Presentation is loading. Please wait.

Presentation is loading. Please wait.

Conduct a successful pilot deployment of Microsoft Intune

Published byTerence Harmon Modified over 6 years ago

Similar presentations

Presentation on theme: "Conduct a successful pilot deployment of Microsoft Intune"— Presentation transcript:

1 Conduct a successful pilot deployment of Microsoft Intune
5/19/2018 8:33 AM BRK3010 Conduct a successful pilot deployment of Microsoft Intune Peter Daalmans Senior Consultant, CTGlobal @pdaalmans Niall Brady MVP/Blogger, windowsnoob @ncbrady © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

2 Agenda for successful pilot deployment of Intune
5/19/2018 8:33 AM Agenda for successful pilot deployment of Intune 1. Plan Secure a Sponsor Create a plan Setup a Test / Proof of Concept Environment Prepare infrastructure Learn and prep for Mobile Device Management (MDM) Choose a Mobile Device Provisioning and Enrollment approach Allow to Work from Anywhere from any Device, or not Protect Your Data Make your Applications mobile and manageable Start pilot deployment Verify if you met your and the companies goals 2. Prepare/pilot 3. Verify © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

3 Plan the Intune deployment

4 Secure a Sponsor Why a good sponsor is important?
Resources Escalations New standards and policies How to find the best sponsor? Who will profit most Show business value Come well prepared

5 Create a plan - 1 Ask the Business for their functional mobility needs
5/19/2018 8:33 AM Create a plan - 1 Ask the Business for their functional mobility needs Common Understanding Define the End-Goal (Not Technical!) Quantify the requirements based on business impact Examples: Improved Productivity through…, lower TCO via…., etc.) Gather functional requirements and add it to a list For example: Different departments may require different access to resources Some workers are working from home versus in the office Users collaborating across different devices with the same apps and data © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

6 Create a plan - 2 Ask IT for their (non-functional) mobility needs
5/19/2018 8:33 AM Create a plan - 2 Ask IT for their (non-functional) mobility needs Common Understanding Align with Security, Risk and Compliance departments Agree on the End-Goal The Business Needs is still the End-Goal, but you need to resolve technical issues Quantify requirements based on business impact Accept that (security) policies and standards most likely need to be revised Structure Your Requirements in a requirements list Identity model (MFA etc) MDM MAM Security, etc. © 2014 Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

7 Bitlocker and Intune Niall Brady 5/19/2018 8:33 AM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

8 Setup a Test Environment
5/19/2018 8:33 AM Setup a Test Environment Proof of concept – Validate Requirements Identify issues and gaps early Education © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

9 Prepare and proof the solution

10 Prepare infrastructure
5/19/2018 8:33 AM Prepare infrastructure Identify the identity model Identify management platform Identity certificate requirements Identify O365 / Exchange on premises requirements Identity Remote Access requirements © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

11 Choose the right Identity Solution / right license
5/19/2018 8:33 AM Choose the right Identity Solution / right license Cloud Identity Independent cloud identity Azure Active Directory Active Directory Directory Sync and Password Hash Sync Synchronized Identity  Single identity, enabling a same sign-on experience with password hash sync Azure Active Directory Federated Identity Active Directory Directory Sync Single federated identity, enabling single sign-on in some scenarios and additional flexibility Azure Active Directory Federation © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

12 What management platform do we use?
5/19/2018 8:33 AM What management platform do we use? MAM without enrollment Intune cloud only Intune hybrid IT IT IT Intune Admin Portal Intune Admin Portal Configuration Manager console System Center Configuration Manager Intune MAM / WIP apps Mobile devices and PCs Mobile devices and PCs Domain-joined PCs Mobile devices © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

13 Why are certificates important?
5/19/2018 8:33 AM Why are certificates important? Security for Mobile solutions = certificates PKI is often challenge number 1 Certificates / PKI required for: Apple Push Notification Windows Information Protection / Application Protection Signing mobile applications S/MIME Signing and Encryption Remote Access (VPN and Reverse Proxy) Simple Certificate Enrollment Protocol (SCEP) © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

14 Office 365 / Exchange on-premises
5/19/2018 8:33 AM Office 365 / Exchange on-premises Office 365 with Exchange Online, Azure AD and Intune are the best fit But also SharePoint, Teams and other Azure / O365 services Exchange on-premises Install Exchange Connector to provide conditional access Support for Outlook app is not there yet © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

15 Remote access to on-premises resources
5/19/2018 8:33 AM Remote access to on-premises resources Identify need for VPN access Current VPN profiles Partnership with Citrix for micro-VPN solution with Netscaler Identify need for Azure AD Application Proxy © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

16 App based CA Peter Daalmans 5/19/2018 8:33 AM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

17 Learn and prep for MDM? Here´s your own Choose your own Bring your own
5/19/2018 8:33 AM Learn and prep for MDM? High Trust Here´s your own Enterprise device Predefined devices with strict policies Choose your own Enterprise device Whitelisted devices with looser policies Low Freedom High Freedom Bring your own Consumer device Enterprise exercises limited management On your own Consumer device Enterprise provides no management Low Trust Source: Enterprise Mobility Suite Managing BYOD and Company-Owned Devices © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

