
"privacyLetAppsAccessRadioPerAppDescription": "Some apps use radios - like Bluetooth - in your device to send and receive date and need to turn on or off these radios. Define whether this app can control these radios.",
"privacyLetAppsAccessRadiosName": "Radios",
"privacyLetAppsAccessSyncWithDevicesDefaultDescription": "Define whether apps can automatically share and sync info with wireless devices that don't explicitly pair with this PC, tablet or phone",
"privacyLetAppsAccessSyncWithDevicesPerAppDescription": "Define whether this app can automatically share and sync info with wireless devices that don't explicitly pair with this PC, tablet or phone",
"privacyLetAppsAccessTasksDefaultDescription": "Define whether apps can access your tasks",
"privacyLetAppsAccessTasksName": "Tasks",
"privacyLetAppsAccessTasksPerAppDescription": "Define whether this app can access your tasks",
"privacyLetAppsAccessTrustedDevicesDefaultDescription": "Define whether apps can use trusted devices (hardware you've already connected or that comes with this PC, tablet or phone) e.g. TVs, projectors, etc.",
"privacyLetAppsAccessTrustedDevicesName": "Trusted devices",
"privacyLetAppsAccessTrustedDevicesPerAppDescription": "Define whether this app can use trusted devices (hardware you've already connected or that comes with this PC, tablet or phone) e.g. TVs, projectors, etc.",
"privacyLetAppsGetDiagnosticInfoName": "Feedback and diagnostics",
"privacyLetAppsRunInBackgroundName": "Background apps",
"privacyLetAppsSyncWithDevicesName": "Sync with devices",
"privacyLocalActivitiesOnlyDescription": "Block shared experiences/discovery of recently used resources in task switcher etc. based only on local activity.",
"privacyLocalActivitiesOnlyName": "Local activities only",
"privacyPageDescription": "Block access to Privacy in Settings app.",
"privacyPageName": "Privacy",
"privacyPreferencesTableDescription": "Specify the privacy preferences for the app or process.",
"privacyPreferencesTableName": "Apps and processes",
"privacyPublishUserActivitiesDescription": "Block shared experiences/discovery of recently used resources in task switcher etc.",
"privacyPublishUserActivitiesName": "Publish user activities",
"privateAuthorizedAppRulesSummaryLabel": "Authorized application Microsoft Defender Firewall rules from the local store (Private networks)",
"privateFirewallEnabledSummaryLabel": "Microsoft Defender Firewall (Private networks)",
"privateGlobalRulesSummaryLabel": "Global port Microsoft Defender Firewall rules from the local store (Private networks)",
"privateIPsecRulesSummaryLabel": "IPsec rules from the local store (Private networks)",
"privateIPsecSecuredPacketExemptionSummaryLabel": "IPsec secured packet exemption with Stealth Mode (Private networks)",
"privateInboundConnectionsSummaryLabel": "Default action for inbound connections (Private networks)",
"privateInboundNotificationsSummaryLabel": "Inbound notifications (Private networks)",
"privateLocalStoreSummaryLabel": "Microsoft Defender Firewall rules from the local store (Private networks)",
"privateNetworkName": "Private (discoverable) network",
"privateOutboundConnectionsSummaryLabel": "Default action for outbound connections (Private networks)",
"privateShieldedSummaryLabel": "Shielded (Private networks)",
"privateStealthModeSummaryLabel": "Stealth mode (Private networks)",
"privateUnicastResponsesToMulticastBroadcastsSummaryLabel": "Unicast responses to multicast broadcasts (Private networks)",
"probeUrlOptionalDescription": "This URL is a test and determines if the device is on an external network. The URL is probed every time a user tries to access a domain in the domains list. If the probe fails because the URL is unreachable or doesn't return a 200 HTTP status code, then a VPN connection is created. For example, enter https://corp.contoso.com/internalprobe, which can only be accessed when the device is joined to the internal network.",
"probeUrlOptionalExample": "e.g. https://corp.contoso.com/internalprobe",
"probeUrlOptionalName": "Enter the HTTP or HTTPS probing URL",
"processesColumn": "Processes",
"processesColumnExamples": "Example: %ProgramFiles%\\path\\myapp.exe",
"processesToExcludeName": "Processes to exclude from scans and real-time protection",
"productKey": "Product Key",
"productKeyFormat": "Form: XXXXX-XXXXX-XXXXX-XXXXX-XXXXX",
"prompt": "Prompt",
"promptUsersForSamplesSubmissionDescription": "Send telemetry to the Microsoft Active Protection Service for detection of suspicious activity.",
"promptUsersForSamplesSubmissionName": "Prompt users before sample submission",
"protocolsName": "Protocol",
"provideDerivedCredential": "You have not specified a derived credential issuer for your tenant",
"provideOptionalSettingData": "Invalid value for the optional setting \"{0}\"",
"provideOptionalSettingDataInSection": "Invalid value for the optional setting \"{0}\" in section \"{1}\"",
"provideRequiredData": "Provide all required data for the \"{0}\" section",
"provideRequiredSettingData": "Provide the value for the required setting \"{0}\"",
"provideRequiredSettingDataInSection": "Provide the value for the required setting \"{0}\" in section \"{1}\"",
"providedByVPNVendor": "Provided by VPN vendor",
"provisionPACAnonName": "Use and Provision PAC Anonymously",
"provisionPACName": "Use and Provision PAC",
"proxy": "Proxy",
"proxyAddressExample": "e.g. 10.0.0.22",
"proxyAddressExampleUpper": "e.g. 10.0.0.122",
"proxyAutoConfigGlobalProxyOption": "Proxy Auto-Config",
"proxyDNSExample": "e.g. http://proxy.com",
"proxyExclusionListDescription": "Add hostnames to prevent them from routing through the proxy.",
"proxyExclusionListExample": "e.g. test.contoso.com",
"proxyExclusionListName": "Exclusion list",
"proxyPortExample": "e.g. 8080",
"proxyPortExampleUpper": "e.g. 9080",
"proxyServerAddressDescription": "Enter the IP address of the proxy server.",
"proxyServerAddressName": "Proxy server address",
"proxyServerURLDescription": "Provide the location URL of the PAC (Proxy Auto Configuration) file which contains a list of proxy servers to use.",
"proxyServerURLName": "Proxy server URL",
"proxyServersAutoDetectionName": "Auto detection of other enterprise proxy servers",
"proxyUrlExample": "e.g. itgproxy.contoso.com",
"publicAuthorizedAppRulesSummaryLabel": "Authorized application Microsoft Defender Firewall rules from the local store (Public networks)",
"publicFirewallEnabledSummaryLabel": "Microsoft Defender Firewall (Public networks)",
"publicGlobalRulesSummaryLabel": "Global port Microsoft Defender Firewall rules from the local store (Public networks)",
"publicIPsecRulesSummaryLabel": "IPsec rules from the local store (Public networks)",
"publicIPsecSecuredPacketExemptionSummaryLabel": "IPsec secured packet exemption with Stealth Mode (Public networks)",
"publicInboundConnectionsSummaryLabel": "Default action for inbound connections (Public networks)",
"publicInboundNotificationsSummaryLabel": "Inbound notifications (Public networks)",
"publicLocalStoreSummaryLabel": "Microsoft Defender Firewall rules from the local store (Public networks)",
"publicNetworkName": "Public (non-discoverable) network",
"publicOutboundConnectionsSummaryLabel": "Default action for outbound connections (Public networks)",
"publicPlayStoreEnabledDescription": "Users get access to all apps, except the ones youve required uninstall in Client Apps. If you choose \"Not configured\" for this setting, users can only access the apps youve listed as available or required in Client Apps.",
"publicPlayStoreEnabledName": "Allow access to all apps in Google Play store",
"publicPlayStoreEnabledWarning": "If you select \"Allow\", users are able to install any apps from the Google Play Store. If you later change your selection to \"Not configured\", all apps not explicitly allowed for the user will be removed from the device.",
"publicShieldedSummaryLabel": "Shielded (Public networks)",
"publicStealthModeSummaryLabel": "Stealth mode (Public networks)",
"publicUnicastResponsesToMulticastBroadcastsSummaryLabel": "Unicast responses to multicast broadcasts (Public networks)",
"pulseSecureAlwaysOnOption": "Pulse Secure",
"pulseSecureOption": "Pulse Secure",
"qualityUpdatesDeferralPeriodDescription": "Defer quality updates for the specified number of days.",
"qualityUpdatesDeferralPeriodName": "Quality update deferral period (days)",
"quarantineOption": "Quarantine",
"quickScanOption": "Quick scan",
"quotationInvalidError": "The value must not contain '\"'.",
"rSA": "RSA",
"radioWarningInfoBox": "Warning! Disabling all radios will render the device unmanageable without a wired network connection",
"radiosName": "Radios (Bluetooth, Wi-Fi, NFC, etc..)",
"randomOption": "Random",
"readOnlyMappingDescription": "If files are read-only, user will not be able to remove any detected malware",
"real": "Real",
"realmName": "Realm",
"rearCamerasName": "Rear cameras",
"recommendedOptionName": "Recommended and Important",
"recommendedResolutionDescription": "Delete the profile if it's no longer being used. If the profile is still useful, re-create the policy in this portal and assign it to the same groups. After that's complete, delete this profile here or in the classic portal.",
"recommendedResolutionTitle": "Recommended resolution:",
"recurrence": "Recurrence",
"recurrenceTooltip": "Specify how often the system should check for apps with update failures to be restarted.",
"redirectDescription": "If enabled, the IKEv2 connection will be redirected if a redirect request is received from the server.",
"redirectName": "Redirect",
"redirectSingleSignOnExtensionExtensionIdentifierEmptyValue": "com.example.sso.redirect",
"remoteAddressInvalidError": "\nRemote addresses must be a comma separated list of valid tokens. Tokens are case insensitive:\n\"*\" to indicate any remote address which, if present, must be the only token included;\n\"Defaultgateway\";\n\"DHCP\";\n\"DNS\";\n\"WINS\";\n\"Intranet\" (supported on Windows versions 1809+);\n\"RmtIntranet\" (supported on Windows versions 1809+);\n\"Internet\" (supported on Windows versions 1809+);\n\"Ply2Renders\" (supported on Windows versions 1809+);\n\"LocalSubnet\" indicates any local address on the local subnet;\nIPv4 address or address range;\nIPv6 address or address range;\nA subnet.\n ",
"remoteAddressRangesDescription": "These remote address ranges will be allowed over the VPN interface. <br>For a single IP address, enter the same address in both fields.",
"remoteAddressRangesName": "Remote address ranges",
"remoteInputOption": "Text entry in notifications",
"remoteInputOptionAndroid": "Text entry in notifications (fully managed or dedicated)",
"remotePortRangesDescription": "\n Match this rule when the remote port is between the lower and upper port range.\n <br>\n Remote port ranges follow the same logic as local port ranges.\n <br>\n Local port range should be set only when protocol is either TCP or UDP (6 or 17), otherwise you will get an error trying to save the profile.\n ",
"remotePortRangesName": "Remote port ranges",
"removeOption": "Remove",
"removeUserDisabledDescription": "Block removal of users.",
"removeUserDisabledName": "User removal",
"requireAppStorePasswordDescription": "Users must enter Apple ID password for each in-app and iTunes purchase.",
"requireAppStorePasswordName": "Require iTunes Store password for all purchases",
"requireAppVerifyDescription": "Enforce that the Verify Apps setting is turned on for work and personal profiles. Important: this setting will only work for devices that are Android O and above.",
"requireAppVerifyName": "Threat scan on apps",
"requireClassroomRequestPermissionToLeaveClassesDescription": "Requires a student enrolled in an unmanaged course via Classroom to request permission from the teacher when attempting to leave the course. Only available in iOS 11.3+",
"requireClassroomRequestPermissionToLeaveClassesName": "Require teacher permission to leave Classroom app unmanaged classes",
"requireCompanyPortalAppIntegrityDescription": "Checks that the company portal app has the default runtime environment installed, is properly signed, and is not in debug-mode.",
"requireCompanyPortalAppIntegrityName": "Company Portal app runtime integrity",
"requireCryptographicBinding": "Require cryptographic binding",
"requireCryptographicBindingDescription": "Only connect to PEAP servers that use cryptographic binding during PEAP negotiation. We recommend setting this to Yes when possible. Setting this to No or Not Configured is less secure.",
"requireDeviceCompliancePolicyAssignedDescription": "Default policy. Devices must have at least one compliance policy assigned to be compliant.",
"requireDeviceCompliancePolicyAssignedName": "Has a compliance policy assigned",
"requireEncryptedBackupDescription": "Require encryption on device backup.",
"requireEncryptedBackupName": "Force encrypted backup",
"requireEncryptionDescription": "Require encryption on device. Not all devices support encryption.<br>\n<br>\nYou must also:<br>\n1. Enable 'Require password'<br>\n2. Specify 'Password quality' of 'At least numeric'<br>\n3. Set 'Minimum password length' of at least 4, to correctly report compliance for this setting.",
"requireEncryptionName": "Encryption",
"requireEncryptionOnRemovableStorageDescription": "Storage cards must be encrypted. Not all devices support storage card encryption. For more information, see the device and mobile operating system documentation.",
"requireEncryptionOnRemovableStorageName": "Encryption on storage cards",
"requireFraudWarningDescription": "Require fraud warnings.",
"requireFraudWarningName": "Fraud warnings",
"requireFraudWarningNameIOS": "Require Safari fraud warnings",
"requireGooglePlayServicesDescription": "Check that the Google Play services app is installed and enabled. Google Play services allows security updates and is a base level dependency for many security features on certified Google devices.",
"requireGooglePlayServicesName": "Google Play Services is configured",
"requireIntuneAppIntegrityDescription": "Checks that the Intune app has the default runtime environment installed, and is properly signed.",
"requireIntuneAppIntegrityName": "Intune app runtime integrity",
"requirePINForPairingDescription": "Require a PIN for new devices to initiate pairing",
"requirePINForPairingName": "Require PIN for pairing",
"requirePasswordDescription": "Require password to access device.",
"requirePasswordFromIdleDescription": "Force user to input password every time the device returns from an idle state.",
"requirePasswordFromIdleName": "Require password when device returns from idle state (Mobile and Holographic)",
"requirePasswordName": "Password",
"requireRecentSSPHeartbeatDescription": "Default policy. The Company Portal must be opened to report its jailbreak status to Intune at least once every 72 hours to be compliant.",
"requireRecentSSPHeartbeatName": "Company Portal check-in",
"requireRemainContactDescription": "Default policy. Device must regularly contact Intune to be considered compliant.",
"requireRemainContactName": "Is active",
"requireSMIME": "S/MIME",
"requireSMIMEDescription": "To enable S/MIME, a certificate is required.",
"requireSMIMEName": "S/MIME",
"requireSSLDescription": "Enable SSL to help secure all communications with the email server.",
"requireSSLName": "SSL",
"requireSSPLocationServicesDescription": "Default policy. The user must allow the company portal to use location services to be compliant.",
"requireSSPLocationServicesName": "Location services in the Company Portal",
"requireSiriProfanityFilterDescription": "Prevents Siri from dictating, or speaking profane language. Available with iOS 11.0 or later. This setting isn't available if you block Siri.",
"requireSiriProfanityFilterName": "Require Siri profanity filter",
"requireUpToDateSecurityProvidersDescription": "An up-to-date security provider can protect a device from known vulnerabilities.",
"requireUpToDateSecurityProvidersName": "Up-to-date security provider",
"requireUserExistanceDescription": "Default policy. The user must exist and have a valid Intune license.",
"requireUserExistanceName": "Enrolled user exists",
"required": "Required",
"requiredAndroidSafetyNetEvaluationTypeBasic": "Not configured (defaults to basic evaluation)",
"requiredAndroidSafetyNetEvaluationTypeDescription": "Select the evaluation type you want to use to compute the SafetyNet device attestation response.",
"requiredAndroidSafetyNetEvaluationTypeHardwareBacked": "Hardware-backed key",
"requiredAndroidSafetyNetEvaluationTypeName": "Required SafetyNet evaluation type",
"requiredExtensionsColumnHeader": "Package family names",
"requiredExtensionsExamples": "e.g. Microsoft.Office.OneNote_8wekyb3d8bbwe",
"requiredNoRestiction": "Password required, no restrictions",
"requiredPasswordComplexityDescription": "Specify the required password complexity.",
"requiredPasswordComplexityName": "Password complexity",
"requiredPasswordTypeDescription": "Specify the type of password required.",
"requiredPasswordTypeName": "Required password type",
"requiredPasswordUnlockDailyOption": "24 hours since last PIN, password, or pattern unlock",
"requiredPasswordUnlockName": "Required unlock frequency",
"requiredURLStringProbeName": "Pre-connection probe URL",
"resetToDefaultOption": "Reset to default",
"resourcePath": "Resource path",
"resourcePathDescription": "If your path isn't ipp/print, see the learn more link on this page for help.",
"restartWarningsOnlyOption": "Turn off all notifications, excluding restart warnings",
"restrictAppDataToSystemVolume": "Install app data on system volume",
"restrictAppDataToSystemVolumeDescription": "Specifies that app data can only be stored on the system disk volume.",
"restrictAppInstallToSystemVolume": "Install apps on system drive",
"restrictAppInstallToSystemVolumeDescription": "Specifies that apps can only be stored on the system disk drive.",
"restrictPeerSelectionByDescription": "Restricts peer selection via the selected option. Applies to Download Modes NAT (1) and Group (2).",
"restrictPeerSelectionByName": "Restrict Peer Selection",
"restrictedAppsAppName": "App name",
"restrictedAppsBundleId": "App bundle ID",
"restrictedAppsHelpDescription": "Add bundle IDs for apps that should be restricted. A device that has at least one app installed which is found on the restricted apps list will be marked as non-compliant.",
"restrictedAppsListOptionsDescription": "Device compliance can be viewed in the Restricted Apps Compliance report.",
"restrictedAppsListOptionsName": "Type of restricted apps list",
"restrictedAppsName": "Restricted apps",
"restrictedSitesSecurityLevelDescription": "Enforce high security for restricted sites.",
"restrictedSitesSecurityLevelName": "High security for restricted sites",
"revokeEncryptionKeysOnUnEnrollDescription": "Revoke encryption keys when device is unenrolled (Yes recommended).",
"revokeEncryptionKeysOnUnEnrollName": "Revoke encryption keys when device is unenrolled",
"roleAndRealmDescription": "Role and realm value pairs, as required by vendor.",
"roleAndRealmName": "Role and realm values",
"roleName": "Role",
"roundRobinOption": "Round robin",
"ruleMergingName": "Rule merging",
"ruleName": "Name",
"ruleNameDescription": "Name of rule - use a name that makes sense to you, to help order large numbers of rules",
"ruleNameLabel": "Rule name",
"ruleScope": "Scope",
"ruleScopeName": "Rule scope",
"runImmediatelyIfAfterStartDateTime": "Run immediately after start DateTime",
"sAMAccountNameOption": "sAM account name",
"sCCMComplianceState": "Require device compliance from Configuration Manager",
"sCCMComplianceStateDescription": "Requires all compliance evaluations in Configuration Manager to be compliant. This is only applicable for co-managed devices running Windows 10 or later. All Intune-only devices will return N/A.",
"sCEPCertType": "SCEP certificate",
"sCEPPPolicySHA1": "SHA-1",
"sCEPPPolicySHA2": "SHA-2",
"sCEPPolicyCertificateValidityPeriodDescription": "The amount of time remaining before the certificate expires. Enter a value that is equal to or lower than the validity period shown in the certificate template. Default is set at one year.",
"sCEPPolicyCertificateValidityPeriodName": "Certificate validity period",
"sCEPPolicyCustomAADAttribute": "Custom Azure AD Attribute",
"sCEPPolicyCustomKeys": "Custom keys",
"sCEPPolicyCustomSubjectAlternativeNameForMachineDescription": "Value can include allowed variables combined with static text. UPN and Email address should include an @, for example: “{{AAD_Device_ID}}@contoso.com”. DNS cannot end with a symbol or contain an @ sign, e.g. “{{DeviceName}}.contoso.com“ or “{{DeviceName}}”. See support variables here: http://go.microsoft.com/fwlink/?LinkId=2027630",
"sCEPPolicyCustomSubjectAlternativeNameForUserDescription": "Value can include allowed variables, for example: “{{UserPrincipalName}}” or “{{EmailAddress}}” . See support variables here: http://go.microsoft.com/fwlink/?LinkId=2027630",
"sCEPPolicyCustomSubjectNameForMachine": "CN={{AAD_Device_ID}}<br>or<br>CN={{Device_Serial}}<br>or<br>CN={{Device_IMEI}}",
"sCEPPolicyCustomSubjectNameForMachineDescription": "CN={{AAD_Device_ID}},OU=Devices,O=Contoso,DC=com<br>or<br>CN={{Device_Serial}},OU=Devices,O=Contoso,DC=com<br>or<br>CN={{Device_IMEI}},OU=Devices,O=Contoso,DC=com",
"sCEPPolicyCustomSubjectNameForUser": "CN={{UserName}}&lt;br&gt;or&lt;br&gt;CN={{EmailAddress}}&lt;br&gt;or&lt;br&gt;CN={{onPremisesSamAccountName}}",
"sCEPPolicyCustomSubjectNameFormatDescription": "CN={{UserName}},E={{EmailAddress}},OU=EnterpriseUsers,O=Contoso Corporation,L=Redmond,ST=WA,C=US",
"sCEPPolicyCustomSubjectNameWithAadFormatDescription": "CN={{UserName}},E={{EmailAddress}},OU=EnterpriseUsers,O=Contoso Corporation,L=Redmond,ST=WA,C=US\n <br>or<br>CN={{AAD_Device_ID}},E={{EmailAddress}},OU=EnterpriseUsers,O=Contoso Corporation,L=Redmond,ST=WA,C=US",
"sCEPPolicyEnrollToPassport": "Enroll to Windows Hello for Business, otherwise fail (Windows 10 and later)",
"sCEPPolicyEnrollToSoftwareKSP": "Enroll to Software KSP",
"sCEPPolicyEnrollToTrustedOtherwiseFail": "Enroll to Trusted Platform Module (TPM) KSP, otherwise fail",
"sCEPPolicyEnrollToTrustedOtherwiseKSP": "Enroll to Trusted Platform Module (TPM) KSP if present, otherwise Software KSP",
"sCEPPolicyExtendedKeyUsageDescription": "In most cases, the certificate requires at least Client Authentication so that the user or device can authenticate to a server. However, you can specify additional usages to further define the purpose of the key.",
"sCEPPolicyExtendedKeyUsageName": "Extended key usage",
"sCEPPolicyHashAlgorithmDescription": "Use a hash algorithm type with the certificate. Make sure to select the strongest level of security that the connecting devices support.",
"sCEPPolicyHashAlgorithmName": "Hash algorithm",
"sCEPPolicyKeySizeDescription": "Select the number of bits contained in the key. 2048 is the recommended minimum key length.",
"sCEPPolicyKeySizeName": "Key size (bits)",
"sCEPPolicyKeyStorageProviderDescription": "Select where you want to store the certificates key.",
"sCEPPolicyKeyStorageProviderName": "Key storage provider (KSP)",
"sCEPPolicyKeyUsageDescription": "Specify the cryptographic action that is required to exchange the certificates public key.",
"sCEPPolicyKeyUsageName": "Key usage",
"sCEPPolicyObjectIdentifierColumnDescription": "Object Identifier for EKU (Extended Key Usage)",
"sCEPPolicyObjectIdentifierColumnName": "Object Identifier",
"sCEPPolicyPreDefinedKeys": "Pre-defined keys",
"sCEPPolicyRenewalThresholdDescription": "Enter the percentage (between 1 and 99 percent) of remaining certificate lifetime that is allowed before a device can request renewal of the certificate. The recommended amount in Intune is 20%.",
"sCEPPolicyRenewalThresholdName": "Renewal threshold (%)",
"sCEPPolicySelectRootCertificateDescription": "Choose a previously configured and assigned root CA certificate profile. The CA certificate must match the root certificate of the CA that is issuing the certificate for this profile (the one you are currently configuring).",
"sCEPPolicySelectRootCertificateName": "Root Certificate",
"sCEPPolicyServerURLExample": "e.g. https://contoso.com/certsrv/mscep/mscep.dll",
"sCEPPolicyServerURLName": "Server URL",
"sCEPPolicyServerURLSDescription": "Add one or more URLs for the NDES Server that issues certificates through SCEP.",
"sCEPPolicyServerURLSExample": "e.g. https://contoso.com/certsrv/mscep/mscep.dll",
"sCEPPolicyServerURLSName": "SCEP Server URLs",
"sCEPPolicySubjectNameFormatCnAsAadDeviceId": "Common name as AAD identifier",
"sCEPPolicySubjectNameFormatCnAsDurableDeviceId": "Common name as durable identifier",
"sCEPPolicySubjectNameFormatCnAsIntuneDeviceId": "Common name as Intune identifier",
"sCEPPolicySubjectNameFormatCommonName": "Common name",
"sCEPPolicySubjectNameFormatCommonNameAndEmailAddress": "Common name including email",
"sCEPPolicySubjectNameFormatCommonNameAsEmail": "Common name as email",
"sCEPPolicySubjectNameFormatCommonNameAsIMEI": "IMEI number",
"sCEPPolicySubjectNameFormatCommonNameAsSerialNumber": "Serial number",
"sCEPPolicySubjectNameFormatCustom": "Custom",
"sCEPPolicySubjectNameFormatDescription": "Select how Intune automatically creates the subject name in the certificate request. If the certificate is for a user, you can also include the user's email address in the subject name.",
"sCEPPolicySubjectNameFormatDirectoryPath": "Fully distinguished name",
"sCEPPolicySubjectNameFormatHelp": "Please review subject name documentation on how to best use the Subject name format field.",
"sCEPPolicySubjectNameFormatName": "Subject name format",
"sCEPPolicyUseAsDigitialSignature": "Digital signature",
"sCEPPolicyUseForKeyEncipherment": "Key encipherment",
"sCEPPolicyWindowsCertificateStoreDescription": "Windows certificate store",
"sCEPPolicyWindowsCertificateStoreMachine": "Device",
"sCEPPolicyWindowsCertificateStoreName": "Certificate type",
"sCEPPolicyWindowsCertificateStoreUser": "User",
"sHA1160": "SHA1-160",
"sHA196": "SHA1-96",
"sHA2256": "SHA2-256",
"sHA2384": "SHA2-384",
"sHA2512": "SHA2-512",
"sMIMEAllowUserToChangeSetting": "Allow user to change setting",
"sMIMECertificateOption": "Enable S/MIME",
"sMIMECertificateOptionEncryption2": "S/MIME Encryption Cert",
"sMIMECertificateOptionSigning": "S/MIME Signing Cert",
"sMIMEEncryptByDefault": "Encrypt by default",
"sMIMEEncryptByDefaultDescription": "Select whether or not all messages are encrypted by default.",
"sMIMEEncryptByDefaultUserOverrideableDescription": "Select whether or not users can change the encrypt by default option. Available in iOS 12+.",
"sMIMEEncryptionCertificateUUIDUserOverrideableDescription": "Select whether or not users can change the S/MIME encryption certificate. Available in iOS 12+.",
"sMIMESigningCertificateUUIDUserOverrideableDescription": "Select whether or not a user can change their S/MIME signing certificate. Available in iOS 12+.",
"sMIMESigningEnabled": "S/MIME signing enabled",
"sMIMESigningEnabledDescription": "Select whether or not to enable S/MIME signing for this account.",
"sMIMESigningUserOverrideableDescription": "Select whether or not a user can change the S/MIME signing setting. Available in iOS 12+.",
"sModeBlock": "Keep in S mode",
"sModeBlockReporting": "Block S mode switch",
"sModeNoRestrictions": "No Configuration",
"sModeProfileHeader": "Once a device has been switched out of S mode, it can only be put back into S mode by factory re-setting the device.",
"sModeProfileLearnMore": "Learn more about Windows S mode.",
"sModeSwitch": "Switch out of S mode:",
"sModeUnlock": "Switch",
"sModeUnlockReporting": "Switch out of S mode",
"sSIDOrDNSName": "SSIDs containing any of the following",
"sSOAllowedAppsListDescription": "The app bundle IDs of the apps on users devices that are allowed to use SSO. If this field is omitted, the login applies to all apps on the device. * wildcard characters may only be used with iOS 9.0 and later.",
"sSOAllowedAppsListName": "Apps",
"sSOAllowedUrlsDescription": "The list of URL prefixes that must be matched in order to use this account for Kerberos authentication over HTTP. The URL must begin with either http:// or https://.",
"sSOAllowedUrlsName": "URLs",
"sSOPrincipalNameDescription": "Select the Kerberos principal name. If not selected, the user is prompted for a principal name during MDM profile installation.",
"sSOPrincipalNameName": "Azure AD username attribute",
"sSORealmDescription": "A Kerberos realm name. This value must be properly capitalized.",
"sSORealmName": "Realm",
"safariSettingsHeader": "Safari",
"safariUrlsExample": "e.g. contoso.com",
"safeSearchFilterDescription": "Specify how Cortana filters adult content from search results.",
"safeSearchFilterName": "Safe Search (mobile only)",
"safetyNetAttestationOptionsDescription": "Set the level of SafetyNet attestation",
"safetyNetAttestationOptionsName": "SafetyNet device attestation",
"sampleSharingEnableOrNotConfiguredDescription": "Returns or sets the Microsoft Defender for Endpoint Sample Sharing configuration parameter.",
"sampleSharingEnableOrNotConfiguredName": "Sample sharing for all files",
"saturday": "Saturday",
"saturdayOption": "Saturday",
"scanAllDownloadsName": "Scan all downloads",
"scanArchiveFilesName": "Scan archive file",
"scanDisabledOption": "Scan disabled",
"scanFilesOpenedFromNetworkFoldersName": "Scan files opened from network folders",
"scanIncomingMailMessagesName": "Scan incoming mail messages",
"scanMappedNetworkDrivesDuringFullScanName": "Scan mapped network drives during a full scan",
"scanRemovableDrivesDuringFullScanDescription": "Allows Microsoft Defender to scan for malicious and unwanted software in removable drives (e.g. flash drives) during a full scan. Microsoft Defender Antivirus scans all files on USB devices before execution.",
"scanRemovableDrivesDuringFullScanName": "Scan removable drives during a full scan",
"scenario": "Scenario",
"scheduleImminentRestartWarningInMinutesDescription": "Specify the period for auto-restart imminent warning notifications. Allowed values: 15, 30 or 60.",
"scheduleImminentRestartWarningInMinutesName": "Remind user prior to required auto-restart with permanent reminder (minutes)",
"scheduleImminentRestartWarningValidationMessage": "Must be one of the following: 15, 30, 60.",
"scheduleRestartHoursHintText": "Number of hours, 2, 4, 8, 12, or 24",
"scheduleRestartMinutesHintText": "Number of minutes, 15, 30, or 60",
"scheduleRestartWarningInHoursDescription": "Specify the period for auto-restart warning reminder notifications. Allowed values: 2, 4, 8, 12 or 24.",
"scheduleRestartWarningInHoursName": "Remind user prior to required auto-restart with dismissible reminder (hours)",
"scheduleRestartWarningValidationMessage": "Must be one of the following: 2, 4, 8, 12, 24.",
"screenCaptureDisabledDescription": "Block screen capture",
"screenCaptureDisabledName": "Screen capture",
"screenCaptureDisabledNameWorkProfile": "Screen capture (work profile-level)",
"scriptScanningName": "Scan scripts loaded in Microsoft web browsers",
"sdCardName": "SD card",
"searchBlockDiacriticsDescription": "Specify if search can use diacritics.",
"searchBlockDiacriticsName": "Diacritics",
"searchBlockWebResultsDescription": "This setting allows you to control whether or not Windows Search can perform queries on the web, and whether web results are displayed in Search. If you block this setting, queries will not be performed on the web and web results will not be displayed when a user performs a query in Search.",
"searchBlockWebResultsName": "Display web results in search",
"searchDisableAutoLanguageDetectionDescription": "Specify whether to use automatic language detection when indexing content and properties.",
"searchDisableAutoLanguageDetectionName": "Automatic language detection",
"searchDisableIndexerBackoffDescription": "Disables the search indexer backoff feature. Indexing will continue at full speed even if system activity is high. ",
"searchDisableIndexerBackoffName": "Indexer backoff",
"searchDisableIndexingEncryptedItemsDescription": "Block indexing of WIP-protected items to prevent them from appearing in search results for Cortana or Explorer.",
"searchDisableIndexingEncryptedItemsName": "Indexing of encrypted stores and items",
"searchDisableIndexingRemovableDriveDescription": "Prevent indexing of locations on removable drives. In addition, removable drives cannot be added to libraries.",
"searchDisableIndexingRemovableDriveName": "Removable drive indexing",
"searchDisableUseLocationDescription": "Specify if search can use location information",
"searchDisableUseLocationName": "Search location",
"searchDomainsDescription": "Search domains are part of the advanced DNS settings of a network connection service (such as Wi-Fi or Ethernet).",
"searchDomainsDescriptionWithHint": "Search domains are part of the advanced DNS settings of a network connection service (such as Wi-Fi or Ethernet). To establish a VPN connection when a specific web domain is accessed, create an Evaluate each connection attempt -> Connect if needed rule.",
"searchEnableAutomaticIndexSizeManangementDescription": "When not configured, automatic indexing is off when the remaining hard disk space is 600MB or less.<br>If the setting is enabled automatic indexing will continue even when there is low disk space.",
"searchEnableAutomaticIndexSizeManangementName": "Low disk space indexing",
"searchEnableRemoteQueriesDescription": "Enable remote queries of this computer's index.",
"searchEnableRemoteQueriesName": "Remote queries",
"secondActiveEthernet": "Second active Ethernet",
"secondEthernet": "Second Ethernet",
"secondaryAuthenticationMethodName": "Secondary authentication method",
"secondaryAuthenticationMethodTEAPDescription": "Choose the secondary way you want users to authenticate. When you select Certificates, select one of the certificate profiles (SCEP or PKCS) that is also deployed to the device. This is the identity certificate that is presented by the device to the server.",
"secretKey": "Secret Key:",
"secureBootEnabledDescription": "Require Secure Boot to be enabled on the device",
"secureBootEnabledName": "Require Secure Boot to be enabled on the device",
"secured": "Secured",
"securityAssociationIdleTimeDescription": "Security associations are deleted after network traffic is not seen for this number of seconds.",
"securityAssociationIdleTimeHint": "Enter idle time in seconds (300 - 3600)",
"securityAssociationIdleTimeName": "Security association idle time before deletion",
"securityAssociationParamName": "Security Association Parameters",
"securityBlockAzureADJoinedDevicesAutoEncryptionDescription": "Prevent automatic device encryption during first use, when the device is Azure AD joined",
"securityBlockAzureADJoinedDevicesAutoEncryptionName": "Automatic encryption during AADJ",
"securityCommonCriteriaModeDescription": "This setting enables an elevated set of security standards on the device most often used in highly sensitive organizations, such as government establishments. Not configured by default.",
"securityCommonCriteriaModeName": "Common Criteria mode",
"securityDeveloperSettingsEnabledDescription": "Allow access to developer settings.",
"securityDeveloperSettingsEnabledName": "Developer settings",
"securityOption": "Diagnostic data off",
"securityRequireVerifyAppsDescription": "Enable Google Play Protect to scan apps before and after theyre installed. If it detects a threat, it might warn the user to remove the app from the device. Required by default.",
"securityRequireVerifyAppsName": "Threat scan on apps",
"selectAADAttribute": "Select AAD attribute",
"selectAConnectionType": "Select a connection type",
"selectARestriction": "Select a restriction",
"selectATypeOfAutomaticVPNOption": "Select a type of automatic VPN",
"selectAnAction": "Select an action",
"selectAnAuthenticationMethod": "Select an authentication method",
"selectAuthenticationMethod": "Select Authentication method",
"selectCertType": "Not configured",
"selectCertificate": "Select a certificate",
"selectCertificateProfile": "Select a certificate profile",
"selectCertificateProfiles": "Select one or more certificate profiles",
"selectCertificateValueName": "Select certificate value",
"selectCertificates": "Select certificate(s)",
"selectEAP": "Select EAP type",
"selectEducationProfileAccountNameType": "Select account type",
"selectKioskBrowserApp": "Add Kiosk browser",
"selectManagedApp": "Select a managed app",
"selectManagedApps": "Select managed apps",
"selectMicrosoftEdgeApp": "Add Microsoft Edge Legacy browser",
"selectMicrosoftTunnelSite": "Select a site",
"selectNetworkInterface": "Select network interface",
"selectNonEapMethod": "Select non-EAP method",
"selectOneOption": "Select one",
"selectProxy": "Select proxy settings",
"selectRootCertificateForClientAuthenticationName": "Root certificate for client authentication",
"selectRootCertificateForServerValidationName": "Root certificate for server validation",
"selectRootCertificatesForServerValidationName": "Root certificates for server validation",
"selectSecurity": "Select security type",
"selectService": "Which management type can we help you with?",
"selectStoreApp": "Add Store app",
"selectStoreAppEmpty": "Add a store app",
"selectTimesToPreventUpdateInstallationsName": "Select times to prevent update installations:",
"selectTypeOption": "Select a password type",
"selectWin32AppForEdge86": "Add Microsoft Edge browser",
"semiAnnualChannelTargetedDeprecated": "If you're using Microsoft Update for Business to deploy Windows 10, version 1903 and later, or Windows 11, your update options have changed. Updates will be delivered over the same channels, with the exception of Semi-Annual Channel (Targeted), which will no longer exist. Before you continue, go to the Intune documentation to learn more about these changes and how they affect your previously configured update ring.",
"sendAllSamplesAutomaticallyName": "Send all samples automatically",
"sendAllSamplesAutomaticallyOption": "Send all data without prompting",
"sendDoNotTrackHeaderDescription": "Websites are allowed to track users. Select Yes, to send do-not-track headers to websites requesting tracking info. ",
"sendDoNotTrackHeaderName": "Send do-not-track headers",
"sendDoNotTrackHeaderV2Description": "Do-not-track headers are sent to websites requesting tracking info. Select No, to allow websites to track the user.",
"sendIntranetAndInternetData": "Send intranet and internet data",
"sendSafeSamplesAutomaticallyName": "Send safe samples automatically",
"sendSafeSamplesAutomaticallyOption": "Prompt before sending personal data",
"serverAuthentication": "Server Authentication",
"serverCertificateCommonName": "Server certificate common name",
"serverCertificateIssuerCommonDescription": "Enter the server certificates common name only if its different than the remote identifier. The remote identifier will be used by default if no common name is specified.",
"serverCertificateIssuerCommonName": "Server certificate issuer common name",
"serverCertificateIssuerCommonNameRequired": "Server Certificate Issuer Common Name is required if Certificate Type is specified and Client Authentication is User Authentication.",
"serverDescriptionColumn": "Server description",
"serviceNameBlankError": "Windows service cannot be blank.",
"servicingBranchDescription": "Set the channel from which devices will receive their updates.",
"servicingBranchName": "Servicing channel",
"settingsAndExperimentsOption": "Yes - settings and experiments",
"settingsAppDescription": "Block access to Settings app.",
"settingsAppName": "Settings app",
"settingsBlockAddProvisioningPackageDesc": "Specifies whether to block the runtime configuration agent to install provisioning packages.",
"settingsBlockAddProvisioningPackageName": "Add provisioning packages",
"settingsBlockChangeLanguageDesc": "Blocks the user from changing the language settings.",
"settingsBlockChangeLanguageName": "Language settings modification (desktop only)",
"settingsBlockChangePowerSleepDesc": "Blocks the user from changing the power and sleep settings.",
"settingsBlockChangePowerSleepName": "Power and sleep settings modification (desktop only)",
"settingsBlockChangeRegionDesc": "Blocks the user from changing the region settings.",
"settingsBlockChangeRegionName": "Region settings modification (desktop only)",
"settingsBlockChangeSystemTimeDesc": "Blocks the user from changing the date and time settings.",
"settingsBlockChangeSystemTimeName": "System Time modification",
"settingsBlockEditDeviceName": "Device name modification (mobile only)",
"settingsBlockEditDeviceNameDesc": "Blocks the user from editing the device name.",
"settingsBlockMyMeetingsAndFilesDescription": "Blocks the \"My meetings and files\" feature in the Start menu, which shows the signed-in user's meetings and files from Office 365.",
"settingsBlockMyMeetingsAndFilesName": "My meetings and files",
"settingsBlockRemoveProvisioningPackageDesc": "Specifies whether to block the runtime configuration agent to remove provisioning packages.",
"settingsBlockRemoveProvisioningPackageName": "Remove provisioning packages",
"settingsBlockSessionResumeDescription": "Specify whether users can choose to resume a session when the session times out.",
"settingsBlockSessionResumeName": "Session resume",
"settingsBlockSigninSuggestionsDescription": "Disables auto-filling the sign-in dialog with invitees from scheduled meetings.",
"settingsBlockSigninSuggestionsName": "Sign-in suggestions",
"settingsDefaultVolumeDescription": "Default volume value for a new session. Range of values: 0-100.",
"settingsDefaultVolumeExample": "e.g. 0-100",
"settingsDefaultVolumeName": "Volume",
"settingsOnlyOption": "Yes - settings only",
"settingsScreenTimeoutInMinutesDescription": "Specify the number of minutes until the Hub screen turns off.",
"settingsScreenTimeoutInMinutesName": "Screen timeout",
"settingsSessionTimeoutInMinutesDescription": "Specify the number of minutes until the session times out.",
"settingsSessionTimeoutInMinutesName": "Session timeout",
"settingsSleepTimeoutInMinutesDescription": "Specify the number of minutes until the Hub enters sleep mode.",
"settingsSleepTimeoutInMinutesName": "Sleep timeout",
"sevenAMOption": "7 AM",
"sevenMonthsNumberOption": "7 months",
"sevenNumberOption": "7",
"sevenPMOption": "7 PM",
"severeSeverity": "Severe severity",
"sharedDeviceBlockTemporarySessionsDescription": "A temporary session allows a Shared iPad user to sign in with a guest account, which doesn't require a Managed Apple ID or password. Anyone can unlock and use the iPad during a temporary session. None of the users data is saved or synced to iCloud after they sign out. Available in iOS/iPadOS 13.4 and later.",
"sharedDeviceBlockTemporarySessionsName": "Block Shared iPad temporary sessions",
"sharedOption": "Shared iPad",
"sharedSecretName": "Shared secret",
"shieldedDescription": "If this setting and the firewall setting are both enabled, all incoming traffic will be blocked.",
"shieldedName": "Shielded",
"shortSupportMessageDefault": "You do not have permission for this action. For more information, contact your IT admin.",
"shortSupportMessageDescription": "A short support message is text shown to the end user by the platform when they try to configure a managed setting on the device. The \"All except when specified\" Language message is shown if a custom message is not specified for a device's default language. ",
"shortSupportMessageGridHeader": "Localized short support message",
"shortSupportMessageName": "Short support message",
"shortSystemMessageHint": "(max 200 characters)",
"shortSystemMessageLengthValidation": "Input can't exceed 200 characters.",
"shortSystemMessagesSummaryKey": "Short Support Message",
"show": "Show",
"showAppsList": "Visible apps",
"showEverything": "Organizer, time, and subject (subject hidden for private meetings)",
"showOrganizerAndTimeOnly": "Organizer and time only",
"showWorkContactsInPersonalProfileDescription": "This setting controls whether or not users can search work contacts and view work contact caller-id in the personal profile.",
"showWorkContactsInPersonalProfileName": "Search work contacts and display work contact caller-id in personal profile.",
"shutdown": "Shutdown",
"signatureUpdateIntervalInHoursName": "Security intelligence update interval (in hours)",
"signingCertificateType": "Signing certificate type",
"silentCertAccessAddApps": "Add apps",
"silentCertAccessApplicationsName": "Applications",
"silentCertAccessMaxAppsWarn": "Select a maximum of 50 apps to grant silent certificate access to",
"silentCertAccessMinAppsWarn": "Select at least one app to grant silent certificate access to",
"silentCertAccessSpecificApps": "Grant silently for specific apps (require user approval for other apps)",
"silentCertAccessTabName": "Apps",
"silentCertAccessTypeDescription": "Choose how certificate access is granted to applications",
"silentCertAccessTypeName": "Certificate access",
"silentCertAccessUserApproval": "Require user approval for all apps",
"simpleDownloadOption": "Simple download mode with no peering (99)",
"simultaneousMultiThreadingName": "Simultaneous multithreading",
"singleAppModeAppNameDescription": "The name of the app.",
"singleAppModeAppNameName": "App name",
"singleAppModeBundleIdsDescription": "Enter the Bundle ID of the app.",
"singleAppModeBundleIdsName": "App Bundle ID",
"singleSignOnExtensionActiveDirectorySiteCodeDescription": "The name of the site that the app extension uses. The app extension can normally detect the site location automatically.",
"singleSignOnExtensionActiveDirectorySiteCodeEmptyValue": "SiteA",
"singleSignOnExtensionActiveDirectorySiteCodeName": "Active Directory site code",
"singleSignOnExtensionBlockActiveDirectorySiteAutoDiscoveryDescription": "If blocked, the Kerberos extension doesnt automatically use LDAP and DNS to determine its Active Directory site name.",
"singleSignOnExtensionBlockActiveDirectorySiteAutoDiscoveryName": "Block Autodiscover",
"singleSignOnExtensionBlockAutomaticLoginDescription": "If blocked, passwords are not allowed to be saved to the keychain. The user will not be prompted to save the password and will need to re-enter it when the Kerberos ticket expires.",
"singleSignOnExtensionBlockAutomaticLoginName": "Block keychain usage",
"singleSignOnExtensionBundleIdAccessControlListDescription": "Additional App IDs of the apps you would like to use the Microsoft Azure AD single sign-on extension. This setting gives these additional apps permission to use the SSO extension if they do not use any Microsoft libraries. The experience may not be as seamless as if the apps used Microsoft libraries. Older apps that use SAML authentication or do not use the newest Microsoft libraries will need to be added to this list to work properly with the SSO extension.",
"singleSignOnExtensionBundleIdAccessControlListName": "App bundle IDs",
"singleSignOnExtensionBundleIdsColumnEmptyValue": "com.example.app",
"singleSignOnExtensionBundleIdsColumnName": "App bundle ID",
"singleSignOnExtensionCacheNameDescription": "The Generic Security Service name of the Kerberos cache to use. Rarely set by administrators.",
"singleSignOnExtensionCacheNameName": "Cache name",
"singleSignOnExtensionConfigurationsDescription": "Additional extension-specific data to pass to the app extension.",
"singleSignOnExtensionConfigurationsKeyColumnName": "Key",
"singleSignOnExtensionConfigurationsName": "Additional configuration",
"singleSignOnExtensionConfigurationsTypeColumnName": "Type",
"singleSignOnExtensionConfigurationsTypeColumnOptionBoolean": "Boolean",
"singleSignOnExtensionConfigurationsTypeColumnOptionInteger": "Integer",
"singleSignOnExtensionConfigurationsTypeColumnOptionString": "String",
"singleSignOnExtensionConfigurationsValidationError": "Use 'true' or 'false' for the configuration value when the value type is boolean (case insensitive). Use a number when the value type is integer.",
"singleSignOnExtensionConfigurationsValueColumnName": "Value",
"singleSignOnExtensionCredentialBundleIdAccessControlListDescription": "The bundle IDs of the apps that are allowed to access the Kerberos ticket granting ticket (TGT).",
"singleSignOnExtensionCredentialBundleIdAccessControlListName": "App bundle IDs",
"singleSignOnExtensionCredentialsCacheMonitoredDescription": "When set to \"Yes\", the credential is requested on the next matching Kerberos challenge or network state change. When the credential is expired or missing, a new credential is created. Available for devices running macOS versions 12 and later.",
"singleSignOnExtensionCredentialsCacheMonitoredName": "Request credential",
"singleSignOnExtensionDomainRealmsColumnEmptyValue": "EXAMPLE.COM",
"singleSignOnExtensionDomainRealmsColumnName": "DNS suffix",
"singleSignOnExtensionDomainRealmsDescription": "Create a custom domain-realm mapping for Kerberos. This is used when the DNS names of hosts do not match the realm name. Most administrators do not need to customize this.",
"singleSignOnExtensionDomainRealmsName": "Domain realm mapping",
"singleSignOnExtensionDomainsColumnEmptyValue": "example.com",
"singleSignOnExtensionDomainsColumnName": "Domain",
"singleSignOnExtensionDomainsDescription": "The domain or host names that can authenticate through SSO. Matched case-insensitively and all domain/host names of all installed SSO app extension profiles must be unique.",
"singleSignOnExtensionDomainsName": "Domains",
"singleSignOnExtensionEnableSharedDeviceModeDescription": "Configure this setting if these devices will be shared amongst multiple employees or students. This setting will change how your device works with applications. Do not use this setting unless you understand the consequences of Shared Device mode. Data loss and device misconfiguration requiring device reset can occur. Learn more about <a href=\"https://go.microsoft.com/fwlink/?linkid=2127582\">Shared Device mode</a>.",
"singleSignOnExtensionEnableSharedDeviceModeName": "Enable shared device mode",
"singleSignOnExtensionExtensionIdentifierDescription": "Bundle ID of the app extension that performs SSO.",
"singleSignOnExtensionExtensionIdentifierEmptyValue": "com.example.sso.credential",
"singleSignOnExtensionExtensionIdentifierName": "Extension ID",
"singleSignOnExtensionIsDefaultRealmDescription": "Necessary if youre configuring multiple Kerberos extensions in your organization.",
"singleSignOnExtensionIsDefaultRealmName": "Set as default realm",
"singleSignOnExtensionKerberosAppsInBundleIdACLIncludedDescription": "When set to \"Yes\", the Kerberos extension allows any apps entered with the app bundle ID, managed apps, and standard Kerberos utilities, such as TicketViewer and klist, to access and use the credential. Available for devices running macOS versions 12 and later.",
"singleSignOnExtensionKerberosAppsInBundleIdACLIncludedName": "Allow standard Kerberos utilities",
"singleSignOnExtensionKerberosRealmDescription": "Kerberos authentication realm name. Ensures appropriate routing and authentication during sign-in. Case sensitive and should be properly capitalized. If in an Active Directory forest, this is the realm where the user logs in.",
"singleSignOnExtensionManagedAppsInBundleIdACLIncludedDescription": "When set to \"Yes\", the Kerberos extension allows managed apps, and any apps entered with the app bundle ID to access the credential. Available for devices running macOS versions 12 and later.",
"singleSignOnExtensionManagedAppsInBundleIdACLIncludedName": "Allow only managed apps",
"singleSignOnExtensionModeCredentialUsedAlwaysName": "Always",
"singleSignOnExtensionModeCredentialUsedDescription": "Select how other processes use the Kerberos Extension credential. If the SPN is listed in Domains, \"Always\" allows other processes to use the extension credential. When set to \"When not specified\", other processes use the credential only when another credential isnt entered by the caller, and the SPN is listed in Domains. \"Kerberos default\" uses the default Kerberos processes for selecting credentials. Available for devices running macOS versions 11 and later.",
"singleSignOnExtensionModeCredentialUsedKerberosDefaultName": "Kerberos default",
"singleSignOnExtensionModeCredentialUsedName": "Kerberos Extension use",
"singleSignOnExtensionModeCredentialUsedWhenNotSpecifiedName": "When not specified",
"singleSignOnExtensionPasswordBlockModificationDescription": "If blocked, users cant change the password they use to sign in to your orgs apps and websites that support Kerberos authentication.",
"singleSignOnExtensionPasswordBlockModificationName": "Block password changes",
"singleSignOnExtensionPasswordChangeUrlDescription": "Configure the Kerberos SSO extension to open a password change website in the default browser when the user selects \"Change password\" or acknowledges a password expiration notice. Use this feature only when using a local account, as mobile accounts are not supported.",
"singleSignOnExtensionPasswordChangeUrlName": "Password change URL",
"singleSignOnExtensionPasswordEnableLocalSyncDescription": "If enabled, the Kerberos SSO extension will set the local account password to match the users Active Directory password. When the user uses the extension to change passwords, this feature will set their local password to match their AD password. Should the local and AD passwords fall out of sync, the extension brings them back in sync.",
"singleSignOnExtensionPasswordEnableLocalSyncName": "Enable local password sync",
"singleSignOnExtensionPasswordExpirationDaysDescription": "The number of days that a password can be used before the domain requires the user to change it. Most domains enforce a number already.",
"singleSignOnExtensionPasswordExpirationDaysName": "Password expiration (days)",
"singleSignOnExtensionPasswordExpirationNotificationDaysDescription": "Number of days prior to password expiration that users get notified their password will expire.",
"singleSignOnExtensionPasswordExpirationNotificationDaysEmptyValue": "Default is 15",
"singleSignOnExtensionPasswordExpirationNotificationDaysName": "Password expiration notification (days)",
