The explosion of devices is eroding the standards-based approach to corporate IT. Devices Deploying and managing applications across platforms is.

Slides:



Advertisements
Similar presentations
User and Device Management Tomáš „Kanty“ Kantůrek
Advertisements

People Centric IT Unified Device Management with SCCM + Windows Intune
Agenda AD to Windows Azure AD Sync Options Federation Architecture
Mobile Device Management Intune-Configmanager CHANDAN BHARTI PREMIER FIELD ENGINEER-MICROSOFT.
Windows 8.1 Device Management With Windows Intune Mark O’Shea MVP Windows Expert – IT Pro 30 June 2014.
Microsoft ® Exchange Online Migration and Coexistence Name Title Microsoft Corporation.
Plan Build Custom Image (Drivers, Apps, Updates) New Hardware In-Place (Refresh) WipeReimage New Windows Version or Major Image Revision.
Protect your data Enable your users Unify Your Environment DevicesAppsData Help organizations enable their users to be productive on the devices they.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Desktop virtualization Access & information protection Mobile device & application management Hybrid identity Simplified device enrollment and.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Windows Server 2012 R2 Capabilities for BYOD Scenario Yuri Diogenes Senior Knowledge Engineer Data Center, Devices & Enterprise Client – CSI Team’s Page:
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Empowering people-centric IT Mobile Device and Application Management Access and information protection Desktop Virtualization Hybrid Identity.
Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Exchange Exchange Connecter with Configuration Manager Configuration Manager with Intune Protect and Manage Devices and Infrastructure.
Howard A. Carter III Senior Consultant Microsoft Consulting Services
Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.
OUC204. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Timothy Heeney| Microsoft Corporation. Discuss the purpose of Identity Federation Explain how to implement Identity Federation Explain how Identity Federation.
Single Sign-On with Microsoft Azure
Harris Schneiderman Account Manager Kloud Solutions.
Solution Benefits Of Adopting Unified Solution Goals Management support for Windows 8.x and heterogeneous devices Improve user productivity on.
Microsoft NDA Confidential Enabling users to be productive, responsibly Finding the right balance Devices & Experiences Users Want Applications and.
Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Paul Andrew. Recently Announced… Identity Integration Options 2 3 Identity Management Overview 1.
Alessandro Cardoso Microsoft MVP | Readify National Manager |
Empowering people-centric IT Mobile Device Management Access and information protection Desktop Virtualization Hybrid Identity.
Office 365: Identity and Access Solutions Suresh Menon Technology Specialist – Office 365 Microsoft Corporation India.
Enabling users to be productive, responsibly Finding the right balance Devices & Experiences Users Want Applications and data across devices, anywhere.
Empowering people-centric IT Patrick Rogers May 29, 2014.
Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows
Bronze Sky customer premises AD MS Online Directory Sync Provisioning platform Provisioning platform Lync Online Lync Online SharePoint Online SharePoint.
Get identities to the cloud Mix on-premises and cloud identity for improved PC, mobile, and web productivity Cloud identities help you run your business.
Lior Rubin PTS. What is it ? o The Microsoft Enterprise Mobility Suite (EMS) helps give users a more secure and integrated productivity experience with.
Access resources in a federation partner organization.
Devices & Platforms Single admin console.
Configuration Manager and InTune Gemeinsam oder einsam?
Microsoft Virtual Academy Preparing for the Windows 8.1 MCSA Module 5: Managing Devices & Resource Access.
Unified Device Management with Windows Intune Andras Khan Microsoft Western Europe HQ.
User and Device Management
Windows Intune Cloud Based Management Speaker: Neil Phillips 13th August 2014.
Craig Pringle & Derek Moir
Why EMS? What benefit does EMS provide O365 customers Manage Mobile Productivity Increase IT ProductivitySimplify app delivery and deployment LOB Apps.
BE-com.eu Brussel, 26 april 2016 EXCHANGE 2010 HYBRID (IN THE EXCHANGE 2016 WORLD)
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
69% of employees say they are accessing business apps on personal devices Organizations say 34% of their employees are accessing business apps on.
Tomaž Čebul Principal Consultant Microsoft Bring Your Own Device, kaj pa je to?
 Step 2 Deployment Overview  What is DirSync?  Purpose – What does it do?  Understanding Synchronization  Understanding Coexistence  Understanding.
 What is DirSync?  Purpose – What does it do?  Understanding Synchronization  Understanding Coexistence  Demo.
Managing modern devices with System Center 2012 R2 Configuration Manager Niall Brady.
Managing Devices in the Enterprise: From EMS zero to Hero in only 60 minutes Ken Goossens Herman Arnedo Mahr.
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
Selecting the Management Platform Cloud-based Management Standalone Windows Intune No existing Configuration Manager deployment Simplified policy.
Today’s challenges Data Users Apps Devices
Microsoft Virtual Academy
Exam Prep : Section 2: Design for Device Access and Protection
Azure AD for the client management guy (or gal!)
Cloud Connect Seamlessly
TechEd /14/ :11 AM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered.
Access and Information Protection Product Overview October 2013
TechEd /7/ :16 AM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered.
TechEd /16/ :45 AM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered.
System Center Marketing
TechEd /6/ :24 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Microsoft Virtual Academy
TechEd /18/ :51 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered.
Microsoft Virtual Academy
Presentation transcript:

The explosion of devices is eroding the standards-based approach to corporate IT. Devices Deploying and managing applications across platforms is difficult. Apps Data Users need to be productive while maintaining compliance and reducing risk. Users expect to be able to work in any location and have access to all their work resources. Users