18 Choose the right enrollment option(s)
5/19/2018 Choose the right enrollment option(s) ORGANIZATION OWNED PERSONALLY OWNED (BYOD) Active Directory Azure AD Computer joins AD to establish trust User signs on using AD account Group Policy + System Center Computer joins AAD to establish trust User signs on using AAD account MDM Computer registers with AAD via Workplace Join to establish trust for remote resource access User signs in with a Microsoft account, associates an AAD account MDM Single sign-on to enterprise and cloud-based services © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

19 5/19/2018 8:33 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

20 Work from any Device? Corporate owned and/or Bring your own
5/19/2018 8:33 AM Work from any Device? Corporate owned and/or Bring your own Operating system versions Device types © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

21 iOS Supervised Mode Peter Daalmans 5/19/2018 8:33 AM
© Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

22 Protect your data! How to prevent access to Company data by non-compliant mobile devices Insecure devices put your company data at risk Keep Company data separate from Personal Data Company owned data should be protected and controlled End users don’t like “Containerized” solutions Users prefer to work with applications they are familiar with (e.g. Mail, Web browser, File Explorer) Users don’t like to switch between different environments on the same device How to prevent data loss by lost devices and unenrolled (BYOD) devices Ensure Company Data will be wiped or is unaccusable

23 WIP without enrollment
5/19/2018 8:33 AM WIP without enrollment Niall Brady © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

24 Verify

25 Start pilot deployment
5/19/2018 8:33 AM Start pilot deployment Deploy your “friends and family” first Create a decent deployment plan Migrating from other MDM solutions? Look in to the EBF Intune onboarder to help ease the migration process © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

26 Verify Verify with your users how deployment went
5/19/2018 8:33 AM Verify Verify with your users how deployment went Did they saw issues? Adjust end user documentation Verify if scope and requirements are met Start final deployment after a go/no go moment © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

27 Wrap up – lessons learned
5/19/2018 8:33 AM Wrap up – lessons learned Are you missing features? Go to Got issues?, use the free support via the Intune portal! Got questions?, use Microsoft Support forums or reach out to the community! © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

28 5/19/2018 8:33 AM Questions © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

29 Please evaluate this session
Tech Ready 15 5/19/2018 Please evaluate this session From your Please expand notes window at bottom of slide and read. Then Delete this text box. PC or tablet: visit MyIgnite Phone: download and use the Microsoft Ignite mobile app Your input is important! © 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

30 5/19/2018 8:33 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.

Download ppt "Conduct a successful pilot deployment of Microsoft Intune"

Similar presentations

Deployment Planning Services

Deployment Planning Services
5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.

5/21/2018 9:40 PM BRK3021 Learn about modern infrastructure roles in RDS: Next generation Windows desktop & app virtualization Clark Nicholson - Principal.
Deployment Planning Services

Deployment Planning Services
5/29/2018 1:51 AM THR2071 Managing enterprise applications, permissions, and consent in Azure Active Directory Adam Steenwyk & Jeff Sakowicz Program Managers.

5/29/2018 1:51 AM THR2071 Managing enterprise applications, permissions, and consent in Azure Active Directory Adam Steenwyk & Jeff Sakowicz Program Managers.
Manage Windows devices in the complex hybrid cloud world of today

Manage Windows devices in the complex hybrid cloud world of today
Conduct a successful pilot deployment of Microsoft Intune

Conduct a successful pilot deployment of Microsoft Intune
Azure Cloud Shell Magic of Modern Command-line Management

Azure Cloud Shell Magic of Modern Command-line Management
6/17/2018 5:54 AM OSP322 Getting the best of both worlds, making the most of SharePoint hybrid search solutions Shyam Narayan Microsoft © 2013 Microsoft.

6/17/2018 5:54 AM OSP322 Getting the best of both worlds, making the most of SharePoint hybrid search solutions Shyam Narayan Microsoft © 2013 Microsoft.
Windows 10 and the cloud: Why the future needs hybrid solutions

Windows 10 and the cloud: Why the future needs hybrid solutions
Modernizing your Remote Access

Modernizing your Remote Access
Where is your Windows support career going wrong?

Where is your Windows support career going wrong?
6/25/2018 11:13 PM BRK1076 Make Windows devices more secure by taking them out of your existing infrastructure Chris Rhodes & Andrew Bettany MCTs & MVPs.

6/25/ :13 PM BRK1076 Make Windows devices more secure by taking them out of your existing infrastructure Chris Rhodes & Andrew Bettany MCTs & MVPs.
Microsoft Virtual Academy

Microsoft Virtual Academy
Optimizing Microsoft OneDrive for the enterprise

Optimizing Microsoft OneDrive for the enterprise
The power of common identity across any cloud

The power of common identity across any cloud
Microsoft Ignite 2016 7/18/2018 8:30 PM BRK2065

Microsoft Ignite /18/2018 8:30 PM BRK2065
Understanding Multi-Geo Capabilities in Office 365

Understanding Multi-Geo Capabilities in Office 365
Protect sensitive information with Office 365 DLP

Protect sensitive information with Office 365 DLP
7/29/2018 4:45 PM Manage SharePoint and OneDrive in Office 365: A field guide for administrators Chris Bortlik Modern Workplace Technical Architect Microsoft.

7/29/2018 4:45 PM Manage SharePoint and OneDrive in Office 365: A field guide for administrators Chris Bortlik Modern Workplace Technical Architect Microsoft.
Microsoft Ignite /31/ :08 AM

Microsoft Ignite /31/ :08 AM

Similar presentations

Ads by Google