"singleSignOnExtensionPasswordMinimumAgeDaysDescription": "Number of days that a password must be used before the user can change it.",
"singleSignOnExtensionPasswordMinimumAgeDaysName": "Minimum password age (days)",
"singleSignOnExtensionPasswordMinimumLengthDescription": "The least number of characters that can make up a users password.",
"singleSignOnExtensionPasswordMinimumLengthName": "Minimum password length",
"singleSignOnExtensionPasswordPreviousPasswordBlockCountDescription": "The number of prior passwords that cannot be reused on the domain.",
"singleSignOnExtensionPasswordPreviousPasswordBlockCountName": "Password reuse limit",
"singleSignOnExtensionPasswordRequireActiveDirectoryComplexityDescription": "The Active Directory complexity requirements ensure that users create strong passwords. Requirements are enforced when creating or changing a password.",
"singleSignOnExtensionPasswordRequireActiveDirectoryComplexityName": "Require Active Directory password complexity",
"singleSignOnExtensionPasswordRequirementsDescriptionDescription": "A text version of your organization's password requirements to show to users. Only appears if you don't require Active Directory's complexity requirements, or if you didn't specify a minimum password length.",
"singleSignOnExtensionPasswordRequirementsDescriptionName": "Password requirements message",
"singleSignOnExtensionPkinitCertificateDescription": "Select the Public Key Cryptography for Initial Authentication (PKINIT) certificate to be deployed to the device. Used to reauthenticate the users Kerberos credential without any need for user intervention when the users SSO session expires.",
"singleSignOnExtensionPkinitCertificateName": "PKINIT certificate",
"singleSignOnExtensionPreferredKDCsColumnEmptyValue": "adserver1.example.com or tcp/adserver1.example.com:88",
"singleSignOnExtensionPreferredKDCsColumnName": "KDC",
"singleSignOnExtensionPreferredKDCsDescription": "Creates an ordered list of preferred Key Distribution Centers (KDCs) to use for Kerberos traffic. This list is used when the servers are not discoverable using DNS. When the servers are discoverable, the list is used for both connectivity checks, and used first for Kerberos traffic. If the servers dont respond, then the device uses DNS discovery. Available for devices running macOS versions 12 and later.",
"singleSignOnExtensionPreferredKDCsName": "Preferred KDCs",
"singleSignOnExtensionRealmDescription": "Authentication realm name. Ensures appropriate routing and authentication during remote sign-in. Case sensitive and should be properly capitalized.",
"singleSignOnExtensionRealmEmptyValue": "EXAMPLE.COM",
"singleSignOnExtensionRealmName": "Realm",
"singleSignOnExtensionRequireUserPresenceDescription": "Require users to provide Touch ID, Face ID, or device passcode when the credential is needed to refresh the Kerberos ticket. If automatic login is blocked, this setting is not applicable.",
"singleSignOnExtensionRequireUserPresenceName": "Require Face ID, Touch ID, or passcode",
"singleSignOnExtensionSharedDeviceModeWarning": "If you enable shared device mode, all existing user accounts will be wiped from the targeted devices. Make sure you understand how this setting will change your devices so that you can avoid data loss or factory reset. <a href=\"https://go.microsoft.com/fwlink/?linkid=2127582\">Learn more</a>.",
"singleSignOnExtensionSignInHelpTextDescription": "Text displayed to the user at the Kerberos sign in window. Available for devices running macOS versions 11 and later.",
"singleSignOnExtensionSignInHelpTextName": "Sign in window text",
"singleSignOnExtensionTLSForLDAPRequiredDescription": "When set to \"Yes\", LDAP connections are required to use Transport Layer Security (TLS). Available for devices running macOS versions 11 and later.",
"singleSignOnExtensionTLSForLDAPRequiredName": "Require LDAP connections for TLS",
"singleSignOnExtensionTeamIdentifierDescription": "Team ID of the app extension that performs SSO.",
"singleSignOnExtensionTeamIdentifierEmptyValue": "4JMSJJRMAD",
"singleSignOnExtensionTeamIdentifierName": "Team ID",
"singleSignOnExtensionTypeAzureAdOption": "Microsoft Azure AD",
"singleSignOnExtensionTypeCredentialOption": "Credential",
"singleSignOnExtensionTypeDescription": "Perform SSO with one of these extension types.",
"singleSignOnExtensionTypeKerberosOption": "Kerberos",
"singleSignOnExtensionTypeName": "SSO app extension type",
"singleSignOnExtensionTypeRedirectOption": "Redirect",
"singleSignOnExtensionUrlsColumnEmptyValue": "https://www.example.com",
"singleSignOnExtensionUrlsColumnName": "URL",
"singleSignOnExtensionUrlsDescription": "The URLs where your identity provider can be reached. When a user is redirected to these URLs, the SSO app extension will intervene and prompt SSO. Each URL must be unique and cant already exist in another profile. Must use HTTP or HTTPS protocols.",
"singleSignOnExtensionUrlsName": "URLs",
"singleSignOnExtensionUserPrincipalNameDescription": "The username of the Kerberos principal. You do not need to include the realm and you can use variables in the principal name by entering curly brackets {{ }}. For example to show the username, enter {{username}}.",
"singleSignOnExtensionUserPrincipalNameEmptyValue": "{{onPremisesSamAccountName}}",
"singleSignOnExtensionUserPrincipalNameName": "Principal name",
"singleSignOnExtensionUserSetupDelayedDescription": "When set to \"Yes\", the user isnt prompted to set up the Kerberos extension until the extension is enabled by the admin, or a Kerberos challenge is received. Available for devices running macOS versions 11 and later. ",
"singleSignOnExtensionUserSetupDelayedName": "Delay Kerberos extension setup",
"singleSignOnExtensionUsernameLabelCustomDescription": "This label replaces the user name shown in the Kerberos extension. You can enter a name to match the name of your company or organization. Available for devices running macOS versions 11 and later.",
"singleSignOnExtensionUsernameLabelCustomEmptyValue": "Contoso or Microsoft",
"singleSignOnExtensionUsernameLabelCustomName": "Custom user name",
"sixAMOption": "6 AM",
"sixMonthsNumberOption": "6 months",
"sixNumberOption": "6",
"sixPMOption": "6 PM",
"sixtyMinutesOption": "60 minutes",
"skipChecksBeforeRestartDescription": "Set to skip all check before restart: Battery level = 40%, User presence, Display Needed, Presentation mode, Full screen mode, phone call state, game mode etc.",
"skipChecksBeforeRestartName": "Restart checks",
"skipOption": "Skip",
"sleep": "Sleep",
"smartScreenAppInstallControlAnywhere": "Anywhere",
"smartScreenAppInstallControlDescription": "This setting determines the user experience when they attempt to install apps from places other than the Microsoft Store. Configuring a device with a setting that isnt supported on that devices build is the same as not configuring the setting.\n<br/><br/>Not configured: Users are able to install apps as defined by other policy settings. (RS3+)\n<br/><br/>Recommend store if available: When installing an app from the web that is available in the Microsoft Store, users will see a message recommending they download it from the store. (RS5+)\n<br/><br/>Warn when installing outside store: When installing an app from outside the Microsoft Store, users will see a warning advising them that files downloaded outside the store may not be safe. (RS5+)\n<br/><br/>App store only: Only permit app installations from the Microsoft Store. (RS3+)\n<br/>\n ",
"smartScreenAppInstallControlName": "Apps from store only",
"smartScreenAppInstallControlNotConfigured": "Not Configured",
"smartScreenAppInstallControlPreferStore": "Prefer Store",
"smartScreenAppInstallControlRecommendations": "Recommendations",
"smartScreenAppInstallControlStoreOnly": "Store Only",
"smartScreenBlockOverrideForFilesDescription": "Block user from running unverified files.",
"smartScreenBlockOverrideForFilesName": "Unverified files execution",
"smartScreenEnableInShellDescription": "Enable SmartScreen for file execution and running apps.",
"smartScreenEnableInShellName": "SmartScreen for apps and files",
"smartScreenPromptOverrideDescription": "Block users from ignoring the Microsoft Defender SmartScreen Filter warnings and block them from going to the site.",
"smartScreenPromptOverrideForFilesDescription": "Block users from ignoring the Microsoft Defender SmartScreen Filter warnings and block them from downloading unverified files.",
"smartScreenPromptOverrideForFilesName": "Unverified file download",
"smartScreenPromptOverrideName": "Malicious site access",
"softwareUpdateMajorOSDeferredInstallDelayDescription": "Specify the number of days (1-90) to delay visibility of major OS software updates. This value takes precedence over the default visibility value. Available for devices running macOS versions 11.3 and later.",
"softwareUpdateMajorOSDeferredInstallDelayName": "Delay visibility of major OS software updates",
"softwareUpdateMinorOSDeferredInstallDelayDescription": "Specify the number of days (1-90) to delay visibility of minor OS software updates. This value takes precedence over the default visibility value. Available for devices running macOS versions 11.3 and later.",
"softwareUpdateMinorOSDeferredInstallDelayName": "Delay visibility of minor OS software updates",
"softwareUpdateNonOSDeferredInstallDelayDescription": "Specify the number of days (1-90) to delay visibility of non-OS software updates (such as Safari updates). This value takes precedence over the default visibility value. Available for devices running macOS versions 11.0 and later.",
"softwareUpdateNonOSDeferredInstallDelayName": "Delay visibility of non-OS software updates",
"specificDomainsOption": "Specific search domains",
"specificSSIDsOption": "Specific SSIDs",
"splitTunnelOption": "Split tunnel",
"ssoAppColumnExamples": "e.g. Intune Company Portal",
"ssoBundleColumnExamples": "e.g. com.microsoft.companyportal",
"ssoCredentialRenewalCertificateDescription": "Select the certificate used to reauthenticate the users Kerberos credential without any need for intervention when the users SSO session expires.",
"ssoCredentialRenewalCertificateName": "Credential renewal certificate",
"ssoEnabled": "Single sign on",
"ssoKerberosRealmExample": "e.g. EXAMPLE.COM",
"ssoUrlColumnExamples": "e.g. https://www.example.com",
"startDateTime": "Start Date/Time",
"startDateTimeTooltip": "Specify the time for apps to be restarted",
"startDayName": "Start day",
"startMenuPinnedFolderDocumentsDescription": "Enforces the visibility (Show/Hide) of the Documents folder shortcut on the Start menu.",
"startMenuPinnedFolderDocumentsName": "Documents on Start",
"startMenuPinnedFolderDownloadsDescription": "Enforces the visibility (Show/Hide) of the Downloads folder shortcut on the Start menu.",
"startMenuPinnedFolderDownloadsName": "Downloads on Start",
"startMenuPinnedFolderFileExplorerDescription": "Enforces the visibility (Show/Hide) of the File Explorer folder shortcut on the Start menu.",
"startMenuPinnedFolderFileExplorerName": "File Explorer on Start",
"startMenuPinnedFolderHomeGroupDescription": "Enforces the visibility (Show/Hide) of the HomeGroup folder shortcut on the Start menu.",
"startMenuPinnedFolderHomeGroupName": "HomeGroup on Start",
"startMenuPinnedFolderMusicDescription": "Enforces the visibility (Show/Hide) of the Music folder shortcut on the Start menu.",
"startMenuPinnedFolderMusicName": "Music on Start",
"startMenuPinnedFolderNetworkDescription": "Enforces the visibility (Show/Hide) of the Network folder shortcut on the Start menu.",
"startMenuPinnedFolderNetworkName": "Network on Start",
"startMenuPinnedFolderPersonalFolderDescription": "Enforces the visibility (Show/Hide) of the Personal folder shortcut on the Start menu.",
"startMenuPinnedFolderPersonalFolderName": "Personal folder on Start",
"startMenuPinnedFolderPicturesDescription": "Enforces the visibility (Show/Hide) of the Pictures folder shortcut on the Start menu.",
"startMenuPinnedFolderPicturesName": "Pictures on Start",
"startMenuPinnedFolderSettingsDescription": "Enforces the visibility (Show/Hide) of the Settings folder shortcut on the Start menu.",
"startMenuPinnedFolderSettingsName": "Settings on Start",
"startMenuPinnedFolderVideosDescription": "Enforces the visibility (Show/Hide) of the Videos folder shortcut on the Start menu.",
"startMenuPinnedFolderVideosName": "Videos on Start",
"startPagesDescription": "List of URLs that specify home pages for MDM-enrolled devices (Desktop only).",
"startPagesName": "Custom Start pages",
"startTime": "Start time",
"startTimeDescription": "Select the beginning of the interval to stop updates from installing.",
"startTimeName": "Start time",
"startTimeUtc": "Start time (UTC)",
"staticDomainNameOption": "Custom",
"statusBarDisabledDescription": "Block access to the status bar, including notifications and quick settings.",
"statusBarDisabledName": "Status bar",
"stayOnPluggedModesDescription": "The battery plugged in modes for which the device stays on. When using this setting, it is recommended to clear the Time to lock screen setting so that the device doesn't lock itself while it stays on.",
"stayOnPluggedModesName": "Screen on while device plugged in",
"stealthModeDescription": "If not configured, the server operates in stealth mode. Firewall rules used to enforce stealth mode are specific to your implementation.",
"stealthModeName": "Stealth mode",
"stickyAvailableOption": "Sticky available",
"storageAllowUsbDescription": "Allow USB storage.",
"storageAllowUsbName": "USB storage",
"storageBlockExternalMediaDescription": "Block mounting of external media.",
"storageBlockExternalMediaName": "External media",
"storageBlockUsbFileTransferDescription": "Block transfer of files over USB.",
"storageBlockUsbFileTransferName": "USB file transfer",
"storeAppOption": "Store App",
"strictOption": "Strict",
"string": "String",
"stringName": "String",
"stringProbeName": "But only if this URL probe succeeds",
"stringXMLName": "String (XML file)",
"studentPfxCertHeading": "Student PKCS#12 certificate",
"studentRootCertificate": "Student root certificate",
"subjectAlternativeNameName": "Subject alternative name",
"subjectCommonNameName": "Subject common name",
"subjectNameLocalIdentifier": "Subject common name",
"sunday": "Sunday",
"sundayOption": "Sunday",
"supportMessageLearnMoreLink": "https://docs.microsoft.com/en-us/mem/intune/configuration/device-restrictions-android-for-work",
"supportMessageLearnMoreText": "Learn more about support messages. ",
"syncScheduleDescription": "How often the device connects to the server to synchronize email.",
"syncScheduleName": "Sync schedule",
"synchronizeDescription": "Control how much email to store on the device and how often to connect to the server.",
"systemExtensionTeamIdsMustBeUnique": "The same team ID cannot be listed in both allowed team identifiers and allowed system extensions.",
"systemInfoOnlyStatusBarOption": "Show system information in device's status bar",
"systemMessageInputValidation": "Input cannot be empty.",
"systemMessageLocaleValidation": "Field cannot be empty.",
"systemMessages": "Custom support information",
"systemMessagesDefaultColumnName": "Is default message",
"systemMessagesDefaultLanguageValue": "All, except when specified",
"systemMessagesLanguageColumnName": "Language",
"systemMessagesMessageColumnName": "Message",
"systemMessagesMessageEmptyValueKey": "Enter a customized message.",
"systemMessagesShortSupportMessageLanguageEmptyValueKey": "Select a locale.",
"systemMessagesShortSupportMessageTableName": "Short Support Message",
"systemPageDescription": "Block access to System in Settings app.",
"systemPageName": "System",
"systemScanName": "Day and time to perform a full or quick scan",
"systemTelemetryProxyServerDescription": "Specify the fully qualified domain name (FQDN) or IP address of a proxy server to forward Connected User Experiences and Telemetry requests, using a Secure Sockets Layer (SSL) connection. The format for this setting is server:port. If the named proxy fails, or if there is no proxy specified when this policy is enabled, the Connected User Experiences and Telemetry data will not be transmitted and will remain on the local device.<br><br>\nExamples of formats:<br>\nIPv4: 192.246.246.106:100 <br>\nIPv6: [2001:4898:4010:4013:95c1:a8b2:953c:c633]:100 <br>\nFQDN: www.contoso.com:345 <br>\n ",
"systemTelemetryProxyServerExample": "e.g. 249.168.246.106:100 or [2001:4898:4010:4013:95c1:a8b2:953c:c633]:100 or www.contoso.com:345",
"systemTelemetryProxyServerName": "Telemetry proxy server",
"systemUpdateFreezePeriodEndDateColumnDescription": "Set the end date (MM/DD) of the annually repeating freeze period. Ensure that this date is no more than 90 days later than the start date.",
"systemUpdateFreezePeriodEndDateColumnName": "End date",
"systemUpdateFreezePeriodEndDateEmptyValueKey": "Enter the end date for your freeze period (MM/DD)",
"systemUpdateFreezePeriodStartDateColumnDescription": "Set the start date (MM/DD) of the annually repeating freeze period. If setting multiple freeze periods, make sure this date is at least 60 days later than the previous freeze period's end date.",
"systemUpdateFreezePeriodStartDateColumnName": "Start date",
"systemUpdateFreezePeriodStartDateEmptyValueKey": "Enter the start date for your freeze period (MM/DD)",
"systemUpdateFreezePeriodsTableDescription": "Configure an annually repeating time period where all incoming system updates and security patches are blocked for up to 90 days. This freezes the OS version running on the device. When a device's clock is outside the freeze period, it wil receive updates as defined by whatever update behavior is assigned to the device via policy. To set multiple freeze periods, ensure they are separated by at least 60 days.",
"systemUpdateFreezePeriodsTableName": "Freeze periods for system updates",
"systemUpdateInstallDescription": "When over-the-air updates are available for this device, they will be installed based on this policy.",
"systemUpdateInstallName": "System update",
"systemUpdateOptionAutomatic": "Automatic",
"systemUpdateOptionDefault": "Device Default",
"systemUpdateOptionPostponed": "Postponed",
"systemUpdateOptionWindow": "Maintenance window",
"systemUpdateOptionWindowEndTimeDescription": "End of the maintenance window in the devices time zone.",
"systemUpdateOptionWindowEndTimeName": "End time",
"systemUpdateOptionWindowStartTimeDescription": "Beginning of the maintenance window in the devices time zone.",
"systemUpdateOptionWindowStartTimeName": "Start time",
"systemUpdateWindow0": "12 AM",
"systemUpdateWindow1": "12:30 AM",
"systemUpdateWindow10": "5:00 AM",
"systemUpdateWindow11": "5:30 AM",
"systemUpdateWindow12": "6:00 AM",
"systemUpdateWindow13": "6:30 AM",
"systemUpdateWindow14": "7:00 AM",
"systemUpdateWindow15": "7:30 AM",
"systemUpdateWindow16": "8:00 AM",
"systemUpdateWindow17": "8:30 AM",
"systemUpdateWindow18": "9:00 AM",
"systemUpdateWindow19": "9:30 AM",
"systemUpdateWindow2": "1:00 AM",
"systemUpdateWindow20": "10:00 AM",
"systemUpdateWindow21": "10:30 AM",
"systemUpdateWindow22": "11:00 AM",
"systemUpdateWindow23": "11:30 AM",
"systemUpdateWindow24": "12:00 PM",
"systemUpdateWindow25": "12:30 PM",
"systemUpdateWindow26": "1:00 PM",
"systemUpdateWindow27": "1:30 PM",
"systemUpdateWindow28": "2:00 PM",
"systemUpdateWindow29": "2:30 PM",
"systemUpdateWindow3": "1:30 AM",
"systemUpdateWindow30": "3:00 PM",
"systemUpdateWindow31": "3:30 PM",
"systemUpdateWindow32": "4:00 PM",
"systemUpdateWindow33": "4:30 PM",
"systemUpdateWindow34": "5:00 PM",
"systemUpdateWindow35": "5:30 PM",
"systemUpdateWindow36": "6:00 PM",
"systemUpdateWindow37": "6:30 PM",
"systemUpdateWindow38": "7:00 PM",
"systemUpdateWindow39": "7:30 PM",
"systemUpdateWindow4": "2:00 AM",
"systemUpdateWindow40": "8:00 PM",
"systemUpdateWindow41": "8:30 PM",
"systemUpdateWindow42": "9:00 PM",
"systemUpdateWindow43": "9:30 PM",
"systemUpdateWindow44": "10:00 PM",
"systemUpdateWindow45": "10:30 PM",
"systemUpdateWindow46": "11:00 PM",
"systemUpdateWindow47": "11:30 PM",
"systemUpdateWindow5": "2:30 AM",
"systemUpdateWindow6": "3:00 AM",
"systemUpdateWindow7": "3:30 AM",
"systemUpdateWindow8": "4:00 AM",
"systemUpdateWindow9": "4:30 AM",
"systemWindowsBlockedDescription": "Disable window notifications such as toasts, incoming calls, outgoing calls, system alerts, and system errors.",
"systemWindowsBlockedName": "Notification windows",
"tEAPName": "Tunnel EAP (TEAP)",
"tLSMinMax": "TLS minimum version must be less than or equal to TLS maximum version.",
"tLSVersionRangeMaximum": "TLS version range maximum",
"tLSVersionRangeMaximumDescription": "Enter a maximum TLS version of 1.0, 1.1, or 1.2. If left blank, a default value of 1.2 will be used.",
"tLSVersionRangeMinimum": "TLS version range minimum",
"tLSVersionRangeMinimumDescription": "Enter a minimum TLS version of 1.0, 1.1, or 1.2. If left blank, a default value of 1.0 will be used.",
"takeATestWinCompatibilityInfoText": "Local guest account sign-in can only be used on devices running Windows 10, version 1903 or later, or Windows 11.",
"taskManagerBlockEndTaskDescription": "This setting determines whether non-administrators can use Task Manager to end tasks. <a href=\"https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-taskmanager#taskmanager-allowendtask\" target=\"_blank\">Learn more</a> ",
"taskManagerBlockEndTaskName": "End processes from Task Manager",
"tasksOption": "Tasks",
"teacherPfxCertHeading": "Teacher PKCS#12 certificate",
"teacherRootCertificate": "Teacher root certificate",
"teamIdentifier": "Team identifier",
"telemetryReportingEnableOrNotConfiguredDescription": "Expedite Microsoft Defender for Endpoint telemetry reporting frequency.",
"telemetryReportingEnableOrNotConfiguredName": "Expedite telemetry reporting frequency",
"tenAMOption": "10 AM",
"tenMinutes": "10 Minutes",
"tenMinutesOption": "10 minutes",
"tenMonthsNumberOption": "10 months",
"tenNumberOption": "10",
"tenPMOption": "10 PM",
"testDisplayName": "Account name",
"testDisplayNameDescription": "The name of the local guest account used for testing. The name is displayed on the local guest account tile on the bottom-left of the device's sign-in screen. Students click the tile to launch the test.",
"testDisplayNameExample": "e.g. Test",
"thirdActiveEthernet": "Third active Ethernet",
"thirdEthernet": "Third Ethernet",
"thirdPartySuggestionsDescription": "Block third party content in Windows Spotlight",
"thirdPartySuggestionsName": "Third-party suggestions in Windows Spotlight",
"thirtyMinutes": "30 Minutes",
"thirtyMinutesOption": "30 minutes",
"threeAMOption": "3 AM",
"threeDES": "3DES",
"threeDaysOption": "Three days",
"threeMinutesOption": "3 Minutes",
"threeMonthsNumberOption": "3 months",
"threeNumberOption": "3",
"threePMOption": "3 PM",
"thursday": "Thursday",
"thursdayOption": "Thursday",
"timeAndLanguagePageDescription": "Block access to Time and Language in Settings app.",
"timeAndLanguagePageName": "Time and Language",
"timeExtensionForFileScanDescription": "Specify the maximum amount of time that Microsoft Defender Antivirus should block a file while waiting for a result from the cloud.The base amount is 10 seconds-any additional time specified here(up to 50 seconds) will be added to those 10 seconds. This amount is a theoretical maximum-in most cases the scan will take less time than the maximum. Extending the time allows the cloud to thoroughly investigate suspicious files.</br> We recommend you enable this setting and specify at least 20 additional seconds.",
"timeExtensionForFileScanName": "Time extension for file scanning by the cloud",
"timeExtensionForFileScanPlaceholder": "Enter number of seconds (0-50)",
"timeForDailyQuickScanName": "Time to perform a daily quick scan",
"timeScheduled": "Time scheduled",
"timeToLockScreenDescription": "Maximum time after which the device will lock. Can disable screen lock as well so that it never times out.",
"timeToLockScreenName": "Time to lock screen (work profile-level)",
"timeWindowDescription": "A period of time during which updates will be made available for automatic installation.",
"timeWindowName": "Time window",
"timeWindowSameStartEndDayTime": "End day/time cannot be the same as the start day/time.",
"timeZoneDescription": "Select the time zone for the targeted devices.",
"timeZoneName": "Time zone",
"timeoutFifteenMinutes": "15 minutes",
"timeoutFiveMinutes": "5 minutes",
"timeoutFourHours": "4 hours",
"timeoutNever": "Never timeout",
"timeoutOneHour": "1 hour",
"timeoutOneMinute": "1 minute",
"timeoutTenMinutes": "10 minutes",
"timeoutThirtyMinutes": "30 minutes",
"timeoutThreeMinutes": "3 minutes",
"timeoutTwoHours": "2 hours",
"timeoutTwoMinutes": "2 minutes",
"toggleConfigurationPkgDescription": "Upload a signed configuration package that will be used to onboard the Microsoft Defender for Endpoint client",
"toggleConfigurationPkgName": "Microsoft Defender for Endpoint client configuration package type:",
"trafficRuleAppName": "App",
"trafficRuleAppTypeName": "App type",
"trafficRuleClaimsName": "Claim",
"trafficRuleRoutingPolicyTypeDescription": "Choose between split tunnel and force tunnel.<br>\n <br>\n Split tunnel = only the traffic meant for the VPN interface (as determined by the networking stack) goes over the interface. Internet traffic can continue to go over other interfaces.\n<br>\n<br>\n Force tunnel = all IP traffic must go through the VPN interface only (for this traffic rule).\n<br>\n<br>\n Applicable only when this rule is associated with an app.\n ",
"trafficRuleRoutingPolicyTypeName": "Rule type",
"trueOption": "True",
"trust": "Server Trust",
"trustAgentsOption": "Trust agents",
"trustAgentsOptionAndroid": "Trust agents (work profile-level)",
"trustDescription": "Configure the certificate(s) that will be presented by the server when the client attempts to connect to the Wi-Fi network.",
"trustedCertDestinationStoreDescription": "Destination store for trusted certificates",
"trustedCertDestinationStoreIntermediateName": "Computer certificate store - Intermediate",
"trustedCertDestinationStoreName": "Destination store",
"trustedCertDestinationStoreRootName": "Computer certificate store - Root",
"trustedCertDestinationStoreUserIntermediateName": "User certificate store - Intermediate",
"trustedCertPolicySelectCertificateName": "Certificate file",
"trustedServerCertificateNameExample": "e.g. srv.contoso.com",
"trustedServerCertificateNamesDescription": "This is the common name used in the certificates issued by your trusted certification authority (CA). If you provide this information, you can bypass the dynamic trust dialog that is displayed on end-users' devices when they connect to the Wi-Fi network.",
"trustedServerCertificateNamesExample": "e.g. srv.contoso.com;srv2",
"trustedServerCertificateNamesName": "Certificate server names",
"trustedSitesSecurityLevelDescription": "Trusted sites security level (Medium recommended).",
"trustedSitesSecurityLevelName": "Trusted sites security level",
"tuesday": "Tuesday",
"tuesdayOption": "Tuesday",
"tunnelConfigurationName": "Network interface",
"tunnelConfigurationToolTip": "All IKEv2 settings will apply only to the chosen network interface on the device. Choose Cellular only if youre deploying this to devices with the Wi-Fi interface disabled or removed.",
"twelveAMOption": "12 AM",
"twelveMonthsNumberOption": "12 months",
"twelvePMOption": "12 PM",
"twentyMinutesOption": "20 minutes",
"twoAMOption": "2 AM",
"twoMinutesOption": "2 minutes",
"twoMonthsNumberOption": "2 months",
"twoNumberOption": "2",
"twoPMOption": "2 PM",
"twoWeeksOption": "Two weeks",
"typeOfSystemScanName": "Type of system scan to perform",
"uSBOption": "USB",
"unicastResponsesToMulticastBroadcastsDescription": "This setting blocks all unicast responses to multicast broadcast traffic.",
"unicastResponsesToMulticastBroadcastsName": "Unicast responses to multicast broadcasts",
"universalOption": "Universal",
"unlimitedOption": "Unlimited",
"unmuteMicrophoneDisabledDescription": "Block unmuting the microphone and adjusting the microphone volume.",
"unmuteMicrophoneDisabledName": "Microphone adjustment",
"unpairedExternalBootToRecoveryAllowedDescription": "Available for devices running iOS and iPadOS versions 14.5 or later.",
"unpairedExternalBootToRecoveryAllowedName": "Allow users to boot devices into recovery mode with unpaired devices",
"unredactedNotificationsOption": "Unredacted notifications",
"unsupportedText": "Intune in the Azure portal does not support this profile's device configurations.",
"updateAndSecurityPageDescription": "Block access to Update and Security in Settings app.",
"updateAndSecurityPageName": "Update and Security",
"updateDelayPolicyDescription": "<p>If youdefer software updates, newly released updates won't become visible to users until after the deferral period (which you'll configure in the next settings). Deferring software updates doesn't impact scheduled updates.</p><p>OS-related updates can be deferred on devices running macOS 10.13 or later; non OS-related updates (such as Safari updates) can be deferred on devices running macOS 11 or later.</p>",
"updateDelayPolicyName": "Defer software updates",
"updateEveryWeek": "Every week",
"updateFirstWeekOfMonth": "First week of the month",
"updateFourthWeekOfMonth": "Fourth week of the month",
"updateNotificationLevelDescription": "Specifies what Windows Update notifications users see.",
"updateNotificationLevelName": "Change notification update level",
"updateSecondWeekOfMonth": "Second week of the month",
"updateSettingsName": "Update settings",
"updateThirdWeekOfMonth": "Third week of the month",
"updatesClassificationName": "Minimum classification of updates to install automatically",
"upperIPv4AddressName": "Upper IPv4 address",
"upperPortName": "Upper port",
"url": "URL",
"urlPathHashOption": "Hash",
"usbTypeAPortName": "USB type A",
"usbTypeCPortName": "USB Type C",
"useDeadlineSettingsDescription": "Allows user to use deadline settings",
"useDeadlineSettingsName": "Use deadline settings",
"useInternalSubnetName": "Use IPv4/IPv6 internal subnet attributes",
"useOAuth": "OAuth",
"useOAuthDescription": "Specifies whether the connection should use OAuth for authentication.",
"usePACName": "Use (PAC)",
"useWindows10ForcedUpdates": "Force restart apps on update failure",
"useWindows10ForcedUpdatesTooltip": "To ensure apps are always up-to-date, use this setting to configure a recurring or one time date to restart apps whose update failed due to the app being in use.",
"userAccountControlDescription": "How is user notified about device changes (recommend Always notify).",
"userAccountControlName": "User Account Control",
"userApprovedAndAutomatedDeviceEnrollmentHeaderDescriptionMac": "These settings work for devices that were enrolled in Intune with user approval, and for devices enrolled using Apple School Manager or Apple Business Manager with automated device enrollment (formerly DEP). This includes all supervised devices.",
"userApprovedAndAutomatedDeviceEnrollmentHeaderNameMac": "User approved and automated device enrollment",
"userAuthentication": "User authentication",
"userCanConfigure": "User can configure",
"userControlOption": "User in control",
"userCustomDomainDescription": "The value Intune uses for the user domain name that will be used by this profile e.g. contoso.com or contoso.",
"userCustomDomainName": "Custom domain name to use",
"userCustomDomainNameExample": "e.g. contoso.com",
"userDefined": "User defined",
"userDomainAADAttributeDescription": "The attribute Intune gets from Azure AD to dynamically generate the user domain name that will be used by this profile e.g. contoso.com (full domain name) or contoso (NetBIOS name).",
"userDomainAADAttributeLinkText": "Learn more about AAD attributes for email profiles.",
"userDomainAADAttributeName": "User domain name attribute from AAD",
"userExperienceSettingsName": "User experience settings",
"userNameOption": "User name",
"userNameTypeDescription": " The attribute Intune gets from Azure AD to dynamically generate the username that will be used by this profile e.g. MyName@contoso.com (UPN) or MyName (username).",
"userNameTypeLinkText": "Learn more about AAD attributes for Email profiles.",
"userNameTypeName": "Username attribute from AAD",
"userPauseAccessDescription": "An option in Windows Update that, when enabled, lets device users pause updates for a certain number of days.",
"userPauseAccessName": "Option to pause Windows updates",
"userPrincipalNameOption": "User principal name",
"userRightsAccessCredentialManagerAsTrustedCallerDesc": "This user right is used by Credential Manager during Backup/Restore. Users' saved credentials might be compromised if this privilege is given to other entities. ",
"userRightsAccessCredentialManagerAsTrustedCallerName": "Access Credential Manager as trusted caller",
"userRightsActAsPartOfTheOperatingSystemDesc": "This user right allows a process to impersonate any user without authentication. ",
"userRightsActAsPartOfTheOperatingSystemName": "Act As Part Of The OS",
"userRightsAddSidBladeTitle": "Other local users or groups",
"userRightsAddSidBladeTitleName": "Add local users or groups by SID",
"userRightsAddSidTableDescriptionDesc": "Admins description of this local user or group.",
"userRightsAddSidTableDescriptionName": "Description",
"userRightsAddSidTableNameDesc": "The name of this local user or group.",
"userRightsAddSidTableNameName": "Name",
"userRightsAddSidTableSidDesc": "The security identifier of this local user or group (e.g. *S-1-5-32-544).",
"userRightsAddSidTableSidName": "SID",
"userRightsAdministratorsName": "Administrators",
"userRightsAllowAccessFromNetworkDesc": "This user right determines which users and groups are allowed to connect to the computer over the network. ",
"userRightsAllowAccessFromNetworkName": "Allow Access From Network",
"userRightsAllowLocalLogOnDesc": "This user right determines which users can log on to the computer.",
"userRightsAllowLocalLogOnName": "Allow local log on",
"userRightsAuthenticatedUsersName": "Authenticated users",
"userRightsBackupFilesAndDirectoriesDesc": "This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when backing up files and directories.",
"userRightsBackupFilesAndDirectoriesName": "Backup files and directories",
"userRightsBlockAccessFromNetworkDesc": "This user right determines which users are prevented from accessing a computer over the network.",
"userRightsBlockAccessFromNetworkName": "Deny Access From Network",
"userRightsChangeSystemTimeDesc": "This user right determines which users and groups can change the time and date on the internal clock of the computer.",
"userRightsChangeSystemTimeName": "Change the system time",
"userRightsCreateGlobalObjectsDesc": "This security setting determines whether users can create global objects that are available to all sessions. Users who can create global objects could affect processes that run under other users' sessions, which could lead to application failure or data corruption.",
"userRightsCreateGlobalObjectsName": "Create global objects",
"userRightsCreatePageFileDesc": "This user right determines which users and groups can call an internal API to create and change the size of a page file.",
"userRightsCreatePageFileName": "Create pagefile",
"userRightsCreatePermanentSharedObjectsDesc": "This user right determines which accounts can be used by processes to create a directory object using the object manager.",
"userRightsCreatePermanentSharedObjectsName": "Create permanent shared objects",
"userRightsCreateSymbolicLinksDesc": "This user right determines if the user can create a symbolic link from the computer to which they are logged on.",
"userRightsCreateSymbolicLinksName": "Create symbolic links",
"userRightsCreateTokenDesc": "This user right determines which users/groups can be used by processes to create a token that can then be used to get access to any local resources when the process uses an internal API to create an access token.",
"userRightsCreateTokenName": "Create tokens",
"userRightsDebugProgramsDesc": "This user right determines which users can attach a debugger to any process or to the kernel.",
"userRightsDebugProgramsName": "Debug programs",
"userRightsDelegationDesc": "This user right determines which users can set the Trusted for Delegation setting on a user or computer object.",
"userRightsDelegationName": "Enable delegation",
"userRightsDenyLocalLogOnDesc": "This security setting determines which service accounts are prevented from registering a process as a service.",
"userRightsDenyLocalLogOnName": "Deny log on as a service",
"userRightsDescriptionExample": "(BUILTIN\\Event Log Readers)",
"userRightsGenerateSecurityAuditsDesc": "This user right determines which accounts can be used by a process to add entries to the security log. The security log is used to trace unauthorized system access.",
"userRightsGenerateSecurityAuditsName": "Generate security audits",
"userRightsGuestsName": "Guests",
"userRightsImpersonateClientDesc": "Assigning this user right to a user allows programs running on behalf of that user to impersonate a client. Requiring this user right for this kind of impersonation prevents an unauthorized user from convincing a client to connect to a service that they have created and then impersonating that client, which can elevate the unauthorized user's permissions to administrative or system levels.",
"userRightsImpersonateClientName": "Impersonate a client",
"userRightsIncreaseSchedulingPriorityDesc": "This user right determines which accounts can use a process with Write Property access to another process to increase the execution priority assigned to the other process",
"userRightsIncreaseSchedulingPriorityName": "Increase scheduling priority",
"userRightsLoadUnloadDriversDesc": "This user right determines which users can dynamically load and unload device drivers or other code in to kernel mode.",
"userRightsLoadUnloadDriversName": "Load and unload device drivers",
"userRightsLocalAccountAndMemberOfAdministratorsGroupName": "Local account and member of Administrators group",
"userRightsLocalAccountName": "Local account",
"userRightsLocalServicesName": "Local services",
"userRightsLockMemoryDesc": "This user right determines which accounts can use a process to keep data in physical memory, which prevents the system from paging the data to virtual memory on disk.",
"userRightsLockMemoryName": "Lock pages in memory",
"userRightsManageAuditingAndSecurityLogsDesc": "This user right determines which users can specify object access auditing options for individual resources, such as files, Active Directory objects, and registry keys.",
"userRightsManageAuditingAndSecurityLogsName": "Manage auditing and security log",
"userRightsManageVolumesDesc": "This user right determines which users and groups can run maintenance tasks on a volume, such as remote defragmentation.",
"userRightsManageVolumesName": "Perform volume maintenance tasks",
"userRightsModifyFirmwareEnvironmentDesc": "This user right determines who can modify firmware environment values.",
"userRightsModifyFirmwareEnvironmentName": "Modify firmware environment values",
"userRightsModifyObjectLabelsDesc": "This user right determines which user accounts can modify the integrity label of objects, such as files, registry keys, or processes owned by other users.",
"userRightsModifyObjectLabelsName": "Modify an object label",
"userRightsNameExample": "Event Log Readers",
"userRightsNetworkServicesName": "Network services",
"userRightsProfileSingleProcessDesc": "This user right determines which users can use performance monitoring tools to monitor the performance of system processes.",
"userRightsProfileSingleProcessName": "Profile single process",
"userRightsRemoteDesktopServicesLogOnDesc": "This user right determines which users and groups are prohibited from logging on as a Remote Desktop Services client.",
"userRightsRemoteDesktopServicesLogOnName": "Deny log on through Remote Desktop Services",
"userRightsRemoteDesktopUsersName": "Remote desktop users",
"userRightsRemoteShutdownDesc": "This user right determines which users are allowed to shut down a computer from a remote location on the network. Misuse of this user right can result in a denial of service.",
"userRightsRemoteShutdownName": "Remote shutdown",
"userRightsRestoreDataDesc": "This user right determines which users can bypass file, directory, registry, and other persistent objects permissions when restoring backed up files and directories, and determines which users can set any valid security principal as the owner of an object.",
"userRightsRestoreDataName": "Restore files and directories",
"userRightsServicesName": "Services",
"userRightsSidDesc": "User or Group Sid",
"userRightsSidExample": "*S-1-5-21-2146773085",
"userRightsSidName": "SIDs",
"userRightsTakeOwnershipDesc": "This user right determines which users can take ownership of any securable object in the system, including Active Directory objects, files and folders, printers, registry keys, processes, and threads.",
"userRightsTakeOwnershipName": "Take ownership of files or objects",
"userRightsUsersName": "Users",
"userToggleEnabledName": "User to disable VPN configuration",
"userToggleEnabledToolTip": "Unless allowed, users cant turn off always-on VPN. The default value for this setting is the most secure option.",
"userWindowsUpdateScanAccessDescription": "A button in Windows Update that, when enabled, lets device users check the update service for updates.",
"userWindowsUpdateScanAccessName": "Option to check for Windows updates",
"usernameAndPasswordOption": "Username and password",
"usernameFormat": "Username format:",
"usernameFormatDescription": "Username format example - abcd{{WifiMacAddress}}",
"utcMinusEightOption": "UTC-8",
"utcMinusElevenOption": "UTC-11",
"utcMinusFiveOption": "UTC-5",
"utcMinusFourOption": "UTC-4",
"utcMinusNineOption": "UTC-9",
"utcMinusNineThirtyOption": "UTC-9:30",
"utcMinusOneOption": "UTC-1",
"utcMinusSevenOption": "UTC-7",
"utcMinusSixOption": "UTC-6",
"utcMinusTenOption": "UTC-10",
"utcMinusThreeOption": "UTC-3",
"utcMinusThreeThirtyOption": "UTC-3:30",
"utcMinusTwelveOption": "UTC-12",
"utcMinusTwoOption": "UTC-2",
"utcPlusEightFourtyFiveOption": "UTC+8:45",
"utcPlusEightOption": "UTC+8",
"utcPlusEightThirtyOption": "UTC+8:30",
"utcPlusElevenOption": "UTC+11",
"utcPlusFiveFourtyFiveOption": "UTC+5:45",
"utcPlusFiveOption": "UTC+5",
"utcPlusFiveThirtyOption": "UTC+5:30",
"utcPlusFourOption": "UTC+4",
"utcPlusFourThirtyOption": "UTC+4:30",
"utcPlusFourteenOption": "UTC+14",
"utcPlusNineOption": "UTC+9",
"utcPlusOneOption": "UTC+1",
"utcPlusSevenOption": "UTC+7",
"utcPlusSixOption": "UTC+6",
"utcPlusSixThirtyOption": "UTC+6:30",
"utcPlusTenOption": "UTC+10",
"utcPlusTenThirtyOption": "UTC+10:30",
"utcPlusThirteenOption": "UTC+13",
"utcPlusThreeOption": "UTC+3",
"utcPlusThreeThirtyOption": "UTC+3:30",
"utcPlusTwelveFourtyFiveOption": "UTC+12:45",
"utcPlusTwelveOption": "UTC+12",
"utcPlusTwoOption": "UTC+2",
"utcZeroOption": "UTC±00",
"vPNAddressExample": "10.0.0.3, vpn.contoso.com",
"vPNAppsDescription": "When at least one app is selected, the VPN connection will be limited to the apps in the list.",
"vPNAppsName": "Select apps that would be allowed to use this VPN connection",
"vPNAuthMethodDescription": "Select how you want users to authenticate to the VPN server. Using certificate-based authentication provides enhanced capabilities such as zero-touch experience, on-demand VPN, and per-app VPN.",
"vPNCitrixData": "Citrix data",
"vPNCitrixDataDescription": "Enter key and value pairs for the Citrix VPN attributes.",
"vPNConditionTypeColumnName": "Restrict to",
"vPNConditionTypeName": "I want to restrict to",
"vPNConnectionExample": "Contoso VPN",
"vPNCustomData": "Attributes for custom VPN",
"vPNCustomDataDescription": "Enter key and value pairs for the custom VPN attributes.",
"vPNCustomKeyExample": "SingleSignOn",
"vPNCustomValueExample": "True",
"vPNDnsAutoTriggerDescription": "Automatically connect to the VPN when the device connects to this domain",
"vPNDnsAutoTriggerName": "Automatically Connect",
"vPNDnsPersistentDescription": "Keep this rule active even when the VPN is not connected: Select Enable to keep this rule in the Name Resolution Policy table (NRPT) until the rule is manually removed from the device, even after the VPN is disconnected. By default, NRPT rules in the VPN profile are removed from the device when the VPN is disconnected.",
"vPNDnsPersistentName": "Persistent",
"vPNEAPXMLDescription": "Enter the extensible authentication protocol (EAP) configuration in XML format. ",
"vPNEAPXMLHelpLinkDescription": "Learn more about creating an EAP configuration for your VPN profile.",
"vPNFQDNExample": "vpn.contoso.com",
"vPNIKEv2RemoteIdentifierDescription": "Specify the address of the IKEv2 server. This is usually the same value used in the IP address or FQDN field under Base VPN. The address must be a FQDN, UserFQDN, network address, or ASN1DN.",
"vPNIKEv2RemoteIdentifierName": "Remote identifier",
"vPNIdentifier": "VPN identifier",
"vPNIdentifierExample": "e.g. com.cisco.anyconnect.applevpn.plugin",
"vPNNetMotionMobilityCustomData": "Attributes for NetMotion Mobility VPN",
"vPNNetMotionMobilityCustomDataDescription": "Enter key and value pairs for the NetMotion Mobility VPN attributes.",
"vPNPerAppDescription": "When users start using the selected apps, traffic will automatically route through the VPN connection if the connection is configured to be Always On or if the connection has been manually started by the user.",
"vPNPolicyAddressDescription": "Proxy server address (fully-qualified host, or IP address).",
"vPNPolicyAddressName": "Address",
"vPNPolicyAssociatedAppsDescription": "Apps added here will automatically start this VPN connection.",
"vPNPolicyAssociatedAppsName": "Associated Apps",
"vPNPolicyAssociatedDomainsUrlsDescription": "Associated domains require additional setup outside of this VPN profile. <a href=\"https://go.microsoft.com/fwlink/?linkid=2137593\" target=\"_blank\">Learn more</a>.<br>",
"vPNPolicyAssociatedDomainsUrlsName": "Associated Domains",
"vPNPolicyAutomaticConfigurationScriptDescription": "URL to proxy automatic configuration file",
"vPNPolicyAutomaticConfigurationScriptName": "Automatic configuration script",
"vPNPolicyAutomaticallyDetectProxySettingsName": "Automatically detect proxy settings",
"vPNPolicyBypassProxySettingsForLocalAddressesName": "Bypass proxy for local addresses",
"vPNPolicyBypassVPNOnCompanyWiFiDescription": "Bypass VPN when connected to company Wi-Fi network",
"vPNPolicyBypassVPNOnCompanyWiFiName": "Bypass VPN on company Wi-Fi network",
"vPNPolicyBypassVPNOnHomeWiFiDescription": "Bypass VPN when connected to home Wi-Fi network",
"vPNPolicyBypassVPNOnHomeWiFiName": "Bypass VPN on home Wi-Fi network",
"vPNPolicyConnectionDescription": "This is a descriptive name for the VPN connection and will be displayed to end-users on their device.",
"vPNPolicyConnectionName": "Connection name",
"vPNPolicyConnectionTypeDescription": "This is the type of VPN server you use in your company. If your VPN vendor is not listed, select Custom VPN, then add your VPN identifier and any custom attributes that enable extra features like single sign-on.",
"vPNPolicyConnectionTypeDescriptionNoCustom": "This is the type of VPN server you use in your company.",
"vPNPolicyConnectionTypeName": "Connection type",
"vPNPolicyCustomXMLName": "Custom XML",
"vPNPolicyDNSNamesAndServersName": "Domains and servers for this VPN connection",
"vPNPolicyDNSRegistrationDescription": "Allows registration of the VPN's address in the internal DNS.",
"vPNPolicyDNSRegistrationName": "Register IP addresses with internal DNS",
"vPNPolicyDNSSuffixSearchItem": "DNS search item",
"vPNPolicyDNSSuffixSearchListDescription": "Specify DNS suffixes to add to the DNS search list to properly route short names. The first suffix in the list is also used as the primary connection-specific DNS suffix for the VPN interface.",
"vPNPolicyDNSSuffixSearchListName": "DNS suffix search list",
"vPNPolicyDNSSuffixesName": "DNS suffixes",
"vPNPolicyDefaultServerDescription": "Ensure exactly 1 server is selected as the default.",
"vPNPolicyDefaultServerName": "Default server",
"vPNPolicyDestinationPrefixName": "Destination prefix",
"vPNPolicyEnableAlwaysOnDescription": "When Always On is enabled, a VPN connection will be automatically attempted when the user logs in, when the network the device is connected to changes, and on a mobile device when the screen is turned back on after being turned off.",
"vPNPolicyEnableAlwaysOnName": "Always On",
"vPNPolicyEnableDeviceTunnelDescription": "Enable connection without end-user interaction or logon. Only applies to PCs joined to an Azure Active Directory.",
"vPNPolicyEnableDeviceTunnelName": "Device Tunnel",
"vPNPolicyExcludedDomainsUrlsDescription": "A list of domains that can bypass the VPN when per-app VPN is activated. Applies to iOS 14 and later",
"vPNPolicyExcludedDomainsUrlsName": "Excluded Domains",
"vPNPolicyNameResolutionPolicyTableRulesDescription": "Name Resolution Policy table (NRPT) rules define how the DNS resolves names when connected to the VPN. Each row in the table specifies a domain and the DNS suffixes or web proxy server to use to resolve that domain.",
"vPNPolicyNameResolutionPolicyTableRulesName": "Name Resolution Policy table (NRPT) rules",
"vPNPolicyNetworkTrafficRulesDescription": "Careful: By adding network rules, the VPN connection will be limited to only the rules specified.\n When adding traffic rules, make sure to add a catch-all rule that is least restrictive, to avoid VPN issues.",
"vPNPolicyNetworkTrafficRulesName": "Network traffic rules for this VPN connection",
"vPNPolicyOnlyTheseAppsCanUseVPNDescription": "Restrict VPN connection to these apps (per-app VPN). Add associated apps BEFORE enabling this, as the list will become read-only after enabling. Traffic rules for apps in the table will automatically be added to the network traffic rules table when Enable is set.",
"vPNPolicyOnlyTheseAppsCanUseVPNName": "Restrict VPN connection to these apps",
"vPNPolicyPerAppVPNName": "Type of automatic VPN",
"vPNPolicyPortNumberName": "Port number",
"vPNPolicyPrefixSizeName": "Prefix size",
"vPNPolicyProfileScopeDescription": "This is the scope for whether the VPN Profile will be per user, or per device",
"vPNPolicyProfileScopeDeviceOption": "Device",
"vPNPolicyProfileScopeSelection": "Use this VPN profile with a user/device scope",
"vPNPolicyProfileScopeUserOption": "User",
"vPNPolicyProfileTargetDescription": "Turns this profile into an always-on VPN connection that connects without user interaction and uses machine certificates for authentication. Only supports an IKEv2 connection type. VPN profile is removed from the device after the AutoPilot out-of-box experience completes.",
"vPNPolicyProfileTargetName": "Use this VPN profile for Windows AutoPilot",
"vPNPolicyRememberCredentialsName": "Remember credentials at each logon",
"vPNPolicyRoutesForThisConnectionDescription": "Optional.",
"vPNPolicyRoutesForThisConnectionName": "Split tunneling routes for this VPN connection",
"vPNPolicySafariUrlsDescription": "URLs should be for a valid Safari domain. Example: contoso.com",
"vPNPolicySafariUrlsName": "Safari URLs that will trigger this VPN",
"vPNPolicySelectAClientCertificateDescription": "A client authentication certificate is an Identity certificate.",
"vPNPolicySelectAClientCertificateName": "Select a client authentication certificate:",
"vPNPolicySendAllNetworkTrafficThroughVPNDescription": "Enable split tunneling if you only want certain web traffic to use the VPN tunnel. Disable this if you want all traffic to use the VPN tunnel when the VPN connection is active.",
"vPNPolicySendAllNetworkTrafficThroughVPNName": "Split tunneling",
"vPNPolicyServerDescriptionDescription": "VPN server description.",
"vPNPolicyServerDescriptionName": "Description",
"vPNPolicyServerFQDNName": "FQDN",
"vPNPolicyServerIPAddressOrFQDNDescription": "This is the fully qualified domain name or IP address of your VPN server on the network. Make sure that end-users can access this network location.",
"vPNPolicyServerIPAddressOrFQDNName": "VPN server address",
"vPNPolicyServersDescription": "List of VPN servers. Exactly one needs to be marked as the default server.",
"vPNPolicyServersName": "Servers",
"vPNPolicyTrustedNetworkDetectionEnabledDescription": "Trusted network detection",
"vPNPolicyTrustedNetworkDetectionEnabledName": "Trusted network detection",
"vPNPolicyTrustedNetworkDomainColumnName": "DNS suffixes",
"vPNPolicyTrustedNetworkDomainDescription": "Enter DNS suffixes used to determine if the device is connected to a trusted network. If any of them are reachable by the device, the device will not automatically connect to the VPN, even if there are auto-triggers set.",
"vPNPolicyTrustedNetworkDomainExample": "e.g. contoso.com",
"vPNPolicyTrustedNetworkDomainMustBeUnique": "The trusted network domains list already contains this item.",
"vPNPolicyTrustedNetworkDomainName": "Trusted network DNS suffixes",
"vPNPolicyUseProxyServerDescription": "Proxy used when profile is active.",
"vPNPolicyUseProxyServerName": "Use proxy server",
"vPNProxyDescription": "Web proxy address for redirected intranet traffic.",
"vPNProxyDescription1809": "Web proxy server used to resolve the specified domain.",
"vPNRoutesExample": "e.g. 192.123.432.213/24",
"vPNScriptExample": "e.g. https://pxy.co.com/pac",
"vPNServerExample": "e.g. Corp VPN for end-users",
"vPNServerList": "Server list",
"vPNServerListExample": "ServerDescription, IP Address or FQDN (e.g. Company-wide VPN, 10.0.0.1) (e.g. Apps-only VPN, vpn.contoso.com)",
"vPNWipOrAppsDescription": "Because WIP defines policies and app lists, additional network traffic rules are not required when WIP is selected, unless specifically needed.",
"vPNWipOrAppsName": "Associate WIP or apps with this VPN",
"validOperatingSystemBuildsDescription": "Valid operating system builds",
"validOperatingSystemBuildsDescriptionName": "Description",
