Office 365: Everything You Wanted to Know How to Use this Document?



Download 0.81 Mb.
Page28/39
Date20.06.2017
Size0.81 Mb.
#21123
1   ...   24   25   26   27   28   29   30   31   ...   39

MDM for Office 365 (MDM)


Mobile Device Management for Office 365 can help you secure and manage mobile devices like iPhones, iPads, Androids, and Windows Phones used by licensed Office 365 users in your organization.

You can create mobile device management policies with settings that can help control access to your organization’s Office 365 email and documents for supported mobile devices and apps. If a device is lost or stolen, you can remotely wipe the device to remove sensitive organizational information.

The following diagram shows what happens when a user with a new device signs in to an app that supports access control with MDM for Office 365. The user is blocked from accessing Office 365 resources in the app until they enroll their device.

shows enrollment process for new device.

Policy settings for mobile devices


If you create a policy to block access with certain settings turned on, users will be blocked from accessing Office 365 resources when using a supported app. The settings that can block users from accessing Office 365 resources are in these sections:

  • Security

  • Encryption

  • Jail broken

  • Managed email profile

For example, the following diagram shows what happens when a user with an enrolled device isn’t compliant with a security setting in a mobile device management policy that applies to their device.

shows user is blocked when device isn\'t compliant.

The user signs in to an app that supports access control with MDM for Office 365. They are blocked from accessing Office 365 resources in the app until their device complies with the security setting.


Supported Devices


You can use MDM for Office 365 to secure and manage the following types of devices.

  • Windows Phone 8.1+

  • iOS 7.1 or later versions

  • Android 4 or later versions

  • Windows 8.1*

  • Windows 8.1 RT*

  • Windows 10**

  • Windows 10 Mobile**

* Access control for Windows 8.1 and Windows 8.1 RT devices is limited to Exchange ActiveSync.

** Requires the device to be joined to Azure Active Directory and be enrolled in the mobile device management service of your organization.



If people in your organization use mobile devices that aren't supported by Mobile Device Management for Office 365, you might want to block Exchange ActiveSync app access to Office 365 email for those devices, to help make your organization's data more secure. Steps for blocking Exchange ActiveSync: See Manage device access settings..

Choose between Exchange Active Sync and MDM for Office 365


Feature

EAS

MDM for O365

Device Configuration







Inventory mobile devices that access corporate apps





Full device wipe





Mobile device configuration settings





Self-service password reset (Cloud only users)





Office 365







Provides reporting on devices that do not meet IT policy






Group-based policies and reporting






Root and jailbreak detection






Selective wipe






Prevent access to corporate email and docs based upon device enrollment and policies





Choose between Intune and MDM for Office 365


Both MDM for Office 365 and Intune provide cloud-based solutions for managing devices in your organization.



MDM for Office 365

Microsoft Intune

Cost

Included with many Office 365 commercial subscriptions.

Requires a paid subscription for Microsoft Intune or can be purchased with Enterprise Mobility Suite.

How you manage devices

Manage devices using the Security and Compliance Center in Office 365.

If you use Intune by itself, you manage devices using the Intune admin console.

If you integrate Intune with SCCM 2012, you use the Configuration Manager console to manage devices on-premises and in cloud.

Devices you can manage

iOS, Android, and Windows Phone.

iOS, Mac OS X, Android, Windows Phone, and Windows PCs.

Key capabilities

Help ensure that Office 365 corporate email and documents can be accessed only on phones and tablets that are managed by your company and that are compliant with your IT policies.

Set and manage security policies, like device level pin lock and jailbreak detection, to help prevent unauthorized users from accessing corporate email and data on a device when it is lost or stolen.

Remove Office 365 company data from an employee’s device while leaving their personal data in place.


MDM for Office 365 capabilities, plus:

Help users securely access corporate resource with certificates, Wi-Fi, VPN, and email profiles.

Enroll and manage collections of corporate-owned devices, simplifying policy and app deployment.

Deploy your internal line-of-business apps and apps in stores to users.

Ensuring security of data by helping to restrict actions like copy, cut, paste, and save as, to only those apps managed by Intune.

Enable more secure web browsing using the Intune Managed Browser app.

Manage PCs from the cloud with no infrastructure required using Intune, or connect Intune to Configuration Manager to manage all of your devices including PCs, Macs, Linux and UNIX servers, and mobile devices from a single management console.

An Intune subscription also allows you to set up MAM (mobile app management) policies by using the Azure portal, even if people's devices aren't enrolled in Intune.


Resources


  • Overview of built-in Mobile Device Management for Office 365

  • Capabilities of built-in Mobile Device Management for Office 365

  • Choose between MDM for Office 365 and Microsoft Intune

  • Ways to do enterprise mobility

  • Manage mobile devices in Office 365

  • Create and deploy device security policies

  • Wipe a mobile device in Office 365

  • Frequently asked questions about Mobile Device Management for Office 365




Download 0.81 Mb.

Share with your friends:
1   ...   24   25   26   27   28   29   30   31   ...   39



The database is protected by copyright ©ininet.org 2024
send message
    Main page
intended audience