mdm & mam withdownload.microsoft.com/documents/hk/technet/techdays2015/day2/… · mobile...
Post on 20-Jul-2020
13 Views
Preview:
TRANSCRIPT
MDM & MAM with Microsoft Intune Daanish Antulay
Enterprise Mobility Specialist, APAC
52% of information workers
across 17 countries report
using three or more devices
for work*
>80% of employees admit to
using non-approved software-
as-a-service (SaaS) applications
in their jobs***
90% of enterprises will have
two or more mobile operating
systems to support in 2017**
52% 90% >80%
* Forrester Research: “BT Futures Report: Info workers will erase boundary between enterprise & consumer technologies,” Feb. 21, 2013 ** Gartner Source: Press Release, Oct. 25, 2012, http://www.gartner.com/newsroom/id/2213115 *** http://www.computing.co.uk/ctg/news/2321750/more-than-80-per-cent-of-employees-use-non-approved-saas-apps-report
Devices Apps Data
User IT
Unify your environment
People-centric approach
Devices Apps Data
Enable your users
User
Protect your data
IT
Mobile device and application
management
Access and information protection
Hybrid identity
Desktop virtualization
Protect your data
Enable your users
User IT
Desktop virtualization
Access and information protection
Mobile device and application management
Hybrid identity
Conditional access to corporate resources
Simplified device enrollment
Managed productivity with Office mobile apps
Mobile app management and app wrapping
Desktop virtualization
Rapid release cycles and innovation Rapidly changing environment
User-focused management Many devices / shorter half life
Managed Office mobile apps Office
Identity, device, apps, data Protection at all layers
Architecture matters Device and IT experiences count
Enroll • Provide a self-service Company
Portal for users to enroll devices
• Deliver custom terms and
conditions at enrollment
• Bulk enroll devices using Apple
Configurator or service account
• Restrict access to Exchange
email if a device is not enrolled
Retire • Revoke access to corporate
resources
• Perform selective wipe
• Audit lost and stolen devices
Provision • Deploy certificates, email, VPN,
and WiFi profiles
• Deploy device security policy
settings
• Install mandatory apps
• Deploy app restriction policies
• Deploy data protection policies
Manage and Protect • Restrict access to corporate
resources if policies are violated
(e.g., jailbroken device)
• Protect corporate data by
restricting actions such as
copy/cut/paste/save outside of
managed app ecosystem
• Report on device and app
compliance
User IT
•
•
•
•
•
•
•
•
•
•
Intune Device Management
Office 365 Productivity
Azure AD Identity and Access
Mobile application management
PC management Mobile device management
Intune helps organizations provide their employees with access to corporate applications, data, and
resources from virtually anywhere on almost any device, while helping to keep corporate information secure.
User IT
Mobile devices and PCs Mobile devices
System Center Configuration
Manager
Domain joined PCs
Configuration Manager integrated with Intune (hybrid) Intune standalone (cloud only)
IT IT
Intune web console Configuration Manager console
Configuration Manager console (hybrid) Intune web console (cloud only)
Consistent experience across:
Discover and install corporate apps
Manage devices and data
Ability to contact IT
Customizable terms and conditions
IT User
Devices enrolled
Apply policies
Company Portal
Recommended apps for user’s devices
IT User
•••••••••
Username Microsoft Intune
IT IT User
•••••••••
Username Microsoft Intune
IT IT User
Maximize mobile productivity and protect corporate
resources with Office mobile apps
Extend these capabilities to existing line-of-business apps
using the Intune app wrapper
Enable secure viewing of content using the Managed
Browser, PDF Viewer, AV Player, and Image Viewer apps
Managed apps
Personal apps Personal apps
Managed apps
IT User
Personal apps
Managed apps
Maximize productivity while preventing leakage of company
data by restricting actions such as copy/cut/paste/save in
your managed app ecosystem
User
Personal apps
Managed apps Company Portal
Are you sure you want to wipe
corporate data and applications
from the user’s device?
OK Cancel
Perform selective wipe via self-service company portal or admin console
Remove managed apps and data
Keep personal apps and data intact
IT IT
Enrolls devices on behalf of users
Apply policies
IT Business Manager
Distributes to users
Restaurant School Retail Store
Apply policies
Enroll devices
IT Business Manager
Restaurant School Retail Store
Distributes to users
Intune standalone (cloud only)
Lightweight, agentless OR agent-based management
PC protection from malware
PC software update management
Software distribution
Proactive monitoring and alerts
Hardware and software inventory
Policies for Windows Firewall management
Intune standalone (cloud only) Configuration Manager integrated with Intune (hybrid)
Lightweight, agentless OR agent-based management Agent-based management only
PC protection from malware PC protection from malware
PC software update management PC software update management
Software distribution Software distribution
Proactive monitoring and alerts Proactive monitoring and alerts
Hardware and software inventory Hardware and software inventory
Policies for Windows Firewall management Policies for Windows Firewall management
Operating system deployment
PC, mobile device, Windows Server, Linux/Unix, Mac, and virtual desktop management
Power management
Custom reporting
Mobile device and
application
management
Mobile device
settings
management
Conditional access
and selective wipe
Mobile application
management with
Office mobile apps
Hybrid identity
Active Directory Premium
Single sign-on to
over 2,400
popular SaaS
applications
Self-service
password reset
and group
management
Security reports,
audit reports,
multi-factor
authentication
Access and
information
protection
Information
protection
Connection to
on-premises
assets
Bring your own
key
Rights Management
Demo
top related