"validOperatingSystemBuildsMaximumName": "Maximum",
"validOperatingSystemBuildsMinimumName": "Minimum",
"validOperatingSystemBuildsName": "Valid operating system builds",
"validTLSVersion": "TLS Version must be one of the following values: 1.0, 1.1, 1.2",
"validateFreezePeriodLength": "Freeze period cannot be longer than 90 days.",
"validateFreezePeriodSeparation": "Freeze periods must be separated by at least 60 days.",
"validateSingleSignOnMessage": "Property Single sign-on (SSO) must be set to Disable when Authentication Mode is set to Machine or Guest.",
"value": "Value",
"valueColumn": "Value",
"valueInKilobytesPerSecondEmpty": "Enter value in KB/s",
"valueName": "Value",
"valueType": "Value type",
"valueZeroNotLimitedEmpty": "Value 0 specifies not limited.",
"version": "{0} ({1})",
"versionAndroid4": "(This compliance check is supported for devices with OS versions Android 4.0 and above)",
"versionAndroid4SamsungKStandard4": "(This compliance check is supported for devices with OS versions Android 4.0 and above, or KNOX 4.0 and above)",
"versionIOS8": "(This compliance check is supported for devices with OS versions iOS 8.0 and above)",
"versionWin10Desktop": "(This compliance check is supported for desktop devices running Windows 10 or later)",
"virtualHomeButtonDescription": "Enable a soft-key button that returns users to the Managed Home Screen. Choose between a persistent, floating button or a button activated by a swipe-up gesture.",
"virtualHomeButtonFloating": "Floating",
"virtualHomeButtonName": "Virtual home button",
"virtualHomeButtonNotConfigured": "Not configured",
"virtualHomeButtonSwipeUp": "Swipe-up",
"virtualizationOfCpuAndIOName": "CPU and IO virtualization",
"visibleAppsListOptionsDescription": "Set whether the list is a list of apps to hide or a list of apps to make visible.",
"visibleAppsListOptionsName": "Type of apps list",
"voicemailExceptionName": "Voicemail",
"voicemailExceptionToolTip": "Choose what happens with voicemail traffic when always-on VPN is enabled. The default value for this setting is the most secure option.",
"volumeName": "Volume",
"vpn": "Base VPN",
"vpnAlwaysOn": "Always-on VPN",
"vpnApps": "Automatic VPN",
"vpnAppsExample": "e.g. com.microsoft.emmx",
"vpnIkev2": "IKEv2 settings",
"vpnOnDemand": "On-Demand VPN Rules",
"vpnOverCellularName": "VPN over the cellular network",
"vpnPerApp": "Per-app VPN",
"vpnProviderTypeAppProxy": "app-proxy",
"vpnProviderTypeDesc": "Choose <b>app-proxy</b> to tunnel traffic at the application layer. Choose <b>packet-tunnel</b> to tunnel traffic at the IP layer. Modern VPN clients for iOS devices require you to select packet-tunnel. Check the VPN client documentation to confirm requirements.",
"vpnProviderTypeName": "Provider Type",
"vpnProviderTypePacketTunnel": "packet-tunnel",
"vpnProxy": "Proxy",
"vpnRoamingOverCellularName": "VPN roaming over the cellular network",
"wEPOption": "WEP",
"wEPPSKOption": "WEP-Pre-shared key",
"wHfBEnhancedAntiSpoofingForFacialFeaturesEnabledDesc": "If enabled, devices will use enhanced anti-spoofing, when available. If not configured, the client configuration for anti-spoofing will be honored.",
"wHfBEnhancedAntiSpoofingForFacialFeaturesEnabledName": "Use enhanced anti-spoofing, when available",
"wHfBPinExpirationInDaysDesc": "If configured, the user will be forced to change their PIN after the set number of days. The user can still proactively change their PIN before expiration.",
"wHfBPinExpirationInDaysName": "PIN expiration (days)",
"wHfBPinLowercaseCharactersUsageDesc": "If required, user PIN must include at least one lowercase letter.",
"wHfBPinLowercaseCharactersUsageName": "Lowercase letters in PIN",
"wHfBPinMaximumLengthDesc": "Maximum PIN length must be between 4 and 127.",
"wHfBPinMaximumLengthName": "Maximum PIN length",
"wHfBPinMinimumLengthDesc": "Minimum PIN length must be between 4 and 127.",
"wHfBPinMinimumLengthName": "Minimum PIN length",
"wHfBPinPreviousBlockCountDesc": "If configured, the user will not be able to reuse this number of previous PINs.",
"wHfBPinPreviousBlockCountName": "Remember PIN history",
"wHfBPinRecoveryEnabledDesc": "Allows user to use the Windows Hello for Business PIN recovery service. If enabled, the PIN recovery secret will be stored on the device and the user can change their PIN if needed. If disabled or not configured, the recovery secret will not be created or stored.",
"wHfBPinRecoveryEnabledName": "Enable PIN recovery",
"wHfBPinSpecialCharactersUsageDesc": "If required, user PIN must include at least one special character.",
"wHfBPinSpecialCharactersUsageName": "Special characters in PIN",
"wHfBPinUppercaseCharactersUsageDesc": "If required, user PIN must include at least one uppercase letter.",
"wHfBPinUppercaseCharactersUsageName": "Uppercase letters in PIN",
"wHfBSecurityDeviceRequiredDesc": "A Trusted Platform Module (TPM) provides additional security benefits over software because data stored within it cannot be used on other devices. If you enable this policy setting, only devices with a usable TPM provision Windows Hello for Business. If you disable or do not configure this policy setting, the TPM is still preferred, but all devices provision Windows Hello for Business.",
"wHfBSecurityDeviceRequiredName": "Use a Trusted Platform Module (TPM)",
"wHfBUnlockWithBiometricsEnabledDesc": "If allowed, Windows Hello for Business can authenticate using gestures, such as face and fingerprint. Users must still configure a PIN in case of failure.",
"wHfBUnlockWithBiometricsEnabledName": "Allow biometric authentication",
"wHfBUseCertificatesForOnPremisesAuthEnabledDesc": "If configured, Windows Hello for Business can use certificates to authenticate to on-premise resources.",
"wHfBUseCertificatesForOnPremisesAuthEnabledName": "Certificate for on-premise resources",
"wHfBUseSecurityKeyForSigninDesc": "Enable Windows Hello security key as a logon credential for all PCs in the tenant.",
"wHfBUseSecurityKeyForSigninName": "Use security keys for sign-in",
"wHfBWindowsHelloForBusinessBlockedDesc": "Windows Hello for Business is an alternative method for signing into Windows by replacing passwords, Smart Cards, and Virtual Smart Cards. If you enable or do not configure this policy setting, the device provisions Windows Hello for Business. If you disable this policy setting, the device does not provision Windows Hello for Business for any user.",
"wHfBWindowsHelloForBusinessBlockedName": "Configure Windows Hello for Business",
"wPA2Enterprise": "WPA2-Enterprise (Credential Builder)",
"wPA2EnterpriseOption": "WPA/WPA2-Enterprise",
"wPAEnterpriseOption": "WPA-Enterprise",
"wPAPSKOption": "WPA-Pre-shared key",
"wPAPersonalOption": "WPA/WPA2-Personal",
"wakeOnLANName": "Wake on LAN",
"wakeOnPowerName": "Wake on power",
"wakeScreenWhenSomeoneInRoomName": "Wake screen when someone is in room",
"wallpaperDisplayLocationDescription": "Wallpaper display Location. If you want to block users from changing the wallpaper, go to Device restrictions > General.",
"wallpaperDisplayLocationHomeScreenOption": "Home Screen",
"wallpaperDisplayLocationLockScreenAndHomeScreenOption": "Lock Screen and Home Screen",
"wallpaperDisplayLocationLockScreenOption": "Lock Screen",
"wallpaperDisplayLocationName": "Wallpaper display Location",
"wallpaperImageDescription": "Wallpaper Image.",
"wallpaperImageName": "Wallpaper Image",
"wallpaperModificationBlockedMacDescription": "Yes prevents the wallpaper from being changed. Available for devices running macOS versions 10.13 or later.",
"wallpaperModificationBlockedMacName": "Block modification of wallpaper",
"webBrowserCookiesAllowAll": "Allow all cookies, and allow cross site tracking",
"webBrowserCookiesPreventAndBlock": "Block all cookies, and block cross site tracking",
"webBrowserCookiesPreventCrossSite": "Allow all cookies, and block cross site tracking",
"webContentFilterBlackListedUrlExample": "e.g. http://www.contoso.com",
"webContentFilterBlockedUrlsPlural": "URLs blocked",
"webContentFilterBlockedUrlsSingular": "URL blocked",
"webContentFilterBookmarkPathExample": "e.g. /Technology/MDM",
"webContentFilterBookmarkTitleExample": "e.g. Microsoft",
"webContentFilterPermittedUrlsPlural": "URLs permitted",
"webContentFilterPermittedUrlsSingular": "URL permitted",
"webContentFilterTypeBlockAllUrlsHeaderName": "By selecting this option you block access to all URLs. User will not be able to access any website from their iOS device.",
"webContentFilterTypeBlockAllUrlsOption": "Block all URLs",
"webContentFilterTypeBlockedUrlsColumnName": "URL",
"webContentFilterTypeBlockedUrlsDescription": "Use this filtering system to only block URLs that you dont want students to access. Any URL not in this list will be accessible by students.",
"webContentFilterTypeBlockedUrlsName": "Blocked URLs",
"webContentFilterTypeBlockedUrlsTableDescription": "Access to these URLs is blocked.",
"webContentFilterTypeBlockedUrlsTableName": "Blocked URLs",
"webContentFilterTypeConfigureUrlsHeaderName": "Use Apples built in AutoFilter algorithm that looks for adult language, i.e. swearing and sexually explicit language. This function evaluates each web page as it is loaded and attempts to identify and block content not suitable for children. If you have specific URLs that need to bypass Apples filtering algorithm, add them to Permitted URLs list. If you have specific URLs that need to be blocked regardless of Apples AutoFilter, add them to the Blocked URLs list.",
"webContentFilterTypeConfigureUrlsOption": "Configure URLs",
"webContentFilterTypeDescription": "The filtering mechanism that would be employed in determining whether a URL is accessible or not. You can choose to use Apples AutoFilter or specify the exact list of URLs or block all URLs.",
"webContentFilterTypeName": "Filter Type",
"webContentFilterTypePermittedUrlsColumnName": "URL",
"webContentFilterTypePermittedUrlsDescription": "Use this filtering system to explicitly allow URLs that bypass the Apples built in AutoFilter. URLs added here will be allowed access even if they might get blocked by the Apple AutoFilter.",
"webContentFilterTypePermittedUrlsName": "Permitted URLs",
"webContentFilterTypePermittedUrlsTableDescription": "Specifies the URLs that can be accessible regardless of the default automatic filtering rules set by Apple.",
"webContentFilterTypePermittedUrlsTableName": "Permitted URLs",
"webContentFilterTypeWhitelistedUrlsColumnBookmarkPathName": "Bookmark Path",
"webContentFilterTypeWhitelistedUrlsColumnTitleName": "Title",
"webContentFilterTypeWhitelistedUrlsColumnUrlName": "URL",
"webContentFilterTypeWhitelistedUrlsHeaderName": "These URLs are added to the browsers bookmarks, and the user is not allowed to visit any sites other than these. This is the most stringent method of filtering web content use this only if you know the exact list of URLs that can be accessed by users.",
"webContentFilterTypeWhitelistedUrlsLinkTextName": "Learn more about URLs added automatically in this filter type",
"webContentFilterTypeWhitelistedUrlsOption": "Specific websites only",
"webContentFilterTypeWhitelistedUrlsTableDescription": "For each URL provide the bookmark path to better organize the URLs. If no bookmark path provided, the bookmark is added to the default bookmarks directory.",
"webContentFilterTypeWhitelistedUrlsTableName": "Specific websites only",
"webContentFilterWhiteListedUrlExample": "e.g. http://microsoft.com",
"webRtcBlockLocalhostIpAddressDescription": "User's localhost IP address is displayed when making phone calls using the web RTC protocol. Select No, to hide.",
"webRtcBlockLocalhostIpAddressName": "Show WebRTC localhost IP address",
"wednesday": "Wednesday",
"wednesdayOption": "Wednesday",
"weekly": "Weekly",
"weeklyScheduleEndTimeDescription": "Select the end time for the interval to allow or prevent updates. You cannot select end day and time that is the same as the start day and time.",
"whatHappenedDescription": "Intune in the Azure portal does not support this profile's configurations. Settings for this profile can only be viewed in the classic portal in Policy > Configuration Policies.",
"whatHappenedTitle": "What happened:",
"wiFiBasic": "Basic",
"wiFiEnterprise": "Enterprise",
"wiFiForceOnlyConfiguredNetworksDescription": "Force the device to use only Wi-Fi networks set up through configuration profiles. Available for devices running iOS and iPadOS versions 14.4 or earlier. Devices running 14.5+ should use the setting, “Require devices to use Wi-Fi networks set up via configuration profiles.\"",
"wiFiForceOnlyConfiguredNetworksName": "Require joining Wi-Fi networks only using configuration profiles",
"wiFiPolicyConnectAutomaticallyDescription": "Choose Enable to automatically connect to this network when the device is in range. Choose Disable to prevent devices from automatically connecting to this network when the device is in range.",
"wiFiPolicyConnectAutomaticallyName": "Connect automatically",
"wiFiPolicyConnectWhenNotBroadcastingDescription": "Connect to this network, even when it is not broadcasting its SSID.",
"wiFiPolicyConnectWhenNotBroadcastingName": "Hidden network",
"wiFiPolicyNetworkName": "Network name",
"wiFiPolicyProxySettingsDescription": "Specify the proxy configuration used by your organization.",
"wiFiPolicyProxySettingsName": "Proxy settings",
"wiFiPolicySSIDDescription": "Service Set Identifier. The name of the Wi-Fi connection.",
"wiFiPolicySSIDName": "SSID",
"wiFiPolicySecurityTypeDescription": "Select the security protocol to use for authentication.",
"wiFiPolicySecurityTypeName": "Security type",
"wiFiSSIDExample": "e.g. AcmeCorp",
"wiFiScanIntervalDescription": "How often devices scan for Wi-Fi networks. Supported values are 1-500, where 100 = normal frequency, and 500 = low frequency.",
"wiFiScanIntervalName": "Wi-Fi scan interval (mobile only)",
"wiFiToAllowedNetworksOnlyForcedDescription": "Available for devices running iOS and iPadOS versions 14.5 or later.",
"wiFiToAllowedNetworksOnlyForcedName": "Require devices to use Wi-Fi networks set up via configuration profiles",
"wiFiTypeDescription": "Type of Wi-Fi profile",
"wiFiTypeName": "Wi-Fi type",
"wifiAccessPointConfigurationDescription": "Block user creation or editing of any Wi-Fi configurations.",
"wifiAndCellularName": "Wi-Fi and Cellular",
"wifiConfigDisabledDescription": "Block user creation or editing of any Wi-Fi configurations.",
"wifiConfigDisabledName": "Wi-Fi access point configuration",
"wifiConfigsLockdownEnabledDescription": "Block changes to Wi-Fi configurations created by the device owner. Users can create their own Wi-Fi configurations.",
"wifiConfigsLockdownEnabledName": "Wi-Fi setting changes",
"wifiName": "Wi-Fi",
"wifiPasswordExample": "<password>",
"wifiPowerOnForcedDescription": "Available for iOS/iPadOS 13.0 and later. Force Wi-Fi to always be turned on.",
"wifiPowerOnForcedName": "Require Wi-Fi always on",
"wifiScanIntervalPlaceholder": "Enter a number (1-500)",
"win10AccountManagerConfigurationHeader": "In organizations where multiple OS versions are supported, these settings may not apply across all versions the same. Account manager settings are the only settings applicable to HoloLens devices. ",
"win10AllowedWebsitesDescription": "List of allowed URLs users can access. If you upload a list, make sure to include the default home page URL.",
"win10AllowedWebsitesHeader": "By default, users can access all websites from the Microsoft Kiosk Browser. To restrict access to a specific set of websites, upload a file with up to 500 URLs on separate lines. Then users will only have access to these URLs. Wildcard(*) characters are permitted.",
"win10AllowedWebsitesName": "Allowed websites",
"win10AppLockerApplicationControlTypeAuditDescription": "\"Audit Only\" mode logs all events in local client event logs, but does not block any apps from running",
"win10AppLockerApplicationControlTypeDescription": "Specifies the types of apps that can be trusted to run by application control code integrity policies",
"win10AppLockerApplicationControlTypeName": "Trust apps with good reputation:",
"win10AppLockerEnforcementTypeDescription": "Choose the application control code integrity policies for your users' devices",
"win10AppLockerEnforcementTypeName": "Application control code integrity policies:",
"win10BlockedWebsiteExceptionsDescription": "Specify URLs that kiosk browsers are allowed to navigate to. If a URL is in both the Blocked website list as well as the Blocked website exception list, the exception will take effect.",
"win10BlockedWebsiteExceptionsName": "Website exceptions",
"win10BlockedWebsitesDescription": "Block websites from user access in the kiosk browser app.",
"win10BlockedWebsitesName": "Blocked websites",
"win10BluetoothHeader": "Bluetooth",
"win10DefaultPrivacyHeader": "Define information that all apps on the device can access. You can define exceptions on a per-app basis using “Per-app privacy exceptions”.",
"win10KioskAccessDownloadsFolderDescription": "Allow users to access downloads folder in Windows Explorer. Commonly used to access items downloaded from a browser.",
"win10KioskAccessDownloadsFolderName": "Allow access to Downloads folder",
"win10KioskAutoLaunch": "Autolaunch",
"win10KioskBrowserDefaultWebsiteDescription": "Default webpage that opens when kiosk browser opens and restarts.",
"win10KioskBrowserDefaultWebsiteExample": "http://bing.com",
"win10KioskBrowserDefaultWebsiteName": "Default home page URL",
"win10KioskBrowserEnableEndSessionButtonDescription": "End Session button clears all browsing data and navigates user back to the default home page URL.",
"win10KioskBrowserEnableEndSessionButtonName": "End session button",
"win10KioskBrowserHeader": "Configure the Kiosk Browser app. Before you begin, go to the Mobile Apps blade and make sure the Kiosk Browser app is assigned to your kiosk devices.",
"win10KioskBrowserHomeButtonDescription": "By default, home button is not configured.",
"win10KioskBrowserHomeButtonName": "Home button",
"win10KioskBrowserNavigationButtonDescription": "Refers to the forward and back buttons users click to get from one page to another.",
"win10KioskBrowserNavigationButtonName": "Navigation buttons",
"win10KioskBrowserRestartAfterIdleTimeDescription": "Specifies when Kiosk Browser should restart. Determined by the idle time, which is the number of minutes since the users last interaction.",
"win10KioskBrowserRestartAfterIdleTimeExample": "Enter a number (1-1440 minutes)",
"win10KioskBrowserRestartAfterIdleTimeName": "Refresh browser after idle time",
"win10LogonBlockFastUserSwitchingDesc": "Disables the ability to quickly switch between users that are logged on simultaneously without logging off.",
"win10LogonBlockFastUserSwitchingName": "Fast user switching",
"win10PolicyOverrideHeader": "Override Group Policy settings with Intune settings when there are conflicting settings.",
"win10PolicyOverrideInstructions": "This setting cannot be reset on a device until you unenroll the device from management in Intune.",
"win10SharedGuestAccount": "Guest account",
"win10SharedGuestAccountDescription": "Create a Guest option on the sign-in screen. Requires no user credentials or authentication, and creates a new local account each time it is used.",
"win10SharedPCAccountDeletion": "Account Deletion",
"win10SharedPCAccountDeletionDescription": "Shared PC mode can be configured to delete accounts immediately at sign-out, when disk space is low, and when accounts are inactive for too long.",
"win10SharedPCAccountDeletionDiskSpace": "At storage space threshold",
"win10SharedPCAccountDeletionDiskSpaceInactiveThreshold": "At storage space threshold and inactive threshold",
"win10SharedPCAccountDeletionImmediate": "Immediately after log-out",
"win10SharedPCAccountDiskSpaceLeftBeforeDeletion": "Delete oldest accounts when free disk space drops below",
"win10SharedPCAccountDiskSpaceLeftBeforeDeletionDescription": "Sets the percentage of disk space remaining on a PC before cached accounts will be deleted to free disk space. Accounts that have been inactive the longest will be deleted first. You can enter any number from 0 to 100 here.",
"win10SharedPCAccountDiskSpaceLeftBeforeDeletionEmpty": "25",
"win10SharedPCAccountManager": "Account management",
"win10SharedPCAccountManagerDescription": "When the account management service is turned on in shared PC mode, accounts are automatically deleted. Deletion applies to accounts in Active Directory and Azure Active Directory, and local accounts created by guests. Account management occurs automatically at sign-off time and during system maintenance time periods.",
"win10SharedPCAllowedAccountsDomain": "Domain",
"win10SharedPCAllowedAccountsGuest": "Guest",
"win10SharedPCAllowedAccountsGuestAndDomain": "Guest and Domain",
"win10SharedPCDaysBeforeInactive": "Number of days an account is unused before it's considered inactive",
"win10SharedPCDaysBeforeInactiveDescription": "Set number of days before account is inactive. You can enter any number from 1 to 365 here. ",
"win10SharedPCDaysBeforeInactiveEmpty": "30",
"win10SharedPCDiskLevelCaching": "Stop delete threshold(%)",
"win10SharedPCDiskLevelCachingDescription": "Account manager stops deleting cached accounts as soon as total disk/storage space meets your configured threshold.",
"win10SharedPCDiskLevelDeletion": "Start delete threshold(%)",
"win10SharedPCDiskLevelDeletionDescription": "Account manager begins deleting cached accounts as soon as total disk/storage space drops below your configured threshold. It will continuously delete to reclaim disk space. Accounts that have been inactive the longest are deleted first.",
"win10SharedPCDiskSpaceEmptyValueDescription": "Enter percentage of disk space(0-100)",
"win10SharedPCDiskSpaceLeftCached": "Stop account deletion when percentage storage/disk space is",
"win10SharedPCDiskSpaceLeftCachedDescription": "Sets the minimum percentage of available disk space a PC should have before it stops deleting cached accounts. You can enter any number from 0 to 100 here. ",
"win10SharedPCDiskSpaceLeftCachedEmpty": "50",
"win10SharedPCFastFirstSignInDescription": "Allow auto connect of new non-admin Azure Active Directory (AAD) accounts to the pre-configured candidate local accounts.",
"win10SharedPCFastFirstSignInName": "Fast first sign-in (deprecated setting)",
"win10SharedPCHeader": "Configure access, account deletion, maintenance, and power management settings for your shared devices running Windows 10 or later used by multiple users in your organization. ",
"win10SharedPCInactiveThreshold": "Inactive account threshold",
"win10SharedPCInactiveThresholdDescription": "The number of consecutive days after which an account that has not signed in is deleted.",
"win10SharedPCInactiveThresholdEmpty": "Enter number of days",
"win10SharedPCLocalStorage": "Local Storage",
"win10SharedPCLocalStorageDescription": "With local storage, users can save and view files on the device's hard drive.",
"win10SharedPCMaintenanceStartTime": "Maintenance start time(in minutes from midnight)",
"win10SharedPCMaintenanceStartTimeDescription": "The time when automatic maintenance tasks, such as Windows Update, run. The default start time is midnight, or zero minutes. You can adjust the start time in this setting by entering a new start time in minutes from midnight. For example, if you want maintenance to begin at 2 AM, enter 120 as the value.",
"win10SharedPCMaintenanceStartTimeEmpty": "Enter number of minutes from midnight",
"win10SharedPCMode": "Shared PC mode",
"win10SharedPCModeDescription": "Optimize devices for shared use to allow one user at a time to sign in to device.",
"win10SharedPCMoreInfoLinkHeader": "Click here for more info.",
"win10SharedPCSetEduPolicies": "Education policies",
"win10SharedPCSetEduPoliciesDescription": "Recommended settings for devices used in schools",
"win10SharedPCSetPowerPolicies": "Power Policies",
"win10SharedPCSetPowerPoliciesDescription": "Power policies prevent users from changing power settings, turns off hibernate, and overrides all power state transitions—such as lid close—to sleep.",
"win10SharedPCSignInOnResume": "Sign-in when PC wakes",
"win10SharedPCSignInOnResumeDescription": "Require the user to sign in with a password when device comes out of sleep mode.",
"win10SharedPCSleepTimeOut": "Sleep time out (in seconds)",
"win10SharedPCSleepTimeOutDescription": "Number of inactive seconds before device goes into sleep mode. If you don't set a time, the device will go to sleep after 60 minutes.",
"win10SharedPCSleepTimeOutEmpty": "Enter number of seconds",
"win10StartBlockUnpinningAppsFromTaskbarDesc": "Block the user from unpinning apps as specified through policy.",
"win10StartBlockUnpinningAppsFromTaskbarName": "Unpin apps from task bar",
"win10StartMenuAppListVisibilityCollapseDisableSettingsAppName": "Collapse and Disable Settings App",
"win10StartMenuAppListVisibilityCollapseName": "Collapse",
"win10StartMenuAppListVisibilityDesc": "Setting the value of this collapses the app list, removes the app list entirely, or disables the corresponding toggle in the Settings app.",
"win10StartMenuAppListVisibilityName": "App list",
"win10StartMenuAppListVisibilityRemoveDisableSettingsAppName": "Remove and Disable Settings App",
"win10StartMenuHideChangeAccountSettingsDesc": "Enabling this policy hides the change account setting from appearing in the user tile in the start menu.",
"win10StartMenuHideChangeAccountSettingsName": "Change account settings",
"win10StartMenuHideFrequentlyUsedAppsDesc": "Enabling this policy hides the most used apps from appearing on the start menu and disables the corresponding toggle in the Settings app.",
"win10StartMenuHideFrequentlyUsedAppsName": "Most used apps",
"win10StartMenuHideHibernateDesc": "Enabling this policy hides hibernate from appearing in the power button in the start menu.",
"win10StartMenuHideHibernateName": "Hibernate",
"win10StartMenuHideLockDesc": "Enabling this policy hides lock from appearing in the user tile in the start menu.",
"win10StartMenuHideLockName": "Lock",
"win10StartMenuHidePowerButtonDesc": "Enabling this policy hides the power button from appearing in the start menu.",
"win10StartMenuHidePowerButtonName": "Power button",
"win10StartMenuHideRecentJumpListsDesc": "Enabling this policy hides recent jump lists from appearing on the start menu/taskbar and disables the corresponding toggle in the Settings app.",
"win10StartMenuHideRecentJumpListsName": "Recently opened items in Jump Lists",
"win10StartMenuHideRecentlyAddedAppsDesc": "Enabling this policy hides recently added apps from appearing on the start menu and disables the corresponding toggle in the Settings app.",
"win10StartMenuHideRecentlyAddedAppsName": "Recently added apps",
"win10StartMenuHideRestartOptionsDesc": "Enabling this policy hides “Restart/Update and Restart” from appearing in the power button in the start menu.",
"win10StartMenuHideRestartOptionsName": "Restart Options",
"win10StartMenuHideShutDownDesc": "Enabling this policy hides shut down/update and shut down from appearing in the power button in the start menu.",
"win10StartMenuHideShutDownName": "Shut Down",
"win10StartMenuHideSignOutDesc": "Enabling this policy hides sign out from appearing in the user tile in the start menu.",
"win10StartMenuHideSignOutName": "Sign out",
"win10StartMenuHideSleepDesc": "Enabling this policy hides sleep from appearing in the power button in the start menu.",
"win10StartMenuHideSleepName": "Sleep",
"win10StartMenuHideSwitchAccountDesc": "Enabling this policy hides switch account from appearing in the user tile in the start menu.",
"win10StartMenuHideSwitchAccountName": "Switch Account",
"win10StartMenuHideUserTileDesc": "Enabling this policy hides the user tile from appearing in the start menu.",
"win10StartMenuHideUserTileName": "User Tile",
"win10StartMenuLayoutEdgeAssetsXmlDesc": "Lets you import images from Microsoft Edge that will be displayed as a linked image in the Windows Start menu (desktop only).",
"win10StartMenuLayoutEdgeAssetsXmlName": "Pin websites to tiles in Start menu",
"win10StartMenuLayoutXmlDesc": "Lets you upload an XML file that customizes the Windows Start menu on desktop devices to which you assign this policy. Users cannot change the Start menu layout you specify.",
"win10StartMenuLayoutXmlName": "Start menu layout",
"win10StartMenuModeDesc": "Allows admins to decide how the Start menu is displayed.",
"win10StartMenuModeFullScreenName": "Full screen",
"win10StartMenuModeName": "Start screen mode",
"win10StartMenuModeNonFullScreenName": "Non-full screen",
"win10WiFiPolicyProxySettingsName": "Company proxy settings",
"win10WifiAllowWindowsToPrompt": "Allow Windows to prompt user for additional authentication credentials",
"win10WifiAuthenticationModeDescription": "Choose whether to authenticate the user, the device, either, or to use guest authentication (none). If youre using certificate authentication, make sure the certificate type matches the authentication type.",
"win10WifiAuthenticationModeName": "Authentication Mode",
"win10WifiAuthenticationPeriodDescription": "Number of seconds for the client to wait after an authentication attempt before failing. Choose a number between 1 and 3600. Not specifying a value results in 18 seconds being used.",
"win10WifiAuthenticationPeriodName": "Authentication period",
"win10WifiAuthenticationRetryDelayPeriodDescription": "Number of seconds between a failed authentication and the next authentication attempt. Choose a value between 1 and 3600. Not specifying a value results in 1 second being used.",
"win10WifiAuthenticationRetryDelayPeriodName": "Authentication retry delay period ",
"win10WifiAutomaticallyConfigure": "Automatically Configure",
"win10WifiAutomaticallyConfigureExample": "https://proxysite.contoso.com/proxy.pac",
"win10WifiConnectAutomatically": "Connect automatically when in range",
"win10WifiConnectToNonBroadcastingNetwork": "Connect to this network, even when it is not broadcasting its SSID",
"win10WifiConnectToPreferredNetwork": "Connect to more preferred network if available",
"win10WifiDisable": "Disable",
"win10WifiEAPHeader": "Extensible Authentication Protocol (EAP)",
"win10WifiEAPText": "Select the EAP type that is configured on your Wi-Fi network.",
"win10WifiEapXML": "EAP XML",
"win10WifiEapXMLDesc": "Upload custom EAP configuration in an XML file.",
"win10WifiEnableAfterUserSignsInToDevice": "Enable after user signs in to device",
"win10WifiEnableBeforeUserSignsInToDevice": "Enable before user signs in to device",
"win10WifiEnablePairwiseMasterKey": "Enable pairwise master key (PMK) caching",
"win10WifiEnablePreAuthentication": "Enable pre-authentication",
"win10WifiFIPSComplianceDescription": "Validation against the FIPS 140-2 standard is required for all US federal government agencies that use cryptography-based security systems to protect sensitive but unclassified information stored digitally.",
"win10WifiFIPSComplianceName": "Force Wi-Fi profile to be compliant with the Federal Information Processing Standard (FIPS)",
"win10WifiFastRoaming": "Fast roaming settings",
"win10WifiFixed": "Fixed",
"win10WifiGuest": "Guest",
"win10WifiMachine": "Machine",
"win10WifiMachineOrUser": "User or machine",
"win10WifiManuallyConfigure": "Manually Configure",
"win10WifiMaximumAuthenticationFailuresDescription": "Enter the maximum number of authentication failures for this set of credentials. Not specifying a value results in 1 attempt being used.",
"win10WifiMaximumAuthenticationFailuresName": "Maximum authentication failures",
"win10WifiMaximumEAPOLStartMessagesDescription": "Choose a number of EAPOL-Start messages between 1 and 100. Not specifying a value results in a maximum of 3 messages being sent.",
"win10WifiMaximumEAPOLStartMessagesName": "Maximum EAPOL-start",
"win10WifiMaximumNumberPMKStoredInCache": "Maximum number of PMK's stored in cache",
"win10WifiMaximumNumberPMKStoredInCacheExample": "Number of entries (1-255)",
"win10WifiMaximumPreAuthenticationAttempts": "Maximum pre-authentication attempts",
"win10WifiMaximumPreAuthenticationAttemptsExample": "Number of attempts (1-16)",
"win10WifiMaximumTimePMKStoredInCache": "Maximum time a PMK is stored in cache",
"win10WifiMaximumTimePMKStoredInCacheExample": "Number of minutes (5-1440)",
"win10WifiMaximumTimeToAuthenticate": "Maximum time to authenticate before timeout",
"win10WifiMaximumTimeToAuthenticateExample": "Number of seconds (1-120)",
"win10WifiMeteredConnectionLimitDescription": "Unrestricted metering allows an app or service to use all data on your Wi-Fi, Fixed allows use of some data. and Variable allows use only when critical.",
"win10WifiMeteredConnectionLimitName": "Metered Connection Limit",
"win10WifiNetworkName": "Connection name",
"win10WifiNotConfigured": "Not Configured",
"win10WifiPeapName": "Protected EAP (PEAP)",
"win10WifiPreSharedKey": "Pre-shared key",
"win10WifiProxyAutoConfiguration": "Proxy auto-configuration script URL",
"win10WifiProxyServerIPAddress": "Proxy server IP address",
"win10WifiProxyServerIPAddressExample": "10.0.0.22",
"win10WifiProxyServerPortNumberDescription": "If your proxy server uses a particular port, enter it here.",
"win10WifiProxyServerPortNumberExample": "8080",
"win10WifiProxyServerPortNumberName": "Proxy server port number",
"win10WifiRememberCredentialsDescription": "Choose whether to cache users' credentials when they enter them the first time they connect to the Wi-Fi network. Cached credentials are used for subsequent connections and the users don't need to re-enter them. Not configuring this setting is equivalent to setting it to yes.",
"win10WifiRememberCredentialsName": "Remember credentials at each logon",
"win10WifiSSIDExample": "ContosoCorp",
"win10WifiSSIDName": "Wi-Fi name (SSID)",
"win10WifiSignleSignOnName": "Single sign-on (SSO)",
"win10WifiStartPeriodDescription": "Number of seconds to wait before sending an EAPOL-Start message. Choose a value between 1 and 3600. Not specifying a value results in 5 seconds being used.",
"win10WifiStartPeriodName": "Start period",
"win10WifiUnrestricted": "Unrestricted",
"win10WifiUser": "User",
"win10WifiUserBasedVirtualLanDescription": "Specify whether the virtual LAN used by the device changes based on the users credentials. Not configuring this setting is equivalent to setting it to false.",
"win10WifiUserBasedVirtualLanName": "Use separate VLANs for device and user authentication",
"win10WifiVariable": "Variable",
"win10WifiWirelessSecurityTypeDescription": "Security protocol used to authenticate devices on your network.",
"win10WifiWirelessSecurityTypeName": "Wireless Security Type",
"win10WifiWirelessSecurityTypeOpen": "Open (no authentication)",
"win10WifiWirelessSecurityTypeWPA": "WPA/WPA2-Personal",
"win10WiredAuthenticationModeDescription": "Choose whether to authenticate the user, the device, either, or to use guest authentication (none). If youre using certificate authentication, make sure the certificate type matches the authentication type.",
"win10WiredAuthenticationModeName": "Authentication Mode",
"win10WiredAuthenticationPeriodDescription": "Number of seconds for the client to wait after an authentication attempt before failing. Choose a number between 1 and 3600. Not specifying a value results in 18 seconds being used.",
"win10WiredAuthenticationPeriodName": "Authentication period",
"win10WiredAuthenticationRetryDelayPeriodDescription": "Number of seconds between a failed authentication and the next authentication attempt. Choose a value between 1 and 3600. Not specifying a value results in 1 second being used.",
"win10WiredAuthenticationRetryDelayPeriodName": "Authentication retry delay period ",
"win10WiredFIPSComplianceDescription": "Validation against the FIPS 140-2 standard is required for all US federal government agencies that use cryptography-based security systems to protect sensitive but unclassified information stored digitally.",
"win10WiredFIPSComplianceName": "Force wired profile to be compliant with the Federal Information Processing Standard (FIPS)",
"win10WiredGuest": "Guest",
"win10WiredMachine": "Machine",
"win10WiredMachineOrUser": "User or machine",
"win10WiredMaximumAuthenticationFailuresDescription": "Enter the maximum number of authentication failures for this set of credentials. Not specifying a value results in 1 attempt being used.",
"win10WiredMaximumAuthenticationFailuresName": "Maximum authentication failures",
"win10WiredMaximumEAPOLStartMessagesDescription": "Choose a number of EAPOL-Start messages between 1 and 100. Not specifying a value results in a maximum of 3 messages being sent.",
"win10WiredMaximumEAPOLStartMessagesName": "Maximum EAPOL-start",
"win10WiredNetworkAuthenticationBlockPeriodDescription": "Authentication block period in minutes. Used to specify the duration for which automatic authentication attempts will be blocked from occurring after a failed authentication attempt. Choose a value between 0 and 1440.",
"win10WiredNetworkAuthenticationBlockPeriodName": "Block period (minutes)",
"win10WiredNetworkAuthenticationModeName": "Authentication Mode",
"win10WiredNetworkDoNotEnforceName": "Do not enforce",
"win10WiredNetworkEnforce8021XDescription": "Specifies whether the automatic configuration service for wired networks requires the use of 802.1X for port authentication.",
"win10WiredNetworkEnforce8021XName": "802.1x",
"win10WiredNetworkEnforceName": "Enforce",
"win10WiredRememberCredentialsDescription": "Choose whether to cache users' credentials when they enter them the first time they connect to the wired network. Cached credentials are used for subsequent connections and the users don't need to re-enter them. Not configuring this setting is equivalent to setting it to yes.",
"win10WiredRememberCredentialsName": "Remember credentials at each logon",
"win10WiredStartPeriodDescription": "Number of seconds to wait before sending an EAPOL-Start message. Choose a value between 1 and 3600. Not specifying a value results in 5 seconds being used.",
"win10WiredStartPeriodName": "Start period",
"win10WiredUser": "User",
"win10appLockerApplicationControlAllowDescription": "These apps will be allowed to run",
"win10appLockerApplicationControlAllowName": "Enforce",
"win10appLockerApplicationControlAuditComponentsAndStoreAppsDescription": "\"Audit Only\" mode logs all events in local client event logs, but does not block any apps from running. Windows components and Microsoft Store apps will be logged as passing security requirements.",
"win10appLockerApplicationControlAuditComponentsAndStoreAppsName": "Not configured",
"win10appLockerApplicationControlAuditComponentsStoreAppsAndSmartlockerDescription": "\"Audit Only\" mode logs all events in local client event logs, but does not block any apps from running. Windows components, Microsoft store apps, and reputable apps as defined by the Intelligent Security Graph will be logged as passing security requirements.",
"win10appLockerApplicationControlAuditComponentsStoreAppsAndSmartlockerName": "Enable",
"win10appLockerApplicationControlAuditOnlyName": "Audit Only",
"win10appLockerApplicationControlEnforceComponentsAndStoreAppsDescription": "Only Windows components and Microsoft store apps will be allowed to run.",
"win10appLockerApplicationControlEnforceComponentsAndStoreAppsName": "Not configured",
"win10appLockerApplicationControlEnforceComponentsStoreAppsAndSmartlockerDescription": "Only Windows components, Microsoft store apps, and reputable apps as defined by the Intelligent Security Graph will be allowed to run.",
"win10appLockerApplicationControlEnforceComponentsStoreAppsAndSmartlockerName": "Enable",
"win10appLockerApplicationControlNotConfiguredDescription": "No Enforcement Policy selected",
"win10appLockerApplicationControlNotConfiguredName": "Not Configured",
"win10deviceGuardCodeIntegrityPolicyDescription": "Custom rule for selecting which types of apps to allow on device",
"win32EdgeKioskIdleTimeoutMinutesDescription": "Specifies when Microsoft Edge browser should restart. Determined by the idle time in minutes since the user's last interaction. (0-1440)",
"win32EdgeKioskType": "Microsoft Edge kiosk mode type",
"win32EdgeKioskTypeDescription": "Select the Microsoft Edge kiosk mode type. <a href=\"https://go.microsoft.com/fwlink/?linkid=2153382\" target=\"_blank\">Learn More</a>",
"win32EdgeKioskUrl": "Edge Kiosk URL",
"win32EdgeKioskUrlDescription": "Default webpage that opens when Microsoft Edge browser opens and restarts.",
"winMobileActionCenterDescription": "Allow action center notifications to appear while device is locked.",
"winMobileActionCenterName": "Action center notifications (mobile only)",
"winMobileAllowCopyAndPasteName": "Copy and paste (mobile only)",
"winMobileAllowVoiceRecordingDescription": "Block voice recording on mobile devices",
"winMobileAllowVoiceRecordingName": "Voice recording (mobile only)",
"winMobileBlockScreenshotName": "Screen capture (mobile only)",
"winMobileCortanaName": "Cortana",
"windows10AppPackageFamilyNameExample": "e.g. Microsoft.SkypeApp_kzf8qxf38zg5c",
"windows10EducationNOption": "Windows 10/11 Education N edition",
"windows10EducationOption": "Windows 10/11 Education",
"windows10EndpointProtectionDeviceGuardLearnMore": "Learn more about Windows Defender Application Control.",
"windows10EnterpriseNOption": "Windows 10/11 Enterprise N edition",
"windows10EnterpriseOption": "Windows 10/11 Enterprise",
"windows10HoloOption": "Windows 10 Holographic",
"windows10HolographicEnterpriseOption": "Windows 10 Holographic for Business",
"windows10MobileEnterpriseOption": "Windows 10 Mobile Enterprise",
"windows10MobileOption": "Windows 10 Mobile",
"windows10ProfessionalEducationNOption": "Windows 10/11 Pro Education N edition",
"windows10ProfessionalEducationOption": "Windows 10/11 Pro Education",
"windows10ProfessionalNOption": "Windows 10/11 Pro N edition",
"windows10ProfessionalOption": "Windows 10/11 Pro",
"windows10ProfessionalWorkstationNOption": "Windows 10/11 Pro for Workstations N edition",
"windows10ProfessionalWorkstationOption": "Windows 10/11 Pro for Workstations",
"windows11CloudEditionNOption": "Windows 11 SE N",
"windows11CloudEditionOption": "Windows 11 SE",
"windows11EULA": "By selecting this option you are agreeing that when applying this operating system to a device either (1) the applicable Windows license was purchased though volume licensing, or (2) that you are authorized to bind your organization and are accepting on its behalf the relevant Microsoft Software License Terms to be found here <a>{0}</a>.",
"windowsAppNonComplianceTypeDescription": "We recommend asking your users to accept a Terms of Use, to acknowledge that certain apps will be blocked from installation. Use the blocked apps list to specify the Windows Phone apps not managed by Intune that users cannot install. For the allowed apps list, all apps, including the company portal and any deployed apps must be added to the list using the app store URL format",
"windowsAppUrlExample": "e.g. https://www.microsoft.com/en-us/store/apps/remote-desktop/9wzdncrfj3ps",
"windowsAppUrlHelp": "Enter the Microsoft Store URL of the app you want. For example, to specify the Microsoft Remote Desktop app for Windows Phone, enter https://www.microsoft.com/en-us/store/apps/remote-desktop/9wzdncrfj3ps. To find the URL of an app, use a search engine to locate the store page. For example, to find the Remote Desktop app, you could search Microsoft Remote Desktop Microsoft Store.",
"windowsCompliantAppsOption": "Allow devices to install only the listed apps.",
"windowsDefenderFirewallDescription": "If this setting is not enabled, no network traffic will be blocked regardless of other policy settings.",
"windowsDriversDescription": "Allow or block driver updates via Windows Update.",
"windowsDriversName": "Windows drivers",
"windowsEditionUpgradeNotConfigured": "Not Configured",
"windowsInsiderBuildFastOption": "Dev Channel",
"windowsInsiderBuildReleaseOption": "Windows Insider - Release Preview",
"windowsInsiderBuildSlowOption": "Beta Channel",
"windowsNonCompliantAppsOption": "Block devices from opening the listed, unmanaged, apps.",
"windowsPasswordRequiredTypeDescription": "Controls number of complex character sets required in password. <a href=\"https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-devicelock#devicelock-mindevicepasswordcomplexcharacters\" target=\"_blank\">Learn More</a>",
"windowsPasswordRequiredTypeName": "Password complexity",
"windowsPlatformBinaryTableName": "Windows Platform Binary Table",
"windowsSpotlightDescription": "Allows IT admins to turn off all Windows Spotlight Features - Window spotlight on lock screen, Windows Tips, Microsoft consumer features and other related features.",
"windowsSpotlightInActionCenterDescription": "Block spotlight suggestions from Microsoft that introduce new or updated features",
"windowsSpotlightInActionCenterName": "Windows Spotlight in action center",
"windowsSpotlightName": "Windows Spotlight",
"windowsSpotlightOnLockScreenDescription": "Block Windows Spotlight on lock screen",
"windowsSpotlightOnLockScreenName": "Windows Spotlight on lock screen",
"windowsSpotlightPersonalizationDescription": "Block Windows Spotlight personalization based on device usage",
"windowsSpotlightPersonalizationName": "Windows Spotlight personalization",
"windowsTipsDescription": "Allows IT admins to turn off the popup of Windows Tips.",
"windowsTipsName": "Windows Tips",
"windowsWelcomeExperienceDescription": "Block Windows welcome experience that introduces new or updated features",
"windowsWelcomeExperienceName": "Windows welcome experience",
"wipDescription": "Windows Information Protection (WIP) domain for this connection",
"wipName": "WIP domain for this connection",
"wipOption": "Associate a WIP with this connection",
"wirelessOption": "Wireless",
"with": "Choose whether to connect",
"withDescription": "If there isn't an existing VPN connection, then for each connection attempt to a domain you enter, decide if users should connect to the VPN or never connect to the VPN. The action you select happens for every connection attempt.",
"workFoldersURLDescription": "Use Work Folders to make your work files available on all devices you use, even when offline.",
"workFoldersURLName": "Work folders URL",
"workProfileAllowAppInstallsFromUnknownSourcesInWorkProfileName": "Allow app installations from unknown sources in the work profile",
"workProfileAllowWidgetsDescription": "Allows or disallows users to access widgets exposed by apps in the work profile",
"workProfileAllowWidgetsName": "Allow widgets from work profile apps",
"workProfileAndroidEnrollmentTypesHeaderDescription": "These settings only work for corporate-owned work profile devices.",
"workProfileAndroidEnrollmentTypesHeaderName": "Corporate-owned work profile devices",
"workProfileBlockContactSharingViaBluetoothDescription": "Block prevents sharing work profile contacts with paired Bluetooth devices, such as cars or mobile devices.",
"workProfileBlockContactSharingViaBluetoothName": "Contact sharing via Bluetooth (work profile-level)",
"workProfileBlockFaceUnlockDescription": "Block using facial recognition to unlock the work profile.",
"workProfileBlockFaceUnlockName": "Face unlock",
"workProfileBlockFingerprintUnlockDescription": "Block using fingerprint to unlock the work profile.",
"workProfileBlockFingerprintUnlockName": "Fingerprint unlock",
"workProfileBlockIrisUnlockDescription": "Block using iris scanning to unlock the work profile.",
"workProfileBlockIrisUnlockName": "Iris unlock",
"workProfileBlockPersonalAppInstallsFromUnknownSourcesName": "Prevent app installations from unknown sources in the personal profile",
"workProfileBlockPersonalAppInstallsFromUnknownSourcesNameDescription": "Restrict the ability for end users to install apps from unknown sources in the personal profile of devices. This affects the personal profile only. Installation from unknown sources is always prevented in the work profile regardless of this setting.",
"workProfileBlockSmartLockDescription": "Block Smart Lock or other trust agents from adjusting work profile lock settings.",
"workProfileBlockSmartLockName": "Smart Lock and other trust agents",
"workProfileGeneralSettingsHeader": "General Settings",
"workProfileHeader": "Configure settings that specifically apply to the Android work profile on this device.",
"workProfileHeaderDescription": "If you're configuring corporate-owned work profile devices, some of these settings will only take effect at the work profile-level. This is marked in the setting name. For all other devices, these settings will take effect at the device-level.",
"workProfileLearnMoreText": "Learn More",
"workProfileMinimumPasswordLengthDescription": "Minimum number of digits or characters in password.",
"workProfileMinimumPasswordLengthEmptyValueKey": "Enter a number (4-16)",
"workProfileMinimumPasswordLengthEmptyValueKeyRange2": "Enter a number (4-16)",
"workProfileMinimumPasswordLengthName": "Minimum password length",
"workProfileMinutesOfInactivityBeforeScreenTurnsOffDescription": "Maximum minutes of inactivity until the work profile locks. 15 minutes recommended. Ignored if new time is longer than what's currently set on device.",
"workProfileMinutesOfInactivityBeforeScreenTurnsOffName": "Maximum minutes of inactivity until work profile locks",
"workProfileNumberOfPreviousPasswordsToBlockDescription": "Number of new passwords that must be used until an old one can be reused.",
"workProfileNumberOfPreviousPasswordsToBlockEmptyValueKey": "Enter a number (1 - 24)",
"workProfileNumberOfPreviousPasswordsToBlockName": "Prevent reuse of previous passwords",
"workProfileNumberOfSignInFailuresBeforeWipeDescription": "Number of consecutive times an incorrect password can be entered before the work profile is removed and corporate data is wiped.",
"workProfileNumberOfSignInFailuresBeforeWipeEmptyValueKey": "Enter a number (4-11)",
"workProfileNumberOfSignInFailuresBeforeWipeName": "Number of sign-in failures before wiping the work profile",
"workProfilePasswordExpirationDaysReportingName": "Work Profile password: Number of days until password expires",
"workProfilePasswordExpirationInDaysDescription": "Number of days until work profile password must be changed.",
"workProfilePasswordExpirationInDaysEmptyValueKey": "Enter number of days (1-255)",
"workProfilePasswordExpirationInDaysEmptyValueOneYearKey": "Enter number of days (1 - 365)",
"workProfilePasswordExpirationInDaysName": "Password expiration (days)",
"workProfilePasswordMinimumLengthReportingName": "Work Profile password: Minimum password length",
"workProfilePasswordMinimumLetterCharactersReportingName": "Work Profile password: Number of characters required",
"workProfilePasswordMinimumLowerCaseCharactersReportingName": "Work Profile password: Number of lowercase characters required",
"workProfilePasswordMinimumNonLetterCharactersReportingName": "Work Profile password: Number of non-letter characters required",
"workProfilePasswordMinimumNumericCharactersReportingName": "Work Profile password: Number of numeric characters required",
"workProfilePasswordMinimumSymbolCharactersReportingName": "Work Profile password: Number of symbol characters required",
"workProfilePasswordMinimumUpperCaseCharactersReportingName": "Work Profile password: Number of uppercase characters required",
"workProfilePasswordPreviousPasswordBlockCountReportingName": "Work Profile password: Number of passwords required before user can reuse a password",
"workProfilePasswordRequiredTypeReportingName": "Work Profile password: Required password type",
"workProfilePasswordSettingsHeader": "Work Profile Password",
"workProfilePasswordSignInFailureCountBeforeFactoryResetReportingName": "Work Profile password: Number of sign-in failures before wiping device",
"workProfilePersonalUsagAndroidEnrollmentTypesHeaderDescription": "These settings work for corporate-owned work profile devices and only apply during personal usage.",
"workProfileRequirePasswordDescription": "Require a password to use work apps. This can be separate from the device password. Requires Android 7.0+ ",
"workProfileRequirePasswordName": "Require Work Profile Password",
"workProfileRequiredPasswordComplexityDescription": "Specify the required password complexity.",
"workProfileRequiredPasswordComplexityName": "Work Profile Password Complexity",
"workProfileRequiredPasswordTypeDescription": "Specify the type of password required.",
"workProfileRequiredPasswordTypeName": "Required password type",
"workspaceIDName": "Workspace ID",
"workspaceKeyName": "Workspace Key",
"wwanName": "WWAN",
"xboxServicesAccessoryManagementServiceStartupModeDesc": "This setting determines whether the Accessory Management Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesAccessoryManagementServiceStartupModeName": "Xbox Accessory Management Service",
"xboxServicesEnableXboxGameSaveTaskDesc": "This setting determines whether the Xbox Game Save Task is Enabled(1) or Disabled(0).",
"xboxServicesEnableXboxGameSaveTaskName": "Xbox Game Save Task",
"xboxServicesLiveAuthManagerServiceStartupModeDesc": "This setting determines whether the Live Auth Manager Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesLiveAuthManagerServiceStartupModeName": "Xbox Live Auth Manager Service",
"xboxServicesLiveGameSaveServiceStartupModeDesc": "This setting determines whether the Live Game Save Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesLiveGameSaveServiceStartupModeName": "Xbox Live Game Save Service",
"xboxServicesLiveNetworkingServiceStartupModeDesc": "This setting determines whether the Networking Service's start type is Automatic(2), Manual(3) or Disabled(4). Default: Manual.",
"xboxServicesLiveNetworkingServiceStartupModeName": "Xbox Live Networking Service",
"yahoo": "Yahoo",
"years": "Years",
"yes": "Yes",
"yesAllAppsName": "Yes, all apps",
"yesSpecificAppsName": "Yes, specific apps",
"zeroNumberOption": "0",
"zscalerCloudName": "Organization's cloud name",
"zscalerCloudNameDescription": "Enter the cloud name for your organization provided by Zscaler.",
"zscalerCloudNameError": "Must be single-word string with no special characters.",
