Mobile device and application management Speaker Name Date
52% 90% >80% 52% of information workers across 17 countries report using three or more devices for work* 90% of enterprises will have two or more mobile operating systems to support in 2017** >80% of employees admit to using non-approved softwareas-a-service (SaaS) applications in their jobs*** * Forrester Research: BT Futures Report: Info workers will erase boundary between enterprise & consumer technologies, Feb. 21, 2013 ** Gartner Source: Press Release, Oct. 25, 2012, http://www.gartner.com/newsroom/id/2213115 *** http://www.computing.co.uk/ctg/news/2321750/more-than-80-per-cent-of-employees-use-non-approved-saas-apps-report
Devices Apps Data User
People-centric approach Devices Apps Data User Enable your users Unify your environment Protect your data
Mobile device and application management User Access and information protection Hybrid identity Enable your users Desktop virtualization Protect your data
Rapidly changing environment Many devices / shorter half life Office Protection at all layers Device and experiences count Rapid release cycles and innovation User-focused management Managed Office mobile apps Identity, device, apps, data Architecture matters
Managed productivity with Office mobile apps Mobile Desktop device and virtualization application management Mobile app management and app wrapping Conditional access to corporate resources Access and information protection Hybrid identity Simplified device enrollment Desktop virtualization
Mobile device management Mobile application management PC management User Intune helps organizations provide their employees with access to corporate applications, data, and resources from virtually anywhere on almost any device, while helping to keep corporate information secure.
Enroll Provision Provide a self-service Company Portal for users to enroll devices Deliver custom terms and conditions at enrollment Bulk enroll devices using Apple Configurator or service account Restrict access to Exchange email if a device is not enrolled User Deploy certificates, email, VPN, and WiFi profiles Deploy device security policy settings Install mandatory apps Deploy app restriction policies Deploy data protection policies Retire Manage and Protect Revoke access to corporate resources Perform selective wipe Audit lost and stolen devices Restrict access to corporate resources if policies are violated (e.g., jailbroken device) Protect corporate data by restricting actions such as copy/cut/paste/save outside of managed app ecosystem Report on device and app compliance
Consistent experience across: Discover and install corporate apps Manage devices and data Customizable terms and conditions Ability to contact
Company Portal User Devices enrolled Recommended apps for user s devices Apply policies
User Username Microsoft Intune
Managed apps User Maximize mobile productivity and protect corporate resources with Office mobile apps Personal apps Personal apps Extend these capabilities to existing line-of-business apps using the Intune app wrapper Enable secure viewing of content using the Managed Browser, PDF Viewer, AV Player, and Image Viewer apps
Managed apps User Personal apps Maximize productivity while preventing leakage of company data by restricting actions such as copy/cut/ paste/save in your managed app ecosystem
Managed apps Company Portal Are you sure you want to wipe corporate data and applications from the user s device? OK Cancel Perform selective wipe via self-service company portal or admin console Personal apps Remove managed apps and data Keep personal apps and data intact
Business Manager Apply policies Enrolls devices on behalf of users Distributes to users Restaurant School Retail Store
Business Manager Enroll devices Apply policies Distributes to users Restaurant School Retail Store
Intune standalone (cloud only) Lightweight, agentless OR agent-based management PC protection from malware PC software update management Software distribution Proactive monitoring and alerts Hardware and software inventory Policies for Windows Firewall management Configuration Manager integrated with Intune (hybrid) Agent-based management only PC protection from malware PC software update management Software distribution Proactive monitoring and alerts Hardware and software inventory Policies for Windows Firewall management Operating system deployment PC, mobile device, Windows Server, Linux/Unix, Mac, and virtual desktop management Power management
Intune web console (cloud only) Configuration Manager console (hybrid)
Intune standalone (cloud only) Configuration Manager integrated with Intune (hybrid) Intune web console Configuration Manager console System Center Configuration Manager Mobile devices and PCs Domain joined PCs Mobile devices
Hybrid identity Security reports, audit reports, multi-factor authentication Self-service password reset and group management Single sign-on to over 2,400 popular SaaS applications Active Directory Premium Mobile device and application management Mobile device settings management Mobile application management with Office mobile apps Conditional access and selective wipe Access and information protection Information protection Connection to onpremises assets Bring your own key Rights Management
Devices Apps Data User Enable your users Protect your data Management. Access control. Information protection.
Category Device configuration Office 365 Feature Exchange ActiveSync MDM for Office 365 Intune Standalone Inventory mobile devices that access corporate applications Remote factory reset (full device wipe) Mobile device configuration settings (PIN length, PIN required, lock time, etc.) Self-service password reset (Office 365 cloud only users) Provides reporting on devices that do not meet policy Group-based policies and reporting (ability to use groups for targeted device configuration) Root cert and jailbreak detection Intune + ConfigMgr (Hybrid) Remove Office 365 app data from mobile devices while leaving personal data and apps intact (selective wipe) CY2015 Prevent access to corporate email and documents based upon device enrollment and compliance policies CY2015 Self-service Company Portal for users to enroll their own devices and install corporate apps Premium mobile device & app management PC Management App deployment (Windows Phone, ios, Android) Deploy certificates, VPN profiles (including app-specific profiles), email profiles, and Wi-Fi profiles * Prevent cut/copy/paste/save as of data from corporate apps to personal apps (mobile application management) CY2015 Secure content viewing via Managed browser, PDF viewer, Imager viewer, and AV player apps for Intune CY2015 Remote device lock via self-service Company Portal and via admin console Client PC management (e.g. Windows 8.1, inventory, antimalware, patch, policies, etc.) PC software management Comprehensive PC management (e.g. Windows Server/Linux/Mac OS X support, virtual desktop and power management, custom reporting, etc.) OS deployment Single management console for PCs, Windows Server/Linux/Mac OS X, and mobile devices * Deployment of VPN and email profiles for Android devices to be added in CY2015