Microsoft TechNet Eventdownload.microsoft.com/.../2014.05.08_Windows_Intune_DanielvonB.pdf ·...
Transcript of Microsoft TechNet Eventdownload.microsoft.com/.../2014.05.08_Windows_Intune_DanielvonB.pdf ·...
08.05.2014| www.redtoo.com | | slide 1Microsoft TechNet Event
Windows Intune
Microsoft TechNet Event
08.05.2014| www.redtoo.com | | slide 2Microsoft TechNet Event
Portfolio:
• IT Business Consulting
• IT Architecture
• Project Management
• IT Engineering
• System Implementation
• Service Delivery
Full service IT provider:
• 25 years of experience
• medium-sized and international
companies
• Reinach (HQ), Basel, Bern, Zürich,
Vienna, Praque and USA
• about 200 employees
Daniel von Büren, redtoo agSenior Consultant / CTO; V-TSP
Main topics:• Client Management (Windows & 3rd
party)
• Client Strategies
• Client Deployment
• Application Virtualization
• MDOP (App-V, UE-V, AGPM, MED-V,…)
• Client Engineering
• Windows Intune (MDM)
About myself & redtoo ag
08.05.2014| www.redtoo.com | | slide 3Microsoft TechNet Event
Agenda
OverviewAccount
ManagementPC
ManagementMobile
Management Intune & SCCM
08.05.2014| www.redtoo.com | | slide 4Microsoft TechNet Event
Windows Intune Overview
Help protect PCs from malware
Manage updates
Inventory hardware and software
Provide remote assistance
Set security policies
Increase insight with reporting
End User Self-Service Portal
Mobile Security Policy and Management
Distribute software
Integration with AD Domain Services
Version 2
Version 1
Version 3
Enterprise
SMB
Version 4 …
Integration of App Stores
Manage VPN / WLAN Profiles
08.05.2014| www.redtoo.com | | slide 5Microsoft TechNet Event
Today’s challenges
The explosion of devices is eroding the standards-based approach to corporate IT.
Devices
Deploying and managing applications across platforms is difficult.
Apps Data
Users need to be productive while maintaining compliance and reducing risk.
Users expect to be able to work in any location and have access to all their work resources.
Users
08.05.2014| www.redtoo.com | | slide 6Microsoft TechNet Event
Empowering People-centric IT
Devices AppsUsers
Enable users
Allow users to work on the devices of their choice and provide consistent access to corporate resources.
Protect your data
Help protect corporate information and manage risk.Management. Access. Protection.
Data
Unify your environment
Deliver a unified application and device management on-premises and in the cloud.
08.05.2014| www.redtoo.com | | slide 7Microsoft TechNet Event
What’s Windows Intune?Features
Help protect PCs from malware
Manage updates
Alerts and Notifications
Remote assistance
Inventory (hardware and software)
Monitor & track licenses
Increase insight with reporting
Distribute software
Mobile Device Management
Policy Management
ISO/IEC 27001:2005 certified
08.05.2014| www.redtoo.com | | slide 8Microsoft TechNet Event
DEMO
Account Management
08.05.2014| www.redtoo.com | | slide 9Microsoft TechNet Event
DEMO
PC Management
08.05.2014| www.redtoo.com | | slide 10Microsoft TechNet Event
Windows Intune Center – Remote Assistance
Initiate a remote
assistance request
The administrator has been
notified and has 1 hour to
respond
08.05.2014| www.redtoo.com | | slide 11Microsoft TechNet Event
Mobile Device Management with Windows Intune
EAS based management Integration with Exchange Server
Either on-premises or Office365 hosted
Corporate data protection
Over-the-air enrollment of
devices for management
Mobile application management
Settings Management
Mobile device inventory
Direct management (Windows RT,
Windows Phone 8, iOS, Android)
08.05.2014| www.redtoo.com | | slide 12Microsoft TechNet Event
DEMO
Mobile Management
08.05.2014| www.redtoo.com | | slide 13Microsoft TechNet Event
Personal Apps and Data
Lost or Stolen
Company Apps and Data
Remote App
Centralized Data
EnrollmentRetired
Company Apps and Data
Remote App
Policies
Policies
Lost or Stolen
Company Apps and Data
Remote App
Policies
Personal Apps and Data
Retired
Personal Apps and
Data
What happens when the users device is:
Lost/Stolen
Retired
• Selective wipe removes corporate applications, data,
certificates/profiles, and policies based as supported by
each platform
• Full wipe if supported by each platform
• Can be executed by IT or by user via Company Portal
• Sensitive data or applications can be kept off device and
accessed via Remote Desktop Services
08.05.2014| www.redtoo.com | | slide 14Microsoft TechNet Event
DEMO
Company Portal
08.05.2014| www.redtoo.com | | slide 15Microsoft TechNet Event
Windows Intune – Standalone service
IT
Windows PCs
(x86/64, Intel SoC)
Windows RT,
Windows Phone 8
iOS, Android
Web-based AdminConsole
08.05.2014| www.redtoo.com | | slide 16Microsoft TechNet Event
Windows Intune integrated with SCCM 2012 R2
IT
Mac OS X
Windows PCs
(x86/64, Intel SoC),
Windows to Go
Windows Embedded
Windows RT,
Windows Phone 8
iOS, Android
Single AdminConsole
08.05.2014| www.redtoo.com | | slide 17Microsoft TechNet Event
Unify your environment
Single AdminConsoleIT User
08.05.2014| www.redtoo.com | | slide 18Microsoft TechNet Event
Infrastructure Design
SCCM
RDS / VDI
Win
do
ws
De
vic
es
Mobiles / Non Windows
Devices
OS Deployment
Management (Patches,…)
Applications (MSI / App-V)
Not managed (BYOD)
App-V
Golden Images
08.05.2014| www.redtoo.com | | slide 19Microsoft TechNet Event
User and Device Management Roadmap
January
2014
Flexible Deployment
• Richer cloud-only MDM capabilities
Device Data Protection
• iOS 7 data protection configuration settings
• Remote Lock and PIN Reset
Email Configuration and Protection
• Email profile configuration and selective wipe
Q2/Q3
2014
Flexible Deployment
• Full MDM parity in Windows Intune standalone
• Email/Wi-Fi Profiles, VPN and Certificates
• Bulk IT enrollment of devices and device targeting
• Cloud-only scalability
Device Configuration Management
• Windows Phone Enterprise Feature Pack support
• Application Whitelist/Blacklist
• Customizable IT Terms of Use
• Start Screen in Windows 8.1
• Windows Azure AD Premium integration in Company Portal
Email Configuration and Protection
• Access to email only if device is managed
Safety
• Family Safety in Windows 8.1
• URL Filtering
Device Data Protection
• Application restriction policies for iOS
• Enterprise Wipe of Email (iOS) and access controls via certs
• TPM cert enrollment
• MFA support for Intune enrollment
08.05.2014| www.redtoo.com | | slide 20Microsoft TechNet Event
• Understanding IT & Mobility strategy
• Deeper look into Microsoft strategy & tools
• Defining Business Cases
• Identify Technical solutions01
Workshop
• Defining client strategy
• Defining mobile management strategy02Concept
• Define test cases
• Set up PoC environment
• Know how transfer
• Test concept based on test cases03PoC
Next Steps
08.05.2014| www.redtoo.com | | slide 21Microsoft TechNet [email protected] ag │ nenzlingerweg 2 │ ch-4153 reinach
Daniel von BürenCTO / Senior Consultant
T +41 61 716 70 45
F +41 61 716 70 71
M +41 79 652 53 36
blog.redtoo.com