"zscalerCloudNameExample": "zscalerone",
"zscalerCustomDataDescription": "Enter key and value pairs for the custom VPN attributes.",
"zscalerExcludeList": "Excluded URLs",
"zscalerExcludeListDescription": "The specified addresses will be accessible outside the Zscaler cloud when connected to the VPN. If you enable strict enforcement, you should include your Azure AD domain to ensure users maintain the ability to sign in and receive MDM policies.",
"zscalerOption": "Zscaler",
"zscalerStrictEnforcement": "Enable strict enforcement",
"zscalerStrictEnforcementDescription": "Prevent users from accessing network resources until successfully logged into the Zscaler app.",
"zscalerUserDomain": "Custom domain name",
"zscalerUserDomainDescription": "Enter a static domain to pre-populate the login field with in the Zscaler app. If this is left empty, the user's Azure Active Directory domain will be used instead.",
"zscalerUserDomainExample": "contoso.com",
"platformSupported": "Platform supported",
"aadDeviceId": "AAD Device ID",
"access": "Access",
"accessActions": "Access Actions",
"accessActionsGrid": "Access actions grid",
"accessActionsGridLinkText": "Learn more about conditional launch actions.",
"accessActionsGridText": "Set the sign-in security requirements for your access protection policy. Select a <b>Setting</b> and enter the <b>Value</b> that users must meet to sign in to your company app. Then select the <b>Action</b> you want to take if users do not meet your requirements. In some cases, multiple actions can be configured for a single setting.",
"accessRequirements": "Access requirements",
"action": "Action",
"add": "Add",
"addAppConfiguration": "Add App configuration",
"addApps": "Add apps",
"addCondition": "Add condition",
"addConfigCommandLabel": "Add Config",
"addPolicyBladeTitle": "Add a policy",
"addPolicyError": "Failed to add policy: {0}",
"addPolicyNotificationText": "Adding policy",
"addTargetedAppsErrorNotificationTitle": "Error adding one or more apps to policy",
"addUserGroupCommandText": "Select groups",
"addedApps": "Added apps",
"address": "Address",
"addressDesc": "Address for a proxy Tunnel traffic should be routed through",
"advancedSettings": "Advanced settings",
"allAppTypes": "All app types",
"allAppsOptionText": "All Apps",
"allAppsWithData": "All Apps with incoming org Data",
"allDestinationsOptionText": "All destinations",
"allSourcesOptionText": "All sources",
"allow": "Allow",
"allowOverrides": "Allow Overrides",
"allowSpecifiedBlock": "Allow specified (Block non-specified)",
"allowSpecifiedWipe": "Allow specified (Wipe non-specified)",
"allowedOptionText": "Allowed",
"android": "Android",
"androidAOSP": "Android (AOSP)",
"androidForWork": "Android Enterprise",
"androidPatchVersion": "AndroidPatchVersion",
"androidPlatformLabel": "Android",
"androidWorkProfile": "Android work profile devices",
"anyAppOptionText": "Any app",
"anyDestinationAnySourceOptionText": "Any destination and any source",
"anyDialerAppOptionText": "Any dialer app",
"anyPolicyManagedDialerAppOptionText": "Any policy-managed dialer app",
"appAdded": "App added",
"appBasedConditionalAccess": "App based conditional access",
"appColumnLabel": "App",
"appConditions": "App conditions",
"appConditionsComparison": "App conditions comparison",
"appConfigAppReport": "App configuration app report",
"appConfigInfo": "Intune SDK-enabled apps support configurations in key-value pairs. Consult the documentation for each app to learn more about which key-value configurations are supported.",
"appConfigReport": "App configuration report",
"appConfigStatus": "App Configuration Status",
"appConfigUserReport": "App configuration user report",
"appConfiguration": "App configuration",
"appConfigurationReport": "App configuration report",
"appGroupTooltip": "We'll continue to add managed apps to your policy as they become available in Intune. ",
"appGroupViewTooltip": "View a list of apps that will be targeted",
"appLockerFile": "AppLocker File",
"appManagement": "App Management",
"appName": "App name",
"appNameColumnLabel": "App",
"appPackageId": "App package id",
"appPoliciesBladeTitle": "App Protection policies",
"appPolicy": "App Policy",
"appProtectionAppReport": "App protection app report",
"appProtectionPolicy": "App protection policy",
"appProtectionReport": "App protection report",
"appProtectionSettings": "App Protection Settings",
"appProtectionStatus": "App Protection Status",
"appProtectionUserReport": "App protection user report",
"appRemoved": "{0} removed",
"appReport": "App report",
"appReporting": "App reporting",
"appTypes": "App types",
"appVersion": "App version",
"applicationInstanceId": "App Instance Id",
"appsCountSelectorDisplayTextPlural": "{0} apps selected",
"appsCountSelectorDisplayTextSingular": "{0} app selected",
"appsInAndroidWorkProfile": "Apps in Android Work Profile",
"appsOnAndroidEnterpriseDedicatedDevicesWithAzureAdSharedMode": "Apps on Android Enterprise dedicated devices with Azure AD shared mode",
"appsOnAndroidOpenSourceProjectUserAssociated": "Apps on AOSP user-associated devices",
"appsOnAndroidOpenSourceProjectUserless": "Apps on AOSP userless devices",
"appsOnIntuneManagedDevices": "Apps on Intune managed devices",
"appsOnUnmanagedDevices": "Apps on unmanaged devices",
"appsSelectorLabel": "Apps",
"areYouSureVerification": "Are you sure?",
"assignedUsers": "Assigned users",
"auditLogsReport": "Audit logs",
"baselineProtectionLevel": "95th percentile protection",
"basicDataProtectionGuidedString": "Basic data protection ensure users are required to utilize PIN or biometrics to access work or school account data, encrypts work or school account data, and enables administrators to perform selective data wipes, if necessary. For Android devices, basic data protection also ensures the compatibility of the device with Google's services and enables Google's Verify Apps scan.",
"basicIntegrity": "Basic integrity",
"basicIntegrityAndCertifiedDevices": "Basic integrity and certified devices",
"bioPinInactiveTimeout": "Inactivity timeout",
"bioPinInactiveTimeoutTooltip": "Override with PIN instead of biometric after (minutes)",
"block": "Block",
"blockAccess": "Block access",
"blockMinutes": "Block access (minutes)",
"blockOrgDataOptionText": "Block org Data",
"blockScreenCaptureLabel": "Block screen capture and Android Assistant",
"blockScreenCaptureLabelAndroid": "Block screen capture and Android Assistant (Android)",
"blockedOptionText": "Blocked",
"bundleOrPackageId": "Bundle or Package ID",
"cCPExceptionInputInvalid": "The input is not numeric.",
"cCPExceptionLabel": "Cut and copy character limit for any app",
"camera": "Camera",
"checkInCountColumnTitle": "CHECK-IN COUNT",
"checkedIn": "Checked in",
"checkedInAppNameColumnTitle": "APP",
"checkedInButNotSynced": "Checked in. On next sync, this app will receive {0}",
"clickHereToNavigateToTheNewIntuneAppProtection": "Click here to navigate to the new Intune App protection experience",
"clientAppPolicyDefault": "No policies",
"clientAppPolicyPlural": "{0} policies",
"clientAppPolicySingular": "{0} policy",
"closeText": "Close",
"columns": "Columns",
"columnsApplied": "{0} columns applied",
"comingSoon": "Coming soon",
"complianceGracePeriodExpirationDate": "Compliance grace period expiration date",
"complianceState": "Compliance State",
"compliant": "Compliant",
"conditionalAccessNoticeBladeCallToAction": "Learn more about where to modify and add new policies.",
"conditionalAccessNoticeBladeDescription": "App based conditional access is now a capability of Azure Active directory (Azure AD) that enables you to control how authorized users access your cloud and client apps. While the purpose is still the same, the release of the new Azure AD portal has introduced significant improvements to how app based conditional access works. The conditional access policies that appeared here should be configured in the Azure AD portal.",
"conditionalAccessReadOnlyInfoText": "This is a read-only view of your app based conditional access policies. To modify and add new policies, see <a href=\"{0}\" target=\"_blank\">here</a>.",
"conditionalEncryptionLabel": "Disable app encryption when device encryption is enabled",
"conditionalEncryptionLabelAndroid": "Disable app encryption when device encryption is enabled (Android)",
"conditionalLaunch": "Conditional launch",
"configuration": "Configuration",
"configurationLowerCase": "configuration",
"configurations": "Configurations",
"configureSettingBeforeConfiguringThisSetting": "Please configure '{0}' before saving this setting.",
"configureSettings": "Default settings configured",
"configured": "Configured",
"continueExportAppProtectionReport": "Page {0} of App protection report: iOS, Android",
"createBladeDescription1": "Give your employees access to company apps, data, and resources from just about anywhere and almost any device while keeping company data more secure.",
"createBladeDescription2": "The subscription will provide you with access to the {0} and the {1} feature.",
"createBladeDocumentationLabel": "Documentation",
"createBladeDocumentationLinkText": "mobile application management",
"createBladePricingLabel": "Pricing details",
"createBladeServiceOverviewLabel": "Service overview",
"createBladeServiceOverviewLinkText": "Intune admin console",
"createBladeSolutionsLabel": "Solutions you can deliver",
"createBladeTrustCenterLabel": "Trust Center",
"createBladeUsefulLinksLabel": "Useful Links",
"createPolicy": "Create policy",
"createWipeRequestInstruction": "Select a user and one or more devices to selectively remove company app data.",
"currentValue": "Current value",
"customApps": "Custom apps",
"customBrowserDisplayNameLabelAndroid": "Unmanaged Browser Name (Android)",
"customBrowserPackageIdLabelAndroid": "Unmanaged Browser ID (Android)",
"customBrowserProtocolLabelIos": "Unmanaged browser protocol (iOS)",
"customDialerAppDisplayNameLabelAndroid": "Dialer App Name (Android)",
"customDialerAppOptionText": "A specific dialer app",
"customDialerAppPackageIdLabelAndroid": "Dialer App Package ID (Android)",
"customDialerAppProtocolLabelIos": "Dialer App URL Scheme (iOS)",
"dashboardPartDeprecated": "This part has been deprecated and will no longer be maintained. Please unpin it.",
"dataBackupDisabledLabel": "Prevent backups",
"dataBackupDisabledLabelMac": "Prevent iTunes and iCloud backups",
"dataProtection": "Data protection",
"dataTransfer": "<b>Data Transfer</b>",
"defaultEdgeAppConfig": "Default to Edge app configuration",
"defaultValueAdvancedSettingsSelectorDisplayText": "Configure advanced settings",
"defaultValueAppsSelectorDisplayText": "Select required apps",
"defaultValueDeviceSelectorDisplayText": "Select the device",
"defaultValueSettingsSelectorDisplayText": "Configure required settings",
"defaultValueUserSelectorDisplayText": "Select the user",
"defineConfiguration": "Define configuration",
"delete": "Delete",
"deleteAppConfirmationDialogTitle": "Delete \"{0}\"?",
"deleteDataRecoveryCert": "Delete uploaded certificate",
"deletePendingWipeContextMenuText": "Delete wipe request",
"deletePendingWipeDialogText": "Delete {0}'s wipe request for {1}?",
"deletePendingWipeInProgress": "Deleting wipe request",
"deletePendingWipeRequestError": "An error occurred while trying to delete the wipe request you selected",
"deletePolicyConfirmationDialogTitle": "Delete \"{0}\"?",
"deletePolicyError": "Failed to delete policy: {0}",
"deleteUserGroupCommandText": "Delete",
"deliveredPolicies": "Delivered Policies",
"deny": "Deny",
"descriptionTextBoxLabel": "Description",
"desktop": "Desktop",
"details": "Details",
"deviceConditions": "Device conditions",
"deviceConditionsComparison": "Device conditions comparison",
"deviceConditionsInfoParagraph1": "Configure the following conditional launch settings for device based conditions through your app protection policy.",
"deviceConditionsInfoParagraph2": "Similar device based settings can be configured for enrolled devices.",
"deviceConditionsInfoParagraph2LinkText": "Learn more about configuring device compliance settings for enrolled devices.",
"deviceId": "Device ID",
"deviceLockComplexityValidationFailureNotes": "<p><b>Notes:</b></p>\n<ul type=\"disc\">\n <li>The device lock can require a password complexity of: LOW, MEDIUM, or HIGH targeted toAndroid 11+. For devices operating on Android 10 and earlier, setting a complexity value of Low/Medium/High willdefault to the expected behavior for \"Low Complexity\".</li>\n <li>The password definitions below are subject to change. Please refer to <a href='https://developer.android.com/reference/android/app/admin/DevicePolicyManager#getPasswordComplexity%28%29'>DevicePolicyManager|Android Developers</a> for the most updated definitions of the different password complexity levels.</li>\n</ul>\n\n<p><b>Low</b></p>\n<ul type=\"disc\">\n <li>Password can be a pattern or PIN with repeating (4444) or ordered (1234, 4321, 2468) sequences.</li>\n</ul>\n\n<p><b>Medium</b></p>\n<ul type=\"disc\">\n <li>PIN with no repeating (4444) or ordered (1234, 4321, 2468) sequences with a minimum length of at least 4 characters</li>\n <li>Alphabetic passwords with a minimum length of at least 4 characters</li>\n <li>Alphanumeric passwords with a minimum length of at least 4 characters</li>\n</ul>\n\n<p><b>High</b></p>\n<ul type=\"disc\">\n <li>PIN with no repeating (4444) or ordered (1234, 4321, 2468) sequences with a minimum length of at least 8 characters</li>\n <li>Alphabetic passwords with a minimum length of at least 6 characters</li>\n <li>Alphanumeric passwords with a minimum length of at least 6 characters</li>\n</ul>\n<p></p>",
"deviceLockedOpenFilesOptionsText": "When device is locked and there are open files",
"deviceLockedOptionText": "When device is locked",
"deviceManufacturer": "Device manufacturer",
"deviceManufacturers": "Device manufacturer(s)",
"deviceModel": "Device model",
"deviceModels": "Device model(s)",
"deviceName": "Device name",
"deviceRestartOptionsText": "After device restart",
"deviceSelectorLabel": "Device",
"deviceSettingsOptionsText": "Use device settings",
"deviceType": "Device type",
"deviceTypes": "Device types",
"devices": "devices",
"devicesCountSelectorDisplayText": "{0} devices selected",
"diagnoseAndSolveProblems": "Diagnose and solve problems",
"dirtySettingsSelectorDisplayText": "Review configured settings",
"disable": "Disable",
"discardChangesCommandText": "Discard",
"displayName": "Display Name",
"downloadReport": "Download report",
"downloadingReport": "Downloading report",
"edgeGSAssignment": "Choose the user groups that you want to include to have Edge mobile installed. Edge will be installed on all iOS and Android devices enrolled by these users.",
"edgeGSIntroBenefitHTML": "<p>Get the Microsoft Edge app for your users on iOS or Android so they can browse seamlessly across their corporate devices! Edge lets users cut through the clutter of the web with built-in features that help them consolidate, arrange and manage work content. Users of iOS and Android devices who sign-in with their corporate Azure AD accounts in the Edge application will find their browser pre-loaded with workplace Favorites and website filters you define.</p><p>If you have blocked users from enrolling either iOS or Android devices, this scenario will not enable enrollment, and the users will need to install Edge for themselves.</p>",
"edgeGSIntroPrereqHTML": "<p>We'll ask you about the workplace favorites your users need, and the filters you require for web browsing. Make sure you complete the following tasks before you continue:</p>\n<li>Add users to <a href='https://go.microsoft.com/fwlink/?linkid=2102458'>Azure AD groups</a></li>\n<li>Enroll iOS or Android devices in Intune. <a href='https://go.microsoft.com/fwlink/?linkid=2102547'>Learn more</a></li>\n<li>Gather list of workplace favorites to add in Edge.</li>\n<li>Gather list of website filters to enforce in Edge.</li>",
"edgeGSName": "Edge for iOS & Android",
"edgeGSSyncInfo": "Depending on device connectivity and sync times, it may take up to 24 hours for this deployment to reach devices.",
"edit": "Edit",
"editPolicy": "Edit policy",
"email": "Email",
"emptyAppsMessage": "No apps have been added",
"emptyDevicesListMessage": "No devices found for this user.",
"emptyFlaggedErrorsMessage": "There are no errors flagged for this user.",
"emptyFlaggedUsersMessage": "No users are flagged.",
"emptyGridRowAriaLabel": "Entering values in this row will create a new item in the grid",
"emptyPoliciesMessage": "You have no policies.",
"emptyTargetedAppsMessage": "You have no apps.",
"emptyUserGroupsMessage": "No groups are currently assigned",
"emptyUsersWithPotentiallyHarmfulAppsReport": "No users with potentially harmful apps",
"emptyWipeRequestsMessage": "No wipe requests have been issued.",
"enable": "Enable",
"enableOpenInExperienceSettingName": "Filter Open-In/Share Dialog to only policy managed apps?",
"encryption": "<b>Encryption</b>",
"encryptionLabel": "Encrypt app data",
"encryptionLabelAndroid": "Encrypt app data (Android)",
"encryptionLabelIos": "Encrypt app data (iOS)",
"encryptionLabelMac": "Encrypt app data (Mac)",
"enhancedDataProtectionGuidedString": "Enhanced data protection expand upon the settings defined in basic data protection by ensuring work or school account data cannot be transferred to personal accounts or personal apps and requiring a minimum OS version.",
"enrollment": "Enrollment",
"errorAccessDenied": "{0} - Access denied",
"errorCode": "Error code",
"errorDescription": "Error description",
"errorDownloadingReportPleaseTryAgain": "Error downloading report. Please try again.",
"errorRetrievingPotentiallyHarmfulAppsReport": "Error retrieving potentially harmful apps report",
"exclude": "Exclude",
"exemptProtocolInfoText": "Apps in this list will be exempt from the policy and will be able to receive data from managed apps.",
"exemptUniversalLink": "Exempt universal link",
"export": "Export",
"exportAppConfigReport": "App configuration report",
"exportAppProtectionReport": "App protection report: iOS, Android, Mac",
"exportAppProtectionReportNoMac": "App protection report: iOS, Android",
"exportMdmWindowsProtectionReport": "App protection report: WIP via MDM",
"exportWindowsProtectionReport": "App protection report: WIP without enrollment",
"extensionName": "Microsoft_Intune",
"failure": "Failure",
"file": "File",
"filterByDeviceNameOrType": "Filter by device name or device type",
"filterByNamePlaceHolder": "Filter by app name or device name",
"filterByPlaceholderUsersWithPotentiallyHarmfulAppsReport": "Filter by user, app package ID, email, or device name",
"filterByPolicyName": "Search by policy",
"flaggedErrorAppNameColumnTitle": "APP",
"flaggedErrorBootloaderUnlockedText": "Unlocked bootloader",
"flaggedErrorDeviceNameColumnTitle": "DEVICE NAME",
"flaggedErrorFactoryRomModifiedText": "Factory ROM modified",
"flaggedErrorPlatformColumnTitle": "PLATFORM",
"flaggedErrorRootedDeviceText": "Rooted device detected",
"flaggedErrorTimeStampColumnTitle": "TIME",
"flaggedErrorTypeColumnTitle": "ERROR",
"flaggedErrorUnknownErrorText": "Unknown error",
"flaggedUserBladeTitle": "Flagged users",
"flaggedUserDisplayNameColumnLabel": "USER",
"flaggedUserErrorCountColumnLabel": "ERRORS",
"flaggedUserFilterPlaceholderText": "Search by user",
"flaggedUsersSummaryPartLabel": "Users",
"flaggedUsersSummaryPartTitle": "Flagged users",
"functionality": "<b>Functionality</b>",
"gSAppPickerDescription": "Select the policy-managed apps that you want to include. Then configure the requirements for accessing and sharing corporate files and emails in these apps. By default, user can save data to your organization's OneDrive and SharePoint accounts.",
"gSAssignmentText": "Choose the user groups that you want to include to ensure that they have access to your corporate data. App protection is assigned to users, and not devices, so your corporate data will be secure regardless of the device used and its enrollment status.",
"gSEdgeAndroidApp": "Require Install for Edge Android",
"gSEdgeBasicNameText": "Enter a name and description for your new Edge policies. These polices can be referenced later if you need to change the assignments and configurations.",
"gSEdgeCreateAndroidApp": "Create and deploy Edge Android app",
"gSEdgeCreatePolicyTitle": "Edge for iOS & Android app configuration",
"gSEdgeCreateiOSApp": "Create and deploy Edge iOS app",
"gSEdgeTitle": "Deploy Microsoft Edge for mobile (preview)",
"gSEdgeiOSApp": "Require Install for Edge iOS",
"generalBladeTitle": "General",
"genericError": "Something went wrong!",
"gracePeriodToBlockAppsDuringOffClockHours": "User Clock Status grace period",
"gridLoadingText": "Loading...",
"groupNotFound": "Group not found",
"guidedAndroidLabel": "Android app protection",
"guidedCALabel": "Conditional Access for non-managed devices",
"guidedCopyControlLabel": "Copy data to unmanaged apps",
"guidedManagedBrowserControlLabel": "Open policy-managed app links in unmanaged browsers",
"guidedScenarioBenifitText": "Prevent data in Office mobile apps from being shared or leaked to unmanaged apps on iOS and Android devices. In this scenario, youll apply data protection settings to your organizations managed mobile apps.",
"guidedScenarioBenifitText2": "Estimated time to complete: 5 min",
"guidedString1": "Configure the requirements for accessing work or school data in these apps. You can enable one of three options for data protection:",
"guidedString2": "That's it! Let's review your choices before deploying.",
"guidedString3": "Enter a name and description for your new app protection and Conditional Access policies. These polices can be referenced later if you need to add or remove users from protection.",
"guidedString4": "Prevent data from being shared or leaked outside of your organization. In this scenario, youll block users from copying and pasting data between managed Office apps and non-managed apps on iOS and Android devices.",
"guidedString5": "Estimated time to complete: 15 min",
"guidedString6": "For more information on the settings defined in each level, see <a href = \"https://go.microsoft.com/fwlink/?linkid=2131582 \">Data protection framework with app protection policies.</a>",
"guidedStringBasicsWithoutCA": "These details will make it easy to find your policies later if you need to add or remove users from protection.",
"guidedTemplate1": "<p><a data-bind=\"fxclick: onClickFindApp\">I can't find the app I need</a></p><p><a data-bind=\"fxclick: onClickLob\">I need to add my own line-of-business app</a></p>",
"guidedTemplate2": "Well ask you which protection level you would like to deploy to your users. For more information, see <a href = \"https://go.microsoft.com/fwlink/?linkid=2131582 \">Data protection framework with app protection policies. </a>",
"guidediOSLabel": "iOS app protection",
"hardwareBackedKey": "Hardware-backed key",
"healthCheck": "Health Checks",
"helpAndSupport": "Help and support",
"hideOverrides": "Hide Overrides",
"highDataProtectionGuidedString": "High data protection expand upon the settings defined in enhanced data protection by introducing more complex access requirements settings (e.g., disables simple PIN), data protection settings (for example, disabling third-party keyboards).",
"iOSAppEncryptionStatus": "iOS device independent encryption is enabled for compatible applications. The App protection policy setting \"Encrypt Org Data\" must be configured to \"Require\" to enforce encryption.",
"iOSPlatformLabel": "iOS/iPadOS",
"importedApps": "Imported apps",
"include": "Include",
"includedPolicyManagedApps": "Included policy-managed apps",
"instanceDisplayName": "Instance display name",
"introduction": "Introduction",
"intuneAppProtection": "Intune App Protection",
"intuneAppProtectionHasMergedIntoMobileApps": "Intune App Protection has merged into the Intune mobile apps experience",
"intuneAppProtectionLegacy": "Intune App Protection (Legacy)",
"intuneManagedDevices": "Intune managed devices",
"invalidBundleId": "Valid characters are: alphanumeric, '-' and '.'",
"invalidPackageId": "Valid characters are: alphanumeric, '_' and '.'",
"invalidTokenUsageError": "Invalid token",
"ios": "iOS/iPadOS",
"iosAndroidMacPlatformLabel": "iOS, Android, Mac",
"iosAndroidPlatformLabel": "iOS, Android",
"isMamEnabled": "Is MAM enabled?",
"itemsCount": "{0} items",
"jailbrokenRootedDevices": "Jailbroken/rooted devices",
"lastModifiedDate": "Last Modified Date",
"lastReportedDate": "Last reported date",
"lastSync": "Last sync",
"lastSyncGmt": "Last sync (GMT)",
"learnMoreAboutMamAndWipHere": "Learn more about MAM and WIP here.",
"learnMoreAboutWip": "Learn more about app protection policies in Windows 10 and later",
"learnMoreAboutWipHere": "Learn more about WIP here",
"legacy": "Legacy",
"loadMore": "Load more",
"localStorage": "Local Storage",
"mAMShortTitle": "Intune MAM",
"mAMSummaryBladeTitle": "App protection status",
"macOS": "MacOS",
"macPlatformLabel": "Mac",
"mamGSTitle": "Protect Microsoft Office mobile apps (preview)",
"manage": "Manage",
"manageUsers": "Manage Users",
"managedAppCRUDpermission": "Managed Apps Create,Read,Assign,Delete Permission",
"managedAppsOptionText": "Managed apps",
"managedAppsWithOSSharing": "Policy managed apps with OS sharing",
"managedAppsWithOpenInSharing": "Policy managed apps with Open-In/Share filtering",
"managedUniversalLinks": "Managed universal links",
"managementType": "Management type",
"maxMinValidation": "Maximum OS version has to be lower than the Minimum OS version, when the action is the same.",
"maxOsVersion": "Max OS version",
"maxPinAttempts": "Max PIN attempts",
"maximumAllowedDeviceThreatLevel": "Max allowed device threat level",
"maximumCompanyPortalVersionAge": "Max Company Portal version age (days)",
"mdm": "MDM",
"mdmDeviceId": "MDM Device ID",
"mdmWipInvalidVersionSettings": "One or more apps have invalid minimum/maximum version definitions.<br /> <br />Windows Information Protection With Enrollment policies support specifying only one of the minimum or maximum versions, unless both versions are specified as being equivalent. When only the minimum version is specified, the rule is set for greater than or equal to minimum version. Similarly, when only the maximum version is specified, the rule is set for lesser that equal to the maximum version.",
"mdmWipReport": "MDM Windows Information Protection Report",
"microsoftDefenderForEndpoint": "Microsoft Defender For Endpoint",
"microsoftEdgeOptionText": "Microsoft Edge",
"minAppVersion": "Min app version",
"minMaxValidation": "Minimum OS version has to be lower than the Maximum OS version, when the action is the same.",
"minOsVersion": "Min OS version",
"minPatchVersion": "Min patch version",
"minSdkVersion": "Min SDK version",
"minimumCompanyPortalVersion": "Min Company Portal version",
"minimumDeviceSelection": "At least 1 device has to be selected",
"mobileAppCRUDpermission": "Mobile apps read, create, and assign permission",
"mobileThreatDefenseNonMicrosoft": "Mobile Threat Defense (Non-Microsoft)",
"monitor": "Monitor",
"moreApps": "More apps",
"moreAppsTextBoxTooltip": "Add line-of-business apps here if you do not have access to the full Intune portal.",
"mtdConnectorInfoBox1": "<b>Important!</b> Make sure your Mobile Threat Defense (MTD) connector is set up in order to properly secure your organizations data based on threat evaluations from the connected Mobile Threat Defense services.",
"mtdConnectorInfoBox2": "Learn more about Mobile Threat Defense for unenrolled devices.",
"mtdConnectorInfoBox3": "If your tenant has a connection set up with both Microsoft Defender for Endpoint and a MTD service (non-Microsoft) and do not configure a primary MTD service or there is a conflict when targeting a user, the default will be Microsoft Defender for Endpoint.",
"name": "Name",
"networkBoundariesInfoBoxText": "Add /*AppCompat*/ to your list of cloud resources to enable TLS connections by personal apps that connect directly to a cloud resource through an IP address.",
"networkBoundariesInfoParagraph1": "Choose where protected apps can access enterprise data on your network.",
"networkBoundariesInfoParagraph2": "There are no default locations included with WIP, you must add each of your network locations. This area applies to any network endpoint device that gets an IP address in your enterprises range and is also bound to one of your enterprise domains, including SMB shares. Local file system locations should just maintain encryption (for example, on local NTFS, FAT, ExFAT).",
"networkPerimeter": "Network perimeter",
"never": "Never",
"newWipeRequestBladeTitle": "Create wipe request",
"newWipeRequestCommandText": "Create wipe request",
"newWipeRequestNotificationText": "Sending wipe request",
"noAppCheckins": "No app check-ins to show",
"noAppsDefinedForPolicyText": "No apps are defined for this policy.",
"noAssignments": "No Assignments",
"noConfigSelection": "Select a platform and app",
"noConfiguredUsers": "No configured users",
"noDestinationNoSourceOptionText": "No destination or source",
"noDestinationsOptionText": "No destinations",
"noEmailToDisplay": "No email address available",
"noOptionText": "No",
"noPermissionPropertyLabel": "Already have a subscription?",
"noPermissionPropertyLinkText": "You might need permission",
"noPermissionsToPerfomAction": "You don't have the required permissions to perform this action.",
"noPolicy": "No policy",
"noProtectedUsers": "No protected users",
"noSelection": "Select a platform, app and protection status",
"noSourcesOptionText": "No sources",
"noSubscriptionPropertyLabel": "You may need a subscription",
"noSubscriptionPropertyLinkText": "Try Microsoft Intune now",
"noUnprotectedUsers": "No unprotected users",
"noUserSelected": "No user selected",
"noneDialerAppOptionText": "None, do not transfer this data between apps",
"noneOptionText": "None",
"notAvailable": "Not Available",
"notCheckedIn": "Not checked in",
"notCheckedInButNotSynced": "Not checked in. On next sync, this app will receive one or more of policies: {0} based on the management level",
"notCompliant": "Not Compliant",
"notProtected": "Not Protected",
"notRequired": "Not required",
"notice": "Notice",
"obfuscatedOptionText": "Obfuscated",
"off": "Off",
"offlineGracePeriod": "Offline grace period",
"ok": "OK",
"on": "On",
"onlineButUnableToCheckin": "Disabled account",
"orgPermission": "Organization read, update permission",
"override": "Override",
"overview": "Overview",
"packageId": "Package ID",
"pendingDeleteContentStateText": "Deleting...",
"photoLibrary": "Photo Library",
"pinCharSettingTooltip": "A numeric PIN only allows numeric characters.\n\nA passcode requires all of the following: Alphanumeric characters and allowed symbols.",
"pinToDashboard": "Dummy string, don't translate",
"platformColumnLabel": "Platform",
"platformDropDownLabel": "Platform",
"platformVersion": "Platform version",
"pleaseFixErrors": "Please fix the errors in the sections below!",
"pleaseSelectAtLeastOneFileError": "Please select at least one file before continuing",
"policies": "Policies",
"policyAddErrorNotificationTitle": "Error creating policy {0}",
"policyAppsTargetedColumnLabel": "Apps",
"policyAppsTargetedTitle": "Targeted apps",
"policyDeleteCommandText": "Delete policy",
"policyDeleteErrorNotificationTitle": "Error deleting policy",
"policyId": "Policy ID",
"policyInstanceBladeSubtitle": "CLIENT APP POLICY",
"policyInstanceSettingsSearchBoxPlaceholderText": "Search to filter settings...",
"policyLastUpdatedColumnLabel": "Updated",
"policyManagedAppsOptionText": "Policy managed apps",
"policyManagedAppsWithPasteInOptionText": "Policy managed apps with paste in",
"policyManagedBrowserOptionText": "Intune Managed Browser",
"policyName": "Policy name",
"policyNameColumnLabel": "Policy",
"policyNameRequiredValidationMessage": "Please provide a name for the policy.",
"policyNameTextBoxLabel": "Name",
"policySaveErrorNotificationTitle": "Error saving policy {0}",
"policySaveErrorNotificationTitle2": "Error saving policy",
"policySet": "Policy Set",
"policySetsCRUDpermission": "Policy sets read, create, and assign permissions",
"policySettingsTitle": "Policy settings",
"policyTargetUsersMenuItemText": "Target User Groups",
"policyTargetingGlobal": "Global",
"policyToCreate": "Policy to create",
"policyType": "Policy type",
"policyUserGroupsSettingTitle": "Assignments",
"policyUsersTargetedColumnLabel": "Deployed",
"portNumber": "Port Number",
"portNumberDesc": "Port for the proxy specified in proxy address",
"prefix": "Prefix",
"primaryMtdService": "Primary MTD service",
"productName": "Product name",
"properties": "Properties",
"protected": "Protected",
"publicApps": "Public apps",
"publisher": "Publisher",
"quickStartBladeTitle": "Quick start",
"quickStartGetStartedSectionGeneralLinkText": "Mobile application management",
"quickStartGetStartedSectionMdmlessLinkText": "Protect app data on devices not enrolled in Intune",
"quickStartGetStartedSectionText": "Get up to speed on how to protect company data using mobile application management.",
"quickStartGetStartedSectionTitle": "Get started",
"quickStartGetSupportSectionCreateSupportRequestLinkText": "Create a support request",
"quickStartGetSupportSectionMoreAboutIntuneLinkText": "More about Intune support",
"quickStartGetSupportSectionServiceStatusLinkText": "View Intune service status",
"quickStartGetSupportSectionText": "Need help with Intune? The Office 365 admin center is your Intune billing and support center.",
"quickStartGetSupportSectionTitle": "Get support",
"quickStartLearnMoreSectionIntuneLinkText": "Microsoft Intune",
"quickStartLearnMoreSectionMonitoringLinkText": "Monitoring",
"quickStartLearnMoreSectionPolicyLinkText": "Create app policies",
"quickStartLearnMoreSectionPrivacyLinkText": "Privacy and Terms of Use",
"quickStartLearnMoreSectionWipeLinkText": "Selectively wipe company data",
"quickStartOverviewSectionText": "Use mobile application management to manage and protect app data on mobile devices. These can be BYOD devices that you dont manage, or devices enrolled in Intune or a third-party solution.",
"quickStartOverviewSectionTitle": "Overview",
"readOnlyPolicyWillBeDeprecated": "This policy is read-only and will be deprecated in the future. To edit the policy, you can re-create it by adding a new policy.",
"refresh": "Refresh",
"reloadingPolicies": "Reloading your policies",
"remove": "Remove",
"removeUserGroupsNotificationText": "Removing selected user groups",
"removed": "removed",
"reporting": "Reporting",
"reports": "Reports",
"require": "Require",
"requireDeviceLockComplexityOnApps": "Require device lock",
"requireThreatScanOnApps": "Require threat scan on apps",
"requiredField": "This field can't be empty",
"requiredSafetyNetEvaluationType": "Required SafetyNet evaluation type",
"requiredSettings": "Required settings",
"resetPin": "Reset PIN",
"resourceManagement": "Resource management",
"resourceSummaryPoliciesTitle": "App Policies",
"resourcesToBeCreated": "Resources to be created",
"restrictWebContentNo": "Any app",
"restrictWebContentOption2": "{0}: Allow web links in any app",
"rootCertificate": "Root Certificate",
"safetyNetDeviceAttestation": "SafetyNet device attestation",
"saveAppsNotificationText": "Saving selected apps",
"saveChangesCommandText": "Save",
"savePolicySettingsNotificationText": "Saving policy settings",
"saveReport": "Save Report",
"saveUserGroupsNotificationText": "Saving selected user groups",
"scopeTagDescription": "Use scope tags to filter policies with custom tags.",
"scopeTags": "Scope (Tags)",
"select": "Select",
"selectAppForAppsReport": "Select the app to generate the report for",
"selectApps": "Select apps",
"selectAppsBladeTitle": "Apps",
"selectAppsToTarget": "Select apps to target",
"selectAtLeastOneOption": "Select at least one option",
"selectDevicesBladeTitle": "Select Device",
"selectExcludeGroups": "Select groups to exclude",
"selectExemptApps": "Select apps to exempt",
"selectExemptUL": "Select universal links to exempt",
"selectIncludeGroups": "Select groups to include",
"selectManagedUL": "Select managed universal links",
"selectOnePlaceholder": "Select one",
"selectPlatform": "Select a platform",
"selectPlatformForApp": "Select app platform",
"selectPlatformForAppsReport": "Select the platform you want to see apps for",
"selectPolicySettingsBladeTitle": "Settings",
"selectType": "Select Type",
"selectUser": "Select user",
"selectUserProtectionStatus": "Select the user's protection status",
"selectUserValidation": "Select a user",
"selectUserWipeBladeTitle": "User",
"semicolonSeparatedListManufacturers": "In a semicolon-separated list, enter one or more device manufacturers.",
"semicolonSeparatedListModels": "In a semicolon-separated list, enter one or more device models.",
"setting": "Setting",
"settingName": "Setting name",
"settings": "Settings",
"settingsCatalog": "Settings catalog",
"settingsSelectorLabel": "Settings",
"silent": "Silent",
"specificUserIsLicensedIntune": "{0} is licensed for Microsoft Intune.",
"state": "State",
"status": "Status",
"store": "Store",
"success": "Success",
"successfully": "Successfully",
"summary": "Summary",
"summaryLensTitle": "Summary",
"summarySettingsPartRemoteRequestsGroupText": "Remote requests",
"summarySettingsPartWipeRequestsSelectorText": "Wipe requests",
"supportId": "Support ID: {0}",
"tacSettingNamePrefixError": "Names cannot be prefixed by '__'.",
"tacTokenReplacementInfoBox1": "Intune supports string values and token replacement values.",
"tacTokenReplacementInfoBox2": "Learn more about which tokens Intune supports",
"targetPolicyTo": "Target policy to",
"targetToAllAppTypes": "Target to all app types",
"targetedAndroidUserPartTitle": "User status for Android",
"targetedAppConfigTitle": "Targeted App Config",
"targetedAppGroup": "Targeted App Group",
"targetedMacUserPartTitle": "User status for Mac",
"targetedUserPartNoPolicy": "No policy",
"targetedUserPartTitle": "User status",
"targetedUserPartWithPolicy": "Managed by policy",
"targetediOSUserPartTitle": "User status for iOS",
"threatCategory": "Threat category",
"tileDeprecated": "This tile has been deprecated. Please remove this tile from your dashboard.",
"timeColumnLabel": "Time",
"timebombLabel": "Offline interval before app data is wiped (days)",
"timebombToolTip": "After the specified number of days without the device syncing to Intune, Windows will perform a selective wipe on the device, which will unenroll the apps for MAM enrollment and remove encrypted and protected corporate data. The default for this setting is 90 days. Setting this value to 0 will disable the setting.",
"topAndroidConfiguredApps": "Top Configured Android Apps Without Enrollment",
"topAndroidMamApps": "Top Protected Android Apps",
"topIosConfiguredApps": "Top Configured iOS Apps Without Enrollment",
"topIosMamApps": "Top Protected iOS Apps",
"topMacConfiguredApps": "Top Configured Mac Apps Without Enrollment",
"topMacMamApps": "Top Protected iMac Apps",
"type": "Type",
"uLExemptInfo": "Enter the unmanaged application universal link URL(s) that should open in the specified unmanaged application instead of the protected browser specified by the <b>Restrict web content transfer with other apps</b> setting. Please contact the application developer to determine the correct universal link format for each application.<br/>Caution: The target applications for these universal links are unmanaged and adding an exemption may result in data security leaks.",
"uLFormatError": "Incorrectly formatted universal link. Please contact your application developer for the correct format.",
"uLinfo": "Enter the managed application universal link URL(s) that should open in the specified managed application instead of the protected browser specified by the <b>Restrict web content transfer with other</b> apps setting. Please contact the application developer to determine the correct universal link format for each application.",
"unconfigured": "Unconfigured",
"unknown": "Unknown",
"unknownValuePlaceholder": "---",
"unmanagedBrowserOptionText": "Unmanaged browser",
"unmanagedDevices": "Unmanaged devices",
"unprotected": "Unprotected",
"userCheckInPerAppGridTitle": "User check-in per app",
"userColumnLabel": "User",
"userConfigReport": "User configuration report",
"userEmail": "User email",
"userGroupAddErrorNotificationTitle": "Error adding one or more user groups to policy",
"userGroupIsNotTargetedText": "No",
"userGroupIsTargetedText": "Yes",
"userGroupNameColumnLabel": "User group",
"userHasNotReceivedAppConfigurations": "The user has not received any app configurations",
"userId": "User ID",
"userImpact": "User impact",
"userImpactGSText": "Assigned iOS and Android users must enter a PIN each time they open an Office app. After 5 failed PIN attempts, users must reset their PIN. If you already require a device PIN, users won't be impacted.",
"userImpactTextDetails": "Assigned iOS and Android users must enter a PIN or use biometrics to access work or school content after a period of inactivity. After 5 failed PIN attempts, user must reset their PIN.<p>If advanced data protection controls are enforced, users will not be able to share work or school content with personal apps or personal accounts and will be required to use Microsoft Edge.</p>",
"userIsBlocked": "This user is blocked by user-level wipe.",
"userIsLicensedIntune": "User is licensed for Microsoft Intune.",
"userIsLicensedO365": "User is licensed for Office 365.",
"userIsNotLicensedIntune": "User is not licensed for Microsoft Intune. <a target=\"_blank\" href=\"{0}\">Click here to learn more.</a>",
"userIsNotLicensedIntuneNoLink": "User is not licensed for Microsoft Intune. Click here to learn more.",
"userIsNotLicensedO365": "User is not licensed for Office 365. <a target=\"_blank\" href=\"{0}\">Click here to learn more.</a>",
"userIsNotLicensedO365NoLink": "User is not licensed for Office 365. Click here to learn more.",
"userLevelWipe": "User-Level Wipe",
"userLicensingUnknownIntune": "Unable to determine if a Microsoft Intune license is assigned to this user. <a target=\"_blank\" href=\"{0}\">Click here to learn more.</a>",
"userLicensingUnknownIntuneNoLink": "Unable to determine if a Microsoft Intune license is assigned to this user. Click here to learn more.",
"userLicensingUnknownO365": "Unable to determine if an Office 365 license is assigned to this user. <a target=\"_blank\" href=\"{0}\">Click here to learn more.</a>",
"userLicensingUnknownO365NoLink": "Unable to determine if an Office 365 license is assigned to this user. Click here to learn more.",
"userName": "User name",
"userNotFound": "User not found",
"userNotLicensed": "This user is not licensed for Microsoft Intune.",
"userNotTargetedForAppPolicies": "This user is not targeted for any app policies",
"userPrincipalName": "User principal name",
"userReport": "User report",
"userSelectorDisplayText": "{0} selected",
"userSelectorLabel": "User",
"userStatusesTableGroupingDropdownLabel": "Table grouping",
"userStatusesTableGroupingDropdownTooltip": "Select a column to aggregate data by",
"users": "Users",
"usersCheckedInTitle": "Users checked in",
"usersThatIDontInclude": "What happens to the users that I don't include?",
"usersWithLicense": "Assigned and licensed",
"usersWithPotentiallyHarmfulApps": "Users with potentially harmful apps",
"usersWithoutLicense": "Assigned and not licensed",
"validationResult": "Validation result",
"valueColumnHeader": "Value",
"valueMustNotContainCharsError": "Value must not contain the following characters: {0}",
"versionValidationExample": "<p><b>Format:</b> [Major].[Minor] or [Major].[Minor].[Build].[Revision]</p><p><b>Example:</b> 1.5 or 1.5.50.101</p>",
"versionValidationWith2To4Segments": "<p><b>Format:</b> [Major].[Minor] or [Major].[Minor].[Build] or [Major].[Minor].[Build].[Revision]</p><p><b>Example:</b> 1.5 or 1.5.50 or 1.5.50.101</p>",
"versionValidationWithDateFormat": "Must be a valid date format (YYYY-MM-DD).",
"warn": "Warn",
"warning": "Warning",
"weMovedToANewLocation": "We moved to a new location",
"windows10AppProtectionPolicy": "Windows 10 and later app protection policy",
"windows10PlatformLabel": "Windows 10 and later",
"windows10x": "Windows 10X",
"windows8": "Windows 8.1 and later",
"windowsInformationProtectionPlatformLabel": "Windows Information Protection",
"windowsPhone": "Windows Phone 8.1",
"windowsPlatformLabel": "Windows",
"windowsProtectionReport": "Windows protection report",
"wipAddAppsSubtitle": "Add recommended Microsoft apps, or manually add store or desktop apps to be allowed in this policy.",
"wipAllowIndexingTitle": "Allow Windows Search Indexer to search encrypted items",
"wipAllowIndexingTooltip": "Allows or disallows the indexing of items. This switch is for the Windows Search Indexer, which controls whether it will index items that are encrypted, such as the Windows Information Protection (WIP) protected files.",
"wipAllowedAppsInfo": "These are the apps that must adhere to this policy.",
"wipAppLockerFileUploadInfoBaloonText": "Allowed files are AppLocker files, which are XML.",
"wipAppLockerFileUploadInfoText": "Please specify the file path to the file you want to import.",
"wipCorpIdentityTooltip": "This field should contain only the primary domain. Any additional domains are to be added as 'Protected domains' under the 'Network perimeter' in the 'Advanced settings' tab.",
"wipDesktopApps": "Desktop apps",
"wipExemptAppsInfo": "These apps are exempt from this policy, and can freely access corporate data.",
"wipLearnMore": "Learn more about WIP",
"wipLearningTitle": "App learning report for Windows Information Protection",
"wipMaxVersion": "Max Version",
"wipMinVersion": "Min Version",
"wipNoAppsSelected": "No apps selected.",
"wipPolicyAddAps": "Add apps",
"wipPolicyExemptAppsTitle": "Exempt apps",
"wipPolicyImportApps": "Import apps",
"wipPolicyProtectedAppsTitle": "Protected apps",
"wipPotocolsWarningMessage": "Caution: modifying these settings changes how Intune blocks or allows data transfer to other applications. Do not modify these settings unless you understand the potential for data leaks. You can learn more&nbsp;<a target=\"_blank\" href={0} aria-label=\"Learn more about exampt apps\">here</a>.",
"wipPotocolsWarningMessageIos": "Caution: modifying these settings changes how Intune blocks or allows data transfer to other applications. Do not modify these settings unless you understand the potential for data leaks. You can learn more&nbsp;<a target=\"_blank\" href={0}>here</a>.<br /><br />For newer policies, telecommunication protocols would no longer be added to the default exempt apps list. If the application is using a newer version of Intune SDK (Version 12.7.0+), use the <b>Transfer telecommunications data to</b> setting under <b>Send org data to other apps</b> to address telecommunication transfer settings. For applications using an older version of Intune SDK, add telecommunication protocol (tel and telprompt) to this list.&nbsp;<a target=\"_blank\" href={1} aria-label=\"Learn more about app protection setting\">Learn More</a>.",
"wipProtectedAppsInfo": "These are the apps that must adhere to this policy.",
"wipRecommendedApps": "Recommended apps",
"wipSMBStringListAddTitle": "Add encrypted file extensions",
"wipSMBStringListTitle": "Encrypted file extensions",
"wipSMBStringTooltip": "Specifies a list of file extensions, so that files with these extensions are encrypted when copying from an SMB share within the corporate boundary as defined in the network location list. When this policy is not specified, the existing auto-encryption behavior is applied. When this policy is configured, only files with the extensions in the list will be encrypted.",
"wipStoreApps": "Store apps",
"wipWeAppsListInfo": "These apps are allowed to access your enterprise data and will interact differently when used with unallowed, non-enterprise aware, or personal-only apps. Only enlightened apps are allowed on devices without MDM.",
"wipWeDeprecationWarning": "Creating new WIP without enrollment policies (WIP-WE) is no longer supported. For more information, see <a target=\"_blank\" href={0}>Windows Information Protection</a> ",
"wipWeWarning": "Before Windows 10 and later policies can take effect, <a target=\"_blank\" href={0}>set the MAM URLs in AAD</a> to Microsoft Intune by choosing “Restore default URLs” and defining the user scope.",
"wipWebsiteLearningTitle": "Website learning for Windows Information Protection",
"wipeData": "Wipe data",
"wipeDays": "Wipe data (days)",
"wipeFailed": "Wipe failed",
"wipeFailedLabel": "Failed",
"wipePending": "Wipe pending",
"wipePendingLabel": "Pending",
"wipeRequestErrorNotificationTitle": "Error sending wipe request",
"wipeRequestStatusSummaryPartTitle": "Wipe requests",
"wipeRequestsBladeTitle": "Wipe requests",
"wipeRequestsSearchPlaceholder": "Search by user, app, or device name",
"wipeStatusColumnLabel": "Status",
"wipeSuccess": "Wipe success",
"wipeSuccessfulLabel": "Complete",
"withoutMdm": "Without MDM",
"wordListSeparator": "Dummy string, don't translate",
"wouldYouLikeToSaveTheReportQuestion": "Would you like to save the report?",
"xMLInvalid": "XML format is invalid",
"yesOptionText": "Yes",
"yourDataIsBeingDownloadedEllipsis": "Your data is being downloaded, this can take a while...",
"yourDataIsBeingDownloadedMinutes": "Your data is being downloaded, this can take a few minutes...",
"yourProtectionLevel": "Your protection level",
"rules": "Rules",
"basics": "Basics",
"modeTableHeader": "Group mode",
"appAssignmentMsg": "Group",
"installContextLabel": "Install Context",
"allDevices": "All devices",
"allUsers": "All users",
"uninstallOnRemoval": "Uninstall on device removal",
"installAsRemovable": "Install as removable",
"channel": null,
"languageLabel": null,
"admin": "Administrator",
"standard": "Standard",
"latest": "Latest",
"deviceConfigurationTitle": "Device configuration",
"deviceComplianceTitle": "Device compliance",
"clientAppsTitle": "Client apps",
"policySetsTitle": "Policy sets",
"applicabilityRules": "Applicability Rules",
"windowsEnrollmentTitle": "Windows enrollment",
"appleEnrollmentTitle": "Apple enrollment",
"targetedAppLabel": "Targeted app",
"configurationSettingsTitle": "Configuration Settings",
"applicationConfiguration": "General app configuration",
"outlookConfigTitle": "Email account configuration",
"additionalConfiguration": "Additional configuration",
"win32DependenciesAutoInstall": "Automatically Install",
"win32DependenciesDetect": "Detect",
"dependencyTitle": "Add dependency",
"dependencyCategory": "Dependencies",
"supersedenceCategory": "Supersedence (preview)",
"win32SupersedenceReplace": "Replace",
"win32SupersedenceUpdate": "Update",
"deviceLimit": "Device limit",
"licenseTypeDevice": "Device",
"licenseTypeUser": "User"
},
"ApplicabilityRules": {
"GridLabel": {
"property": "Property",
"rule": "Rule",
"ruleDetails": "Rule Details",
"value": "Value"
},
"assignIf": "Assign profile if",
"deleteWarning": "This will delete the selected Applicability Rule",
"dontAssignIf": "Don't assign profile if",
"editionDisplayText": "{0} {1}",
"editionDisplayTextMore": "and {0} more",
"instructions": "Specify how to apply this profile within an assigned group. Intune will only apply the profile to devices that meet the combined criteria of these rules.",
"maxText": "Max",
"minText": "Min",
"noActionRow": "No Applicability Rules Specified",
"oSVersion": "e.g. 1.2.3.4",
"toText": "to",
"windows10Education": "Windows 10/11 Education",
"windows10EducationN": "Windows 10/11 Education N",
"windows10Enterprise": "Windows 10/11 Enterprise",
"windows10EnterpriseN": "Windows 10/11 Enterprise N",
"windows10HolographicEnterprise": "Windows 10 Holographic for Business",
"windows10Home": "Windows 10/11 Home",
"windows10HomeChina": "Windows 10 Home China",
"windows10HomeN": "Windows 10/11 Home N",
"windows10HomeSingleLanguage": "Windows 10/11 Home Single Language",
"windows10IoTCore": "Windows 10 IoT Core",
"windows10IoTCoreCommercial": "Windows 10 IoT Core Commercial",
"windows10Mobile": "Windows 10 Mobile",
"windows10MobileEnterprise": "Windows 10 Mobile Enterprise",
"windows10OsEdition": "OS edition",
"windows10OsVersion": "OS version",
"windows10Professional": "Windows 10/11 Professional",
"windows10ProfessionalEducation": "Windows 10/11 Professional Education",
"windows10ProfessionalEducationN": "Windows 10/11 Professional Education N",
"windows10ProfessionalN": "Windows 10 Professional N",
"windows10ProfessionalWorkstation": "Windows 10/11 Professional Workstation",
"windows10ProfessionalWorkstationN": "Windows 10/11 Professional Workstation N",
"windows11CloudEdition": "Windows 11 SE",
"windows11CloudEditionN": "Windows 11 SE N"
},
"DetectionRules": {
"ComparisonOperators": {
"equals": "Equals",
"greaterThan": "Greater than",
"greaterThanOrEqualTo": "Greater than or equal to",
"lessThan": "Less than",
"lessThanOrEqualTo": "Less than or equal to",
"notEqualTo": "Not equal to"
},
"CustomScript": {
"enforceSignatureCheck": "Enforce script signature check and run script silently",
"enforceSignatureCheckTooltip": "Select 'Yes' to verify that the script is signed by a trusted publisher, which will allow the script to run with no warnings or prompts displayed. The script will run unblocked. Select 'No' (default) to run the script with end-user confirmation without signature verification.",
"header": "Use a custom detection script",
"runAs32Bit": "Run script as 32-bit process on 64-bit clients",
"runAs32BitTooltip": "Select 'Yes' to run the script in a 32-bit process on 64-bit clients. Select 'No' (default) to run the script in a 64-bit process on 64-bit clients. 32-bit clients run the script in a 32-bit process.",
"scriptContent": "Script content",
"scriptFile": "Script file",
"scriptFileNotSelectedValidation": "No script file is selected.",
"scriptFileTooltip": "Select a PowerShell script that will detect the presence of the app on the client. The app will be detected when the script both returns a 0 value exit code and writes a string value to STDOUT.",
"scriptSizeLimitValidation": "Your detection script exceeds the maximum size allowed. Resolve this by reducing the size of your detection script."
