Tamper Protection is a new Intune endpoint setting that protects by prohibiting security setting changes on the Windows device. This is rolled out and I can see it in my tenant. Check your tenant and you might have it as well: Azure -> Intune -> Device Configuration – Profiles ->
Provided you have the appropriate license, you should be able to apply the setting for Azure AD Enrolled device as well as co-management scenarios.
