Managing Windows 8.1, Windows Phone 8.1 and Windows RT 8.1 ...
WIN-B316 Managing Windows 8.1, Windows Phone 8.1 and Windows RT 8.1 Using Mobile Device Management Michael Niehaus Senior Product Marketing Manager [email protected] Managing Windows Governance Windows Phone 8.1 Windows RT 8.1
Exchange ActiveSync Lightweight Control OMA-DM Mobile Device Management Windows 8.1 Allow e-mail access BYOD-style management
Full Control Active Directory Group Policy System Center Fully-managed corporate device Managing Windows Mobile Device Management (MDM) Defined Policy enforcement and compliance
Security management App management Content management OMA-DM agent in OS, managed via a cloud Managing Windows Mobile Device Management (MDM) Services Step 1: Enrollment Simple process to register the device and user with the MDM service Access PC Settings -> Network -> Workplace (Windows 8.1) or Settings -> Workplace (Windows Phone)
Windows Phone 8.1 Inventory CPU Information Web links deployed via MDM Device ID Memory Information RemoteApps deployed via MDM OS platform type Operating System
Firewall enabled Firmware version Computer System Windows Update (Auto Update) enabled OS version Networking Adapters Anti-virus enabled Device local time Physical Disks
Anti-virus signature Processor type Logical Disks Encryption enabled Device model Encrypted Volumes Bluetooth enabled Device manufacturer
Display Devices Wi-Fi enabled Device processor architecture Infrared Devices PC Settings synchronization enabled Device language Battery Credentials synchronization enabled Wi-Fi MAC address
System Bios Metered network synchronization enabled Phone number Shared Resources (disk, printer, screen) Intranet zone security level Roaming status Services Internet zone security level
IMEI & IMSI Date and Time Information Restricted sites zone security level Wi-Fi IP address Modern apps deployed via MDM Trusted sites zone security level Wi-Fi DNS suffix and subnet mask Enterprise apps installed Demo Inventory
Step 3: Apply configuration and settings Targeting controlled by the MDM service Device, user, or other attributes (leveraging inventory) can be used Automatically applied by the MDM agent Can tighten existing settings (e.g. EAS) Windows 8.1 Supported Policies and Settings Setting Setting
Enable Popup Blocking Enable Smart Screen Enable Do Not Track Minimum Password Length Intranet Security Zone Enabled Auto-lock Timeout Internet Zone Configuration Maximum Password History
Enterprise Mode IE enable and configure App whitelisting and blacklisting URL filtering Windows Phone 8.1 Supported Policies and Settings Setting Setting Simple password Disable Location
Alphanumeric password Disable NFC Minimum password length Disable Microsoft Account Minimum password complex characters Disable roaming between Windows devices Password expiration Disable custom email accounts
Password history Disable screen capture Device wipe threshold Disable copy & paste functionality Auto-lock Timeout Disable sharing and saving of Office Documents Inactivity timeout Disable MDM un-enrollment Device encryption
Define Wi-Fi profiles and settings Disable removable storage card Define VPN Profiles Disable Camera Certificate management Disable Bluetooth Storage management Disable Wi-Fi
Assigned Access management Disable telemetry data submission E-mail account management App whitelisting and blacklisting S/MIME configuration Demo Settings Configuration Step 4: Deploy apps Push mandatory apps or allow users to select for themselves Company portal provided by the MDM service enables self-service
Sideloaded apps (e.g. line of business apps) or links to apps in the Windows Store Make sure you understand the sideloading requirements, including certificates and settings Web links (favorites) can also be deployed Demo App management Step 5: Remotely assist New capabilities in Windows Phone 8.1: Remote lock Remote password (PIN) reset Remote ring Demo
Remote assistance Step 6: Un-enroll Removes enterprise apps and configuration applied via MDM Removes data For Windows 8.1 and Windows Phone 8.1, remote business data removal removes e-mail and Work Folder docs For Windows Phone 8.1, a complete device reset can also be performed Demo Un-enrollment For More Information Windows 8.1 MDM enrollment protocol documentation, http://msdn.microsoft.com/en-us/library/dn409494.aspx
MDM protocol documentation, http:// msdn.microsoft.com/en-us/library/dn392112.aspx Sideloading apps, http://technet.microsoft.com/en-us/windows/dn535729 and http:// blogs.windows.com/windows/b/springboard/archive/2014/04/03/windows-8-1-sideload ing-enhancements.aspx Windows Phone 8.1 Windows Phone 8.1 Mobile Device Management Overview, http:// www.microsoft.com/en-us/download/details.aspx?id=42508 Training Windows Intune for IT Professionals Jump Start, http:// www.microsoftvirtualacademy.com/training-courses/windows-intune-for-it-professional s-jump-start Related content Breakout Sessions
WIN-B316 Managing Windows 8.1 and Windows RT 8.1 Using Mobile Device Management WIN-B364 Mobile Device Management Overview for the Next Version of Windows Phone WIN-B217 Deploying and Managing Enterprise Apps on Windows and Windows Phone FDN02 Enabling Enterprise Mobility with Windows Intune, Microsoft Azure, and Windows Server PCIT-B325 Protecting Your Corporate Data with Microsoft System Center Configuration Manager and Windows Intune Find Me Later At. . . [email protected] or @mniehaus on Twitter Windows Track Resources
Windows Enterprise windows.com/enterprise windowsphone.com/business Windows Springboard microsoft.com/springboard Microsoft Desktop Optimization Package (MDOP) microsoft.com/mdop Windows To Go microsoft.com/windows/wtg Windows Phone Developer developer.windowsphone.com Resources Learning Sessions on Demand
http://channel9.msdn.com/Events/Tec hEd TechNet Resources for IT Professionals http://microsoft.com/technet Microsoft Certification & Training Resources www.microsoft.com/learning msdn Resources for Developers http://microsoft.com/msdn
Complete an evaluation and enter to win! Evaluate this session Scan this QR code to evaluate this session. 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.
Experiments Questions ... Blue-Black Seed Germination How did you demonstrate the requirement for oxygen when investigating the factors necessary for seed germination? ... (WOW) Enzyme Temperature What was the result of your investigation? Activity increases or enzyme has an optimum...
How have holidays improved since those taken 50 years ago? Listen and tick which of the following are mentioned: C'est plus facile de voyager. Il fallaitavoir beaucoup d'argent pour partir en vacancesavant. On avaitmoins de congéspayés.
LESSON 9-1. PURCHASES JOURNAL. page 237. LESSON 9-1. 2. 1. Stamp the date received andpurchase invoice number. PURCHASE INVOICE. 1. 3. 4. page 238. 4. Review the vendor's terms. 3. Initials of the person whochecked the invoice. 2. Place a...
Focus of sharing: As part of planning for & doing needs assessment, SPAN proactively reaches out to Title V every year, and earlier in the year for the 5 year block grant needs assessment, to talk with Title V about...
Coach Mitch'sfamous$1 Option.With only $1, control property, without any liability.The single most powerful contract in the real estate investing world is the Option. How else can you take control of unlimited numbers of property, with only $1 each, make significant...
Motivations of wearable technology. Wearable technology is an attempt at fulfilling the idea of "ubiquitous computing" which is the notion that computers should be available at all places at all time. By having computers be placed into multiple daily facets...
Ready to download the document? Go ahead and hit continue!