},
"Manual": {
"FileRule": {
"DetectionMethodOptions": {
"dateCreated": "Date created",
"dateModified": "Date modified",
"doesNotExist": "File or folder does not exist",
"fileOrFolderExists": "File or folder exists",
"sizeInMB": "Size in MB",
"version": "String (version)"
},
"associatedWith32Bit": "Associated with a 32-bit app on 64-bit clients",
"associatedWith32BitTooltip": "Select 'Yes' to expand any path environment variables in the 32-bit context on 64-bit clients. Select 'No' (default) to expand any path variables in the 64-bit context on 64-bit clients. 32-bit clients will always use the 32-bit context.",
"detectionMethod": "Detection method",
"detectionMethodTooltip": "Select the type of detection method used to validate the presence of the app.",
"fileOrFolder": "File or folder",
"fileOrFolderToolTip": "The file or folder to detect.",
"operator": "Operator",
"operatorTooltip": "Select the operator for the detection method used to validate the comparison.",
"path": "Path",
"pathTooltip": "The full path of the folder containing the file or folder to detect.",
"value": "Value",
"valueTooltip": "Select a value that matches the selected detection method. Date detection methods should be entered in local time."
},
"GridColumns": {
"pathOrCode": "Path/Code",
"type": "Type"
},
"MsiRule": {
"operator": "Operator",
"operatorTooltip": "Select the operator for the MSI product version validation comparison.",
"productCode": "MSI product code",
"productCodeTooltip": "A valid MSI product code for the app.",
"productVersion": "Value",
"productVersionCheck": "MSI product version check",
"productVersionCheckTooltip": "Select 'Yes' to verify the MSI product version in addition to the MSI product code.",
"productVersionTooltip": "Enter the MSI product version for the app."
},
"RegistryRule": {
"DetectionMethodOptions": {
"integerComparison": "Integer comparison",
"keyDoesNotExist": "Key does not exist",
"keyExists": "Key exists",
"stringComparison": "String comparison",
"valueDoesNotExist": "Value does not exist",
"valueExists": "Value exists",
"versionComparison": "Version comparison"
},
"associatedWith32Bit": "Associated with a 32-bit app on 64-bit clients",
"associatedWith32BitTooltip": "Select 'Yes' to search the 32-bit registry on 64-bit clients. Select 'No' (default) search the 64-bit registry on 64-bit clients. 32-bit clients will always search the 32-bit registry.",
"detectionMethod": "Detection method",
"detectionMethodTooltip": "Select the type of detection method used to validate the presence of the app.",
"keyPath": "Key path",
"keyPathTooltip": "The full path of the registry entry containing the value to detect.",
"operator": "Operator",
"operatorTooltip": "Select the operator for the detection method used to validate the comparison.",
"value": "Value",
"valueName": "Value name",
"valueNameTooltip": "The name of the registry value to detect.",
"valueTooltip": "Select a value that matches the selected detection method."
},
"RuleTypeOptions": {
"file": "File",
"mSI": "MSI",
"registry": "Registry"
},
"gridAriaLabel": "Detection Rules",
"header": "Create a rule that indicates the presence of the app.",
"noRulesSelectedPlaceholder": "No rules are specified.",
"ruleTableLimit": "You can add up to 25 detection rules",
"ruleType": "Rule type",
"ruleTypeTooltip": "Choose the type of detection rule to add."
},
"RuleConfigurationOptions": {
"customScript": "Use a custom detection script",
"manual": "Manually configure detection rules"
},
"bladeTitle": "Detection rules",
"header": "Configure app specific rules used to detect the presence of the app.",
"rulesFormat": "Rules format",
"rulesFormatTooltip": "Choose to either manually configure the detection rules or use a custom script to detect the presence of the app.",
"selectorLabel": "Detection rules"
},
"PolicyType": {
"EdgeSmartScreenSettings": {
"description": "Microsoft Edge app recommended SmartScreen settings: Windows 10 in cloud configuration template. https://aka.ms/CloudConfigGuide"
},
"EndpointDetectionandResponse": {
"mDE": "Endpoint detection and response"
},
"EndpointSecurityTemplate": {
"aSRAppBrowserSecurity": "App and browser isolation",
"aSRApplicationControl": "Application control",
"aSRAttackSurfaceReduction": "Attack surface reduction rules",
"aSRDeviceControl": "Device control",
"aSRExploitProtection": "Exploit protection",
"aSRWebProtection": "Web protection (Microsoft Edge Legacy)",
"aVExclusions": "Microsoft Defender Antivirus exclusions",
"antivirus": "Microsoft Defender Antivirus",
"cloudPC": "Windows 365 Security Baseline",
"default": "Endpoint Security",
"defenderTest": "Microsoft Defender for Endpoint demo",
"diskEncryption": "BitLocker",
"eDR": "Endpoint detection and response",
"edgeSecurityBaseline": "Microsoft Edge baseline",
"edgeSecurityBaselinePreview": "Preview: Microsoft Edge baseline",
"editionUpgradeConfiguration": "Edition upgrade and mode switch",
"firewall": "Microsoft Defender Firewall",
"firewallRules": "Microsoft Defender Firewall rules",
"identityProtection": "Account protection",
"identityProtectionPreview": "Account protection (preview)",
"mDMSecurityBaseline1810": "MDM Security Baseline for Windows 10 and later for October 2018",
"mDMSecurityBaseline1810Preview": "Preview: MDM Security Baseline for Windows 10 and later for October 2018",
"mDMSecurityBaseline1810PreviewBeta": "Preview: MDM Security Baseline for Windows 10 for October 2018 (beta)",
"mDMSecurityBaseline1906": "MDM Security Baseline for Windows 10 and later for May 2019",
"mDMSecurityBaseline2004": "MDM Security Baseline for Windows 10 and later for August 2020",
"mDMSecurityBaseline2101": "MDM Security Baseline for Windows 10 and later December 2020",
"macOSAntivirus": "Antivirus",
"macOSDiskEncryption": "FileVault",
"macOSFirewall": "macOS firewall",
"microsoftDefenderBaseline": "Microsoft Defender for Endpoint baseline",
"office365Baseline": "Microsoft Office O365 baseline",
"office365BaselinePreview": "Preview: Microsoft Office O365 baseline",
"securityBaselines": "Security Baselines",
"test": "Test Template",
"testFirewallRulesSecurityTemplateName": "Microsoft Defender Firewall rules (Test)",
"testIdentityProtectionSecurityTemplateName": "Account protection (Test)",
"windowsSecurityExperience": "Windows Security experience"
},
"Firewall": {
"mDE": "Microsoft Defender Firewall"
},
"FirewallRules": {
"mDE": "Microsoft Defender Firewall Rules"
},
"OneDriveKnownFolderMove": {
"description": "OneDrive Known Folder Move settings: Windows 10 in cloud configuration template. https://aka.ms/CloudConfigGuide"
},
"accountProtection": "Account Protection",
"administrativeTemplates": "Administrative Templates",
"androidCompliancePolicy": "Android compliance policy",
"aospDeviceOwnerCompliancePolicy": "Android (AOSP) compliance policy",
"applicationControl": "Application Control",
"attackSurfaceReductionRules": "Attack Surface Reduction Rules",
"bitlocker": "BitLocker",
"custom": "Custom",
"deliveryOptimization": "Delivery Optimization",
"derivedPersonalIdentityVerificationCredential": "Derived credential",
"deviceControl": "Device Control",
"deviceFeatures": "Device features",
"deviceFirmwareConfigurationInterface": "Device Firmware Configuration Interface",
"deviceLock": "Device Lock",
"deviceOwner": "Fully managed, dedicated, and corporate-owned work profile",
"deviceRestrictions": "Device restrictions",
"deviceRestrictionsWindows10Team": "Device restrictions (Windows 10 Team)",
"domainJoinPreview": "Domain Join",
"editionUpgradeAndModeSwitch": "Edition upgrade and mode switch",
"education": "Education",
"email": "Email",
"emailSamsungKnoxOnly": "Email (Samsung KNOX only)",
"endpointProtection": "Endpoint protection",
"expeditedCheckin": "Mobile device management configuration",
"exploitProtection": "Exploit Protection",
"extensions": "Extensions",
"hardwareConfigurations": "BIOS Configurations",
"identityProtection": "Identity protection",
"iosCompliancePolicy": "iOS compliance policy",
"kiosk": "Kiosk",
"localUsersAndGroups": "Local user group membership",
"macCompliancePolicy": "Mac compliance policy",
"microsoftDefenderAntivirus": "Microsoft Defender Antivirus",
"microsoftDefenderAntivirusexclusions": "Microsoft Defender Antivirus exclusions",
"microsoftDefenderAtpWindows10Desktop": "Microsoft Defender for Endpoint (desktop devices running Windows 10 or later)",
"microsoftDefenderFirewallRules": "Microsoft Defender Firewall Rules",
"microsoftEdgeBaseline": "Microsoft Edge Baseline",
"mxProfileZebraOnly": "MX profile (Zebra only)",
"networkBoundary": "Network boundary",
"oemConfig": "OEMConfig",
"overrideGroupPolicy": "Override Group Policy",
"pkcsCertificate": "PKCS certificate",
"pkcsImportedCertificate": "PKCS imported certificate",
"preferenceFile": "Preference file",
"presets": "Presets",
"scepCertificate": "SCEP certificate",
"secureAssessmentEducation": "Secure assessment (Education)",
"settingsCatalog": "Settings Catalog",
"sharedMultiUserDevice": "Shared multi-user device",
"softwareUpdates": "Software Updates",
"trustedCertificate": "Trusted certificate",
"unknown": "Unknown",
"unsupported": "Unsupported",
"vpn": "VPN",
"wiFi": "Wi-Fi",
"wiFiImport": "Wi-Fi import",
"windows10CompliancePolicy": "Windows 10/11 compliance policy",
"windows10MobileCompliancePolicy": "Windows 10 mobile compliance policy",
"windows10XScep": "SCEP certificate - TEST",
"windows10XTrustedCertificate": "Trusted certificate - TEST",
"windows10XVPN": "VPN - TEST",
"windows10XWifi": "WIFI - TEST",
"windows8CompliancePolicy": "Windows 8 compliance policy",
"windowsHealthMonitoring": "Windows health monitoring",
"windowsInformationProtection": "Windows Information Protection",
"windowsPhoneCompliancePolicy": "Windows Phone compliance policy",
"windowsUpdateforBusiness": "Windows Update for Business",
"wiredNetwork": "Wired network",
"workProfile": "Personally-owned work profile"
},
"Win32Requirements": {
"AdditionalRequirements": {
"File": {
"fileOrFolderToolTip": "The file or folder as the selected requirement.",
"pathToolTip": "The complete path of the file or folder to detect.",
"property": "Property",
"valueToolTip": "Select a requirement value that matches the selected detection method. Date and time requirement should be entered in your local format."
},
"GridColumns": {
"pathOrScript": "Path/Script",
"type": "Type"
},
"Registry": {
"keyPath": "Key path",
"keyPathTooltip": "The full path of the registry entry containing the value as a requirement.",
"operator": "Operator",
"operatorTooltip": "Select the operator for the comparison.",
"registryRequirement": "Registry key requirement",
"registryRequirementTooltip": "Select the registry key requirement comparison.",
"valueName": "Value name",
"valueNameTooltip": "The name of the required registry value."
},
"RequirementTypeOptions": {
"fileType": "File",
"registry": "Registry",
"script": "Script"
},
"Script": {
"RequirementMethodOptions": {
"boolean": "Boolean",
"dateTime": "Date and Time",
"float": "Floating Point",
"integer": "Integer",
"string": "String",
"version": "Version"
},
"duplicateName": "Script name {0} has already been used. Please enter a different name.",
"enforceSignatureCheck": "Enforce script signature check",
"enforceSignatureCheckTooltip": "Select Yes to verify that the script is signed by a trusted publisher, which will allow the script to run without warnings or prompts. The script will run unblocked. Select No (default) to run the script with end-user confirmation, but without signature verification.",
"loggedOnCredentials": "Run this script using the logged on credentials",
"loggedOnCredentialsTooltip": "Run script using the signed in device credentials.",
"operatorTooltip": "Select the operator for the requirement comparison.",
"requirementMethod": "Select output data type",
"requirementMethodTooltip": "Select the data type used when determining a detection match requirement.",
"scriptContent": "Script content",
"scriptFile": "Script file",
"scriptFileTooltip": "Select a PowerShell script that will detect the presence of the app on the client. If the app is detected, the requirement process will provide a 0 value exit code and will write a string value to STDOUT.",
"scriptName": "Script name",
"value": "Value",
"valueTooltip": "Select a requirement value that matches the selected detection method. Date and time requirement should be entered in your local format."
},
"bladeTitle": "Add a Requirement rule",
"createRequirementHeader": "Create a requirement.",
"header": "Configure additional requirement rules",
"label": "Additional requirement rules",
"noRequirementsSelectedPlaceholder": "No requirements are specified.",
"requirementType": "Requirement type",
"requirementTypeTooltip": "Choose the type of detection method used to determine how a requirement is validated."
},
"architectures": "Operating system architecture",
"architecturesTooltip": "Choose the architectures needed to install the app.",
"bladeTitle": "Requirements",
"diskSpace": "Disk space required (MB)",
"diskSpaceTooltip": "Free disk space needed on the system drive to install the app.",
"header": "Specify the requirements that devices must meet before the app is installed:",
"maximumTextFieldValue": "The value must be at most {0}.",
"minimumCpuSpeed": "Minimum CPU speed required (MHz)",
"minimumCpuSpeedTooltip": "The minimum CPU speed required to install the app.",
"minimumLogicalProcessors": "Minimum number of logical processors required",
"minimumLogicalProcessorsTooltip": "The minimum number of logical processors required to install the app.",
"minimumOperatingSystem": "Minimum operating system",
"minimumOperatingSystemTooltip": "Select the minimum operating system needed to install the app.",
"minumumTextFieldValue": "The value must be at least {0}.",
"physicalMemory": "Physical memory required (MB)",
"physicalMemoryTooltip": "Physical memory (RAM) required to install the app.",
"selectorLabel": "Requirements",
"validNumber": "Please enter a valid number."
},
"AzureIAM": {
"AdrsUserActionSelectionWarning": {
"conditions": "Conditions that require device registration are not available with \"Register or join devices\" user action.",
"message": "Only \"Require multifactor authentication\" can be used in policies created for the \"Register or join devices\" user action.{0}"
},
"AuthContext": {
"Delete": {
"failure": "Failed to delete {0}",
"failureCa": "Failed to delete {0} because it is referenced by CA policies",
"modifying": "Deleting {0}",
"success": "Successfully deleted {0}"
},
"Included": {
"none": "No cloud apps, actions, or authentication contexts selected",
"plural": "{0} authentication contexts included",
"singular": "1 authentication context included"
},
"InfoBlade": {
"createTitle": "Add authentication context",
"deleteDisallowed": "You cannot delete this authentication context while it is referenced by your Conditional Access policies.",
"descPlaceholder": "Add description for the authentication context",
"modifyTitle": "Modify authentication context",
"namePlaceholder": "Ex. Trusted location, Trusted device, Strong authorization",
"publishDesc": "Publish to apps will make the authentication context available for apps to use. Publish once you finish configuring Conditional Access policy for the tag. [Learn more][1]\n[1]: https://go.microsoft.com/fwlink/?linkid=2150966",
"publishLabel": "Publish to apps",
"titleDesc": "Configure an authentication context that will be used to protect application data and actions. Use names and descriptions that can be understood by application administrators. [Learn more][1]\n[1]:https://go.microsoft.com/fwlink/?linkid=2150965",
"unpublishWarning": "Unpublishing this authentication context could result in losing access to the resource that is being secured by the authentication context."
},
"Notify": {
"failure": "Failed to update {0}",
"modifying": "Modifying {0}",
"success": "Successfully updated {0}"
},
"WhatIf": {
"selected": "Authentication context included"
},
"addNewStepUp": "New authentication context",
"bannerText": "Create your own authentication context values and Conditional Access policies with Azure AD Premium",
"checkBoxInfo": "Select the authentication contexts this policy will apply to",
"configure": "Configure authentication contexts",
"createCA": "Assign Conditional Access policies to the authentication context",
"dataGrid": "List of authentication contexts",
"deleteFailedByReference": "You cannot delete this authentication context because it is being referenced by CA policies.",
"description": "Description",
"documentation": "Documentation",
"getStarted": "Get started",
"label": "Authentication context",
"menuLabel": "Authentication context",
"name": "Name",
"noAuthContextConfigured": "No authentication contexts have been configured.",
"noAuthContextSet": "There are no authentication contexts",
"noData": "No authentication contexts to display",
"selectionInfo": "Authentication context is used to secure application data and actions in apps like SharePoint and Microsoft Cloud App Security.",
"step": "Step",
"tabDescription": "Manage authentication context to protect data and actions in your apps. Authentication contexts cannot be deleted when they are referenced by Conditional Access policies. [Learn more][1]\n[1]:https://go.microsoft.com/fwlink/?linkid=2150965",
"tagResources": "Tag resources with an authentication context"
},
"AuthenticationStrength": {
"Mode": {
"deviceBasedPush": "Microsoft Authenticator (Phone Sign-in)",
"email": "Email One-Time Passcode",
"federatedMultiFactor": "Federated Multi-Factor",
"federatedSingleFactor": "Federated Single-Factor",
"fido2": "FIDO2 Security Key",
"hardwareOath": "Hardware OATH tokens",
"hardwareOathEmail": "Hardware OATH token + Email one-time passcode",
"hardwareOathFederatedSingleFactor": "Federated Single-Factor + Hardware OATH token",
"microsoftAuthenticatorPush": "Microsoft Authenticator (Push Notification)",
"microsoftAuthenticatorPushEmail": "Microsoft Authenticator (Push Notification) + Email one-time passcode",
"microsoftAuthenticatorPushFederatedSingleFactor": "Federated Single-Factor + Microsoft Authenticator (Push Notification)",
"none": "None",
"password": "Password",
"passwordHardwareOath": "Password + Hardware OATH token",
"passwordMicrosoftAuthenticatorPush": "Password + Microsoft Authenticator (Push Notification)",
"passwordSms": "Password + SMS",
"passwordSoftwareOath": "Password + Software OATH token",
"passwordVoice": "Password + Voice",
"passwordX509CertificateMultiFactor": "Password + Certificate Based Authentication (Multi-Factor)",
"passwordX509CertificateSingleFactor": "Password + Certificate Based Authentication (Single-Factor)",
"sms": "SMS",
"smsEmail": "SMS + Email one-time passcode",
"smsFederatedSingleFactor": "Federated Single-Factor + SMS",
"softwareOath": "Software OATH tokens",
"softwareOathEmail": "Software OATH token + Email one-time passcode",
"softwareOathFederatedSingleFactor": "Federated Single-Factor + Software OATH token",
"temporaryAccessPassMultiUse": "Temporary Access Pass (Multi-use)",
"temporaryAccessPassOneTime": "Temporary Access Pass (One-time use)",
"voice": "Voice",
"voiceEmail": "Voice + Email one-time passcode",
"voiceFederatedSingleFactor": "Federated Single-Factor + Voice",
"windowsHelloForBusiness": "Windows Hello For Business",
"x509CertificateMultiFactor": "Certificate Based Authentication (Multi-Factor)",
"x509CertificateSingleFactor": "Certificate Based Authentication (Single Factor)"
}
},
"CAS": {
"BuiltinPolicy": {
"Option": {
"blockDownloads": "Block downloads (Preview)",
"monitorOnly": "Monitor only (Preview)",
"protectDownloads": "Protect downloads (Preview)",
"useCustomControls": "Use custom policy..."
},
"ariaLabel": "Choose the kind of Conditional Access App Control to apply"
}
},
"ChooseApplications": {
"Grid": {
"appIdAria": "App ID: {0}"
},
"LowerGrid": {
"ariaLabel": "List of selected cloud apps"
},
"UpperGrid": {
"ariaLabel": "List of cloud apps which match the search term"
}
},
"ChooseLocations": {
"Validation": {
"failed": "With \"Selected locations\" you must choose at least one location.",
"selector": "Choose at least one location"
},
"privateLinksInfo": "Private Link for Azure AD is best suited for Azure services. Ensure that the principals on which this policy is applied do not have requirement to hit any public services like M365."
},
"ClientApp": {
"Clients": {
"Validation": {
"failed": "You must select at least one of the following clients"
}
}
},
"ClientConditionsInfo": {
"browserAndModern": "This policy only applies to browser and modern authentication apps. To apply the policy to all client apps, enable the client app condition and select all the client apps.",
"classicExperience": "Since this policy was created, the default client apps configuration has been updated.",
"legacyAuth": "When not configured, policies now apply to all client apps, including modern and legacy auth."
},
"CloudAppFilterBlade": {
"AssignmentFilter": {
"header": "Attribute",
"placeholder": "Choose an attribute"
},
"Configure": {
"infoBalloon": "Configure app filters you want to policy to apply to."
},
"NoPermissions": {
"learnMoreAria": "More about custom security attribute permissions.",
"message": "You do not have the permissions needed to use custom security attributes."
},
"gridHeader": "Using custom security attributes you can use the rule builder or rule syntax text box to create or edit the filter rules. In the preview, only attributes of type String are supported. Attributes of type Integer or Boolean will not be shown.",
"learnMoreAria": "More information about using the rule builder and syntax text box.",
"noAttributes": "There are no custom attributes available to filter on. You will need to configure some attributes to employ this filter.",
"title": "Edit filter (Preview)"
},
"CloudAppsUserActions": {
"any": "Any cloud app or action",
"infoBalloon": "Cloud app or user action you want to test. For example, 'SharePoint Online'",
"learnMore": "Control access based on all or specific cloud apps or actions.",
"learnMoreB2C": "Control access based on all or specific cloud apps.",
"learnMoreNetworkAccess": "Control access based on all or specific network access traffic, cloud apps or actions.",
"title": "Cloud apps or actions"
},
"CloudappsSelectionBlade": {
"Excluded": {
"gridAria": "List of excluded cloud apps"
},
"Filter": {
"configured": "Configured",
"label": "Edit filter (Preview)",
"with": "{0} with {1}"
},
"Included": {
"gridAria": "List of included cloud apps"
},
"Validation": {
"authContext": "With \"authentication context\" you must configure at least one sub-item.",
"networkAccess": "With \"Network Access\" you must configure at least one traffic profile.",
"selectApps": "\"{0}\" must be configured",
"selector": "Select at least one app.",
"userActions": "With \"User actions\" you must configure at least one sub-item."
}
},
"DeviceState": {
"LearnMore": {
"message": "Control user access when the device the user is signing-in from is not \"Hybrid Azure AD joined\" or \"marked as compliant\".\n This has been deprecated. Use '{1}' instead."
}
},
"Errors": {
"notFound": "The policy was not found or has been deleted.",
"notFoundDetailed": "The policy \"{0}\" no longer exists. It may have been deleted."
},
"GuestsOrExternalUsers": {
"allExternalTenantsLabel": "All",
"b2bCollaborationGuestLabel": "B2B collaboration guest users",
"b2bCollaborationMemberLabel": "B2B collaboration member users",
"b2bDirectConnectUserLabel": "B2B direct connect users",
"enumeratedExternalTenantsError": "Please select at least one external tenant",
"enumeratedExternalTenantsLabel": "Select",
"externalTenantsLabel": "Specify external Azure AD organizations",
"externalUserDropdownLabel": "Choose guest or external user types",
"externalUsersError": "Select at least one external guest or user type",
"guestOrExternalUsersInfoContent": "Includes B2B Collaboration, B2B direct connect and other types of external users.",
"guestOrExternalUsersLabel": "Guest or external users",
"internalGuestLabel": "Local guest users",
"otherExternalUserLabel": "Other external users",
"previewTag": "{0} (preview)",
"serviceProviderUsersLabel": "Service provider users"
},
"NamedLocation": {
"Form": {
"CountryLookup": {
"ariaLabel": "Country/Region lookup method",
"gps": "Determine location by GPS coordinates",
"info": "When the location condition of a Conditional Access policy is configured, users will be prompted by the Authenticator app to share their GPS location. ",
"ip": "Determine location by IP address (IPv4 only)"
},
"Header": {
"new": "New location ({0})",
"update": "Update location ({0})"
},
"IP": {
"learn": "Configure named location IPv4 and IPv6 ranges.\n[Learn more][1]\n[1]: https://go.microsoft.com/fwlink/?linkid=2084753"
},
"Include": {
"infoBalloon": "Unknown countries/regions are IP addresses that are not associated with a specific country or region. [Learn more][1]\n\nThis includes:\n* IPv6 addresses\n* IPv4 addresses without a direct mapping\n[1]: https://aka.ms/canamedlocations\n",
"label": "Include unknown countries/regions"
},
"Name": {
"empty": "Name cannot be empty",
"placeholder": "Name this location"
},
"PrivateLink": {
"learn": "Create a new named location containing Private Links for Azure AD.\n[Learn more][1]\n[1]: https://go.microsoft.com/fwlink/?linkid=2084753"
},
"Search": {
"countries": "Search countries",
"names": "Search names",
"privateLinks": "Search Private Links"
},
"Trusted": {
"label": "Mark as trusted location"
},
"enter": "Enter a new IPv4 or IPv6 range",
"example": "ex: 40.77.182.32/27 or 2a01:111::/32"
},
"Label": {
"addCountries": "Countries location",
"addIpRange": "IP ranges location",
"addPrivateLink": "Azure Private Links"
},
"Notification": {
"Create": {
"Failed": {
"description": "Failure in creating new location ({0})",
"title": "Creation has failed"
},
"InProgress": {
"description": "Creating new location ({0})",
"title": "Creation in progress"
},
"Success": {
"description": "Success in creating new location ({0})",
"title": "Creation has succeeded"
}
},
"Delete": {
"Failed": {
"description": "Failure in deleting location ({0})",
"title": "Deletion has failed"
},
"InProgress": {
"description": "Deleting location ({0})",
"title": "Deletion in progress"
},
"Success": {
"description": "Success in deleting location ({0})",
"title": "Deletion has succeeded"
}
},
"Update": {
"Failed": {
"description": "Failure in updating location ({0})",
"title": "Updating has failed"
},
"InProgress": {
"description": "Updating location ({0})",
"title": "Updating in progress"
},
"Success": {
"description": "Success in updating location ({0})",
"title": "Updating has succeeded"
}
}
},
"PrivateLinks": {
"grid": "List of Private Links"
},
"Trusted": {
"title": "Trusted type",
"trusted": "Trusted"
},
"Type": {
"all": "All types",
"countries": "Countries",
"ipRanges": "IP ranges",
"privateLinks": "Private Links",
"title": "Location type"
},
"iPRangeInvalidError": "Value must be a valid IPv4 or IPv6 range.",
"iPRangeLinkOrSiteLocalError": "IP network detected as a link local or site local address.",
"iPRangeOctetError": "IP network must not start with 0 or 255.",
"iPRangePrefixError": "IP network prefix must be from /{0} to /{1}.",
"iPRangePrivateError": "IP network detected as a private address."
},
"NamedNetwork": {
"List": {
"gridAria": "List of named locations"
}
},
"NetworkAccess": {
"Included": {
"none": "No target resources selected",
"plural": "{0} network traffic profiles selected",
"singular": "1 network traffic profile selected"
},
"internetOptionText": "Public traffic",
"label": "Network Access (Preview)",
"m365OptionText": "M365 traffic",
"privateOptionText": "Private traffic",
"selectTrafficProfilesLabel": "Select the traffic profiles this policy applies to",
"targetResourcesBalloonContext": "Target Resources",
"targetResourcesSelectorTitle": "Target Resources",
"trafficProfilesLearnMoreTooltip": "To see aditional traffic profiles, add more NaaS licenses.",
"ztnaEnableLearnMore": "Zero Trust Cloud Edge needs to be turned on to use network access controls. "
},
"Policies": {
"Grid": {
"aria": "List of Conditional Access policies"
},
"countText": "{0} out of {1} policies found",
"countTextSingular": "{0} out of 1 policy found",
"search": "Search policies"
},
"Policy": {
"Condition": {
"ServicePrincipalRisk": {
"description": "Configure service principal risk levels needed for policy to be enforced",
"infoBalloonContent": "Configure service principal risk to apply the policy to selected risk level(s)",
"title": "Service principal risk"
}
}
},
"PolicyCondition": {
"SignInRiskDetections": {
"ApplyCondition": {
"info": "Configure risk detections to apply the policy to selected real-time sign-in risk detection(s)."
},
"LearnMore": {
"message": "Control user access to respond to specific real-time sign-in risk detections."
},
"description": "This condition is satisfied if any of the included risk detections detect risk. This does not affect the sign-in risk level calculation.",
"header": "Real-time built-in risk detections",
"info": "Detections that detect risks during sign-ins.",
"label": "Sign-in risk detections (Preview)",
"title": "Sign-in risk detections"
}
},
"PolicyControlAuthStrength": {
"MultiFactorAuthentication": {
"description": "Combinations of methods that satisfy strong authentication, such as Password + SMS",
"displayName": "Multifactor authentication"
},
"Passwordless": {
"description": "Passwordless methods that satisfy strong authentication, such as Microsoft Authenticator ",
"displayName": "Passwordless multifactor authentication"
},
"PhishingResistant": {
"description": "Phishing-resistant Passwordless methods for the strongest authentication, such as FIDO2 Security Key",
"displayName": "Phishing-resistant multifactor authentication"
}
},
"PolicyControlFedAuthMethod": {
"ariaLabel": "Learn more about requiring authentication methods satisfied by federation providers.",
"certificate": "Certificate authentication",
"infoBubble": "Specify a required authentication method, that must be satisfied by federation provider, such as ADFS.",
"multifactor": "Multifactor authentication",
"require": "Require federated authentication method (Preview)",
"whatIfFormat": "{0} - {1}"
},
"PolicyState": {
"off": "Off",
"on": "On",
"reportOnly": "Report-only"
},
"PolicyTemplates": {
"Devices": {
"description": "Select Devices policy template category to gain visibility into devices accessing the network. Ensure compliance and health status before granting access.",
"name": "Devices"
},
"Identities": {
"description": "Select Identities policy template category to verify and secure each identity with strong authentication across your entire digital estate.",
"name": "Identities"
},
"Summary": {
"CloudApps": {
"allCloudApps": "All apps",
"office365": "Office 365",
"registerSecurityInfo": "Register security information"
},
"Conditions": {
"androidAndIOS": "Device Platform: Android and IOS",
"anyDevice": "Any device except Android, IOS, Windows and Mac",
"anyDeviceStateExceptHybrid": "Any device state except compliant and hybrid Azure AD joined",
"anyLocation": "Any location except trusted",
"browserMobileDesktop": "Client apps: Browser, Mobile apps and desktop clients",
"exchangeActiveSync": "Client Apps: Exchange Active Sync, Other Clients",
"windowsAndMac": "Device Platform: Windows and Mac"
},
"Devices": {
"anyDevice": "Any Device"
},
"Grant": {
"appProtectionPolicy": "Require app protection policy",
"approvedClientApp": "Require approved client app",
"blockAccess": "Block access",
"mfa": "Require multifactor authentication",
"passwordChange": "Require password change",
"requireCompliantDevice": "Require device to be marked as compliant",
"requireHybridAzureADDevice": "Require hybrid Azure AD joined device"
},
"Session": {
"appEnforcedRestrictions": "Use app enforced restrictions",
"signInFrequency": "Sign-in Frequency and never persistent browser session"
},
"UsersAndGroups": {
"allUsers": "All Users",
"directoryRoles": "Directory roles except current administrator",
"globalAdmin": "Global Administrator",
"noGuestAndAdmins": "All Users except Guest and External, Global administrators, Current administrator"
},
"azureManagement": "Azure Management",
"deviceFilters": "Filters for devices",
"devicePlatforms": "Device Platforms"
},
"TemplateId": {
"AppEnforcedRestrictions": {
"description": "Block or limit access to SharePoint, OneDrive, and Exchange content from unmanaged devices.",
"name": "CA014: Use application enforced restrictions for unmanaged devices",
"title": "Use application enforced restrictions for unmanaged devices"
},
"ApprovedClientApps": {
"description": "To prevent data loss, organizations can restrict access to approved modern auth client apps with Intune app protection.",
"name": "CA012: Require approved client apps and app protection",
"title": "Require approved client apps and app protection"
},
"BlockAccessOnUnknowns": {
"description": "Users will be blocked from accessing company resources when the device type is unknown or unsupported.",
"name": "CA010: Block access for unknown or unsupported device platform",
"title": "Block access for unknown or unsupported device platform"
},
"BlockLegacyAuth": {
"description": "Block legacy authentication endpoints that can be used to bypass multifactor authentication. ",
"name": "CA003: Block legacy authentication",
"title": "Block legacy authentication"
},
"NoPersistentBrowserSession": {
"description": "Protect user access on unmanaged devices by preventing browser sessions from remaining signed in after the browser is closed and setting a sign-in frequency to 1 hour.",
"name": "CA011: No persistent browser session",
"title": "No persistent browser session"
},
"RequireCompliantOrHybridADAdmins": {
"description": "Require privileged administrators to only access resources when using a compliant or hybrid Azure AD joined device.",
"name": "CA009: Require compliant or hybrid Azure AD joined device for admins",
"title": "Require compliant or hybrid Azure AD joined device for admins"
},
"RequireCompliantOrHybridADAllUsers": {
"description": "Protect access to company resources by requiring users to use a managed device or perform multifactor authentication. (macOS or Windows only)",
"name": "CA013: Require compliant or hybrid Azure AD joined device or multifactor authentication for all users",
"title": "Require compliant or hybrid Azure AD joined device or multifactor authentication for all users"
},
"RequireMFAAllUsers": {
"description": "Require multifactor authentication for all user accounts to reduce risk of compromise.",
"name": "CA004: Require multifactor authentication for all users",
"title": "Require multifactor authentication for all users"
},
"RequireMFAForAdmins": {
"description": "Require multifactor authentication for privileged administrative accounts to reduce risk of compromise. This policy will target the same roles as Security Default.",
"name": "CA001: Require multifactor authentication for admins",
"title": "Require multifactor authentication for admins"
},
"RequireMFAForAzureManagement": {
"description": "Require multifactor authentication to protect privileged access to Azure resources.",
"name": "CA006: Require multifactor authentication for Azure management",
"title": "Require multifactor authentication for Azure management"
},
"RequireMFAForGuestAccess": {
"description": "Require guest users perform multifactor authentication when accessing your company resources.",
"name": "CA005: Require multifactor authentication for guest access",
"title": "Require multifactor authentication for guest access"
},
"RequireMFAForRiskySignIn": {
"description": "Require multifactor authentication if the sign-in risk is detected to be medium or high. (Requires an Azure AD Premium 2 License)",
"name": "CA007: Require multifactor authentication for risky sign-ins",
"title": "Require multifactor authentication for risky sign-ins"
},
"RequirePasswordChangeForHighRiskUsers": {
"description": "Require the user to change their password if the user risk is detected to be high. (Requires an Azure AD Premium 2 License)",
"name": "CA008: Require password change for high-risk users",
"title": "Require password change for high-risk users"
},
"RequireSecurityInfo": {
"description": "Secure when and how users register for Azure AD multifactor authentication and self-service password. ",
"name": "CA002: Securing security info registration",
"title": "Securing security info registration"
}
},
"TemplateState": {
"BlockAccessOnUnknowns": {
"title": "Enabling this policy will prevent any access from unknown device type, consider using report only mode to begin with until you have confirmed this will not impact your users."
},
"BlockLegacyAuth": {
"description": "Consider using report only mode to begin with until you have confirmed this will not impact your users.",
"title": "Enabling this policy will block legacy authentication for all your users."
},
"RequireCompliantOrHybridADAdmins": {
"Description": {
"on": "Consider using report only mode to begin with until you have confirmed this will not impact your privileged users.",
"reportOnly": "Policies in report-only mode that require compliant devices may prompt users on Mac, iOS, and Android to select a device certificate during policy evaluation, even though device compliance is not enforced. These prompts may repeat until the device is made compliant."
},
"Title": {
"on": "Enabling this policy will prevent any access for privileged users unless using a managed device such as compliant or hybrid Azure AD joined. Ensure you have configured your compliance policies or enabled hybrid Azure AD configuration before enabling.",
"reportOnly": "Ensure you have configured your compliance policies or enabled hybrid Azure AD configuration before enabling. "
}
},
"RequireCompliantOrHybridADAllUsers": {
"Description": {
"on": "This policy will affect all users except the current logged in Administrator. Consider using report only mode to begin with until you have confirmed this will not impact your users."
},
"Title": {
"on": "Don't lock yourself out! Make sure that your device is compliant, or hybrid Azure AD Joined or you have configured multifactor authentication. ",
"reportOnly": "Policies in report-only mode that require compliant devices may prompt users on Mac, iOS, and Android to select a device certificate during policy evaluation, even though device compliance is not enforced. These prompts may repeat untli the device is made compliant."
}
},
"RequireMfa": {
"description": "If you use emergency access accounts or Azure AD connect to synchronize your on-premises objects, you may need to exclude these accounts from this policy after creation."
},
"RequireMfaAdmins": {
"description": "Please note the current administrator account will automatically be excluded but all others will be protected on policy creation. Consider using report only mode to begin with.",
"title": "Don't lock yourself out! This policy impacts the Azure portal."
},
"RequireMfaAllUsers": {
"description": "Consider using report only mode to begin with until you have planned and communicated this change to all your users.",
"title": "Enabling this policy will enforce multifactor authentication for all your users."
},
"RequireSecurityInfo": {
"description": "Please ensure you review your configuration to protect these accounts based on your company needs.",
"title": "The following users and roles are excluded from this policy, Guests and External Users, Global Administrators, Current Administrator"
}
},
"basics": "Basics",
"clientApps": "Client apps",
"cloudApps": "Cloud apps",
"cloudAppsOrActions": "Cloud apps or actions ",
"conditions": "Conditions ",
"createNewPolicy": "Create new policy from templates (Preview)",
"createPolicy": "Create Policy",
"currentUser": "Current user",
"customizeBuild": "Customize your build",
"customizeTemplate": "Template lists are customized based on the type of policy you're looking to create",
"excludedDevicePlatform": "Excluded device platforms",
"excludedDirectoryRoles": "Excluded directory roles",
"excludedLocation": "Excluded directory roles",
"excludedUsers": "Excluded users",
"grantControl": "Grant control ",
"includeFilteredDevice": "Include filtered devices in policy",
"includedDevicePlatform": "Included device platforms",
"includedDirectoryRoles": "Included directory roles",
"includedLocation": "Included location",
"includedUsers": "Included users",
"legacyAuthenticationClients": "Legacy authentication clients",
"namePolicy": "Name your policy",
"needAdPremiumMessage": "You need an Azure AD Premium subscription to use this feature.",
"next": "Next",
"policyName": "Policy Name",
"policyState": "Policy state",
"policySummary": "Policy summary",
"policyTemplate": "Policy template",
"previous": "Previous",
"reviewAndCreate": "Review + create",
"riskLevels": "Risk levels",
"selectATemplate": "Select a Template",
"selectTemplate": "Select template",
"selectTemplateCategory": "Select a template category",
"selectTemplateRecommendation": "We recommend the following templates based on your response",
"sessionControl": "Session control ",
"signInFrequency": "Sign-in frequency",
"signInRisk": "Sign-in risk",
"template": "Template ",
"templateCategory": "Template category",
"userRisk": "User risk",
"usersAndGroups": "Users and groups ",
"viewPolicySummary": "View policy summary "
},
"SSM": {
"MemberSelector": {
"description": "Users and groups"
},
"Notification": {
"Migration": {
"error": "Failed to migrate Continuous access evaluation settings to Conditional access policies",
"inProgress": "Migrating Continuous access evaluation settings",
"success": "Successfully migrated Continuous access evaluation settings to Conditional access policies",
"successDescription": "Please proceed to Conditional access policies to view the migrated settings in the newly created policy named \"CA policy created from CAE settings\"."
},
"error": "Failed to update Continuous access evaluation settings",
"inProgress": "Updating Continuous access evaluation settings",
"success": "Successfully updated Continuous access evaluation settings"
},
"PreviewOptions": {
"disable": "Disable preview",
"enable": "Enable preview"
},
"StrictLocationEnforcement": {
"infoContent1": "Different IPs can be seen by Azure AD and Resource Provider from the same client device due to network partition or IPv4/IPv6 mismatch. Strict Location Enforcement will enforce the Conditional Access policy based on both IP addresses seen by Azure AD and Resource Provider.",
"infoContent2": "To ensure maximum security, it is recommended to include all IPs that can be seen by both Azure AD and Resource Provider in your Named Location policy and turn on \"Strict Location Enforcement\" mode.",
"label": "Strict Location Enforcement",
"title": "Additional enforcement modes"
},
"bladeTitle": "Continuous access evaluation",
"description": "When a user's access is removed or a client IP address changes, Continuous access evaluation automatically blocks access to resources and applications in near real time. ",
"migrateLabel": "Migrate",
"migrationError": "Migration failed due to the following error: {0}",
"migrationInfo": "CAE setting has been moved under Conditional Access UX, please migrate with the “Migrate” button above and configure it with Conditional Access policy going forward. Click here to learn more.",
"noLicenseMessage": "Manage smart session management settings with Azure AD Premium",
"optionsPickerTitle": "Enable/Disable Continuous access evaluation",
"upsellInfo": "You cannot change your settings on this page anymore and any settings here should be disregarded. Your previous setting will be honored. You can configure your CAE settings under Conditional Access going forward. Click here to learn more."
},
"SamlReauth": {
"Filter": {
"warning": "You are targeting applications using a dynamic query. Some applications might not be supported to use with \"sign-in frequency every time\" session control. {0}Read more about the recommended scenarios.{1}"
}
},
"SelectOrganizations": {
"Blade": {
"Lower": {
"gridAria": "List of selected organizations"
},
"Upper": {
"gridAria": "List of available organizations"
},
"addTenantLabel": "Add tenant to selected",
"customOrganizationDescription": "Add an organization with this tenant ID",
"description": "Add an Azure AD organization by typing one of its domain names.",
"notFoundResult": "Not found",
"searchBoxPlaceholder": "Tenant ID or domain name",
"subTitle": "Azure AD organization",
"tenantAdded": "This tenant ID has already been added.",
"tenantIdNotFound": "Tenant ID not found"
},
"Selector": {
"AdditionalDetails": {
"aria": "Organization ID: {0}"
},
"DisplayText": {
"multiple": "{0} Azure AD organizations selected",
"single": "1 Azure AD organization selected"
},
"gridAria": "List of selected organizations"
}
},
"SessionLifetime": {
"PersistentBrowser": {
"Error": {
"notAllApps": "Persistent browser session policy only works correctly when \"All cloud apps\" is selected. Please update your cloud apps selection."
},
"Option": {
"always": "Always persistent",
"help": "A persistent browser session allows users to remain signed in after closing and reopening their browser window.<br>\n<ul>\n<li>This setting works correctly when \"All cloud apps\" are selected</li>\n<li>This does not affect token lifetimes or the sign-in frequency setting.</li>\n<li>This will override the \"Show option to stay signed in\" policy in Company Branding.</li>\n<li>\"Never persistent\" will override any persistent SSO claims passed in from federated authentication services.</li>\n<li>\"Never persistent\" will prevent SSO on mobile devices across applications and between applications and the user's mobile browser.</li>\n</u>",
"label": "Persistent browser session",
"never": "Never persistent"
},
"Warning": {
"allApps": "Persistent browser session only works correctly when All cloud apps is selected. Please change your cloud apps selection. Click here to learn more."
