Protect your data Enable your users Unify Your Environment DevicesAppsData Help organizations enable their users to be productive on the devices they love while helping ensure corporate assets are secure
Conditional Access Secure access to , SharePoint Online services using conditional access policy Data Protection Prevent data leakage from mobile apps using Intune data protection SDK Resource Access Deploy VPN, Wi-Fi, Certificate profiles to easily enable access Data Loss Prevention Selectively wipe corporate data off lost/stolen devices Secure Android Devices and Applications with Microsoft Intune
Wide range of support Support for all Android devices 4.0+ UX consistency Consistent management and user experience across all device OEMs Best productivity suite Productivity with Microsoft Office Separation of business and personal data Identity-aware apps let IT control corporate data while leaving personal data untouched Emphasis on User Experience
Device & compliance policy PIN Encryption Root detection Publish managed apps Office Intune viewer apps Deploy MAM policy with apps Copy/paste protection Sharing restrictions Cloud backup restrictions Screenshot restricting
App Code MAM External Company Portal UI Intune MDM Agent MAM Internal
Google Cloud Messaging Service Intune
Play Store Apps Side loading (APK) Web links Required installation (mandatory) Yes Available installation (in catalog) Yes Uninstall NoYes Remove on Retire NoYes (KNOX only) Yes
Prompt after enrollment failure On the “Welcome” Page On the Contact IT tab
Kieran Gupta
iOS Device Apple MDM Agent Microsoft Intune Company Portal Enrollment Policies Config Profiles Remote commands LOB apps App Store apps Inventory check-in Retire
iOS Device Apple MDM Agent Microsoft Intune Company Portal Enrollment Remote commands LOB apps App Store apps RetirePolicies Config Profiles Inventory check-in
Company Portal App User-based enrollment Install from the App Store Apple ID required Example: BYOD Apple Configurator / DEP User-less bulk enrollment via Service Account User-based enrollment Pre-enroll / out-of-box enrollment Examples: kiosk, retail, corporate-owned CYOD Corporate BYOD Users brings device Install Comp. Portal + Enroll Apply policy + configuration Configuring Corporate-Owned Mobile Devices with Intune | Fri 9AM Out-of-box enrollment Apply policy + configuration Install Comp. Portal (user) + jailbreak detection + AAD device registration (conditional access / compliance) + SSO and selective wipe (managed Office apps) + lock MDM profile to device + enable Supervised mode
Supervised mode Kiosk mode Activation Lock bypass (Find My iPhone) Silent app installation + prevent app uninstallation Custom background, lock screen message, device name Global HTTP proxy + always-on VPN Prevent device factory reset Prevent USB tethering more… Configuring Corporate-Owned Mobile Devices with Intune | Fri 9AM Supervise your corporate devices
Jailbreak detection Symptoms Look for symptoms of jailbroken device changes in OS behavior binaries, config files presence of certain apps/libraries Future Proof Detection logic not tied to any specific jailbreak kit or version Testing Regularly verify against latest jailbreak kits
iOS Custom Policy Configure Define any iOS setting or config payload available in [ Config Profile Reference] Config Profile Reference 2 methods Apple Configurator Custom-written XML Deploy Custom iOS Policy Import. mobileconfig Deploy to users PayloadType com.apple.appaccess allowCamera …
Forward-thinking: iOS 9 Day 0 support Your users can upgrade worry-free at GA How we do it Compatibility testing against beta drops Proactive & regular communication with Apple New Features Prioritized and delivered based on customer demand.
push wrapped app packages Configuration Manager 2012 R2 / Hybrid Config Manager Agentpush settings to device via plist or script defaults write /Library/Preferences/ com.apple.screensaver askForPassword -integer 1
Intune MDM-managed Windows Phone AndroidiOSMac OS X
Mac Support – v1 Secure Web-based enrollment Passcode policies Disk encryption Configure Push WiFi/VPN profiles Push custom policies Audit Hardware inventory Software inventory Device reports
MDM support
Agent Level 1Level 2Level 3 Self-Service Portal Mac Management: Our Philosophy MDM