Not too long ago, the only way people could access company applications or even send and receive e-mails was if they were working inside an organization using a company computer; all the while tied up by a bunch of rules and policies to enforce security and regulations. Although we still see that kind of environment in many places, the proliferation of cloud computing and BYOD (Bring Your Own Device) is changing the way we manage devices and applications, allowing employees to work from just about anywhere.
BYOD is a new trend in which users now carry powerful devices that enable them to do real work and IT administrators need to provide enterprise mobility while ensuring that corporate resources are protected from unauthorized access.
The question is how can we achieve that?
Microsoft has a solution called Microsoft Enterprise Mobility, which, among other things, includes a Device Management platform called Microsoft Intune that delivers application and device management completely from the cloud or on-premises through the integration with System Center Configuration Manager 2012, and all this managed via a single management console. Awesome!
Here is a list of the things Microsoft Intune can provide to organizations:
- Software updates
- Software deployments
- Hardware and Software Inventory
- Endpoint protection
- Remote Assistance
- Mobile device management
- Software Licensing
- Windows Firewall policy
You can use Microsoft Intune to perform all these management tasks on computers that rarely connect to an organizational network and that might not be joined to an Active Directory Domain. Additionally you can use Microsoft Intune to manage Software management for devices that are running Windows, Android and IOS operating systems.
In this blog I want to demonstrate how to get started with Microsoft Intune.
The first thing you need to do is to sign up for a Microsoft Intune organizational account. You can go to www.microsoft.com/intune and click on “Try now.”
You need to provide the company information you will be managing through Intune.
It is important you specify a company name in the format yourcompany.onmicrosoft.com in order be identified in the Microsoft cloud environment, but later you will need to include the public company domain name you want to identify your company with on the Internet.
Once your account is setup, you are ready to create user accounts.
The user management interface of Microsoft Intune is the same interface for Office 365, which makes everything so simple and easy to manage. You can create user accounts in Office 365 or you can perform an Active Directory Synchronization between your AD environment and Office 365 (you can follow this link for instructions https://msdn.microsoft.com/en-us/library/azure/dn144766.aspx).
After creating your accounts it is time to enroll devices. Each mobile device operating system uses a different method to enable users to self-enroll their devices. For example, to enroll a device, the user can go follow a given hyperlink and login with his or her credentials and enroll the device.
If you want to enroll IOS devices, follow the steps listed in this link. https://technet.microsoft.com/en-us/library/dn408185.aspx
Once your devices are enrolled, you can view them and manage them from the online console.
There are many more things we can accomplish with Microsoft Intune, like delivering and managing apps to a broad range of devices, simplify administration and maximize productivity. Remember, Intune is included as part of Microsoft’s Enterprise Mobility Suite which is the most cost-effective way to leverage cloud services for all your employees.