}
},
"SignInFrequency": {
"Aria": {
"units": "Hours or days",
"value": "Frequency"
},
"Option": {
"Day": {
"plural": "{0} days",
"singular": "1 day"
},
"Hour": {
"plural": "{0} hours",
"singular": "1 hour"
},
"daysOption": "Days",
"everytime": "Every time",
"help": "Time period before a user is asked to sign-in again when attempting to access a resource. The default setting is a rolling window of 90 days, i.e. users will be asked to re-authenticate on the first attempt to access a resource after being inactive on their machine for 90 days or longer.",
"hoursOption": "Hours",
"label": "Sign-in frequency",
"placeholder": "Select units"
}
},
"mainOption": "Modify session lifetime",
"mainOptionHelp": "Configure how often users will get prompted and whether browser sessions will be persisted. Applications that don't support modern authentication protocols might not honor these policies. In such cases please contact the application developer."
},
"SigninRisk": {
"LearnMore": {
"message": "Control user access to respond to specific sign-in risk levels."
}
},
"SigninRiskLevel": {
"NoRiskSelected": {
"warning": "When \"{0}\" is selected, the \"{1}\" condition will not be configurable."
},
"description": "Sign-in risk level is generated based on all real-time risk detections.",
"header": "Select the sign-in risk level this policy will apply to"
},
"SingleSelectorActive": {
"failed": "Unable to load this data.",
"reattempt": "Loading data. Reattempt {0} of {1}."
},
"TimeCondition": {
"Errors": {
"both": "Invalid \"Include\" or \"Exclude\" time range.",
"daysOfWeek": "{0} Make sure to specify at least one day of the week.",
"endBeforeStart": "{0} Make sure start date/time is earlier than end date/time.",
"exclude": "Invalid \"Exclude\" time range.",
"generic": "{0} Make sure both days of the week and time zone are set. If \"All day\" is not checked, start time and end time need to be set as well.",
"include": "Invalid \"Include\" time range.",
"timeMissing": "{0} Make sure to specify both a start and end time.",
"timeZone": "{0} Make sure to specify a time zone.",
"timesAndZone": "{0} Make sure you set start time, end time and time zone."
}
},
"UserActions": {
"Included": {
"none": "No cloud apps or actions selected",
"plural": "{0} user actions included",
"singular": "1 user action included"
},
"accessRequirement1": "Level 1",
"accessRequirement2": "Level 2",
"accessRequirement3": "Level 3",
"accessRequirementsLabel": "Accessing secured app data",
"appsActionsAuthTitle": "Cloud apps, actions, or authentication context",
"appsOrActionsSelectorInfoBallonText": "Applications accessed or user actions",
"appsOrActionsTitle": "Cloud apps or actions",
"label": "User actions",
"mainOptionsLabel": "Select what this policy applies to",
"registerOrJoinDevices": "Register or join devices",
"registerSecurityInfo": "Register security information",
"selectionInfo": "Select the action this policy will apply to",
"whatIf": "User action included"
},
"UserSelectionBlade": {
"DirectoryRoles": {
"ariaLabel": "Choose directory roles"
},
"Excluded": {
"gridAria": "List of excluded users"
},
"Included": {
"gridAria": "List of included users"
},
"Validation": {
"customRoleIncluded": "\"Directory Roles\" includes at least one custom role",
"customRoleSelected": "At least one custom role is selected",
"failed": "\"{0}\" must be configured",
"roles": "Select at least one role",
"usersGroups": "Select at least one user or group"
},
"learnMore": "Control access based on who the policy will apply to, such as users and groups, workload identities, directory roles, or external guests."
},
"ValidationResult": {
"blockEveryonePolicy": "Policy configuration not supported. Review the assignments and controls.",
"invalidApplicationCondition": "Invalid cloud applications selected",
"invalidClientTypesCondition": "Invalid client apps selected",
"invalidConditions": "Assignments are not selected",
"invalidControls": "Invalid controls selected",
"invalidDevicePlatformsCondition": "Invalid device platforms selected",
"invalidDevicesCondition": "Invalid device configuration. Likely an invalid \"{0}\" configuration.",
"invalidGrantControlPolicy": "Invalid grant control",
"invalidLocationsCondition": "Invalid locations selected",
"invalidNetworkAccessSecurityPolicyId": "Policy attached to session network control in invalid.",
"invalidPolicy": "Assignments are not selected",
"invalidSessionControlPolicy": "Invalid session control",
"invalidSignInRisksCondition": "Invalid sign-in risk selected",
"invalidUserRisksCondition": "Invalid user risk selected",
"invalidUsersCondition": "Invalid users selected",
"mamPolicyShouldOnlyTargetAndroidOrIosPlatforms": "MAM policy can only be applied to Android or iOS client platforms.",
"networkAccessControlNeedsNetworkAccessTargetedTrafficProfile": "Network Access session policy only works correctly when a network access traffic profile is targeted. Please update your targeted resources section.",
"notSupportedCombination": "Policy configuration is not supported. Learn more about supported policies.",
"pending": "Validating policy",
"requireComplianceEveryonePolicy": "Policy configuration will require device compliance for all users. Review the assignments selected.",
"success": "Valid policy"
},
"VpnCert": {
"Grid": {
"aria": "List of VPN Certificates"
}
},
"WarningsInfo": {
"Controls": {
"AuthStrengthXtap": {
"allUsers": "To enable all authentication strengths, configure cross-tenant access settings to accept claims coming from Azure AD tenants for external users. Authentication strengths will only configure second factor authentication for external users.",
"externalUsers": "To enable all built-in authentication strengths, configure cross-tenant access settings to accept claims coming from Azure AD tenants for external users."
},
"combinedRegistration": "Enable combined registration for \"Require authentication strength\" to work correctly. We strongly recommend turning it on for all users rather than just a group of them.",
"compliantDeviceEnabled": "Don't lock yourself out! Make sure that your device is compliant.",
"domainJoinedDeviceEnabled": "Don't lock yourself out! Make sure that your device is Hybrid Azure AD Joined.",
"notAvailableForSP": "Some controls are not available due to '{0}' selection in policy assignment",
"requireAuthOrMfa": "\"{0}\" cannot be used with \"{1}\"",
"requireMfa": "Consider testing the new \"{0}\" public preview",
"requirePasswordChangeEnabled": "\"Require password change\" can only be used when policy is assigned to \"All cloud apps\""
},
"Policies": {
"Linux": {
"devicePlatformsReportOnlyPolicy": "Policies in Report-only mode requiring compliant devices may prompt users on macOS, iOS, Android, and Linux to select a device certificate.",
"excludeDevicePlatforms": "Exclude device platforms macOS, iOS, Android, and Linux from this policy.",
"proceedAnywayDevicePlatforms": "Proceed with selected configuration. Users on macOS, iOS, Android, and Linux may receive prompts when the device is checked for compliance."
},
"blockCurrentUserPolicy": "Don't lock yourself out! We recommend applying a policy to a small set of users first to verify it behaves as expected. We also recommend excluding at least one administrator from this policy. This ensures that you still have access and can update a policy if a change is required. Please review the affected users and apps.",
"devicePlatformsReportOnlyPolicy": "Policies in Report-only mode requiring compliant devices may prompt users on macOS, iOS, and Android to select a device certificate.",
"excludeCurrentUserSelection": "Exclude current user, {0}, from this policy.",
"excludeDevicePlatforms": "Exclude device platforms macOS, iOS, and Android from this policy.",
"proceedAnywayDevicePlatforms": "Proceed with selected configuration. Users on macOS, iOS, and Android may receive prompts when the device is checked for compliance.",
"proceedAnywaySelection": "I understand that my account will be impacted by this policy. Proceed anyway."
},
"ServicePrincipals": {
"blockExchange": "Selecting Office 365 Exchange Online will also affect apps such as OneDrive and Teams.",
"blockPortal": "Don't lock yourself out! This policy impacts the Azure portal. Before you continue, ensure that you or someone else will be able to get back into the portal.",
"blockPortalWithSession": "Don't lock yourself out! This policy impacts the Azure portal. Before you continue, ensure that you or someone else will be able to get back into the portal.<br>Disregard this warning if you are configuring persistent browser session policy that works correctly only if \"All cloud apps\" are selected.",
"blockSharePoint": "Selecting SharePoint Online will also affect apps such as Microsoft Teams, Planner, Delve, MyAnalytics, and Newsfeed.",
"blockSkype": "Selecting Skype for Business Online will also affect Microsoft Teams.",
"includeOrExclude": "You can configure the App Filter for '{0}' or '{1}', but not both.",
"selectAppsNAForSP": "Individual cloud apps cannot be selected due to '{0}' selection in policy assignment",
"teamsBlocked": "Microsoft Teams will also be affected when apps such as SharePoint Online and Exchange Online are included in policy."
},
"Users": {
"blockAllUsers": "Don't lock yourself out! This policy will affect all of your users. We recommend applying a policy to a small set of users first to verify it behaves as expected.",
"xtap": " Your \"Require authentication strengths\" configuration in grant control might not be valid for external users."
}
},
"WhatIf": {
"Device": {
"AttributesGrid": {
"aria": "List of attributes on the device employed during sign-in.",
"infoBalloon": "List of attributes on the device employed during sign-in."
}
},
"noTenantSelected": "No tenant selected",
"selectOrganization": "Select organization",
"tenantIdWithPlaceholder": "Tenant ID: {0}",
"tenantSelectionRequired": "Tenant required"
},
"advancedTabText": "Advanced",
"allCloudAppsErrorBox": "\"All cloud apps\" must be selected when \"Require password change\" grant is selected",
"allCloudAppsReauth": "\"All cloud apps\" must be selected when \"Sign-in frequency every time\" session control and \"sign-in risk\" condition are selected",
"allCloudOrSpecificApps": "The \"sign-in frequency every time\" session control requires \"all cloud apps\" or specifically-supported apps to be selected",
"allDayCheckboxLabel": "All day",
"allDevicePlatforms": "Any device",
"allGuestUserInfoContent": "Includes Azure AD B2B guests, but not SharePoint B2B guests",
"allGuestUserLabel": "All guest and external users",
"allRiskLevelsOption": "All risk levels",
"allTrustedLocationLabel": "All trusted locations",
"allUserGroupSetSelectorLabel": "All users and groups selected",
"allUsersReauth": "The \"sign-in frequency every time\" session control requires \"All Users\" to be selected",
"allUsersString": "All users",
"and": "{0} AND {1} ",
"andWithGrouping": "({0}) AND {1} ",
"androidDisplayName": "Android",
"anyCloudAppSelection": "Any cloud app",
"appContextOptionInfoContent": "Requested authentication tag",
"appContextOptionLabel": "Requested authentication tag (Preview)",
"appContextUriPlaceholder": "Example: uri:contoso.com:level3",
"appEnforceInfoBubble": "App enforced restrictions might require additional admin configurations within the cloud apps. The restrictions will only take effect for new sessions.",
"appNotSetSeletorLabel": "0 cloud apps selected",
"appReauthNotSupported": "This app does not support the \"sign-in frequency every time\" session control.",
"applyConditionClientAppInfoBalloonContent": "Configure client apps to apply the policy to specific client apps",
"applyConditionDevicePlatformInfoBalloonContent": "Configure device platforms to apply the policy to specific platforms",
"applyConditionDeviceStateInfoBalloonContent": "Configure device state to apply the policy to specific device state(s)",
"applyConditionLocationInfoBalloonContent": "Configure locations to apply the policy to trusted/untrusted locations",
"applyConditionSigninRiskInfoBalloonContent": "Configure sign-in risk to apply the policy to selected risk level(s)",
"applyConditionUserRiskInfoBalloonContent": "Configure user risk to apply the policy to selected risk level(s)",
"applyConditonLabel": "Configure",
"ariaLabelPolicyDisabled": "Policy is disabled",
"ariaLabelPolicyEnabled": "Policy is enabled",
"ariaLabelPolicyReportOnly": "Policy is in Report-only mode",
"blockAccess": "Block access",
"builtInDirectoryRoleLabel": "Built-in directory roles",
"casCustomControlInfo": "Custom policies need to be configured in Cloud App Security portal. This control works instantly for featured apps and can be self onboarded for any app. Click here to learn more about both scenarios.",
"casInfoBubble": "This control works for various cloud apps.",
"casPreconfiguredControlInfo": "This control works instantly for featured apps and can be self onboarded for any app. Click here to learn more about both scenarios.",
"cert64DownloadCol": "Download base64 certificate",
"cert64Name": "VpnBase64Cert",
"certDownloadCol": "Download certificate",
"certDurationCol": "Expiry",
"certDurationStartCol": "Valid from",
"certName": "VpnCert",
"certainApps": "Only specifically-supported apps are enabled for \"Sign-in frequency every time\" if \"Require multifactor authentication\" and \"Require password change\" grants are not selected",
"chooseApplicationsBladeSubtitle": "",
"chooseApplicationsBladeTitle": "Choose Applications",
"chooseApplicationsCartSubitle": "",
"chooseApplicationsCartTitle": "Chosen Applications",
"chooseApplicationsEmpty": "No Applications",
"chooseApplicationsNone": "None",
"chooseApplicationsNoneFound": "We didn't find \"{0}\". Try another name or ID.",
"chooseApplicationsPlural": "{0} and {1} more",
"chooseApplicationsReAuthEverytimeInfo": "Looking for your app? Some applications cannot be used with \"Require reauthentication every time\" session control",
"chooseApplicationsRemove": "Remove",
"chooseApplicationsReturnedPlural": "{0} applications found",
"chooseApplicationsReturnedSingular": "1 application found",
"chooseApplicationsSearchBalloon": "Search for an Application by entering its name or ID.",
"chooseApplicationsSearchHint": "Search Applications...",
"chooseApplicationsSearchLabel": "Applications",
"chooseApplicationsSearching": "Searching...",
"chooseApplicationsSelect": "Select",
"chooseApplicationsSelected": "Selected",
"chooseApplicationsSingular": "{0} and 1 more",
"chooseApplicationsTooMany": "More results than can be shown. Please filter using the search box.",
"chooseLocationCorpnetItem": "Corporate network",
"chooseLocationSelectedLocationsLabel": "Selected locations",
"chooseLocationTrustedIpsItem": "Multifactor authentication trusted IPs",
"chooseLocationsBladeSubtitle": "",
"chooseLocationsBladeTitle": "Choose Locations",
"chooseLocationsCartSubitle": "",
"chooseLocationsCartTitle": "Chosen Locations",
"chooseLocationsEmpty": "No Locations",
"chooseLocationsExcludedSelectorTitle": "Select",
"chooseLocationsIncludedSelectorTitle": "Select",
"chooseLocationsNone": "None",
"chooseLocationsNoneFound": "We didn't find \"{0}\". Try another name or ID.",
"chooseLocationsPlural": "{0} and {1} more",
"chooseLocationsRemove": "Remove",
"chooseLocationsReturnedPlural": "{0} locations found",
"chooseLocationsReturnedSingular": "1 location found",
"chooseLocationsSearchBalloon": "Search for a Location by entering its name.",
"chooseLocationsSearchHint": "Search Locations...",
"chooseLocationsSearchLabel": "Locations",
"chooseLocationsSearching": "Searching...",
"chooseLocationsSelect": "Select",
"chooseLocationsSelected": "Selected",
"chooseLocationsSelectionBladeExcludedSelectorTitle": "Select",
"chooseLocationsSelectionBladeIncludedSelectorTitle": "Select",
"chooseLocationsSingular": "{0} and 1 more",
"chooseLocationsTooMany": "More results than can be shown. Please filter using the search box.",
"claimProviderAddCommandText": "New custom control",
"claimProviderAddNewBladeTitle": "New custom control",
"claimProviderDeleteCommand": "Delete",
"claimProviderDeleteDescription": "Are you sure you want to delete '{0}'? This action cannot be undone.",
"claimProviderDeleteTitle": "Are you sure?",
"claimProviderEditInfoText": "Enter the JSON for customized controls given by your claim providers.",
"claimProviderNotificationCreateDescription": "Creating custom control named '{0}'",
"claimProviderNotificationCreateFailedDescription": "Creating custom control '{0}' failed. Please try again later.",
"claimProviderNotificationCreateFailedTitle": "Failed to create custom control",
"claimProviderNotificationCreateSuccessDescription": "Created custom control named '{0}'",
"claimProviderNotificationCreateSuccessTitle": "Created '{0}'",
"claimProviderNotificationCreateTitle": "Creating '{0}'",
"claimProviderNotificationDeleteDescription": "Deleting custom control named '{0}'",
"claimProviderNotificationDeleteFailedDescription": "Deleting custom control '{0}' failed. Please try again later.",
"claimProviderNotificationDeleteFailedTitle": "Failed to delete custom control",
"claimProviderNotificationDeleteSuccessDescription": "Deleted custom control named '{0}'",
"claimProviderNotificationDeleteSuccessTitle": "Deleted '{0}'",
"claimProviderNotificationDeleteTitle": "Deleting '{0}'",
"claimProviderNotificationUpdateDescription": "Updating custom control named '{0}'",
"claimProviderNotificationUpdateFailedDescription": "Updating custom control '{0}' failed. Please try again later.",
"claimProviderNotificationUpdateFailedTitle": "Failed to update custom control",
"claimProviderNotificationUpdateSuccessDescription": "Updated custom control named '{0}'",
"claimProviderNotificationUpdateSuccessTitle": "Updated '{0}'",
"claimProviderNotificationUpdateTitle": "Updating '{0}'",
"claimProviderValidationAppIdInvalid": "The \"AppId\" value is not valid. Please review and try again.",
"claimProviderValidationClientIdMissing": "The data is missing a \"ClientId\" value. Please review and try again.",
"claimProviderValidationControlClaimsRequestedMissing": "The \"Control\" is missing a \"ClaimsRequested\" value. Please review and try again.",
"claimProviderValidationControlClaimsRequestedTypeMissing": "The \"ClaimsRequested\" item is missing a \"Type\" value. Please review and try again.",
"claimProviderValidationControlIdAlreadyExists": "The \"Control\" \"Id\" value already exists. Please review and try again.",
"claimProviderValidationControlIdMissing": "The \"Control\" is missing an \"Id\" value. Please review and try again.",
"claimProviderValidationControlIdReferencedInExistingPolicy": "The \"Control\" \"Id\" value cannot be removed because it is referenced in an existing policy. Please remove it from the policy first.",
"claimProviderValidationControlIdTooManyControls": "The \"Control\" property has too many controls. Please review and try again.",
"claimProviderValidationControlIdValueReserved": "The \"Control\" \"Id\" value is a reserved keyword, please use a different id.",
"claimProviderValidationControlNameAlreadyExists": "The \"Control\" \"Name\" value already exists. Please review and try again.",
"claimProviderValidationControlNameMissing": "The \"Control\" is missing a \"Name\" value. Please review and try again.",
"claimProviderValidationControlsMissing": "The data is missing a \"Controls\" value. Please review and try again.",
"claimProviderValidationDiscoveryUrlMissing": "The data is missing a \"DiscoveryUrl\" value. Please review and try again.",
"claimProviderValidationInvalid": "There data provided is not valid. Please review and try again.",
"claimProviderValidationInvalidJsonDefinition": "Unable to save the custom control. Review the JSON text and try again.",
"claimProviderValidationNameAlreadyExists": "The \"Name\" value already exists. Please review and try again.",
"claimProviderValidationNameMissing": "The data is missing a \"Name\" value. Please review and try again.",
"claimProviderValidationUnknown": "There was an unknown error while validating the data provided. Please review and try again.",
"claimProvidersNone": "No custom controls",
"claimProvidersSearchPlaceholder": "Search controls.",
"classicPoilcyFilterTitle": "Show",
"classicPolicyAllPlatforms": "All Platforms",
"classicPolicyClientAppBrowserAndNative": "Browser, mobile apps and desktop clients",
"classicPolicyCloudAppTitle": "Cloud application",
"classicPolicyControlAllow": "Allow",
"classicPolicyControlBlock": "Block",
"classicPolicyControlBlockWhenNotAtWork": "Block access when not at work",
"classicPolicyControlRequireCompliantDevice": "Require compliant device",
"classicPolicyControlRequireDomainJoinedDevice": "Require domain joined device",
"classicPolicyControlRequireMfa": "Require multifactor authentication",
"classicPolicyControlRequireMfaWhenNotAtWork": "Require multifactor authentication when not at work",
"classicPolicyDeleteCommand": "Delete",
"classicPolicyDeleteFailTitle": "Failed to delete classic policy",
"classicPolicyDeleteInProgressTitle": "Deleting classic policy",
"classicPolicyDeleteSuccessTitle": "Classic policy deleted",
"classicPolicyDetailBladeTitle": "Details",
"classicPolicyDisableCommand": "Disable",
"classicPolicyDisableConfirmation": "Are you sure you want to disable '{0}'? This action cannot be undone.",
"classicPolicyDisableFailDescription": "Failed to disable '{0}'",
"classicPolicyDisableFailTitle": "Failed to disable classic policy",
"classicPolicyDisableInProgressDescription": "Disabling '{0}'",
"classicPolicyDisableInProgressTitle": "Disabling classic policy",
"classicPolicyDisableSuccessDescription": "Successfully disabled '{0}'",
"classicPolicyDisableSuccessTitle": "Classic policy disabled",
"classicPolicyEasSupportedPlatforms": "Exchange ActiveSync supported platforms",
"classicPolicyEasUnsupportedPlatforms": "Exchange ActiveSync unsupported platforms",
"classicPolicyExcludedPlatformsTitle": "Excluded device platforms",
"classicPolicyFilterAll": "All policies",
"classicPolicyFilterDisabled": "Disabled policies",
"classicPolicyFilterEnabled": "Enabled policies",
"classicPolicyIncludeExcludeMembersDescription": "By excluding groups, you can perform phased migration of policies.",
"classicPolicyIncludeExcludeMembersTitle": "Include/exclude groups",
"classicPolicyIncludedPlatformsTitle": "Included device platforms",
"classicPolicyManualMigrationMessage": "This policy needs to be migrated manually.",
"classicPolicyMigrateCommand": "Migrate",
"classicPolicyMigrateConfirmation": "Are you sure you want to migrate '{0}'? This policy can only be migrated once.",
"classicPolicyMigrateFailDescription": "Failed to migrate '{0}'",
"classicPolicyMigrateFailTitle": "Failed to migrate classic policy",
"classicPolicyMigrateInProgressDescription": "Migrating '{0}'",
"classicPolicyMigrateInProgressTitle": "Migrating classic policy",
"classicPolicyMigrateRecommendText": "Recommendation: Migrate to the new Azure portal policies.",
"classicPolicyMigrateSuccessTitle": "Classic policy migrated successfully",
"classicPolicyMigratedSuccessDescription": "This classic policy can now be managed under Polices.",
"classicPolicyMigratedSuccessDescriptionMultiple": "This classic policy is migrated as {0} new policies. New policies can be managed under Policies.",
"classicPolicyNoEditPermissionMsg": "You don't have permission to edit this policy. Only global administrators and security administrators can edit the policy. Click here for more information.",
"classicPolicySaveFailDescription": "Failed to save '{0}'",
"classicPolicySaveFailTitle": "Failed to save classic policy",
"classicPolicySaveInProgressDescription": "Saving '{0}'",
"classicPolicySaveInProgressTitle": "Saving classic policy",
"classicPolicySaveSuccessDescription": "Successfully saved '{0}'",
"classicPolicySaveSuccessTitle": "Classic policy saved",
"clientAppBladeLegacyInfoBanner": "Legacy auth is currently not supported",
"clientAppBladeLegacyUpsellBanner": "Block unsupported client apps (Preview)",
"clientAppBladeTitle": "Client apps",
"clientAppDescription": "Select the client apps this policy will apply to",
"clientAppExchangeActiveSync": "Exchange ActiveSync",
"clientAppExchangeWarning": "Exchange ActiveSync currently does not support all other conditions",
"clientAppLearnMore": "Control user access to target specific client applications not using modern authentication.",
"clientAppLegacyHeader": "Legacy authentication clients",
"clientAppMobileDesktop": "Mobile apps and desktop clients",
"clientAppModernHeader": "Modern authentication clients",
"clientAppOnlySupportedPlatforms": "Apply policy only to supported platforms",
"clientAppSelectSpecificClientApps": "Select client apps",
"clientAppWebBrowser": "Browser",
"clientAppsSelectedLabel": "{0} included",
"clientTypeBrowser": "Browser",
"clientTypeEas": "Exchange ActiveSync clients",
"clientTypeEasInfo": "Exchange ActiveSync clients that use legacy authentication only.",
"clientTypeModernAuth": "Modern authentication clients",
"clientTypeOtherClients": "Other clients",
"clientTypeOtherClientsInfo": "This includes older office clients and other mail protocols(POP, IMAP, SMTP, etc). [Learn more][1]\n[1]: https://aka.ms/caclientapps\n",
"cloudAppCountDiffBannerText": "{0} cloud apps configured in this policy have been deleted from the directory, but this doesn't affect the other apps in the policy. The next time you update the application section of the policy, the deleted apps will be automatically removed from it.",
"cloudAppsSelectionBladeAllMicrosoftApps": "All Microsoft apps",
"cloudAppsSelectionExcludeAllMicrosoftClients": "Allow Microsoft cloud, desktop and mobile apps (Preview)",
"cloudappsSelectionBladeAllCloudapps": "All cloud apps",
"cloudappsSelectionBladeExcludeDescription": "Select the cloud apps to exempt from the policy",
"cloudappsSelectionBladeExcludedSelectorTitle": "Select excluded cloud apps",
"cloudappsSelectionBladeIncludeDescription": "Select the cloud apps this policy will apply to",
"cloudappsSelectionBladeIncludedSelectorTitle": "Select",
"cloudappsSelectionBladeSelectedCloudapps": "Select apps",
"cloudappsSelectorInfoBallonText": "Services which the user accesses to do work. For example, 'Salesforce'",
"cloudappsSelectorPluralExcluded": "{0} apps excluded",
"cloudappsSelectorPluralIncluded": "{0} apps included",
"cloudappsSelectorSingularExcluded": "1 app excluded",
"cloudappsSelectorSingularIncluded": "1 app included",
"cloudappsSelectorUserPlural": "{0} apps",
"cloudappsSelectorUserSingular": "1 app",
"conditionLabelMulti": "{0} conditions selected",
"conditionLabelOne": "1 condition selected",
"conditionalAccessBladeTitle": "Conditional Access",
"conditionsNotSelectedLabel": "Not configured",
"conditionsReqMfaReauthSet": "Some options are not available due to the \"Require multifactor authentication\" grant and \"sign-in frequency every time\" session control currently being selected",
"conditionsReqPwSet": "Some options are not available due to the \"Require password change\" grant currently being selected",
"configureCasText": "Configure Cloud App Security",
"configureCustomControlsText": "Configure custom policy",
"controlLabelMulti": "{0} controls selected",
"controlLabelOne": "1 control selected",
"controlValidatorText": "Please select at least one control",
"controlsBlockAccessInfoBubble": "ControlsBlockAccessInfoBubble",
"controlsDeviceComplianceAriaLabel": "Learn more about requiring compliant devices.",
"controlsDeviceComplianceInfoBubble": "Device must be Intune compliant. If the device is non-compliant, the user will be prompted to bring the device under compliance.",
"controlsDomainJoinedAriaLabel": "Learn more about requiring hybrid Azure AD joined devices.",
"controlsDomainJoinedInfoBubble": "Devices must be Hybrid Azure AD joined.",
"controlsMamAriaLabel": "Learn more about requiring approved client applications.",
"controlsMamInfoBubble": "Device must use these approved client applications.",
"controlsMfaInfoBubble": "User must complete additional security requirements like phone call, text",
"controlsOrAndInfoBubble": "ControlsOrAndInfoBubble",
"controlsRequireCompliantAppAriaLabel": "Learn more about requiring policy protected apps.",
"controlsRequireCompliantAppInfoBubble": "Device must use policy protected apps.",
"controlsRequirePasswordResetAriaLabel": "Learn more about requiring a password change.",
"controlsRequirePasswordResetInfoBubble": "Require password change to lower user risk. This option also requires multifactor authentication. Other controls can't be used.",
"countriesRadiobuttonInfoBalloonContent": "The country/region a sign-in is coming from is determined by the user's IP address.",
"createNewVpnCert": "New certificate",
"createdTimeLabel": "Creation time",
"customRoleLabel": "Custom roles (not supported)",
"dateRangeTypeLabel": "Date range",
"daysOfWeekPlaceholderText": "Filter days of the week",
"daysOfWeekTypeLabel": "Days of the week",
"deletePolicyNoLicenseText": "You can delete this policy now. Once deleted you will not be able to recreate it until you have the required licenses.",
"descriptionContentForControlsAndOr": "For multiple controls",
"devicePlatform": "Device platform",
"devicePlatformConditionHelpDescription": "Apply policy to selected device platforms.\n[Learn more][1]\n[1]: https://go.microsoft.com/fwlink/?linkid=2044750",
"devicePlatformInclude": "{0} included",
"devicePlatformIncludeExclude": "{0} and {1} excluded",
"devicePlatformNoSelectionError": "Select device platforms requires one sub-item to be selected.",
"devicePlatformsNone": "None",
"deviceSelectionBladeExcludeDescription": "Select the platforms to exempt from the policy",
"deviceSelectionBladeIncludeDescription": "Select the device platforms to include in this policy",
"deviceStateAll": "All device state",
"deviceStateCompliant": "Device marked as compliant",
"deviceStateCompliantInfoContent": "Devices that are Intune compliant will be excluded from the evaluation of this policy, so for example if the policy blocks access it will block all devices except devices that are Intune compliant.",
"deviceStateConditionConfigureInfoContent": "Configure policy based on device state",
"deviceStateConditionSelectorInfoContent": "Whether the device the user is signing in from is 'Hybrid Azure AD joined' or 'marked as compliant'.\n This has been deprecated. Use '{1}' instead.",
"deviceStateConditionSelectorLabel": "Device state (deprecated)",
"deviceStateDomainJoined": "Device Hybrid Azure AD joined",
"deviceStateDomainJoinedInfoContent": "Devices that are Hybrid Azure AD joined will be excluded from the evaluation of this policy, so for example if the policy blocks access it will block all devices except devices that are Hybrid Azure AD joined.",
"deviceStateDomainJoinedInfoLinkText": "Learn more.",
"deviceStateExcludeDescription": "Select the device state condition used to exclude devices from policy.",
"deviceStateIncludeAndExcludeOneLabel": "{0} and exclude {1}",
"deviceStateIncludeAndExcludeTwoLabel": "{0} and exclude {1}, {2}",
"directoryRoleInfoContent": "Assign policy to built-in directory roles.",
"directoryRolesLabel": "Directory roles",
"discardbutton": "Discard",
"downloadDefaultFileName": "IP Ranges",
"downloadExampleFileName": "Example",
"downloadExampleHeader": "This is an example file with demonstrations of the kinds of data which can be accepted. Lines starting with # will be ignored.",
"duplicate": "Duplicate",
"duplicatePolicyName": "{0} COPY",
"endDatePickerLabel": "Ends",
"endTimePickerLabel": "End time",
"enterCountryText": "IP address and Country/Region are evaluated in a pair. Select the Country.",
"enterIpText": "IP address and Country/Region are evaluated in a pair. Input the IP address.",
"enterUserText": "No user is selected. Select a user.",
"evaluationResult": "Evaluation result",
"exchangeActiveSyncSelectedLabel": "Exchange ActiveSync",
"exchangeActiveSyncSupportedPlatformOnlySelectedLabel": "Exchange ActiveSync with supported platforms only",
"excludeAllTrustedLocationSelectorText": "all trusted locations",
"featureRequiresP2": "This feature requires Azure AD Premium 2 license.",
"friday": "Friday",
"grantControls": "Grant controls",
"gridNetworkTrusted": "Trusted",
"gridPolicyCreatedDateTime": "Creation Date",
"gridPolicyEnabled": "Enabled",
"gridPolicyModifiedDateTime": "Modified Date",
"gridPolicyName": "Policy Name",
"gridPolicyState": "State",
"groupSelectionBladeExcludeDescription": "Select the groups to exempt from the policy",
"groupSelectionBladeExcludedSelectorTitle": "Select excluded groups",
"groupSelectionBladeSelect": "Select groups",
"groupSelectorInfoBallonText": "Groups in the directory that the policy applies to. For example, 'Pilot group'",
"groupsSelectionBladeTitle": "Groups",
"helpCommonScenariosText": "Interested in common scenarios?",
"helpCondition1": "When any user is outside the company network",
"helpCondition2": "When users in the 'Managers' group sign-in",
"helpConditionsTitle": "Conditions",
"helpControl1": "They're required to sign in with multifactor authentication",
"helpControl2": "They are required be on an Intune compliant or domain-joined device",
"helpControlsTitle": "Controls",
"helpIntroText": "Conditional Access gives you the ability to enforce access requirements when specific conditions occur. Let's take a few examples",
"helpIntroTitle": "What is Conditional Access?",
"helpLearnMoreText": "Want to learn more about Conditional Access?",
"helpStartStep1": "Create your first policy by clicking \"+ New policy\"",
"helpStartStep2": "Specify policy Conditions and Controls",
"helpStartStep3": "When you are done, don't forget to Enable policy and Create",
"helpStartTitle": "Get started",
"highRisk": "High",
"includeAndExcludeAppsTextFormat": "Include: {0}. Exclude: {1}.",
"includeAppsTextFormat": "Include: {0}.",
"includeUnknownAreasCheckboxInfoBalloonContent": "Unknown areas are IP addresses that can't be mapped to a country/region.",
"includeUnknownAreasCheckboxLabel": "Include unknown areas",
"infoCommandLabel": "Info",
"invalidCertDuration": "Invalid cert duration",
"invalidIpAddress": "Value must be a valid IP address",
"invalidReAuthSignInRiskOptionSelected": "The \"sign-in frequency every time\" session control does not allow the \"no risk\" selection in the \"sign-in risk\" condition control.",
"invalidUriErrorMsg": "Please enter a valid Uri. For example,'uri:contoso.com:acr' ",
"iosDisplayName": "iOS",
"linuxDisplayName": "Linux",
"loadAll": "Load all",
"loading": "Loading...",
"locationConfigureNamedLocationsText": "Configure all trusted locations",
"locationConfigureNamedLocationsUri": "{0}/usermanagement/mfasettings.aspx?tenantid={1}&culture={2}",
"locationNameTooLongError": "Location name is too long. Maximum is 256 characters",
"locationSelectionBladeExcludeDescription": "Select the locations to exempt from the policy",
"locationSelectionBladeIncludeDescription": "Select the locations to include in this policy",
"locationsAllLocationsLabel": "Any location",
"locationsAllNamedLocationsLabel": "All trusted IPs",
"locationsAllPrivateLinksLabel": "All Private Links in my tenant",
"locationsIncludeExcludeLabel": "{0} and exclude all trusted IPs",
"locationsSelectedPrivateLinksLabel": "Selected Private Links",
"lowRisk": "Low",
"macOsDisplayName": "macOS",
"managePoliciesLicenseText": "To manage Conditional Access policies, your organization needs Azure AD Premium P1 or P2.",
"manageSecurityDefaultsAriaLabel": "Manage security defaults settings.",
"markAsTrustedCheckboxInfoBalloonContent": "Signing in from a trusted location lowers a user's sign-in risk. Only mark this location as trusted if you know the IP ranges entered are established and credible in your organization.",
"markAsTrustedCheckboxLabel": "Mark as trusted location",
"mediumRisk": "Medium",
"memberSelectionCommandRemove": "Remove",
"menuItemClaimProviderControls": "Custom controls (Preview)",
"menuItemClassicPolicies": "Classic policies",
"menuItemInsightsAndReporting": "Insights and reporting",
"menuItemManage": "Manage",
"menuItemNamedLocationsPreview": "Named locations (Preview)",
"menuItemNamedNetworks": "Named locations",
"menuItemPolicies": "Policies",
"menuItemTermsOfUse": "Terms of use",
"modifiedTimeLabel": "Modified time",
"monday": "Monday",
"nameLabel": "Name",
"namedLocationCountryInfoBanner": "Only IPv4 addresses are mapped to countries/regions. IPv6 addresses are included in unknown countries/regions.",
"namedLocationTypeCountry": "Countries/Regions",
"namedLocationTypeLabel": "Define the location using:",
"namedLocationUpsellBanner": "This view has been deprecated. Go to the new and improved 'Named locations' view.",
"namedLocationsHelpDescription": "Named locations are used by Azure AD security reports to reduce false positives and Azure AD Conditional Access policies.\n[Learn more][1]\n[1]: https://aka.ms/namedlocationupdate",
"namedNetworkAddIpRanges": "Add a new IP range (ex: 40.77.182.32/27)",
"namedNetworkCountryNeeded": "You need to select at least one country/region",
"namedNetworkDeleteCommand": "Delete",
"namedNetworkDeleteDescription": "Are you sure you want to delete '{0}'? This action cannot be undone.",
"namedNetworkDeleteTitle": "Are you sure?",
"namedNetworkDownloadIpRange": "Download",
"namedNetworkInvalidRange": "Value must be a valid IP range.",
"namedNetworkIpRangeNeeded": "You need at least one valid IP range",
"namedNetworkIpRangesDescriptionContent": "Configure your organization's IP ranges",
"namedNetworkIpRangesTab": "IP ranges",
"namedNetworkListAdd": "New location",
"namedNetworkListConfigureTrustedIps": "Configure multifactor authentication trusted IPs",
"namedNetworkNameDescription": "Example: 'Redmond office'",
"namedNetworkNameInvalid": "The supplied name is invalid.",
"namedNetworkNameRequired": "You must supply a name for this location.",
"namedNetworkNoIpRanges": "No IP ranges",
"namedNetworkNotificationCreateDescription": "Creating location named '{0}'",
"namedNetworkNotificationCreateFailedDescription": "Creating location '{0}' failed. Please try again later.",
"namedNetworkNotificationCreateFailedTitle": "Failed to create location",
"namedNetworkNotificationCreateSuccessDescription": "Created location named '{0}'",
"namedNetworkNotificationCreateSuccessTitle": "Created '{0}'",
"namedNetworkNotificationCreateTitle": "Creating '{0}'",
"namedNetworkNotificationDeleteDescription": "Deleting location named '{0}'",
"namedNetworkNotificationDeleteFailedDescription": "Deleting location '{0}' failed. Please try again later.",
"namedNetworkNotificationDeleteFailedTitle": "Failed to Delete location",
"namedNetworkNotificationDeleteSuccessDescription": "Deleted location named '{0}'",
"namedNetworkNotificationDeleteSuccessTitle": "Deleted '{0}'",
"namedNetworkNotificationDeleteTitle": "Deleting '{0}'",
"namedNetworkNotificationUpdateDescription": "Updating location named '{0}'",
"namedNetworkNotificationUpdateFailedDescription": "Updating location '{0}' failed. Please try again later.",
"namedNetworkNotificationUpdateFailedTitle": "Failed to Update location",
"namedNetworkNotificationUpdateSuccessDescription": "Updated location named '{0}'",
"namedNetworkNotificationUpdateSuccessTitle": "Updated '{0}'",
"namedNetworkNotificationUpdateTitle": "Updating '{0}'",
"namedNetworkSearchPlaceholder": "Search locations.",
"namedNetworkUploadFailedDescription": "There was an error parsing the supplied file. Please make sure to upload a plain-text file with each line in the CIDR format.",
"namedNetworkUploadFailedTitle": "Failed to parse '{0}'",
"namedNetworkUploadInProgressDescription": "Attempting to parse valid CIDR values from '{0}'.",
"namedNetworkUploadInProgressTitle": "Parsing '{0}'",
"namedNetworkUploadInvalidDescription": "'{0}' is either too large or in an invalid format.",
"namedNetworkUploadInvalidTitle": "'{0}' Invalid",
"namedNetworkUploadIpRange": "Upload",
"namedNetworkUploadSuccessDescription": "{0} lines analyzed. {1} in a bad format. {2} skipped.",
"namedNetworkUploadSuccessTitle": "Finished parsing '{0}'",
"namedNetworksAdd": "New named location",
"namedNetworksConditionHelpDescription": "Control user access based on their physical location.\n[Learn more][1]\n[1]: http://aka.ms/ux_ca_locationcondition",
"namedNetworksExcludeLabel": "{0} and {1} excluded",
"namedNetworksHelpDescription": "Named locations are used by Azure AD security reports to reduce false positives and Azure AD Conditional Access policies.\n[Learn more][1]\n[1]: https://aka.ms/ux_ca_namedlocations",
"namedNetworksIncludeLabel": "{0} included",
"namedNetworksNone": "No named locations found.",
"namedNetworksTitle": "Configure locations",
"namednetworkExceedingSizeErrorBladeTitle": "Error details",
"namednetworkExceedingSizeErrorDetailText": "Click here for more details.",
"namednetworkExceedingSizeErrorMessage": "You have exceeded the maximum allowed storage for named locations. Try again with a shorter list. Click here to view more details.",
"needMfaSecondary": "\"Require multifactor authentication\" must be selected when \"Sign-in frequency every time\" is selected with \"Secondary authentication methods only\"",
"needMfaSpecificApps": "\"The \"sign-in frequency every time\" session control requires the \"Require multifactor authentication\" grant control when specifically-supported apps are selected",
"newCertName": "new cert",
"noAttributePermissionsError": "Insufficient privileges to create or update policy. Attribute definition reader role is required to add/edit dynamic filters.",
"noPolicyRowMessage": "No policies",
"noSPSelected": "No service principal selected",
"noUpdatePermissionMessage": "You don't have permissions to update these settings. Please contact your global administrator to get access.",
"noUserSelected": "No user selected",
"noneRisk": "No risk",
"office365Description": "These apps include Microsoft Flow, Microsoft Forms, Microsoft Teams, Office 365 Exchange Online, Office 365 SharePoint Online, Office 365 Yammer, and others.",
"office365InfoBox": "At least one of the apps selected is part of Office 365. We recommend setting the policy on the Office 365 app instead.",
"oneUserSelected": "1 user selected",
"onlyGlobalAdminsCanSaveThisPolicyConfig": "Only global administrators can save this policy.",
"or": "{0} OR {1} ",
"pickerDoneCommand": "Done",
"policiesBladeAdPremiumUpsellBannerText": "Create your own policies and target specific conditions like Cloud apps, Sign-in risk, and Device platforms with Azure AD Premium",
"policiesBladeTitle": "Policies",
"policiesBladeTitleWithAppName": "Policies: {0}",
"policiesDisabledBannerText": "Creating and editing policies is prohibited for applications with a linked sign-on attribute.",
"policiesHitMaxLimitStatusBarMessage": "You've reached the maximum number of policies for this tenant. Delete some policies before creating more.",
"policyAssignmentsSection": "Assignments",
"policyBlockAllInfoBox": "The configured policy will block all users, so it is not supported. Review the assignments and controls. Exclude the current user {0}, if you would like to save this policy.",
"policyCloudAppsDisplayTextAllApp": "All apps",
"policyCloudAppsLabel": "Cloud apps",
"policyConditionClientAppDescription": "Software the user is employing to access the cloud app. For example, 'Browser'",
"policyConditionClientAppV2Description": "Software the user is employing to access the cloud app. For example, 'Browser'",
"policyConditionDevicePlatform": "Device platforms",
"policyConditionDevicePlatformDescription": "Platform the user is signing in from. For example, 'iOS'",
"policyConditionLocation": "Locations",
"policyConditionLocationDescription": "Location (determined using IP address range) the user is signing in from",
"policyConditionLocationPreview": "Locations (Preview)",
"policyConditionSigninRisk": "Sign-in risk",
"policyConditionSigninRiskDescription": "Likelihood that the sign-in is coming from someone other than the user. Risk level can be high, medium or low. Requires Azure AD Premium 2 license.",
"policyConditionUserRisk": "User risk",
"policyConditionUserRiskDescription": "Configure user risk levels needed for policy to be enforced",
"policyConditioniClientApp": "Client apps",
"policyControlAllowAccessDisplayedName": "Grant access",
"policyControlAuthenticationStrengthDisplayedName": "Require authentication strength (Preview)",
"policyControlBladeTitle": "Grant",
"policyControlBlockAccessDisplayedName": "Block access",
"policyControlCompliantDeviceDisplayedName": "Require device to be marked as compliant",
"policyControlContentDescription": "Control access enforcement to block or grant access.",
"policyControlInfoBallonText": "Block access or select additional requirements which need to be satisfied to allow access",
"policyControlMfaChallengeDisplayedName": "Require multifactor authentication",
"policyControlRequireCompliantAppDisplayedName": "Require app protection policy",
"policyControlRequireDomainJoinedDisplayedName": "Require Hybrid Azure AD joined device",
"policyControlRequireMamDisplayedName": "Require approved client app",
"policyControlRequiredPasswordChangeDisplayedName": "Require password change",
"policyControlSelectAuthStrength": "Require authentication strength",
"policyControlsNoControlsSelected": "0 controls selected",
"policyControlsSection": "Access controls",
"policyCreatBladeTitle": "New",
"policyCreateButton": "Create",
"policyCreateFailedMessage": "Error: {0}",
"policyCreateFailedTitle": "Failed to create '{0}'",
"policyCreateInProgressTitle": "Creating '{0}'",
"policyCreateSuccessMessage": "Successfully created '{0}'. Policy will be enabled in a few minutes if you have \"Enable policy\" set to \"On\".",
"policyCreateSuccessTitle": "Successfully created '{0}'",
"policyDeleteConfirmation": "Are you sure you want to delete '{0}'? This action cannot be undone.",
"policyDeleteFailTitle": "Failed to delete '{0}'",
"policyDeleteInProgressTitle": "Deleting '{0}'",
"policyDeleteSuccessTitle": "Successfully deleted '{0}'",
"policyEnforceLabel": "Enable policy",
"policyErrorCannotSetSigninRisk": "You don't have permission to save a policy with a sign-in risk condition.",
"policyErrorNoPermission": "You don't have permission to save policy. Contact your global admin.",
"policyErrorUnknown": "Something went wrong, please try again later.",
"policyFallbackWarningMessage": "Failure to create or update '{0}' using MS Graph resulting in a fallback to AD Graph. Please investigate the following scenario as there is most likely a bug when calling the policy endpoint for MS Graph with an incompatible condition.",
"policyFallbackWarningTitle": "Creating or updating '{0}' partially successful",
"policyNameCannotBeEmpty": "Policy name can't be empty",
"policyNameDevice": "Device policy",
"policyNameFormat": "[{0}] {1}",
"policyNameMam": "Mobile App Management policy",
"policyNameMfaLocation": "Multifactor authentication and location policy",
"policyNamePlaceholderText": "Example: 'Device compliance app policy'",
"policyNameTooLongError": "Policy name is too long. Maximum 256 characters",
"policyOff": "Off",
"policyOn": "On",
"policyReportOnly": "Report-only",
"policyReviewSection": "Review",
"policySaveButton": "Save",
"policyStatusIconDescription": "Policy is Enabled",
"policyStatusIconEnabled": "Enabled status icon",
"policyTemplateName1": "Use app enforced restrictions for {0} browser access",
"policyTemplateName2": "Allow {0} access only on managed devices",
"policyTemplateName3": "Policy migrated from Continuous Access Evaluation settings",
"policyTriggerRiskSpecific": "Select specific risk level",
"policyTriggersInfoBalloonText": "Conditions which define when the policy will apply. For example, 'location'",
"policyTriggersNoConditionsSelected": "0 conditions selected",
"policyTriggersSelectorLabel": "Conditions",
"policyUpdateFailedMessage": "Error: {0}",
"policyUpdateFailedTitle": "Failed to update {0}",
"policyUpdateInProgressTitle": "Updating {0}",
"policyUpdateSuccessMessage": "Successfully updated {0}. Policy will be enabled in a few minutes if you have \"Enable policy\" set to \"On\".",
"policyUpdateSuccessTitle": "Successfully updated {0}",
"primaryCol": "Primary",
"privateLinkLabel": "Azure AD Private Link",
"reportOnlyInfoBox": "Report-only mode: Policies are evaluated and logged at sign-in but do not impact users.",
"requireAllControlsText": "Require all the selected controls",
"requireCompliantDevice": "Require compliant device",
"requireDomainJoined": "Require domain-joined device",
"requireGrantReauth": "The \"sign-in frequency every time\" session control requires a \"require multifactor authentication\" or \"require password change\" grant control when \"All cloud apps\" is selected",
"requireMFA": "Require multifactor authentication",
"requireMfaReauth": "The \"sign-in frequency every time\" session control requires the \"require multifactor authentication\" grant control for \"sign-in risk\"",
"requireOneControlText": "Require one of the selected controls",
"requirePasswordChangeReauth": "The \"sign-in frequency every time\" session control requires the \"require password change\" grant control for \"user risk\"",
"requireRiskReauth": "The \"sign-in frequency every time\" session control requires the \"user risk\" or \"sign-in risk\" session control when \"all cloud apps\" is selected.",
"requireRiskReauthRiskNotEnabled": "The \"sign-in frequency every time\" session control is not available when \"all cloud apps\" is selected.",
"requireRiskReauthSignInOnly": "The \"sign-in frequency every time\" session control requires the \"sign-in risk\" session control when \"all cloud apps\" is selected.",
"requireRiskReauthUserOnly": "The \"sign-in frequency every time\" session control requires the \"user risk\" session control when \"all cloud apps\" is selected.",
"resetFilters": "Reset filters",
"sPRequired": "Service principal required",
"sPSelectorInfoBalloon": "User or Service Principal you want to test",
"saturday": "Saturday",
"searchTextTooLongError": "The search text is too long. Maximum 256 characters",
"securityDefaultsPolicyName": "Security defaults",
"securityDefaultsTextMessage": "Security defaults must be disabled to enable Conditional Access policy.",
"securityDefaultsUpdateInProgressText": "A security defaults update is in progress, please wait a moment and try again.",
"securityDefaultsWarningMessage": "It looks like you're about to manage your organization's security configurations. That's great! You must first {0}disable security defaults{1} before enabling a Conditional Access policy.",
"selectDevicePlatforms": "Select device platforms",
"selectNamedNetworksSubtitle": "",
"selectNamedNetworksTitle": "Select locations",
"selectedSP": "Selected Service Principal",
"servicePrincipalBladeExcludedSelectorTitle": "Select excluded service principals",
"servicePrincipalBladeIncludedSelectorTitle": "Select service principals",
"servicePrincipalDataGridAria": "List of available service principals",
"servicePrincipalDropDownLabel": "What does this policy apply to?",
"servicePrincipalInfoBox": "Some conditions are not available due to '{0}' selection in policy assignment",
"servicePrincipalRadioAll": "All owned service principals",
"servicePrincipalRadioSelect": "Select service principals",
"servicePrincipalSelectionsAria": "Selected service principals grid",
"servicePrincipalSelectorAria": "List of chosen service principals",
"servicePrincipalSelectorMultiple": "{0} service principals selected",
"servicePrincipalSelectorSingle": "1 service principal selected",
"servicePrincipalSpecificExc": "Specific service principals excluded",
"servicePrincipalSpecificInc": "Specific service principals included",
"servicePrincipals": "Service principals",
"sessionControlBladeTitle": "Session",
"sessionControlDescriptionContent": "Control access based on session controls to enable limited experiences within specific cloud applications.",
"sessionControlDisableInfo": "This control only works with supported apps. Currently, Office 365, Exchange Online, and SharePoint Online are the only cloud apps that support app enforced restrictions. Click here to learn more.",
"sessionControlInfoBallonText": "Session controls enable limited experience within a cloud app.",
"sessionControls": "Session controls",
"sessionControlsAppEnforcedLabel": "Use app enforced restrictions",
"sessionControlsCasLabel": "Use Conditional Access App Control",
"sessionControlsSecureSignInLabel": "Require token binding",
"sharepointAppName": "SharePoint",
"signinRiskInclude": "{0} included",
"signinRiskReauth": "\"Sign-in risk\" condition must be selected when \"Require multifactor authentication\" grant and \"sign-in frequency every time\" session control are selected",
"signinRiskTriggerDescriptionContent": "Select the sign-in risk level",
"singleTenantServicePrincipalInfoBallonText": "Policy only applies to single tenant service principals owned by your organization. Click here to learn more ",
"specificSigninRiskLevelsOption": "Select specific sign-in risk levels",
"specificUsersExcluded": "specific users excluded",
"specificUsersIncluded": "Specific users included",
"specificUsersIncludedAndExcluded": "Specific users excluded and included",
"startDatePickerLabel": "Starts",
"startFreeTrial": "Start a free trial",
"startTimePickerLabel": "Start time",
"sunday": "Sunday",
"testButton": "What If",
"thumbprintCol": "Thumbprint",
"thursday": "Thursday",
"timeConditionAllTimesLabel": "Any time",
"timeConditionIntroText": "Configure the time this policy will apply to",
"timeConditionSelectorInfoBallonContent": "When the user is signing in. For example, \"Wednesday 9am-5pm PST\"",
"timeConditionSelectorLabel": "Time (Preview)",
"timeConditionSpecificLabel": "Specific times",
"timeSelectorAllTimesText": "Any time",
"timeSelectorSpecificTimesText": "Specific times configured",
"timeZoneDropdownInfoBalloonContent": "Select a time zone that defines the time range. This policy applies to users in all time zones. For example, 'Wednesday 9am - 5pm' for one user would be 'Wednesday 10am - 6pm' for a user in a different time zone.",
"timeZoneDropdownLabel": "Time zone",
"timeZoneDropdownPlaceholderText": "Select a time zone",
"tooManyPoliciesDescription": "Only first 50 policies are being displayed now, click here to view all policies",
"tooManyPoliciesTitle": "More than 50 policies found",
"trustedLocationStatusIconDescription": "Location is trusted",
"trustedLocationStatusIconEnabled": "Trusted status icon",
"tuesday": "Tuesday",
"uploadInBadState": "Unable to upload the specified file.",
"upsellAppsDescription": "Require multifactor authentication for sensitive applications all the time or only from outside the company network.",
"upsellAppsTitle": "Secure applications",
"upsellBannerText": "Get a free Premium trial to use this feature",
"upsellDataDescription": "Require device to be marked as compliant or Hybrid Azure AD joined to allow access to company resources.",