Devices Apps Users Enable your end users Allow users to work on the devices of their choice and provide consistent access to corporate resources. Unify your environment Deliver a unified application and device management on- premises and in the cloud. Protect your data Help protect corporate information and manage risk. Management. Access. Protection. Data

Selecting the Management Platform Cloud-based Management Standalone Windows Intune No existing Configuration Manager deployment Simplified policy control Less than 7,000 devices and 4,000 users Simple web-based administration console

Mac OS X Windows PCs (x86/64, Intel SoC), Windows to Go Windows Embedded Windows 8 RT Windows 8.1 Windows Phone 8 iOS, Android

New Platforms Windows 8 RT Windows Phone 8 iOS (5.x, 6.x) Android (2.1 and later) Windows 8.1 (x86/x64 and RT) Features fully integrated in to ConfigMgr Over the air device enrollment Available user targeted applications User and device settings management Device inventory Remote device retirement Remote device wipe (full and selective) Company branding Web apps and remote apps VPN/Wi-Fi/certificate profiles Additional settings

Platform Support in ConfigMgr R2 OS PlatformManagement AgentEnd User Experience Windows 8.1 PCConfigMgr Agent Or Management Agent(OMA-DM) Software Center/Application Catalog Windows Company Portal app Windows PC (Win8,Win7,Vista,XP) ConfigMgr AgentSoftware Center/Application Catalog Windows RTManagement agent (OMA-DM)Windows Company Portal app Windows Phone 8Management agent (OMA-DM)Windows Phone 8 Company Portal app iOSApple MDM ProtocolNative iOS Company Portal App AndroidAndroid MDM agent (OMA-DM)Native Android Company Portal App MacConfigMgr AgentLimited self service experience Linux/UnixConfigMgr AgentN/A

Not required but strongly recommended!

PlatformCertificates or keysHow you obtain Windows Phone 8 Code signing certificate: All sideloaded apps must be code- signed. Buy a code signing certificate from Symantec Windows Sideloading Keys: Windows devices have to be provisioned with sideloading keys to enable installation of sideloaded apps. All sideloaded apps must be code-signed. Buy sideloading keys from Microsoft, link below has more details iOS Apple Push Notification service certificate To enable app management for iOS, you must follow these steps. 1.Download a Certificate Signing Request from Windows Intune. This certificate signing request lets you apply to Apple’s certification authority for an Apple Push Notification service certificate. 2.Request an Apple Push Notification service certificate from the Apple website. To Download a Certificate Signing Request from Windows Intune In the Configuration Manager console, click Administration. In the Hierarchy Configuration, right-click Windows Intune Subscriptions and select Create APNs certificate request. Select a location and then click Download. In the Windows Intune sign in page, enter your organizational account and password. After you sign in, the certificate signing request is downloaded to the location that you specified. To request an Apple Push Notification service certificate Connect to the Apple Push Certificates Portal.Apple Push Certificates Portal Sign in and continue in the wizard. AndroidNone

All Identities and group memberships flow down to Intune via Sync Daemon 1.User identities and SGs are created / modified in AD 2.DirSync delta syncs on-prem userid (no pwd) to MSODS every 3 hours 3.Federation between on-premise AD and Org ID allowing users to use their on prem username and pwd to login 4.All Identities and group memberships flow down to Intune via Sync Daemon To learn more about ADFS, design and deployment visit Windows Server ADFS homepage and Preparing for single sign on.Windows Server ADFS homepagePreparing for single sign on For more details on AD Directory Synchronization visit Directory Synchronization roadmap.Directory Synchronization roadmap For details on attributes DirSync’d see this KBKB Identity Services On Premise Infrastructure AD MS Online Directory Sync (DirSync) Provisioning platform Windows Intune SharePoint Online Exchange Online Active Directory Federation Server 2.0 Trust IdP Directory Store Admin Portal/ PowerShell Authentication platform IdP Microsoft Online Services

The following illustration and corresponding steps provide a description of the client application request process in AD FS using TLS/SSL. 1.The remote employee uses the Web browser to open the application on the AD FS-enabled Web server. 2. The AD FS-enabled Web server refuses the request because there is no AD FS authentication cookie. The AD FS-enabled Web server redirects the client browser to sign-in on the resource federation server. 3. The client browser requests the logon Web page from the resource federation server. 4. The Web page on the resource federation server prompts the user for account partner discovery. 5.The resource federation server redirects the client browser to the logon Web page on the account federation server proxy. 6.The Web browser requests the logon Web page from the account federation server proxy.

Microsoft NDA Confidential Microsoft.NET Framework 3.5 (reboot) and Microsoft Windows PowerShell™ v1.0 (no reboot) Not a domain controller Domain-joined machine DirSync can synchronize from source forests running the following versions of Windows Server: Microsoft Windows Server 2008 R2 Microsoft Windows Server 2008 Microsoft Windows Server 2003 Microsoft Windows Server 2000 Microsoft SQL Server ® 2008 R2 Express Microsoft Identity Lifecycle Manager 2007 (version created specifically for Microsoft Online) No customer purchase beyond providing a server Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2003 SP2 Supported Operating SystemsPrerequisites Source Forest SynchronizationSingle file download To learn more about ADFS, design and deployment visit Windows Server ADFS homepage and Preparing for single sign on.Windows Server ADFS homepagePreparing for single sign on For more details on AD Directory Synchronization visit Directory Synchronization roadmap.Directory Synchronization roadmap For details on attributes DirSync’d see this KBKB

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.