Devices Enable your users Apps Unify Your Environment Data Protect your data Help organizations enable their users to be productive on the devices they love while helping ensure corporate.
Download ReportTranscript Devices Enable your users Apps Unify Your Environment Data Protect your data Help organizations enable their users to be productive on the devices they love while helping ensure corporate.
Devices Enable your users Apps Unify Your Environment Data Protect your data Help organizations enable their users to be productive on the devices they love while helping ensure corporate assets are secure Secure Android Devices and Applications with Microsoft Intune Conditional Access Secure access to email, SharePoint Online services using conditional access policy Data Protection Prevent data leakage from mobile apps using Intune data protection SDK Resource Access Deploy VPN, Wi-Fi, Certificate profiles to easily enable access Data Loss Prevention Selectively wipe corporate data off lost/stolen devices Emphasis on User Experience Wide range of support Support for all Android devices 4.0+ UX consistency Consistent management and user experience across all device OEMs Best productivity suite Productivity with Microsoft Office Separation of business and personal data Identity-aware apps let IT control corporate data while leaving personal data untouched Device & compliance policy • PIN • Encryption • Root detection Publish managed apps • Office • Intune viewer apps Deploy MAM policy with apps • Copy/paste protection • Sharing restrictions • Cloud backup restrictions • Screenshot restricting Intune MDM Agent App Code Company Portal UI MAM Internal MAM External Google Cloud Messaging Service Intune Play Store Apps Side loading (APK) Web links Required installation (mandatory) Yes Yes Yes Available installation (in catalog) Yes Yes Yes Uninstall No Yes Yes Remove on Retire No Yes (KNOX only) Yes Prompt after enrollment failure On the “Welcome” Page On the Contact IT tab Kieran Gupta Remote commands LOB apps App Store apps Inventory Enrollment Policies Config Profiles Retire check-in Apple MDM Agent iOS Device Microsoft Intune Company Portal Remote commands LOB apps App Store apps Inventory Enrollment Policies Config Profiles Retire check-in Apple MDM Agent iOS Device Microsoft Intune Company Portal BYOD Corporate Company Portal App Apple Configurator / DEP User-based enrollment Install from the App Store Apple ID required Example: BYOD User-less bulk enrollment via Service Account User-based enrollment Pre-enroll / out-of-box enrollment Examples: kiosk, retail, corporate-owned CYOD Users brings device Install Comp. Portal + Enroll Apply policy + configuration + jailbreak detection + AAD device registration (conditional access / compliance) + SSO and selective wipe (managed Office apps) Out-of-box enrollment Apply policy + configuration Install Comp. Portal (user) + lock MDM profile to device + enable Supervised mode Configuring Corporate-Owned Mobile Devices with Intune | Fri 9AM Supervised mode Supervise your corporate devices Kiosk mode Activation Lock bypass (Find My iPhone) Silent app installation + prevent app uninstallation Custom background, lock screen message, device name Global HTTP proxy + always-on VPN Prevent device factory reset Prevent USB tethering more… Configuring Corporate-Owned Mobile Devices with Intune | Fri 9AM Jailbreak detection Symptoms Future Proof Testing Look for symptoms of jailbroken device changes in OS behavior binaries, config files presence of certain apps/libraries Detection logic not tied to any specific jailbreak kit or version Regularly verify against latest jailbreak kits iOS Custom Policy Configure Define any iOS setting or config payload available in [ Config Profile Reference] 2 methods Deploy Apple Configurator Custom-written XML Custom iOS Policy Import. mobileconfig Deploy to users <key>PayloadType<key> <string>com.apple.appaccess<string> <key>allowCamera</key> <false/> … Forward-thinking: iOS 9 Day 0 support How we do it New Features Your users can upgrade worry-free at GA Compatibility testing Prioritized and delivered based on customer demand. against beta drops Proactive & regular communication with Apple Configuration Manager 2012 R2 / Hybrid Config Manager Agent push settings to device via plist or script defaults write /Library/Preferences/ com.apple.screensaver askForPassword -integer 1 push wrapped app packages Intune MDM-managed Windows Phone Android iOS Mac OS X Mac Support – v1 Secure Configure Audit Web-based enrollment Passcode policies Disk encryption Push WiFi/VPN profiles Push custom policies Hardware inventory Software inventory Device reports 2010 10.6 2013 10.7 10.8 10.9 MDM support 10.10 Mac Management: Our Philosophy Level 1 Level 2 Level 3 MDM Agent Self-Service Portal http://aka.ms/nbtbvs http://aka.ms/nbtbevents http://myignite.microsoft.com