"upsellDataTitle": "Secure data",
"upsellDescription": "Conditional Access provides the control and protection you need to keep your corporate data secure, while giving your people an experience that allows them to do their best work from any device. For instance, you can restrict access from outside the company network or restrict access to devices which meet the compliance policies.",
"upsellRiskDescription": "Require multifactor authentication for risk events detected by Microsoft's machine learning system.",
"upsellRiskTitle": "Protect against risk",
"upsellTitle": "Conditional Access",
"upsellWhyTitle": "Why use Conditional Access?",
"userAppNoneOption": "None",
"userNamePlaceholderText": "Enter User Name",
"userNotSetSeletorLabel": "0 users and groups selected",
"userOnlySelectionBladeExcludeDescription": "Select the users to exempt from the policy",
"userOrGroupSelectionCountDiffBannerText": "{0} configured in this policy have been deleted from the directory, but this doesn't affect the other users and groups in the policy. The next time you update the policy, the deleted users and/or groups will be automatically removed.",
"userOrSPNotSetSelectorLabel": "0 users or workload identities selected",
"userOrSPSelectionBladeTitle": "Users or workload identities",
"userOrSPSelectorInfoBallonText": "Identities in the directory that the policy applies to, including users, groups, and service principals",
"userRequired": "User Required",
"userRiskErrorBox": "\"User risk\" condition must be selected when \"Require password change\" grant is selected",
"userRiskReauth": "\"User risk\" condition and not \"Sign-in risk\" must be selected when \"Require password change\" grant and \"Sign-in frequency every time\" session control are selected",
"userSPRequired": "User or Service principal required",
"userSPSelectorTitle": "User or Workload identity",
"userSelectionBladeAllUsersAndGroups": "All users and groups",
"userSelectionBladeExcludeDescription": "Select the users and groups to exempt from the policy",
"userSelectionBladeExcludeTabTitle": "Exclude",
"userSelectionBladeExcludedSelectorTitle": "Select excluded users and groups",
"userSelectionBladeIncludeDescription": "Select the users this policy will apply to",
"userSelectionBladeIncludeTabTitle": "Include",
"userSelectionBladeIncludedSelectorTitle": "Select",
"userSelectionBladeSelectUsers": "Select users",
"userSelectionBladeSelectedUsers": "Select users and groups",
"userSelectionBladeTitle": "Users and groups",
"userSelectorBladeTitle": "Users",
"userSelectorExcluded": "{0} excluded",
"userSelectorGroupPlural": "{0} groups",
"userSelectorGroupSingular": "1 group",
"userSelectorIncluded": "{0} included",
"userSelectorInfoBallonText": "Users and groups in the directory that the policy applies to. For example, 'Pilot group'",
"userSelectorSelected": "{0} selected",
"userSelectorTitle": "User",
"userSelectorUserAndGroup": "{0}, {1}",
"userSelectorUserPlural": "{0} users",
"userSelectorUserSingular": "1 user",
"userSelectorWithExclusion": "{0} and {1}",
"usersGroupsLabel": "Users and groups",
"viewApprovedAppsText": "See list of approved client apps",
"viewCompliantAppsText": "See list of policy protected client apps",
"viewPolicyInformation": "View policy information",
"vpnBladeTitle": "VPN connectivity",
"vpnCertCreateFailedMessage": "Error: {0}",
"vpnCertCreateFailedTitle": "Failed to create {0}",
"vpnCertCreateInProgressTitle": "Creating {0}",
"vpnCertCreateSuccessMessage": "Successfully created {0}.",
"vpnCertCreateSuccessTitle": "Successfully created {0}",
"vpnCertNoRowsMessage": "No VPN certificates found",
"vpnCertUpdateFailedMessage": "Error: {0}",
"vpnCertUpdateFailedTitle": "Failed to update {0}",
"vpnCertUpdateInProgressTitle": "Updating {0}",
"vpnCertUpdateSuccessMessage": "Successfully updated {0}.",
"vpnCertUpdateSuccessTitle": "Successfully updated {0}",
"vpnFeatureInfo": "For more information on VPN connectivity and Conditional Access, click here.",
"vpnFeatureWarning": "Once a VPN certificate is created in the Azure portal, Azure AD will start using it immediately to issue short lived certificates to the VPN client. It is critical that the VPN certificate be deployed immediately to the VPN server to avoid any issues with credential validation of the VPN client.",
"vpnMenuText": "VPN connectivity",
"vpncertDropdownDefaultOption": "Duration",
"vpncertDropdownInfoBalloonContent": "Select the duration for the cert you want to create",
"vpncertDropdownLabel": "Select duration",
"vpncertDropdownOneyearOption": "1 year",
"vpncertDropdownThreeyearOption": "3 years",
"vpncertDropdownTwoyearOption": "2 years",
"wednesday": "Wednesday",
"whatIfAppEnforcedControl": "Use app enforced restrictions",
"whatIfBladeDescription": "Test the impact of Conditional Access on a user when signing in under certain conditions.",
"whatIfBladeTitle": "What If",
"whatIfClassicPoliciesWarning": "Classic policies are not evaluated by this tool.",
"whatIfClientAppInfo": "The client app the user is signing in from. For example, 'Browser'.",
"whatIfCountry": "Country/Region",
"whatIfCountryInfo": "The country/region the user is signing in from.",
"whatIfDevicePlatformInfo": "The device platform the user is signing in from.",
"whatIfDeviceStateInfo": "The device state the user is signing in from",
"whatIfEnterIpAddress": "Enter IP address (ex: 40.77.182.32)",
"whatIfErrorInvalidIpAddress": "An invalid IP address was specified.",
"whatIfEvaResultApplication": "Cloud apps",
"whatIfEvaResultClientApps": "Client app",
"whatIfEvaResultDevicePlatform": "Device platform",
"whatIfEvaResultEmptyPolicy": "Empty policy",
"whatIfEvaResultInvalidCondition": "Invalid condition",
"whatIfEvaResultInvalidPolicy": "Invalid policy",
"whatIfEvaResultLocation": "Location",
"whatIfEvaResultNotEnoughInformation": "Not enough information",
"whatIfEvaResultPolicyNotEnabled": "Policy not enabled",
"whatIfEvaResultSignInRisk": "Sign-in risk",
"whatIfEvaResultUsers": "Users and groups",
"whatIfIpAddress": "IP address",
"whatIfIpAddressInfo": "IP address the user is signing in from.",
"whatIfIpCountryInfoBoxText": "If using an IP address or Country/Region, both fields will be required and should correctly map together.",
"whatIfPolicyAppliesTab": "Policies that will apply",
"whatIfPolicyAppliesTabWithCount": "Applicable policies ({0})",
"whatIfPolicyDoesNotApplyTab": "Policies that will not apply",
"whatIfPolicyDoesNotApplyTabWithCount": "Inapplicable policies ({0})",
"whatIfReasons": "Reasons why this policy will not apply",
"whatIfSelectClientApp": "Select a client app...",
"whatIfSelectCountry": "Select country/region...",
"whatIfSelectDevicePlatform": "Select device platform...",
"whatIfSelectPrivateLink": "Select private link...",
"whatIfSelectServicePrincipalRisk": "Select service principal risk...",
"whatIfSelectSignInRisk": "Select sign-in risk...",
"whatIfSelectType": "Select identity type",
"whatIfSelectUserRisk": "Select user risk...",
"whatIfServicePrincipalRiskInfo": "The risk level associated with the service principal",
"whatIfSignInRisk": "Sign-in risk",
"whatIfSignInRiskInfo": "The risk level associated with the sign-in",
"whatIfUnknownAreas": "Unknown Areas",
"whatIfUserPickerLabel": "Selected user",
"whatIfUserPickerNoRowsLabel": "No user or service principal selected",
"whatIfUserRiskInfo": "The risk level associated with the user",
"whatIfUserSelectorInfo": "User in the directory that you want to test",
"windows365InfoBox": "Selecting Windows 365 will affect connections to Cloud PCs and Azure Virtual Desktop session hosts. Click here to learn more.",
"windowsDisplayName": "Windows",
"windowsPhoneDisplayName": "Windows Phone",
"workloadIdentities": "Workload identities (preview)",
"workloadIdentitiesLicenseText": "A workload identities premium P1 or P2 license is required to edit this policy.",
"workloadIdentity": "Workload identity"
},
"AppResources": {
"AppSettingsUx": {
"assignmentFilterColumnHeader": "Filter",
"assignmentFilterTypeColumnHeader": "Filter mode",
"assignmentToast": "End user notifications",
"assignmentTypeTableHeader": "ASSIGNMENT TYPE",
"deadlineTimeColumnLabel": "Installation deadline",
"deliveryOptimizationPriorityHeader": "Delivery optimization priority",
"groupTableHeader": "Group",
"installContextLabel": "Install Context",
"isRemovable": "Install as removable",
"licenseTypeLabel": "License type",
"modeTableHeader": "Group mode",
"policySet": "Policy Set",
"restartGracePeriodHeader": "Restart grace period",
"startTimeColumnLabel": "Availability",
"tracks": "Tracks",
"uninstallOnRemoval": "Uninstall on device removal",
"updateMode": "Update Priority",
"vPN": "VPN"
},
"AppType": {
"aADWebApp": "AAD web app",
"androidEnterpriseSystemApp": "Android Enterprise system app",
"androidForWorkApp": "Managed Google Play store app",
"androidLobApp": "Android line-of-business app",
"androidStoreApp": "Android store app",
"builtInAndroid": "Built-In Android app",
"builtInApp": "Built-In app",
"builtInIos": "Built-In iOS app",
"iosIPadOSWebClip": "iOS/iPadOS web clip",
"iosLobApp": "iOS line-of-business app",
"iosStoreApp": "iOS store app",
"iosVppApp": "iOS volume purchase program app",
"lineOfBusinessApp": "Line-of-business app",
"macOSDmgApp": "macOS app (DMG)",
"macOSEdgeApp": "Microsoft Edge (macOS)",
"macOSLobApp": "macOS line-of-business app",
"macOSMdatpApp": "Microsoft Defender ATP (macOS)",
"macOSOfficeSuiteApp": "macOS Office Suite",
"macOsVppApp": "macOS volume purchase program app",
"managedAndroidLobApp": "Managed Android line-of-business app",
"managedAndroidStoreApp": "Managed Android store app",
"managedGooglePlayApp": "Managed Google Play store app",
"managedGooglePlayPrivateApp": "Managed Google Play private app",
"managedGooglePlayWebApp": "Managed Google Play web link",
"managedIosLobApp": "Managed iOS line-of-business app",
"managedIosStoreApp": "Managed iOS store app",
"microsoftStoreForBusinessApp": "Microsoft Store for Business app",
"microsoftStoreForBusinessReleaseManagedApp": "Microsoft Store for Business",
"officeAddIn": "Office add-in",
"officeSuiteApp": "Microsoft 365 Apps (Windows 10 and later)",
"sharePointApp": "SharePoint app",
"teamsApp": "Teams app",
"webApp": "Web link",
"winGetPublicApp": "Windows Package Manager Community Repository",
"winGetStoreApp": "Microsoft Store app (new)",
"windowsAppXLobApp": "Windows AppX line-of-business app",
"windowsClassicApp": "Windows app (Win32)",
"windowsEdgeApp": "Microsoft Edge (Windows 10 and later)",
"windowsMobileMsiLobApp": "Windows MSI line-of-business app",
"windowsPhone81AppXBundleLobApp": "Windows Phone 8.1 AppX line-of-business app",
"windowsPhone81AppXLobApp": "Windows Phone 8.1 AppX line-of-business app",
"windowsPhone81StoreApp": "Windows Phone 8.1 store app",
"windowsPhoneXapLobApp": "Windows Phone XAP line-of-business app",
"windowsStoreApp": "Microsoft Store app (legacy)",
"windowsUniversalAppXLobApp": "Windows Universal AppX line-of-business app",
"windowsUniversalLobApp": "Windows Universal line-of-business app",
"windowsWebApp": "Windows web link"
},
"AppTypePlatform": {
"android": "Android",
"ios": "iOS",
"macOs": "macOS",
"web": "Web",
"windows": "Windows"
},
"AssignmentAction": {
"exclude": "Excluded",
"include": "Included",
"includeAllDevicesVirtualGroup": "Included",
"includeAllUsersVirtualGroup": "Included"
},
"AssignmentToast": {
"hideAll": "Hide all toast notifications",
"showAll": "Show all toast notifications",
"showReboot": "Show toast notifications for computer restarts"
},
"DeliveryOptimizationPriority": {
"backgroundNormal": "Background",
"displayText": "Content download in {0}",
"foreground": "Foreground",
"header": "Delivery optimization priority"
},
"DeviceRestartBehaviorOptions": {
"allow": "App install may force a device restart",
"basedOnReturnCode": "Determine behavior based on return codes",
"force": "Intune will force a mandatory device restart",
"suppress": "No specific action"
},
"FilterType": {
"exclude": "Exclude",
"include": "Include",
"none": "None"
},
"InstallIntent": {
"available": "Available for enrolled devices",
"availableWithoutEnrollment": "Available with or without enrollment",
"notApplicable": "Not applicable",
"required": "Required",
"uninstall": "Uninstall"
},
"SettingType": {
"assignmentType": "Assignment type",
"deviceLicensing": "License type",
"installContext": "Uninstall on device removal",
"toastSettings": "End user notifications",
"vpnConfiguration": "VPN"
},
"UpdateMode": {
"default": "Default",
"postponed": "Postponed",
"priority": "High Priority"
}
},
"WindowsEnrollment": {
"DevicePreparation": {
"description": "Configure devices for initial provisioning and assign to users.",
"title": "Device preparation"
},
"EnrollmentSettings": {
"description": "Configure enrollment settings such as blocking enrollment and assign to users.",
"title": "Enrollment settings"
},
"coManagementAuthorityDesc": "Configure co-management settings for Configuration Manager integration",
"coManagementAuthorityTitle": "Co-management Settings ",
"deploymentProfiles": "Windows Autopilot deployment profiles",
"description": "Learn about the seven different ways a Windows 10/11 PC can be enrolled into Intune by users or admins.",
"descriptionLabel": "Windows enrollment methods",
"enrollmentStatusPage": "Enrollment Status Page"
},
"Win32Program": {
"DeviceRestartBehaviorOptions": {
"allow": "App install may force a device restart",
"basedOnReturnCode": "Determine behavior based on return codes",
"force": "Intune will force a mandatory device restart",
"suppress": "No specific action"
},
"RunAsAccountOptions": {
"system": "System",
"user": "User"
},
"availableUninstall": "Allow available uninstall",
"availableUninstallTooltip": "Select 'Yes' to provide the uninstall option for this app for users from the Company Portal. Select 'No' to prevent users from uninstalling the app from the Company Portal.",
"bladeTitle": "Program",
"deviceRestartBehavior": "Device restart behavior",
"deviceRestartBehaviorTooltip": "Select the device restart behavior after the app has successfully installed. Select 'Determine behavior based on return codes' to restart the device based on the return codes configuration settings. Select 'No specific action' to suppress device restarts during the app install for MSI-based apps. Select 'App install may force a device restart' to allow the app install to complete without suppressing restarts. Select 'Intune will force a mandatory device restart' to always restart the device after successful app installation.",
"header": "Specify the commands to install and uninstall this app:",
"installCommand": "Install command",
"installCommandMaxLengthErrorMessage": "Install command cannot exceed the maximum allowed length of 1024 characters.",
"installCommandTooltip": "The complete installation command line used to install this app.",
"runAs32Bit": "Run install and uninstall commands in a 32-bit process on 64-bit clients",
"runAs32BitTooltip": "Select 'Yes' to install and uninstall the app in a 32-bit process on 64-bit clients. Select 'No' (default) to install and uninstall the app in a 64-bit process on 64-bit clients. 32-bit clients will always use a 32-bit process.",
"runAsAccount": "Install behavior",
"runAsAccountTooltip": "Select 'System' to install this app for all users if supported. Select 'User' to install this app for the logged-in user on the device. For dual-purpose MSI apps, changes will prevent updates and uninstalls from successfully completing until the value applied to the device at the time of the original install is restored.",
"selectorLabel": "Program",
"uninstallCommand": "Uninstall command",
"uninstallCommandTooltip": "The complete uninstallation command line used to uninstall this app."
},
"CategoryDescription": {
"androidGeneralApplicationRestrictions": "Use these settings to stay informed about which users install apps that are not approved for use in your company. Select the type of restricted app list:<br><br>\n Prohibited apps - A list of apps that you want to be informed about when users install them.<br>\n Approved apps - A list of apps that are approved for use in your company. When users install an app that is not in this list, you will be informed.<br>\n ",
"androidZebraMxZebraMx": "Configure Zebra devices by uploading a MX profile in XML format.",
"iosDeviceFeaturesAirprint": "Use these settings to configure iOS devices to automatically connect to AirPrint compatible printers on your network. You'll need the IP address and resource path of your printers.",
"iosDeviceFeaturesExtensibleSingleSignOn": "Configure an app extension that enables single sign-on (SSO) for devices running iOS 13.0 or later.",
"iosDeviceFeaturesHomeScreenLayout": "Configure the layout for the dock and Home Screens on iOS devices. Certain devices may have limits to how many items can be displayed.",
"iosDeviceFeaturesIOSWallpaper": "Display an image that will appear on the Home Screen and/or the lock screen of iOS devices.\n To display a unique image in each location, create one profile with the lock screen image, and one with the Home Screen image.\n Then assign both profiles to your users.\n <br>\n <ul>\n <li>Max file size: 750 KB</li>\n <li>File type: PNG, JPG or JPEG</li>\n </ul>\n ",
"iosDeviceFeaturesNotifications": "Specify notification settings for apps. Supports iOS 9.3 and later.",
"iosDeviceFeaturesSharedDevice": "Specify optional text displayed on the locked screen. It is supported on iOS 9.3 and later. <a href=\"https://go.microsoft.com/fwlink/?linkid=2056394\" target=\"_blank\">Learn More</a>",
"iosGeneralApplicationRestrictions": "Use these settings to stay informed about which users install apps that are not approved for use in your company. Select the type of restricted app list:<br><br>\n Prohibited apps - A list of apps that you want to be informed about when users install them.<br>\n Approved apps - A list of apps that are approved for use in your company. When users install an app that is not in this list, you will be informed.<br>\n ",
"iosGeneralApplicationVisibility": "Use the show apps list to specify the iOS apps that user can view or launch. Use the hidden apps list to specify the iOS apps that user cannot view or launch.",
"iosGeneralAutonomousSingleAppMode": "Apps you add to this list and assign to a device can lock the device to run only that app once launched, or lock the device while a certain action is running (for example taking a test). Once the action is complete, or you remove the restriction, the device returns to its normal state.",
"iosGeneralKiosk": "Kiosk mode locks various settings into a device, or specifies a single app that can be run on a device. This can be useful in environments like a retail store where you want a device to run only a single demo app.",
"macDeviceFeaturesAirprint": "Use these settings to configure macOS devices to automatically connect to AirPrint compatible printers on your network. You'll need the IP address and resource path of your printers.",
"macDeviceFeaturesAssociatedDomains": "Configure associated domains to share data and sign-in credentials between your orgs apps and websites. This profile can be applied to devices running macOS 10.15 or later.",
"macDeviceFeaturesExtensibleSingleSignOn": "Configure an app extension that enables single sign-on (SSO) for devices running macOS 10.15 or later.",
"macDeviceFeaturesLoginItems": "Choose which apps, files, and folders open when users log in to their devices. If you don't want users to change how the selected apps open, you can hide the app from the user configuration.",
"macDeviceFeaturesLoginWindow": "Configure the appearance of the macOS login screen and the functions that are available to users before and after they log in.",
"macExtensionsKernelExtensions": "Use these settings to configure kernel extension policy on macOS devices running 10.13.2 or later.",
"macGeneralDomains": "Emails that the user sends or receives which don't match the domains you specify here will be marked as untrusted.",
"windows10EndpointProtectionApplicationGuard": "While using Microsoft Edge, Microsoft Defender Application Guard protects your environment from sites that havent been defined as trusted by your organization. When users visit sites that arent listed in your isolated network boundary, the sites will be opened in a virtual browsing session in Hyper-V. Trusted sites are defined by a network boundary, which can be configured in Device Configuration. Note this feature is only available for devices running 64-bit Windows 10 or later.",
"windows10EndpointProtectionCredentialGuard": "Enabling Credential Guard will enable the following required settings:\n <br>\n <ul>\n <li>Enable Virtualization-based Security: Turns on virtualization-based security (VBS) at next reboot. Virtualization-based security uses the Windows Hypervisor to provide support for security services.</li>\n <br>\n <li>Secure Boot with Direct Memory Access: Turns on VBS with Secure Boot and direct memory access (DMA).</li>\n </ul>\n ",
"windows10EndpointProtectionDeviceGuard": "Choose additional apps that either need to be audited by, or can be trusted to run by Microsoft Defender Application Control. Windows components and all apps from Windows store are automatically trusted to run. <br><br>\n Applications will not be blocked when running in “audit only” mode. “Audit only” mode logs all events in local client logs.\n ",
"windows10GeneralPrivacyPerApp": "Add apps that should have a different privacy behavior from what you defined in “Default privacy”.",
"windows10NetworkBoundaryNetworkBoundary": "The network boundary is the list of enterprise resources, such as cloud-hosted domain and IP address ranges for computers that are on the enterprise network. Define network boundaries to apply policies to protect data that resides in these locations.",
"windowsHealthMonitoring": "Configure the Windows health monitoring policy.",
"windowsPhoneGeneralApplicationRestrictions": "Windows Phone can block users from installing or launching apps specified in the prohibited apps list, or apps not specified in the approved apps list. All managed apps must be added to the approved list."
},
"Inputs": {
"accountDomain": "Account domain",
"accountDomainHint": "e.g. contosodomain",
"accountDomainInfoBalloon": "Specify the users account domain.",
"accountTypeInfoBalloon": "Specify the account type being configured based on the authentication model",
"allowContactSetting": "Allow user to change contact setting",
"allowContactSyncInfoBalloon": "Specify if the user is allowed to change the contact sync setting",
"allowUserChange": "Allow user to change setting",
"androidPackageNamePreset": "com.microsoft.word",
"androidPackageNameValidation": "Please enter a package name similar to com.microsoft.word",
"androidUrlValidation": "Enter a valid url similar to https://play.google.com/store/apps/details?id=com.microsoft.bing&hl=en",
"appInstallContext": "App install context",
"appUrlLabel": "Appstore URL",
"appleUrlValidation": "Enter a valid url similar to https://www.itunes.apple.com/us/app/microsoft-excel/id586683407?mt=8",
"applicableDeviceType": "Applicable device type",
"assignmentActionLabel": "Mode",
"authenticationMethodInfoBalloon": "Specify the authentication method for the user",
"authenticationMetod": "Authentication method",
"authenticationType": "Authentication type",
"authenticationTypeInfoBalloon": "Specify the authentication type for the user",
"availableLicenseCount": "Available licenses",
"basicAuth": "Basic authentication",
"biometricsInfoBalloon": "Biometrics, such as TouchID or FaceID, can be required for users to access the app on their device. When required, biometrics are used in addition to the authentication method selected in this profile. This setting should not be enabled when Intune App Protection Policies are deployed, as the app protection policy includes access requirements prior to accessing managed data. Enabling both will result in multiple access prompts to access Outlook mobile. When set as not configured, the default app setting is set to Off. ",
"bookNameLabel": "Book name",
"bundleDescriptionHint": "Enter a description that describes the apps included.",
"calendar": "Calendar",
"categoryLabel": "Category",
"categoryNameLabel": "Default name",
"certProfileType": "Certificate profile type",
"certificate": "Certificate",
"certificates": "Certificates",
"commandLineLabel": "Command-line arguments",
"commandLineSizeHint": "The maximum length of the command-line arguments text is 1024 characters",
"configurationSettingsFormatLabel": "Configuration settings format",
"configurationSettingsLabel": "Settings format",
"contactSync": "Save Contacts",
"contactSyncInfoBalloon": "Saving contacts to the mobile devices native address book allows new calls and text messages to be linked with the users existing Outlook contacts. When set as not configured, the default app setting is set to Off.",
"contacts": "Contacts",
"createdDateTime": "Created",
"defaultCategoryHint": "Default categories cannot be changed",
"deploySMimeCertsFromIntune": "Deploy S/MIME certificates from Intune",
"descriptionGenericLabel": "Description",
"descriptionHint": "Enter a description...",
"descriptionLabel": "Description",
"descriptionSizeHint": "The length of the description should be no longer than 10,000 characters",
"developerLabel": "Developer",
"developerSizeHint": "The maximum length of the developer name is 256 characters.",
"disable": "Disable",
"disabled": "Disabled",
"displayNameLabel": "Name",
"displayVersionHint": "Enter the app version",
"displayVersionLabel": "App Version",
"displayVersionLengthCheck": "The length of the display version should be a maximum of 130 characters",
"eBookCategoryNameLabel": "Default name",
"emailAccount": "Email account name",
"emailAccountHint": "e.g. Corporate Email",
"emailAccountInfoBalloon": "Specify the display name for the email account as it will appear to users on their devices",
"emailAddressAttribute": "Email address attribute from AAD",
"emailAddressInfoBalloon": "Specify the email address to be used for sending and receiving mail",
"emailServer": "Email Server",
"emailServerHint": "e.g. mail.contoso.com",
"emailServerInfoBalloon": "Specify the host name of your Exchange Server",
"enable": "Enable",
"enableSMime": "Enable S/MIME",
"enabled": "Enabled",
"encryptAllEmails": "Encrypt all emails",
"encryptionCertificates": "Encryption certificates",
"endUserNotifications": "End-user notifications",
"enrollmentTypeLabel": "Device enrollment type",
"externalRecipients": "External recipients MailTip",
"externalRecipientsInfoBalloon": "The External Recipients MailTip is displayed if the sender adds a recipient that's external or adds a distribution group that contains external recipients. This MailTip informs senders if a message they're composing will leave the organization, helping them make the correct decisions about wording, tone, and content. Available only for Exchange Online accounts and on-premises accounts leveraging hybrid modern authentication. When set as not configured, the default app setting is set to On.",
"focusedInbox": "Focused Inbox",
"focusedInboxInfoBalloon": "Focused Inbox separates your inbox into two tabs—Focused and Other. Your most important emails are on the Focused tab while the rest remain easily accessible—but out of the way—on the Other tab. When set as not configured, the default app setting is set to On. ",
"gmailNineAmountOfEmail": "Amount of email to synchronize",
"gmailNineAuthenticationMethodInfoBalloon": "Select how you want users to authenticate to the email server. Use certificates to provide the most secure and seamless experience for end users. Certificate based authentication is not yet available because SCEP and PKCS certificate profiles for device owner devices are not available. ",
"gmailNineCertificateUPNInfoBalloon": "The certificate must include user principal name (UPN) as a subject alternative name.",
"gmailNineEmailAddressInfoBalloon": "The attribute Intune gets from Azure AD to dynamically generate the email address that will be used by the profile e.g. MyName@contoso.com (UPN).<a href=\"https://docs.microsoft.com/en-us/intune-azure/configure-devices/how-to-configure-email-settings\"> Learn more about AAD attributes for email profiles.</a>",
"gmailNineEmailServerInfoBalloon": "The Exchange location (URL) of the email server to which the app you specified connects to get email.",
"gmailNineEmailSynchronizeInfoBalloon": "Control how much email the client will synchronize.",
"gmailNineSSLInfoBalloon": "Enable SSL to help secure all communications with the email server.",
"gmailNineUsernameInfoBalloon": "The attribute Intune gets from Azure AD to dynamically generate the username that will be used by the profile e.g. MyName@contoso.com (UPN) or MyName (username). <a href=\"https://docs.microsoft.com/en-us/intune-azure/configure-devices/how-to-configure-email-settings\"> Learn more about AAD attributes for email profiles.</a>",
"ignoreVersionDetection": "Ignore app version",
"informationUrlLabel": "Information URL",
"informationUrlSizeHint": "The maximum length of the information url is 1024 characters",
"installAsManaged": "Install as managed",
"installationSourceLabel": "App type",
"installerTypeInfoBalloon": "The installer type of the application package.",
"installerTypeLabel": "Installer Type",
"isFeatured": "Show this as a featured app in the Company Portal",
"isMAMEnabledToggleLabel": "Yes",
"lastModifiedDateTime": "Last updated Time",
"ldapUrl": "LDAP URL",
"licensingType": "Supports device context assignment",
"microsoft": "Microsoft",
"minimumOperationSystem": "Minimum operating system",
"modernAuth": "Modern authentication",
"nameHint": "Enter a name",
"nameLabel": "Name",
"nameSizeHint": "The maximum length of the name is 512 characters.",
"notConfigured": "Not configured",
"notesLabel": "Notes",
"notesSizeHint": "The maximum length of the notes text is 1024 characters.",
"notificationType": "Notification type",
"oneDay": "One Day",
"oneMonth": "One Month",
"oneWeek": "One Week",
"outlookSMimeSettings": "Outlook S/MIME settings",
"ownerLabel": "Owner",
"ownerSizeHint": "The maximum length of the owner name is 256 characters.",
"packageIdLabel": "Package Identifier",
"packageNameLabel": "Package name",
"pivCredentialNotConfigured": "You haven't selected a derived credential issuer for your tenant. You'll need to configure one before you can successfully apply this policy to devices.",
"platformLabel": "Platform",
"policyDescriptionLabel": "Description",
"policyNameLabel": "Name",
"primarySMTPAddress": "Primary SMTP Address",
"privacyUrlLabel": "Privacy URL",
"publisherHint": "Enter a publisher name",
"publisherLabel": "Publisher",
"publisherSizeHint": "The length of the publisher name should be between 2 and 1024 characters (inclusive)",
"require": "Require",
"requireBiometrics": "Require Biometrics to access app",
"sAMAccountName": "sAMAccountName",
"scopeTagsRequired": "At least one scope tag is required",
"searchAppLabel": "Select app",
"searchAppLinkText": "Search the App Store",
"searchWinGetPublicRepositoryLinkText": "Search the Windows Package Manager Community Repository",
"searchWinGetStoreRepositoryLinkText": "Search the Microsoft Store app (new)",
"selectAAD": "Select an AAD attribute",
"selectAppFileLabel": "Select file",
"selectAppFileLinkText": "Select app package file",
"selectAppFileToUpdateLabel": "Select file to update",
"selectAuthMethod": "Select an authentication method",
"selectAuthType": "Select an authentication type",
"selectCertificate": "Select a certificate",
"signAllEmails": "Sign all emails",
"signingCertificates": "Signing certificates",
"ssl": "SSL",
"suiteDescriptionLabel": "Suite Description",
"suiteNameLabel": "Suite Name",
"tasks": "Tasks",
"threeDays": "Three Days",
"totalLicenseCount": "Total licenses",
"twoWeeks": "Two Weeks",
"unifiedAssignmentsLabel": "Assign to:",
"unlimited": "Unlimited",
"urlHint": "Enter a valid url",
"useManagedBrowserHint": "Android and iOS only. Learn more",
"useManagedBrowserLabel": "Require a managed browser to open this link",
"userPrinicipalName": "User Principal Name",
"username": "Username",
"usernameAttribute": "Username attribute from AAD",
"usernameAttributreInfoBalloon": "Specify the User Principal Name for the email profile that will be used to authenticate the account",
"usernamePassword": "Username and password",
"webAppUrlHint": "Enter a valid url beginning with http:// or https://",
"webAppUrlLabel": "App URL",
"webAppUrlSizeHint": "The maximum length of the app url is 1024 characters",
"windowsUrlValidation": "Enter a valid URL similar to https://www.microsoft.com/en-us/store/p/lync/9wzdncrfhvhm",
"xMLDataEntered": "XML Data Entered",
"xmlFormatInvalid": "XML policy format is invalid.",
"xmlTooLarge": "Input size must be less than 1 MB."
},
"WindowsFeatureUpdate": {
"EndOFSupportStatus": {
"notSupported": "Not supported",
"supportEnding": "Support ending",
"supported": "Supported"
}
},
"SecurityTemplate": {
"aSR": "Attack surface reduction",
"accountProtection": "Account protection",
"allDevices": "All devices",
"antivirus": "Antivirus",
"antivirusReporting": "Antivirus Reporting (Preview)",
"conditionalAccess": "Conditional access",
"deviceCompliance": "Device compliance",
"diskEncryption": "Disk encryption",
"eDR": "Endpoint detection and response",
"ePM": "Endpoint Privilege Management",
"firewall": "Firewall",
"helpSupport": "Help and support",
"setup": "Setup",
"wdapt": "Microsoft Defender for Endpoint"
},
"Win32ReturnCodes": {
"CodeTypes": {
"failed": "Failed",
"hardReboot": "Hard reboot",
"retry": "Retry",
"softReboot": "Soft reboot",
"success": "Success"
},
"Columns": {
"codeType": "Code type",
"returnCode": "Return code"
},
"bladeTitle": "Return codes",
"gridAriaLabel": "Return codes",
"header": "Specify return codes to indicate post-installation behavior:",
"onAddAnnounceMessage": "Return code added item {0} of {1}",
"onDeleteSuccess": "Return code {0} deleted successfully",
"returnCodeAlreadyUsedValidation": "Return code is already used.",
"returnCodeMustBeIntegerValidation": "Return code should be an integer.",
"returnCodeShouldBeAtLeast": "Return code should be at least {0}.",
"returnCodeShouldBeAtMost": "Return code should be at most {0}.",
"selectorLabel": "Return codes"
},
"NotificationMessage": {
"NotificationMessageTemplatesTab": {
"arabic": "Arabic",
"bulgarian": "Bulgarian",
"chineseSimplified": "Chinese (Simplified)",
"chineseTraditional": "Chinese (Traditional)",
"croatian": "Croatian",
"czech": "Czech",
"danish": "Danish",
"dutch": "Dutch",
"englishUK": "English (United Kingdom)",
"englishUS": "English (United States)",
"estonian": "Estonian",
"finnish": "Finnish",
"frenchCanada": "French (Canada)",
"frenchFrance": "French (France)",
"german": "German",
"greek": "Greek",
"hebrew": "Hebrew",
"hungarian": "Hungarian",
"italian": "Italian",
"japanese": "Japanese",
"korean": "Korean",
"latvian": "Latvian",
"lithuanian": "Lithuanian",
"norwegian": "Norwegian, Bokmål",
"polish": "Polish",
"portugueseBrazil": "Portuguese (Brazil)",
"portuguesePortugal": "Portuguese (Portugal)",
"romanian": "Romanian",
"russian": "Russian",
"serbian": "Serbian",
"slovak": "Slovak",
"slovenian": "Slovenian",
"spanishMexico": "Spanish (Mexico)",
"spanishSpain": "Spanish (Spain)",
"swedish": "Swedish",
"thai": "Thailand",
"turkish": "Turkish",
"ukrainian": "Ukrainian"
},
"Summary": {
"placeholder": "Select a notification message from the left to preview contents."
},
"companyContact": "Email footer - Include contact information",
"companyLogo": "Email header - Include company logo",
"companyName": "Email footer - Include company name",
"createEditDescription": "Create or edit notification message templates.",
"createMessage": "Create message",
"editImpactInfo": "Editing this notification message template will affect all policies which are using this template.",
"editMessage": "Edit message",
"email": "email",
"formSubTitle": "Create or modify notification emails",
"infotext": "Select a notification messsage. To create a new notification, please visit Notification in the Manage section of the Set Device Compliance workload.",
"iwLink": "Company Portal Website Link",
"listEmpty": "No message templates.",
"listEmptySelectOnly": "No message templates. To create a new notification, please visit Notifications in the Manage section of the Set Device Compliance workload.",
"listSubTitle": "List of notification message templates",
"listTitle": "Notification message templates",
"localizedNotificationMessageTemplates": "Localized notification message templates",
"messageAssigned": "Cannot delete this message template, because it is currently being used by one or more compliance policies.",
"messageCapitalized": "Notification message template",
"messageLowercase": "notification message template",
"missingDefaultError": "Select a default template",
"notificationMessageTemplates": "Notification message templates",
"rowValidationError": "At least one message template is required",
"selectDescription": "Select a notification message. To create a new notification, please visit Notifications in the Manage section of the Set Device Compliance workload.",
"testEmailLabel": "Send preview email",
"localeLabel": "Locale",
"isDefaultLocale": "Is Default"
},
"WindowsQualityUpdateProfile": {
"Details": {
"DaysUntilForcedReboot": {
"label": "Number of days to wait before restart is enforced"
},
"Description": {
"label": "Description"
},
"Name": {
"label": "Name"
},
"QualityUpdateRelease": {
"label": "Expedite installation of quality updates if device OS version less than:"
},
"bladeTitle": "Quality updates Windows 10 and later (preview)",
"loadError": "Loading failed!"
},
"TabName": {
"qualityUpdateSettings": "Settings"
},
"infoBoxText": "The only dedicated quality update control currently available other than the existing update rings policy for Windows 10 and later is the ability to expedite quality updates for devices that fall behind a specified patch level. Additional controls will be available in the future.",
"licenseLearnMoreText": "Learn more about pre-requisites and quality update policies.",
"licenseWarningBoxText": "Creating quality update policies requires specific licensing.",
"warningBoxText": "While expediting software updates can help decrease the time to get to compliance when necessary, it has a larger impact on end-user productivity. The chances that they will experience a restart during business hours is significantly increased."
},
"TermsOfUse": {
"Languages": {
"addLanguage": "Add language",
"af": "Afrikaans",
"am": "Amharic",
"arSA": "Arabic (Saudi Arabia)",
"as": "Assamese",
"az": "Azerbaijani",
"be": "Belarusian",
"bg": "Bulgarian",
"bn": "Bangla",
"bnIN": "Bangla (India)",
"bs": "Bosnian",
"ca": "Catalan",
"caESvalencia": "Valencian (Spain)",
"cs": "Czech",
"cy": "Welsh",
"da": "Danish",
"de": "German",
"default": "Default",
"defaultDetailsTag": "{0} (Default)",
"el": "Greek",
"en": "English",
"enGB": "English (United Kingdom)",
"es": "Spanish",
"esMX": "Spanish (Mexico)",
"et": "Estonian",
"eu": "Basque",
"fa": "Persian",
"fi": "Finnish",
"fil": "Filipino",
"fr": "French",
"frCA": "French (Canada)",
"ga": "Irish",
"gd": "Scottish Gaelic",
"gl": "Galician",
"gu": "Gujarati",
"ha": "Hausa",
"he": "Hebrew",
"hi": "Hindi",
"hr": "Croatian",
"hu": "Hungarian",
"hy": "Armenian",
"id": "Indonesian",
"ig": "Igbo",
"is": "Icelandic",
"it": "Italian",
"ja": "Japanese",
"ka": "Georgian",
"kk": "Kazakh",
"km": "Khmer",
"kn": "Kannada",
"ko": "Korean",
"kok": "Konkani",
"kuArab": "Central Kurdish (Arabic)",
"ky": "Kyrgyz",
"languageOptions": "Language Options",
"lb": "Luxembourgish",
"lo": "Lao",
"lt": "Lithuanian",
"lv": "Latvian",
"mi": "Maori",
"mk": "Macedonian",
"ml": "Malayalam",
"mn": "Mongolian",
"mr": "Marathi",
"ms": "Malay",
"mt": "Maltese",
"ne": "Nepali",
"nl": "Dutch",
"nnNO": "Norwegian, Nynorsk (Norway)",
"no": "Norwegian",
"notSpecified": "Language not specified",
"nso": "Sesotho sa Leboa",
"or": "Odia",
"paArabPK": "Punjabi (Islamic Republic of Pakistan)",
"paIN": "Punjabi (India)",
"pl": "Polish",
"prs": "Dari",
"ptBR": "Portuguese (Brazil)",
"ptPT": "Portuguese (Portugal)",
"quz": "Quechua",
"removeLanguage": "Remove language",
"ro": "Romanian",
"ru": "Russian",
"rw": "Kinyarwanda",
"sd": "Sindhi",
"si": "Sinhala",
"sk": "Slovak",
"sl": "Slovenian",
"sq": "Albanian",
"srCyrlBA": "Serbian (Cyrillic, Bosnia and Herzegovina)",
"srCyrlRS": "Serbian (Cyrillic, Serbia)",
"srLatnRS": "Serbian (Latin, Serbia)",
"sv": "Swedish",
"sw": "Kiswahili",
"ta": "Tamil",
"te": "Telugu",
"tg": "Tajik",
"th": "Thai",
"ti": "Tigrinya",
"tk": "Turkmen",
"tn": "Setswana",
"tr": "Turkish",
"tt": "Tatar",
"ug": "Uyghur",
"uk": "Ukrainian",
"ur": "Urdu",
"uz": "Uzbek",
"vi": "Vietnamese",
"wo": "Wolof",
"xh": "isiXhosa",
"yo": "Yoruba",
"zhHans": "Chinese (Simplified)",
"zhHant": "Chinese (Traditional)",
"zu": "isiZulu"
},
"AcceptanceExpirationFrequency": {
"annually": "Annually",
"biannually": "Bi-annually",
"monthly": "Monthly",
"quarterly": "Quarterly"
},
"Wizard": {
"AgreementTargetEntityScope": {
"NotSelected": {
"label": "None selected"
},
"selectEntityTitle": "Select group",
"title": "Select group"
},
"PolicyFile": {
"Languages": {
},
"Validations": {
"duplicateLanguage": "Oops, {0} appears to be selected multiple times. Language selection must be unique."
}
},
"PolicyTemplate": {
"InfoBox": {
"allGuestsAllApps": "A conditional access policy will be created for all guests and all cloud apps. This policy impacts the Azure portal. Once this is created you might be required to sign-out and sign-in.",
"allUsersAllApps": "A conditional access policy will be created for all users and all cloud apps. This policy impacts the Azure portal. Once this is created you will be required to sign-out and sign-in.",
"custom": "Select the users, groups, and apps that this Terms of Use will be applied to.",
"noPolicy": "This terms of use will appear in the grant control list when creating a conditional access policy."
}
},
"Section": {
"conditionalAccessSubtitle": "Enforce with conditional access policy templates",
"conditionalAccessTitle": "Conditional access",
"termsOfUseSubtitle": "Create and upload documents",
"termsOfUseTitle": "Terms of use"
},
"acceptanceDurationInfo": "The terms of use will be enforced immediately and each user will have to re-consent every specified number of days.",
"acceptanceDurationLabel": "Duration before re-acceptance required (days)",
"acceptanceDurationPlaceholder": "Example: '90'",
"acceptanceExpirationFrequencyInfo": "Require users to consent on a recurring basis.",
"acceptanceExpirationFrequencyLabel": "Frequency",
"acceptanceExpirationStartDateTimeInfo": "The terms of use will be enforced immediately and users will be required to re-consent on this date.",
"acceptanceExpirationStartDateTimeLabel": "Expire starting on",
"agreementIsPerDeviceAcceptanceRequiredInfo": "The end users will be required to consent to the terms of use on every device.",
"agreementIsPerDeviceAcceptanceRequiredLabel": "Require users to consent on every device",
"agreementIsViewingBeforeAcceptanceRequiredInfo": "The end users will be required to view the terms of use prior to accepting.",
"agreementIsViewingBeforeAcceptanceRequiredLabel": "Require users to expand the terms of use",
"agreementNameInfo": "Name will be used to manage the terms of use within the Azure portal.",
"agreementNameLabel": "Name",
"agreementNamePlaceholderText": "Example: 'All users terms of use'",
"agreementRequirmentLabel": "Required Upon",
"agreementTargetEntityLabel": "Users targeted",
"agreementUploadPolicyAriaLabelText": "Upload required PDF {0}",
"agreementUploadPolicyLabel": "Terms of use",
"agreementUploadPolicyPlaceholderText": "Upload required PDF",
"createButtonLabel": "Create",
"createPolicyInfo": "In order to enforce the terms of use, a conditional access policy is required. You can create a conditional access policy targeted to specific users and applications later or use one of the predefined templates.",
"createPolicyLabel": "Create a policy",
"isAcceptanceExpirationEnabledInfo": "The terms of use will be enforced immediately and all users will be forced to re-consent on a schedule.",
"isAcceptanceExpirationEnabledLabel": "Expire consents",
"pdfValidationInvalidFileFormat": "The file must be in the .pdf format.",
"policyFilesInfo": "Upload a PDF file containing the terms of use that your end users must accept. Based on end user preferences they will be shown the appropriate language or if not match the default language will be shown.<br />For end users agreeing on mobile devices, we recommend the PDF font size to be at least 24 pt.<br />Display name will be the title of the terms of use that is presented to the end user.",
"policyFilesLabel": "Terms of use document",
"policyTemplateInfo": "These templates are pre configured conditional access policies that are targeted to specific users and applications.",
"policyTemplateLabel": "Policy templates",
"title": "New terms of use"
},
"Details": {
"Link": {
"auditEvent": "View audit logs",
"delete": "Delete",
"download": "Preview PDF",
"edit": "Edit"
},
"Property": {
"acceptanceDuration": "Duration before re-acceptance required (days)",
"acceptanceExpirationFrequency": "Frequency",
"acceptanceExpirationStartDateTime": "Expire starting on",
"accepted": "Users accepted",
"declined": "Users declined",
"displayname": "Display name",
"isAcceptanceExpirationEnable": "Expire consents",
"isPerDeviceAcceptanceRequired": "Require users to consent on every device",
"isViewingBeforeAcceptanceRequired": "Require users to expand the terms of use",
"name": "Name"
},
"Tab": {
"cAPolicies": "Conditional access policies",
"details": "Details",
"languages": "Languages"
}
}
},
"TACSettings": {
"edgeSettings": "Edge configuration settings",
"edgeWindowsDataProtectionSettings": "Edge (Windows) data protection settings - Preview",
"edgeWindowsSettings": "Edge (Windows) configuration settings - Preview",
"generalAppConfig": "General app configuration",
"generalSettings": "General configuration settings",
"outlookSMIMEConfig": "Outlook S/MIME settings",
"outlookSettings": "Outlook configuration settings",
"sMIME": "S/MIME"
},
"MicrosoftEdgeChannel": {
"beta": "Beta",
"dev": "Dev",
"stable": "Stable"
},
"WipPolicySettings": {
"addNetworkBoundary": "Add network boundary",
"addNetworkBoundaryButton": "Add network boundary...",
"allowWindowsSearch": "Allow Windows Search to search encrypted corporate data and Store apps",
"authoritativeIpRanges": "Enterprise IP Ranges list is authoritative (do not auto-detect)",
"authoritativeProxyServers": "Enterprise Proxy Servers list is authoritative (do not auto-detect)",
"boundaryType": "Boundary type",
"cloudResources": "Cloud resources",
"corporateIdentity": "Corporate identity",
"dataRecoveryCert": "Upload a Data Recovery Agent (DRA) certificate to allow recovery of encrypted data",
"editNetworkBoundary": "Edit network boundary",
"enrollmentState": "Enrollment state",
"iPv4Ranges": "IPv4 ranges",
"iPv6Ranges": "IPv6 ranges",
"internalProxyServers": "Internal proxy servers",
"maxInactivityTime": "Maximum amount of time (in minutes) allowed after the device is idle that will cause the device to become PIN or password locked",
"maxPasswordAttempts": "Number of authentication failures allowed before the device will be wiped",
"mdmDiscoveryUrl": "MDM discovery URL",
"mdmRequiredSettingsInfo": "This policy only applies to Windows 10 Anniversary Edition and higher. This policy uses Windows Information Protection (WIP) to apply protection.",
"minimumPinLength": "Set the minimum number of characters required for the PIN",
"name": "Name",
"networkBoundariesGridEmptyText": "Any network boundaries you add will show up here",
"networkBoundary": "Network boundary",
"networkDomainNames": "Network domains",
"neutralResources": "Neutral resources",
"passportForWork": "Use Windows Hello for Business as a method for signing into Windows",
"pinExpiration": "Specify the period of time (in days) that a PIN can be used before the system requires the user to change it",
"pinHistory": "Specify the number of past PINs that can be associated to a user account that cant be reused",
"pinLowercaseLetters": "Configure the use of lowercase letters in the Windows Hello for Business PIN",
"pinSpecialCharacters": "Configure the use of special characters in the Windows Hello for Business PIN",
"pinUppercaseLetters": "Configure the use of uppercase letters in the Windows Hello for Business PIN",
"protectUnderLock": "Prevent corporate data from being accessed by apps when the device is locked. Applies only to Windows 10 Mobile",
"protectedDomainNames": "Protected domains",
"proxyServers": "Proxy servers",
"requireAppPin": "Disable app PIN when device PIN is managed",
"requiredSettings": "Required settings",
"requiredSettingsInfo": "Changing the scope or removing this policy will decrypt corporate data.",
"revokeOnMdmHandoff": "Revoke access to protected data when the device enrolls to MDM",
"revokeOnUnenroll": "Revoke encryption keys on unenroll",
"rmsTemplateForEdp": "Specify the template ID to use for Azure RMS",
"showWipIcon": "Show the enterprise data protection icon",
"type": "Type",
"useRmsForWip": "Use Azure RMS for WIP",
"value": "Value",
"weRequiredSettingsInfo": "This policy only applies to Windows 10 Creators Update and higher. This policy uses Windows Information Protection (WIP) and Windows MAM to apply protection.",
"wipProtectionMode": "Windows Information Protection mode",
"withEnrollment": "With enrollment",
"withoutEnrollment": "Without enrollment"
},
"PolicySelection": {
"Grid": {
"Column": {
"author": "Author",
"template": "Template name"
}
},
"SettingsCatalog": {
"subtitle": "Start from scratch and select settings you want from the library of available settings",
"title": "Settings catalog"
},
"Templates": {
"subtitle": "Templates contain groups of settings, organized by functionality. Use a template when you don't want to build policies manually or want to configure devices to access corporate networks, such as configuring WiFi or VPN.",
"title": "Templates"
},
"noData": "No policy templates found"
},
"OfficeApplicationAdditionalType": {
"projectProRetail": "Project Online Desktop Client",
"visioProRetail": "Visio Online Plan 2"
},
"Countries": {
"ae": "United Arab Emirates",
"ag": "Antigua and Barbuda",
"ai": "Anguilla",
"al": "Albania",
"am": "Armenia",
"ao": "Angola",
"ar": "Argentina",
"at": "Austria",
"au": "Australia",
"az": "Azerbaijan",
"bb": "Barbados",
"be": "Belgium",
"bf": "Burkina Faso",
"bg": "Bulgaria",
"bh": "Bahrain",
"bj": "Benin",
"bm": "Bermuda",
"bn": "Brunei",
"bo": "Bolivia",
"br": "Brazil",
"bs": "Bahamas",
"bt": "Bhutan",
"bw": "Botswana",
"by": "Belarus",
"bz": "Belize",
"ca": "Canada",
"cg": "Republic Of Congo",
"ch": "Switzerland",
"cl": "Chile",
"cn": "China",
"co": "Colombia",
"cr": "Costa Rica",
"cv": "Cape Verde",
"cy": "Cyprus",
"cz": "Czech Republic",
"de": "Germany",
"dk": "Denmark",
"dm": "Dominica",
"do": "Dominican Republic",
"dz": "Algeria",
"ec": "Ecuador",
"ee": "Estonia",
"eg": "Egypt",
"es": "Spain",
"fi": "Finland",
"fj": "Fiji",
"fm": "Federated States Of Micronesia",
"fr": "France",
"gb": "United Kingdom",
"gd": "Grenada",
"gh": "Ghana",
"gm": "Gambia",
"gr": "Greece",
"gt": "Guatemala",
"gw": "Guinea-Bissau",
"gy": "Guyana",
"hk": "Hong Kong",
"hn": "Honduras",
"hr": "Croatia",
"hu": "Hungary",
"id": "Indonesia",
"ie": "Ireland",
"il": "Israel",
"in": "India",
"is": "Iceland",
"it": "Italy",
"jm": "Jamaica",
"jo": "Jordan",
"jp": "Japan",
"ke": "Kenya",
"kg": "Kyrgyzstan",
"kh": "Cambodia",
"kn": "St. Kitts and Nevis",
"kr": "Republic Of Korea",
"kw": "Kuwait",
"ky": "Cayman Islands",
"kz": "Kazakstan",
"la": "Lao Peoples Democratic Republic",
"lb": "Lebanon",
"lc": "St. Lucia",
"lk": "Sri Lanka",
"lr": "Liberia",
"lt": "Lithuania",
"lu": "Luxembourg",
"lv": "Latvia",
"md": "Republic Of Moldova",
"mg": "Madagascar",
"mk": "North Macedonia",
"ml": "Mali",
"mn": "Mongolia",
"mo": "Macau",
"mr": "Mauritania",
"ms": "Montserrat",
"mt": "Malta",
"mu": "Mauritius",
"mw": "Malawi",
"mx": "Mexico",
"my": "Malaysia",
"mz": "Mozambique",
"na": "Namibia",
"ne": "Niger",
"ng": "Nigeria",
"ni": "Nicaragua",
"nl": "Netherlands",
"no": "Norway",
"np": "Nepal",
"nz": "New Zealand",
"om": "Oman",
"pa": "Panama",
"pe": "Peru",
"pg": "Papua New Guinea",
"ph": "Philippines",
"pk": "Pakistan",
"pl": "Poland",
"pt": "Portugal",
"pw": "Palau",
"py": "Paraguay",
"qa": "Qatar",
"ro": "Romania",
"ru": "Russia",
"sa": "Saudi Arabia",
"sb": "Solomon Islands",
"sc": "Seychelles",
"se": "Sweden",
"sg": "Singapore",
"si": "Slovenia",
"sk": "Slovakia",
"sl": "Sierra Leone",
"sn": "Senegal",
"sr": "Suriname",
"st": "Sao Tome and Principe",
"sv": "El Salvador",
"sz": "Swaziland",
"tc": "Turks and Caicos",
"td": "Chad",
"th": "Thailand",
"tj": "Tajikistan",
"tm": "Turkmenistan",
"tn": "Tunisia",
"tr": "Turkey",
"tt": "Trinidad and Tobago",
"tw": "Taiwan",
"tz": "Tanzania",
"ua": "Ukraine",
"ug": "Uganda",
"us": "United States",
"uy": "Uruguay",
"uz": "Uzbekistan",
"vc": "St. Vincent and The Grenadines",
"ve": "Venezuela",
"vg": "British Virgin Islands",
"vn": "Vietnam",
"ye": "Yemen",
"za": "South Africa",
"zw": "Zimbabwe"
},
"OfficeUpdateChannel": {
"current": "Current Channel",
"deferred": "Semi-Annual Enterprise Channel",
"firstReleaseCurrent": "Current Channel (Preview)",
"firstReleaseDeferred": "Semi-Annual Enterprise Channel (Preview)",
"monthlyEnterprise": "Monthly Enterprise Channel",
"placeHolder": "Select one"
},
"AppProtection": {
"allAppTypes": "Target to all app types",
"androidPlatformLabel": "Android",
"appsInAndroidWorkProfile": "Apps in Android Work Profile",
"appsOnIntuneManagedDevices": "Apps on Intune managed devices",
"appsOnUnmanagedDevices": "Apps on unmanaged devices",
"iOSPlatformLabel": "iOS/iPadOS",
"iosAndroidMacPlatformLabel": "iOS, Android, Mac",
"iosAndroidPlatformLabel": "iOS, Android",
"macPlatformLabel": "Mac",
"notAvailable": "Not Available",
"windows10PlatformLabel": "Windows 10 and later",
"withEnrollment": "With enrollment",
"withoutEnrollment": "Without enrollment"
},
"DisplayRoleTypes": {
"builtInRole": "Built-in Role",
"customCloudPCRole": "Custom Windows 365 role",
"customIntuneRole": "Custom Intune role",
"customRole": "Custom Role"
},
"InstallContextType": {
"device": "Device",
"deviceContext": "Device context",
"user": "User",
"userContext": "User context"
},
"ProactiveRemediations": {
"Create": {
"Basics": {
"DescriptionMultiLineTextBox": {
"label": "Description",
"placeholder": "Enter a description"
},
"NameTextBox": {
"label": "Name",
"placeholder": "Enter a name"
},
"PublisherTextBox": {
"label": "Publisher",
"placeholder": "Enter a publisher"
},
"VersionTextBox": {
"label": "Version"
},
"headerDescription": "Create a new custom script package from detection and remediation scripts that youve written."
