MDM & MAM with Microsoft Intune Daanish Antulay Enterprise Mobility Specialist, APAC
52% 90% >80% 52% of information workers across 17 countries report using three or more devices for work* 90% of enterprises will have two or more mobile operating systems to support in 2017** >80% of employees admit to using non-approved softwareas-a-service (SaaS) applications in their jobs*** * Forrester Research: BT Futures Report: Info workers will erase boundary between enterprise & consumer technologies, Feb. 21, 2013 ** Gartner Source: Press Release, Oct. 25, 2012, http://www.gartner.com/newsroom/id/2213115 *** http://www.computing.co.uk/ctg/news/2321750/more-than-80-per-cent-of-employees-use-non-approved-saas-apps-report
Devices Apps Data User
People-centric approach Devices Apps Data User Enable your users Unify your environment Protect your data
Mobile device and application management User Access and information protection Hybrid identity Enable your users Desktop virtualization Protect your data
Managed productivity with Office mobile apps Mobile Desktop device and virtualization application management Mobile app management and app wrapping Conditional access to corporate resources Access and information protection Hybrid identity Simplified device enrollment Desktop virtualization
Rapidly changing environment Many devices / shorter half life Office Protection at all layers Device and experiences count Rapid release cycles and innovation User-focused management Managed Office mobile apps Identity, device, apps, data Architecture matters
Enroll Provide a self-service Company Portal for users to enroll devices Deliver custom terms and conditions at enrollment Bulk enroll devices using Apple Configurator or service account Restrict access to Exchange email if a device is not enrolled Provision Deploy certificates, email, VPN, and WiFi profiles Deploy device security policy settings Install mandatory apps Deploy app restriction policies Deploy data protection policies User Retire Revoke access to corporate resources Perform selective wipe Audit lost and stolen devices Manage and Protect Restrict access to corporate resources if policies are violated (e.g., jailbroken device) Protect corporate data by restricting actions such as copy/cut/paste/save outside of managed app ecosystem Report on device and app compliance
Azure AD Identity and Access Office 365 Productivity Intune Device Management
Mobile device management Mobile application management PC management User Intune helps organizations provide their employees with access to corporate applications, data, and resources from virtually anywhere on almost any device, while helping to keep corporate information secure.
Intune standalone (cloud only) Configuration Manager integrated with Intune (hybrid) Intune web console Configuration Manager console System Center Configuration Manager Mobile devices and PCs Domain joined PCs Mobile devices
Intune web console (cloud only) Configuration Manager console (hybrid)
Consistent experience across: Discover and install corporate apps Manage devices and data Customizable terms and conditions Ability to contact
User
Company Portal User Devices enrolled Recommended apps for user s devices Apply policies
User Username Microsoft Intune
User Username Microsoft Intune
Managed apps User Maximize mobile productivity and protect corporate resources with Office mobile apps Personal apps Personal apps Extend these capabilities to existing line-of-business apps using the Intune app wrapper Enable secure viewing of content using the Managed Browser, PDF Viewer, AV Player, and Image Viewer apps
Managed apps User Personal apps Maximize productivity while preventing leakage of company data by restricting actions such as copy/cut/paste/save in your managed app ecosystem
Managed apps Company Portal Are you sure you want to wipe corporate data and applications from the user s device? OK Cancel Perform selective wipe via self-service company portal or admin console Personal apps Remove managed apps and data Keep personal apps and data intact
Business Manager Apply policies Enrolls devices on behalf of users Distributes to users Restaurant School Retail Store
Business Manager Enroll devices Apply policies Distributes to users Restaurant School Retail Store
Intune standalone (cloud only) Lightweight, agentless OR agent-based management PC protection from malware PC software update management Software distribution Proactive monitoring and alerts Hardware and software inventory Policies for Windows Firewall management Configuration Manager integrated with Intune (hybrid) Agent-based management only PC protection from malware PC software update management Software distribution Proactive monitoring and alerts Hardware and software inventory Policies for Windows Firewall management Operating system deployment PC, mobile device, Windows Server, Linux/Unix, Mac, and virtual desktop management Power management Custom reporting
Hybrid identity Security reports, audit reports, multi-factor authentication Self-service password reset and group management Single sign-on to over 2,400 popular SaaS applications Active Directory Premium Mobile device and application management Mobile device settings management Mobile application management with Office mobile apps Conditional access and selective wipe Access and information protection Information protection Connection to on-premises assets Bring your own key Rights Management
Demo