},
"ScopeTags": {
"headerDescription": "Select one or more groups to assign the script package."
},
"Settings": {
"DetectionScriptMultiLineTextBox": {
"label": "Detection script",
"placeholder": "Input script text",
"requiredValidationMessage": "Please enter the detection script"
},
"EnforceScriptSignatureCheckOptionPicker": {
"label": "Enforce script signature check"
},
"LoggedOnCredentialsOptionPicker": {
"label": "Run this script using the logged-on credentials"
},
"RemediationScript": {
"infoBox": "This script will run in detect-only mode because there is no remediation script."
},
"RemediationScriptMultiLineTextBox": {
"label": "Remediation script",
"placeholder": "Input script text"
},
"RunIn64BitPSOptionPicker": {
"label": "Run script in 64-bit PowerShell"
},
"ScriptMultiLineTextBox": {
"base64EncodingValidationMessage": "Invalid script. One or more characters used in the script is not valid."
},
"headerDescription": "Create a custom script package from scripts you've written. By default, scripts will run on assigned devices every day.",
"infoBox": "This script is read-only. Some of the settings for this script might be disabled."
},
"title": "Create custom script",
"ScriptProperties": {
"GridHeaders": {
"interval": "Interval",
"time": "Date and time"
},
"Interval": {
"day": "Repeats every day",
"days": "Repeats every {0} days",
"hour": "Repeats every hour",
"hours": "Repeats every {0} hours",
"month": "Repeats every month",
"months": "Repeats every {0} months",
"week": "Repeats every week",
"weeks": "Repeats every {0} weeks"
},
"Time": {
"utc": "{0} (UTC)",
"utcWithDate": "{0} (UTC) on {1}",
"withDate": "{0} on {1}"
}
}
},
"Edit": {
"title": "Edit - {0}"
}
},
"EdgeAppConfig": {
"AllowedURLs": {
"title": "Allowed URLs",
"tooltip": "Specify the sites your users are allowed to access while in their work context. No other sites will be allowed. You may choose to configure either an allowed/blocked list, but not both. "
},
"ApplicationProxyRedirection": {
"header": "Application proxy",
"title": "Application proxy redirection",
"tooltip": "Enable App proxy redirection to give users access to corporate links and on-premise web apps."
},
"BlockedURLs": {
"title": "Blocked URLs",
"tooltip": "Specify the sites that are blocked for your users while in their work context. All other sites will be allowed. You may choose to configure either an allowed/blocked list, but not both. "
},
"Bookmarks": {
"header": "Managed bookmarks",
"tooltip": "Enter a list of bookmarked URLs for your users to have available when using Microsoft Edge in their work context.",
"uRL": "URL"
},
"HomepageURL": {
"header": "Managed homepage",
"title": "Homepage shortcut URL",
"tooltip": "Configure a homepage shortcut that will appear to users as the first icon beneath the search bar when they open a new tab in Microsoft Edge."
},
"PersonalContext": {
"label": "Redirect restricted sites to personal context",
"tooltip": "Configure if users should be allowed to transition to their personal context to open restricted sites."
}
},
"BooleanActions": {
"allow": "Allow",
"block": "Block",
"configured": "Configured",
"disable": "Disable",
"dontRequire": "Don't Require",
"enable": "Enable",
"hide": "Hide",
"limit": "Limit",
"notConfigured": "Not configured",
"require": "Require",
"show": "Show",
"yes": "Yes"
},
"ArchitectureOptions": {
"sixtyFourBit": "64-bit",
"thirtyTwoBit": "32-bit"
},
"WindowsQualityUpdateDaysUntilForcedReboot": {
"oneDay": "1 day",
"twoDays": "2 days",
"zeroDays": "0 days"
},
"SoftwareUpdates": {
"BladeTitles": {
"overview": "Overview"
},
"EndUserUpdate": {
"searchByDeviceUserAndQualityUpdateVersion": "Search by Device, User or Quality Update Version."
},
"Ios": {
"Notifications": {
"LoadAllConfigurationFailed": {
"title": "Failed to load iOS software update profiles"
}
},
"SummaryBlade": {
"subtitle": "iOS update profile",
"title": "iOS/iPadOS"
},
"WizardBlade": {
"subtitle": "iOS/iPadOS",
"title": "profile"
},
"listLoadError": "Unable to load iOS software update profiles, try again later",
"lowercase": "iOS update policy",
"uppercase": "iOS Update policy"
},
"IosUpdatePolicy": {
"Settings": {
"IOSVersion": {
"apiFailText": "We're sorry, we're unable to connect with Apple to get the list of available versions. Please try again later or continue with the latest version.",
"latestUpdate": "Latest update",
"noLongerSupported": "Selected version is no longer supported",
"olderVersionSelected": "Since you selected an earlier version, make sure you apply a device restriction policy that defers the visibilty of software updates so that devices can't update to the latest version.",
"prefix": "Install iOS/iPadOS",
"selectSupported": "Select update version supported by Apple",
"updateToInstall": "Update to install"
},
"Schedule": {
"always": "Update at next check-in",
"duringTimeWindows": "Update during scheduled time",
"header": "By default, when an update policy is assigned to a device, Intune deploys the latest updates at device check-in. You can instead create a weekly schedule with customized start and end times. If you choose to update outside of the scheduled time, Intune won't deploy updates until the scheduled time ends.",
"infoBalloon": "When the updates will occur. Additional input is required to schedule updates during or outside of scheduled times.",
"label": "Schedule type",
"outsideActiveHours": "Update outside of active hours (legacy)",
"outsideTimeWindows": "Update outside of scheduled time",
"timeWindow": "Time window",
"timeZone": "Time zone",
"title": "Update policy schedule settings:",
"weekly": "Weekly schedule",
"timeWindowToolTip": null,
"timeZoneToolTip": null
},
"VersionsDropdown": {
"infoBalloon": "The version of iOS/iPadOS to install on devices at time of update.",
"label": "Select version to install"
},
"header": "Create a profile to force assigned devices to automatically install the latest iOS/iPadOS updates. These settings determine how and when software updates deploy. This profile doesn't prevent users from updating the OS manually, which can be prevented for up to 90 days with a device configuration restriction policy. Updates will only apply to devices enrolled through Apple's Automated Device Enrollment (with ABM or ASM).",
"notAvailable": "N/A"
}
},
"ListPartEmpty": {
"iosUpdates": "There are no iOS update policies to display",
"macOsUpdates": "There are no macOS software update policies to display",
"windowsUpdates": "There are no update rings for Windows 10 and later to show."
},
"MacOSSoftwareUpdate": {
"AccountSummary": {
"Columns": {
"deviceName": "Device name",
"deviceUpdateStatus": "Device update status",
"lastUpdated": "Last updated",
"osVersion": "OS version",
"userPrincipalName": "User name"
},
"maximumOSVersionFilter": "Maximum OS version",
"minimumOSVersionFilter": "Minimum OS version",
"noData": "No data to display",
"searchBoxPlaceholder": "Search by device name, user name or OS version",
"title": "Account summary for macOS devices"
},
"Category": {
"configurationDataFile": "Configuration data file",
"critical": "Critical",
"firmware": "Firmware",
"other": "Other"
},
"CategorySummary": {
"Columns": {
"lastUpdated": "Last Updated",
"successfulUpdateCount": "Successful updates deployed",
"totalUpdateCount": "Total updates deployed",
"updateCategory": "Update category",
"updateCategoryStatus": "Update category status"
},
"noData": "No data to display"
},
"Notifications": {
"LoadAllConfigurationFailed": {
"title": "Failed to load macOS software update profiles"
}
},
"State": {
"available": "Available",
"commandFailed": "Command failed",
"downloadFailed": "Download failed",
"downloadInsufficientNetwork": "Download insufficient network",
"downloadInsufficientPower": "Download insufficient power",
"downloadInsufficientSpace": "Download insufficient space",
"downloaded": "Downloaded",
"downloading": "Downloading",
"idle": "Idle",
"installFailed": "Install failed",
"installInsufficientPower": "Install insufficient power",
"installInsufficientSpace": "Install insufficient space",
"installing": "Installing",
"scheduled": "Scheduled",
"success": "Success",
"unknown": "Unknown"
},
"StateSummary": {
"Columns": {
"lastUpdated": "Last Updated",
"updateName": "Update name",
"updateStatus": "Update status",
"version": "Version"
},
"noData": "No data to display",
"searchBoxPlaceholder": "Search by update name or version"
},
"SummaryBlade": {
"subtitle": "macOS update profile",
"title": "macOS"
},
"WizardBlade": {
"subtitle": "macOS",
"title": "Profile"
},
"error": "Error",
"errorOrErrors": "Error(s)",
"errors": "Errors",
"listLoadError": "Unable to load macOS software update profiles, try again later",
"lowercase": "macOs update policy",
"other": "Other",
"subtitle": "MacOS software update",
"upToDate": "Up to date",
"uppercase": "macOS Update Policy"
},
"Notifications": {
"DeleteFailed": {
"description": "Please try again later",
"title": "Failed to delete {0}"
},
"LoadAllConfigurationFailed": {
"description": "Please try again later"
},
"LoadConfigurationFailed": {
"description": "Please try again later",
"title": "Failed to load {0}"
},
"idWrongFormat": "The provided id for the profile is not in the expected format."
},
"UpdatePolicy": {
"Settings": {
"Schedule": {
"noneSelected": "At least one time window should be selected",
"tooMany": "A maximum of 20 time windows can be configured"
}
},
"endDay": "End day",
"endTime": "End time",
"startDay": "Start day",
"startTime": "Start time",
"timeWindowError": "Choose a window of time that spans at least one hour."
},
"WindowsUpdateForBusiness": {
"Notifications": {
"LoadAllConfigurationFailed": {
"title": "Failed to load update ring profiles for Windows 10 and later."
}
},
"SummaryBlade": {
"subtitle": "Update ring for Windows 10 and later",
"title": "Windows Update for Business"
},
"WizardBlade": {
"subtitle": "Windows 10 and later",
"title": "Update ring for Windows 10 and later"
},
"listLoadError": "Unable to load update rings profiles for Windows 10 and later, try again later",
"lowercase": "Update ring",
"uppercase": "Update Ring"
},
"Wizard": {
"Tabs": {
"updatePolicySettings": "Update policy settings",
"updateRingSettings": "Update ring settings"
}
},
"WizardBlade": {
"Verb": {
"create": "Create {0}",
"edit": "Edit {0}"
}
},
"notScannedYet": "Not scanned yet",
"outOfDateIosDevices": "Out of date iOS devices"
},
"ConfigurationTypes": {
"Table": {
"androidDeviceOwnerGeneral": "Device restrictions (device owner)",
"androidForWorkGeneral": "Device restrictions (work profile)"
},
"androidCustom": "Custom",
"androidDeviceOwnerGeneral": "Device restrictions",
"androidDeviceOwnerPkcs": "PKCS Certificate",
"androidDeviceOwnerScep": "SCEP Certificate",
"androidDeviceOwnerTrustedCertificate": "Trusted Certificate",
"androidDeviceOwnerVpn": "VPN",
"androidDeviceOwnerWiFi": "Wi-Fi",
"androidEmailProfile": "Email (Samsung KNOX only)",
"androidForWorkCustom": "Custom",
"androidForWorkEmailProfile": "Email",
"androidForWorkGeneral": "Device restrictions",
"androidForWorkImportedPFX": "PKCS imported certificate",
"androidForWorkOemConfig": "OEMConfig",
"androidForWorkPKCS": "PKCS certificate",
"androidForWorkSCEP": "SCEP certificate",
"androidForWorkTrustedCertificate": "Trusted certificate",
"androidForWorkVpn": "VPN",
"androidForWorkWiFi": "Wi-Fi",
"androidGeneral": "Device restrictions",
"androidImportedPFX": "PKCS imported certificate",
"androidPKCS": "PKCS certificate",
"androidSCEP": "SCEP certificate",
"androidTrustedCertificate": "Trusted certificate",
"androidVPN": "VPN",
"androidWiFi": "Wi-Fi",
"androidZebraMx": "MX profile (Zebra only)",
"complianceAndroid": "Android compliance policy",
"complianceAndroidDeviceOwner": "Fully managed, dedicated, and corporate-owned work profile",
"complianceAndroidEnterprise": "Personally-owned work profile",
"complianceAndroidForWork": "Android for Work compliance policy",
"complianceIos": "iOS compliance policy",
"complianceMac": "Mac compliance policy",
"complianceWindows10": "Windows 10 and later compliance policy",
"complianceWindows10Mobile": "Windows 10 mobile compliance policy",
"complianceWindows8": "Windows 8 compliance policy",
"complianceWindowsPhone": "Windows Phone compliance policy",
"exchangeActiveSync": "Exchange Active Sync",
"iosCustom": "Custom",
"iosDerivedCredentialAuthenticationConfiguration": "Derived PIV credential",
"iosDeviceFeatures": "Device features",
"iosEDU": "Education",
"iosEducation": "Education",
"iosEmailProfile": "Email",
"iosGeneral": "Device restrictions",
"iosImportedPFX": "PKCS imported certificate",
"iosPKCS": "PKCS certificate",
"iosPresets": "Presets",
"iosSCEP": "SCEP certificate",
"iosTrustedCertificate": "Trusted certificate",
"iosVPN": "VPN",
"iosVPNZscaler": "VPN",
"iosWiFi": "Wi-Fi",
"macCustom": "Custom",
"macDeviceFeatures": "Device features",
"macEndpointProtection": "Endpoint protection",
"macExtensions": "Extensions",
"macGeneral": "Device restrictions",
"macImportedPFX": "PKCS imported certificate",
"macSCEP": "SCEP certificate",
"macTrustedCertificate": "Trusted certificate",
"macVPN": "VPN",
"macWiFi": "Wi-Fi",
"settingsCatalog": "Settings catalog",
"unsupported": "Unsupported",
"windows10AdministrativeTemplate": "Administrative Templates (Preview)",
"windows10Atp": "Microsoft Defender for Endpoint (desktop devices running Windows 10 or later)",
"windows10Custom": "Custom",
"windows10DesktopSoftwareUpdate": "Software Updates",
"windows10DeviceFirmwareConfigurationInterface": "Device Firmware Configuration Interface",
"windows10EmailProfile": "Email",
"windows10EndpointProtection": "Endpoint protection",
"windows10EnterpriseDataProtection": "Windows Information Protection",
"windows10General": "Device restrictions",
"windows10ImportedPFX": "PKCS imported certificate",
"windows10Kiosk": "Kiosk",
"windows10NetworkBoundary": "Network boundary",
"windows10PKCS": "PKCS certificate",
"windows10PolicyOverride": "Override Group Policy",
"windows10SCEP": "SCEP certificate",
"windows10SecureAssessmentProfile": "Education profile",
"windows10SharedPC": "Shared multi-user device",
"windows10TeamGeneral": "Device restrictions (Windows 10 Team)",
"windows10TrustedCertificate": "Trusted certificate",
"windows10VPN": "VPN",
"windows10WiFi": "Wi-Fi",
"windows10WiFiCustom": "Wi-Fi custom",
"windows8General": "Device restrictions",
"windows8SCEP": "SCEP certificate",
"windows8TrustedCertificate": "Trusted certificate",
"windows8VPN": "VPN",
"windows8WiFi": "Wi-Fi import",
"windowsDeliveryOptimization": "Delivery Optimization",
"windowsDomainJoin": "Domain Join",
"windowsEditionUpgrade": "Edition upgrade and mode switch",
"windowsIdentityProtection": "Identity protection",
"windowsPhoneCustom": "Custom",
"windowsPhoneEmailProfile": "Email",
"windowsPhoneGeneral": "Device restrictions",
"windowsPhoneImportedPFX": "PKCS imported certificate",
"windowsPhoneSCEP": "SCEP certificate",
"windowsPhoneTrustedCertificate": "Trusted certificate",
"windowsPhoneVPN": "VPN",
"IosUpdate": "iOS Update policy"
},
"OfficeSuiteAppsTab": {
"acceptLicenseOnBehalfOfUsersLabel": "Accept the Microsoft Software License Terms on behalf of users",
"appSuiteConfigurationLabel": "App suite configuration",
"appSuiteInformationLabel": "App suite information",
"appsToBeInstalledLabel": "Apps to be installed as part of the suite",
"architectureLabel": "Architecture",
"architectureTooltip": "Defines whether the 32-bit or 64-bit edition of Microsoft 365 Apps is installed on devices.",
"configurationDesignerLabel": "Configuration designer",
"configurationFileLabel": "Configuration file",
"configurationSettingsFormatLabel": "Configuration settings format",
"configureAppSuiteLabel": "Configure app suite",
"configuredLabel": "Configured",
"currentVersionLabel": "Current version",
"currentVersionTooltip": "This is the current version of Office thats configured in this suite. This value will be updated when a newer version is configured and saved.",
"defaultFileFormatLabel": "Default file format",
"enableMicrosoftSearchAsDefaultTooltip": "Installs a background service that helps determine whether a Microsoft Search in Bing extension for Google Chrome is installed on the device.",
"enterXmlDataLabel": "Enter XML data",
"languagesLabel": "Languages",
"languagesTooltip": "By default, Intune will install Office with the default language of the operating system. Choose any additional languages that you want to install.",
"learnMoreText": "Learn more",
"newUpdateChannelTooltip": "Defines how often the app is updated with new features.",
"noCurrentVersionText": "No current version",
"noLanguagesSelectedLabel": "No languages selected",
"notConfiguredLabel": "Not configured",
"propertiesLabel": "Properties",
"removeOtherVersionsLabel": "Remove other versions",
"removeOtherVersionsTooltip": "Select <i>Yes</i> to remove other versions of Office (MSI) from user devices.",
"selectOfficeAppsLabel": "Select Office apps",
"selectOfficeAppsTooltip": "Select the Office 365 apps that you want to install as part of the suite.",
"selectOtherOfficeAppsLabel": "Select other Office apps (license required)",
"selectOtherOfficeAppsTooltip": "If you own licenses for these additional Office apps you can also assign them with Intune.",
"specificVersionLabel": "Specific version",
"updateChannelLabel": "Update channel",
"updateChannelTooltip": "Defines how often the app is updated with new features.<br /><br />\n<b>Monthly</b> - Provide users with the newest features of Office as soon as they're available.<br />\n<b>Monthly Enterprise Channel</b> - Provide users with the newest features of Office once a month, on the second Tuesday of the month.<br />\n<b>Monthly (Targeted)</b> Provide an early look at the upcoming Monthly Channel release. It is a supported update channel, and usually is available at least one week ahead of time when it's a Monthly Channel release that contains new features.<br />\n<b>Semi-Annual</b> - Provide users with new features of Office only a few times a year.<br />\n<b>Semi-Annual (Targeted)</b> - Provide pilot users and application compatibility testers the opportunity to test the next Semi-Annual.",
"useMicrosoftSearchAsDefault": "Install background service for Microsoft Search in Bing",
"useSharedComputerActivationLabel": "Use shared computer activation",
"useSharedComputerActivationTooltip": "Shared computer activation lets you deploy Microsoft 365 Apps to computers that are used by multiple users. Normally, users can only install and activate Microsoft 365 Apps on a limited number of devices, such as 5 PCs. Using Microsoft 365 Apps with shared computer activation doesn't count against that limit.",
"versionToInstallLabel": "Version to install",
"versionToInstallTooltip": "Select the version of Office that should be installed.",
"xLanguagesSelectedLabel": "{0} language(s) selected",
"xmlConfigurationLabel": "XML Configuration"
},
"Filters": {
"ruleSyntax": "Rule syntax",
"filters": "Filters"
},
"EnrollmentRestrictions": {
"DeletePayloadLink": {
"content": "{0} is included in one or more policy sets. If you delete {0}, you'll no longer be able to assign it via these policy sets. Delete anyway?",
"contentWithError": "{0} might be included in one or more policy sets. If you delete {0}, you'll no longer be able to assign it via these policy sets. Delete anyway?",
"header": "Are you sure you want to delete this restriction?"
},
"DeviceLimit": {
"description": "Specify the maximum number of devices a user can enroll.",
"header": "Device limit restrictions",
"info": "Define how many devices each user can enroll."
},
"DeviceType": {
"VersionValidation": {
"aOSP": "Must be 1.0 or greater.",
"android": "Enter a valid version number. Examples: 5.0, 5.5.1, 6.0.0.1",
"androidForWork": "Enter a valid version number. Examples: 5.0, 5.1.1",
"iOS": "Enter a valid version number. Examples: 9.0, 10.0, 9.0.2",
"mac": "Enter a valid version number. Examples: 10, 10.10, 10.10.1",
"min": "Minimum cannot be lower than {0}",
"minMax": "Minimum version cannot be greater than maximum version.",
"windows": "Must be 10.0 or greater. Leave blank to allow 8.1 devices",
"windowsMobile": "Must be 10.0 or greater. Leave blank to allow 8.1 devices"
},
"allPlatformsBlocked": "All device platforms are blocked. Allow platform enrollment to enable platform configuration.",
"blockManufacturerPlaceHolder": "Manufacturer name",
"blockManufacturersHeader": "Blocked manufacturers",
"cannotRestrict": "Restriction not supported",
"configurationDescription": "Specify the platform configuration restrictions that must be met for a device to enroll. Use compliance policies to restrict devices after enrollment. Define versions as major.minor.build. Version restrictions only apply to devices enrolled with the Company Portal. Intune classifies devices as personally-owned by default. Additional action is required to classify devices as corporate-owned.",
"configurationDescriptionLabel": "Learn more about setting enrollment restrictions",
"configurations": "Configure platforms",
"deviceManufacturer": "Device manufacturer",
"header": "Device type restrictions",
"info": "Define which platforms, versions, and management types can enroll.",
"manufacturer": "Manufacturer",
"max": "Max",
"maxVersion": "Maximum version",
"min": "Min",
"minVersion": "Minimum version",
"newPlatforms": "You have allowed new platforms. Consider updating Platform Configurations.",
"personal": "Personally owned",
"platform": "Platform",
"platformDescription": "You can allow enrollment of the following platforms. Only block platforms you will not support. Allowed platforms can be configured with additional enrollment restrictions.",
"platformSettings": "Platform settings",
"platforms": "Select platforms",
"platformsSelected": "{0} platforms selected",
"type": "Type",
"versions": "versions",
"versionsRange": "Allow min/max range:",
"windowsTooltip": "Restricts enrollment through Mobile Device Management. Does not restrict PC agent installation. Only Windows 10 and Windows 11 versions are supported. Leave versions blank to allow Windows 8.1."
},
"Priority": {
"saved": "Restriction Priorities were successfully saved."
},
"Row": {
"announce": "Priority: {0}, Name: {1}, Assigned: {2}"
},
"Table": {
"deployed": "Deployed",
"name": "Name",
"priority": "Priority"
},
"Type": {
"limit": "Device limit restriction",
"type": "Device type restriction"
},
"allUsers": "All Users",
"androidRestrictions": "Android restrictions",
"create": "Create restriction",
"defaultLimitDescription": "This is the default Device Limit Restriction applied with lowest priority to all users regardless of group membership.",
"defaultTypeDescription": "This is the default Device Type Restriction applied with lowest priority to all users regardless of group membership.",
"defaultWhfbDescription": "This is the default Windows Hello for Business configuration applied with the lowest priority to all users regardless of group membership.",
"deleteMessage": "Affected users will be restricted by the next highest priority restriction assigned or the default restriction if no other restriction is assigned.",
"deleteTitle": "Are you sure you want to delete {0} restriction?",
"descriptionHint": "Short paragraph describing the business use or restriction level characterized by the restriction's settings.",
"edit": "Edit restriction",
"info": "A device must comply with the highest priority enrollment restrictions assigned to its user. You can drag a device restriction to change its priority. Default restrictions are lowest priority for all users and govern userless enrollments. Default restrictions may be edited, but not deleted.",
"iosRestrictions": "iOS restrictions",
"mDM": "MDM",
"macRestrictions": "MacOS restrictions",
"maxVersion": "Max Version",
"minVersion": "Min Version",
"nameHint": "This will be the primary attribute visible for identifying the restriction set.",
"noAssignmentsStatusBar": "Assign restriction to at least one group. Click Properties.",
"notFound": "Restriction not found. It may have already been deleted.",
"personallyOwned": "Personally owned devices",
"restriction": "Restriction",
"restrictionLowerCase": "restriction",
"restrictionType": "Restriction type",
"selectType": "Select restriction type",
"selectValidation": "Please select a platform",
"typeHint": "Choose Device Type Restriction to restrict device properties. Choose Device Limit Restriction to restrict number of devices per-user.",
"typeRequired": "Restriction type is required.",
"winPhoneRestrictions": "Windows Phone restrictions",
"windowsRestrictions": "Windows restrictions"
},
"Titles": {
"ChromeOs": {
"devices": "Chrome OS devices (preview)"
},
"ManagedDesktop": {
"adminContacts": "Admin contacts",
"appPackaging": "App packaging",
"businessGroups": "Business Groups",
"devices": "Devices",
"feedback": "Feedback",
"gettingStarted": "Getting started",
"messages": "Messages",
"onlineResources": "Online resources",
"releaseManagement": "Release management",
"serviceRequests": "Service requests",
"settings": "Settings",
"supportRequests": "Support requests",
"tenantEnrollment": "Tenant enrollment",
"tenantManagement": "Tenant management"
},
"actions": "Actions for Non-Compliance",
"advancedExchangeSettings": "Exchange online settings",
"advancedThreatProtection": "Microsoft Defender for Endpoint",
"allApps": "All apps",
"allDevices": "All devices",
"androidFotaDeployments": "Android FOTA deployments",
"appBundles": "App Bundles",
"appCategories": "App categories",
"appConfigPolicies": "App configuration policies",
"appInstallStatus": "App install status",
"appLicences": "App licenses",
"appProtectionPolicies": "App protection policies",
"appProtectionStatus": "App protection status",
"appSelectiveWipe": "App selective wipe",
"appleVppTokens": "Apple VPP Tokens",
"apps": "Apps",
"assign": "Assignments",
"assignedPermissions": "Assigned permissions",
"assignedRoles": "Assigned roles",
"autopilotDeploymentReport": "Autopilot deployments (preview)",
"brandingAndCustomization": "Customization",
"cartProfiles": "Cart profiles",
"certificateConnectors": "Certificate connectors",
"chromeEnterprise": "Chrome Enterprise (preview)",
"cloudAttachedDevices": "Cloud attached devices (preview)",
"compliancePolicies": "Compliance policies",
"complianceScriptManagement": "Scripts",
"complianceScriptManagementPreview": "Scripts (preview)",
"complianceSettings": "Compliance policy settings",
"conditionStatements": "Condition statements",
"conditions": "Locations",
"configMgr": "Microsoft Endpoint Configuration Manager",
"configurationProfiles": "Configuration profiles",
"connectorsAndTokens": "Connectors and tokens",
"corporateDeviceIdentifiers": "Corporate device identifiers",
"customAttributes": "Custom attributes",
"customNotifications": "Custom notifications",
"deploymentSettings": "Deployment settings",
"derivedCredentials": "Derived Credentials",
"deviceActions": "Device actions",
"deviceCategories": "Device categories",
"deviceCleanUp": "Device clean-up rules",
"deviceEnrollmentManagers": "Device enrollment managers",
"deviceExecutionStatus": "Device status",
"deviceLimitEnrollmentRestrictions": "Enrollment device limit restrictions",
"deviceTypeEnrollmentRestrictions": "Enrollment device platform restrictions",
"devices": "Devices",
"discoveredApps": "Discovered apps",
"embeddedSIM": "eSIM cellular profiles (preview)",
"enrollDevices": "Enroll devices",
"enrollmentFailures": "Enrollment failures",
"enrollmentNotifications": "Enrollment notifications (preview)",
"enrollmentRestrictions": "Enrollment restrictions",
"exchangeActiveSync": "Exchange ActiveSync",
"exchangeServiceConnectors": "Exchange service connectors",
"failuresForFeatureUpdates": "Feature update failures (preview)",
"failuresForQualityUpdates": "Windows Expedited update failures (preview)",
"featureFlighting": "Feature flighting",
"featureUpdateDeployments": "Feature updates for Windows 10 and later",
"flighting": "Flighting",
"fotaUpdate": "Firmware over-the-air update",
"groupPolicy": "Administrative Templates",
"groupPolicyAnalytics": "Group policy analytics",
"helpSupport": "Help and support",
"helpSupportReplacement": "Help and support ({0})",
"iOSAppProvisioning": "iOS app provisioning profiles",
"incompleteUserEnrollments": "Incomplete user enrollments",
"iosUpdates": "Update policies for iOS/iPadOS",
"legacyPcManagement": "Legacy PC management",
"macOSSoftwareUpdate": "Update policies for macOS (preview)",
"macOSSoftwareUpdateAccountSummaries": "Installation status for macOS devices (preview)",
"macOSSoftwareUpdateCategorySummaries": "Software updates summary",
"macOSSoftwareUpdateStateSummaries": "updates",
"managedGooglePlay": "Managed Google Play",
"msfb": "Microsoft Store for Business",
"myPermissions": "My permissions",
"notifications": "Notifications",
"officeApps": "Office apps",
"officeProPlusPolicies": "Policies for Office apps",
"onPremise": "On Premise",
"onPremisesConnector": "Exchange ActiveSync on-premises connector",
"onPremisesDeviceAccess": "Exchange ActiveSync devices",
"onPremisesManageAccess": "Exchange on-premises access",
"outOfDateIosDevices": "Installation failures for iOS devices",
"overview": "Overview",
"partnerDeviceManagement": "Partner device management",
"perUpdateRingDeploymentState": "Per update ring deployment state",
"permissions": "Permissions",
"platformApps": "{0} apps",
"platformDevices": "{0} devices",
"platformEnrollment": "{0} enrollment",
"policies": "Policies",
"profiles": "Profiles",
"properties": "Properties",
"reports": "Reports",
"retireNoncompliantDevices": "Retire noncompliant devices",
"retireNoncompliantDevicesPreview": "Retire noncompliant devices (preview)",
"role": "Role",
"scriptManagement": "Scripts",
"securityBaselines": "Security baselines",
"serviceToServiceConnector": "Exchange online connector",
"servicenowConnector": "ServiceNow connector",
"shellScripts": "Shell scripts",
"teamViewerConnector": "TeamViewer connector",
"telecomeExpenseManagement": "Telecom expense management",
"tenantAdmin": "Tenant admin",
"tenantAdministration": "Tenant administration",
"termsAndConditions": "Terms and conditions",
"titles": "Titles",
"troubleshoot": "Troubleshoot",
"troubleshootSupport": "Troubleshooting + support",
"user": "User",
"userExecutionStatus": "User status",
"warranty": "Warranty vendors",
"wdacSupplementalPolicies": "S mode supplemental policies",
"windows10DriverUpdate": "Driver updates for Windows 10 and later (preview)",
"windows10QualityUpdate": "Quality updates for Windows 10 and later",
"windows10UpdateRings": "Update rings for Windows 10 and later",
"windows10XPolicyFailures": "Windows 10X policy failures",
"windows365Connector": "Windows 365 Citrix connector",
"windows365ConnectorPublicPreview": "Windows 365 Citrix connector (preview)",
"windowsDiagnosticData": "Windows data",
"windowsEnterpriseCertificate": "Windows enterprise certificate",
"windowsManagement": "PowerShell scripts",
"windowsSideLoadingKeys": "Windows side loading keys",
"windowsSymantecCertificate": "Windows DigiCert certificate",
"windowsThreatReport": "Threat agent status"
},
"ScopeTypes": {
"allDevices": "All Devices",
"allUsers": "All Users",
"allUsersAndDevices": "All Users & All Devices",
"selectedGroups": "Selected Groups"
},
"OfficeApplicationType": {
"access": "Access",
"bing": "Microsoft Search as default",
"excel": "Excel",
"groove": "OneDrive (Groove)",
"lync": "Skype for Business",
"oneDrive": "OneDrive Desktop",
"oneNote": "OneNote",
"outlook": "Outlook",
"powerPoint": "PowerPoint",
"publisher": "Publisher",
"teams": "Teams",
"word": "Word"
},
"ApplicableDeviceType": {
"iPad": "iPad",
"iPhoneAndIPod": "iPhone and iPod"
},
"Assignment": {
"AutoUpdateMode": {
"default": "Default",
"header": "Update Priority",
"postponed": "Postponed",
"priority": "High Priority"
},
"DeliveryOptimizationPriority": {
"backgroundNormal": "Background",
"displayText": "Content download in {0}",
"foreground": "Foreground",
"header": "Delivery optimization priority"
},
"RestartGracePeriod": {
"allowSnooze": "Allow user to snooze the restart notification",
"countdownDialog": "Select when to display the restart countdown dialog box before the restart occurs (minutes)",
"durationInMinutes": "Device restart grace period (minutes)",
"snoozeDurationInMinutes": "Select the snooze duration (minutes)"
},
"SoftwareInstallationTime": {
"TimeZone": {
"label": "Time zone",
"local": "Device time zone",
"utc": "UTC"
},
"dateAndTimeLabel": "Date and time",
"deadlineTimeColumnLabel": "Installation deadline",
"deadlineTimeDatePickerErrorMessage": "Selected date must be after the available date",
"deadlineTimeLabel": "App installation deadline",
"defaultTime": "As soon as possible",
"infoText": "This application will be available as soon as it has been deployed, unless you specify an availability time below. If this is a required application, you may specify the installation deadline.",
"specificTime": "A specific date and time",
"startTimeColumnLabel": "Availability",
"startTimeDatePickerErrorMessage": "Selected date must be before the deadline date",
"startTimeLabel": "App availability"
},
"restartGracePeriodHeader": "Restart grace period",
"restartGracePeriodLabel": "Device restart grace period",
"summaryTitle": "End user experience"
},
"EnrollmentType": {
"devicesWithEnrollment": "Managed devices",
"devicesWithoutEnrollment": "Managed apps"
},
"PolicySet": {
"appManagement": "Application management",
"assignments": "Assignments",
"basics": "Basics",
"deviceEnrollment": "Device enrollment",
"deviceManagement": "Device management",
"scopeTags": "Scope tags",
"appConfigurationTitle": "App configuration policies",
"appProtectionTitle": "App protection policies",
"appTitle": "Apps",
"iOSAppProvisioningTitle": "iOS app provisioning profiles",
"deviceLimitRestrictionTitle": "Device limit restrictions",
"deviceTypeRestrictionTitle": "Device type restrictions",
"enrollmentStatusSettingTitle": "Enrollment status pages",
"windowsAutopilotDeploymentProfileTitle": "Windows autopilot deployment profiles",
"deviceComplianceTitle": "Device compliance policies",
"deviceConfigurationTitle": "Device configuration profiles",
"powershellScriptTitle": "Powershell scripts"
},
"AzureIAMCommon": {
"CountryNames": {
"countryNameNR": "Nauru",
"countryNameBH": "Bahrain",
"countryNameZA": "South Africa",
"countryNameJO": "Jordan",
"countryNameSD": "Sudan",
"countryNameNU": "Niue",
"countryNameCZ": "Czech Republic",
"countryNameLT": "Lithuania",
"countryNameTK": "Tokelau",
"countryNameEC": "Ecuador",
"countryNameVU": "Vanuatu",
"countryNameUG": "Uganda",
"countryNameLI": "Liechtenstein",
"countryNameHK": "Hong Kong SAR",
"countryNameGH": "Ghana",
"countryNameSA": "Saudi Arabia",
"countryNamePG": "Papua New Guinea",
"countryNameBW": "Botswana",
"countryNameDG": "Diego Garcia",
"countryNameIN": "India",
"countryNameHN": "Honduras",
"countryNameRO": "Romania",
"countryNameKZ": "Kazakhstan",
"countryNameLC": "Saint Lucia",
"countryNameGE": "Georgia",
"countryNameTT": "Trinidad and Tobago",
"countryNameMP": "Northern Mariana Islands",
"countryNameMV": "Maldives",
"countryNameFI": "Finland",
"countryNameNO": "Norway",
"countryNameEE": "Estonia",
"countryNameVE": "Venezuela",
"countryNameUZ": "Uzbekistan",
"countryNameME": "Montenegro",
"countryNameTJ": "Tajikistan",
"countryNameAW": "Aruba",
"countryNameFR": "France",
"countryNameOM": "Oman",
"countryNameAO": "Angola",
"countryNameIT": "Italy",
"countryNameAZ": "Azerbaijan",
"countryNameKG": "Kyrgyzstan",
"countryNameWF": "Wallis and Futuna",
"countryNameTL": "Timor-Leste",
"countryNameFK": "Falkland Islands (Islas Malvinas)",
"countryNameGY": "Guyana",
"countryNameSS": "South Sudan",
"countryNameMM": "Myanmar",
"countryNameHT": "Haiti",
"countryNameSY": "Syria",
"countryNameMD": "Moldova",
"countryNameVC": "Saint Vincent and the Grenadines",
"countryNameID": "Indonesia",
"countryNameRE": "Reunion",
"countryNameER": "Eritrea",
"countryNameMK": "North Macedonia",
"countryNameTG": "Togo",
"countryNamePF": "French Polynesia",
"countryNameKY": "Cayman Islands",
"countryNameIO": "British Indian Ocean Territory",
"countryNameRU": "Russia",
"countryNameMA": "Morocco",
"countryNameAU": "Australia",
"countryNameBO": "Bolivia",
"countryNameVA": "Holy See (Vatican City State)",
"countryNameVG": "Virgin Islands, British",
"countryNameFM": "Micronesia",
"countryNameAQ": "Antarctica",
"countryNameZM": "Zambia",
"countryNameBR": "Brazil",
"countryNameIS": "Iceland",
"countryNamePE": "Peru",
"countryNameBG": "Bulgaria",
"countryNamePR": "Puerto Rico",
"countryNameGI": "Gibraltar",
"countryNameBS": "Bahamas, The",
"countryNameJE": "Jersey",
"countryNameMO": "Macao SAR",
"countryNameRW": "Rwanda",
"countryNameAS": "American Samoa",
"countryNameBQ": "Bonaire, Sint Eustatius, and Saba",
"countryNameMF": "Saint Martin",
"countryNameTM": "Turkmenistan",
"countryNameML": "Mali",
"countryNameTO": "Tonga",
"countryNameNC": "New Caledonia",
"countryNameAC": "Ascension Island",
"countryNameBN": "Brunei",
"countryNameBD": "Bangladesh",
"countryNameMW": "Malawi",
"countryNameGM": "Gambia, The",
"countryNameGA": "Gabon",
"countryNameCA": "Canada",
"countryNameSH": "Saint Helena",
"countryNameYT": "Mayotte",
"countryNameMN": "Mongolia",
"countryNamePA": "Panama",
"countryNameCM": "Cameroon",
"countryNameNE": "Niger",
"countryNameCW": "Curaçao",
"countryNameJP": "Japan",
"countryNameCY": "Cyprus",
"countryNameCD": "Democratic Republic of Congo",
"countryNameTN": "Tunisia",
"countryNameTR": "Turkey",
"countryNameWS": "Samoa",
"countryNameSE": "Sweden",
"countryNameXK": "Kosovo",
"countryNameKH": "Cambodia",
"countryNamePL": "Poland",
"countryNameDZ": "Algeria",
"countryNameLR": "Liberia",
"countryNameSO": "Somalia",
"countryNameDM": "Dominica",
"countryNameEG": "Egypt",
"countryNameGF": "French Guiana",
"countryNameNZ": "New Zealand",
"countryNamePS": "Palestinian Authority",
"countryNameIL": "Israel",
"countryNameSL": "Sierra Leone",
"countryNameGR": "Greece",
"countryNameNG": "Nigeria",
"countryNameMR": "Mauritania",
"countryNameVI": "Virgin Islands, U.S.",
"countryNameGQ": "Equatorial Guinea",
"countryNameMX": "Mexico",
"countryNameDJ": "Djibouti",
"countryNameGN": "Guinea",
"countryNameCN": "China",
"countryNameMZ": "Mozambique",
"countryNameBV": "Bouvet Island",
"countryNameNF": "Norfolk Island",
"countryNameTZ": "Tanzania",
"countryNameAI": "Anguilla",
"countryNameGS": "South Georgia and the South Sandwich Islands",
"countryNameRS": "Serbia",
"countryNameCC": "Cocos (Keeling) Islands",
"countryNameNA": "Namibia",
"countryNameDE": "Germany",
"countryNameCG": "Republic of Congo",
"countryNameKW": "Kuwait",
"countryNameMH": "Marshall Islands",
"countryNameVN": "Vietnam",
"countryNameBY": "Belarus",
"countryNameMY": "Malaysia",
"countryNameST": "São Tomé and Príncipe",
"countryNameLS": "Lesotho",
"countryNameBI": "Burundi",
"countryNameTD": "Chad",
"countryNameCX": "Christmas Island",
"countryNameIR": "Iran",
"countryNameTV": "Tuvalu",
"countryNameGW": "Guinea-Bissau",
"countryNameUA": "Ukraine",
"countryNameCU": "Cuba",
"countryNameCO": "Colombia",
"countryNameNI": "Nicaragua",
"countryNameHR": "Croatia",
"countryNameSC": "Seychelles",
"countryNameNL": "Netherlands",
"countryNameUM": "US Minor Outlying Islands",
"countryNameIM": "Isle of Man",
"countryNameFJ": "Fiji",
"countryNameSR": "Suriname",
"countryNameGT": "Guatemala",
"countryNameSM": "San Marino",
"countryNameLA": "Laos",
"countryNameGB": "United Kingdom",
"countryNameBB": "Barbados",
"countryNameSI": "Slovenia",
"countryNameAM": "Armenia",
"countryNameAR": "Argentina",
"countryNamePM": "Saint Pierre and Miquelon",
"countryNameTF": "French Southern and Antarctic Lands",
"countryNameDO": "Dominican Republic",
"countryNameZW": "Zimbabwe",
"countryNameMQ": "Martinique",
"countryNamePT": "Portugal",
"countryNameCF": "Central African Republic",
"countryNameBE": "Belgium",
"countryNameKM": "Comoros",
"countryNameLY": "Libya",
"countryNameIE": "Ireland",
"countryNameKP": "North Korea",
"countryNameGG": "Guernsey",
"countryNameSK": "Slovakia",
"countryNameTC": "Turks and Caicos Islands",
"countryNameNP": "Nepal",
"countryNameBF": "Burkina Faso",
"countryNameYE": "Yemen",
"countryNameBA": "Bosnia and Herzegovina",
"countryNameGP": "Guadeloupe",
"countryNameMS": "Montserrat",
"countryNameCL": "Chile",
"countryNameIQ": "Iraq",
"countryNameSJ": "Svalbard and Jan Mayen Island",
"countryNameAX": "Åland Islands",
"countryNameKE": "Kenya",
"countryNameGU": "Guam",
"countryNameBM": "Bermuda",
"countryNameFO": "Faroe Islands",
"countryNameBL": "Saint Barthélemy",
"countryNameLB": "Lebanon",
"countryNameJM": "Jamaica",
"countryNameAF": "Afghanistan",
"countryNameES": "Spain",
"countryNameMC": "Monaco",
"countryNameSG": "Singapore",
"countryNameAL": "Albania",
"countryNameSN": "Senegal",
"countryNameSZ": "Swaziland",
"countryNameBZ": "Belize",
"countryNameCI": "Côte dIvoire",
"countryNameTW": "Taiwan",
"countryNameUY": "Uruguay",
"countryNameCK": "Cook Islands",
"countryNameTH": "Thailand",
"countryNameHM": "Heard Island and McDonald Islands",
"countryNameGD": "Grenada",
"countryNameUS": "United States",
"countryNameAT": "Austria",
"countryNameKR": "Korea, Republic of",
"countryNamePK": "Pakistan",
"countryNameDK": "Denmark",
"countryNameSV": "El Salvador",
"countryNamePW": "Palau",
"countryNameET": "Ethiopia",
"countryNameMG": "Madagascar",
"countryNameCR": "Costa Rica",
"countryNameLU": "Luxembourg",
"countryNameQA": "Qatar",
"countryNameBT": "Bhutan",
"countryNameSB": "Solomon Islands",
"countryNameAE": "United Arab Emirates",
"countryNameAD": "Andorra",
"countryNameCV": "Cabo Verde",
"countryNameAG": "Antigua and Barbuda",
"countryNameMU": "Mauritius",
"countryNameHU": "Hungary",
"countryNameSX": "Sint Maarten",
"countryNameCH": "Switzerland",
"countryNamePN": "Pitcairn Islands",
"countryNameGL": "Greenland",
"countryNamePH": "Philippines",
"countryNameMT": "Malta",
"countryNameKN": "Saint Kitts and Nevis",
"countryNameLK": "Sri Lanka",
"countryNameKI": "Kiribati",
"countryNameBJ": "Benin",
"countryNameLV": "Latvia",
"countryNamePY": "Paraguay"
}
}
}
Reference in New Issue View Git Blame Copy Permalink