Managing Mobile devices is a challenge that all SCCM admins will face in the near future. With the rise of BYOD (Bring Your Own Device), businesses needs to have control over every assets used by their employees. With the various mobile operating systems (iOS,Windows Phone, Windows RT, Android), this task can be overwhelming but it’s not as complicated than it looks. You just need to understand the main concepts and apply the right method to each operating systems.
Mobile Device Management has been introduced with SCCM 2012 SP1 and many enhancements have been made with the R2 release. Microsoft has also released new features in the past weeks which make the solution even better. It’s simply the most complete solution if you manage your devices through SCCM 2012 and have to manage mobile devices. We’ve compiled the full list of features in the Features List section of this post.
A Microsoft Intune subscription is needed in order to enroll mobile devices which then sync data with Configuration Manager. Operational tasks occurs in the SCCM console which provide unified management across both on-premises and in the cloud devices.
The blog post series will describe everything about SCCM 2012 Mobile Device Management with Intune, from the beginning of the implementation to the various operational tasks.
This blog post will continue to grow so be sure to come back often.
SCCM 2012 Mobile Device Management blog series
- Part 1 | Preparing Intune environment for Mobile Device Management
- Part 2 | Configuring Active Directory and Create Users for Intune
Features List
SCCM 2012 SP1
- The client settings group to configure mobile device enrollment settings is no longer named Mobile Devices but Enrollment
- Mobile devices that are enrolled by Configuration Manager SP1 now use the client policy polling interval setting in the Client Policy client setting group and no longer use the polling interval in the renamed Enrollment client setting group
- You can enroll mobile devices that run Windows Phone 8, Windows RT, and iOS when you use the Windows Intune connector
- Users who have mobile devices that are enrolled with Intune and Android devices that are managed by the Exchange Server connector can install apps from the company portal. The company portal is the Application Catalog equivalent for these mobile devices
- The new Retire option for mobile devices in the Configuration Manager console is supported only for mobile devices that are enrolled by Microsoft Intune
SCCM 2012 R2
- Users can enroll Android devices by using the company portal app which will be available on Google Play. The management agent gives you the more management capabilities (SCCM 2012 R2)
- Users can enroll iOS devices by using the iOS company portal app which will be available in the App store. The company portal app will allow users to perform more actions
- Devices that run Windows RT, iOS and Android now support a deployment purpose of Required
- Wipe and retire functions now include the option to only remove company content from devices
- You can configure enrolled devices as company-owned or personal-owned. Company-owned allows you to get software inventory on on all mobile devices
- You can use Microsoft Intune to manage Windows 8.1 devices that are not joined to the domain and do not have the Configuration Manager client installed
- Extensions for Intune allow you to integrate new mobile device management capabilities into the Configuration Manager console
Intune Standalone Update – November 19, 2014
- Enhanced user interface for Intune administration console
- Ability to restrict access to Exchange on-premises email based upon device enrollment
- Bulk enrollment of devices using a single service account
- Lockdown of Supervised iOS devices and devices using Samsung KNOX with Kiosk mode
- Targeting of policies and apps by device groups
- Ability to report on and allow or block a specific set of applications
- Enforcement of application install or uninstall
- Deployment of certificates, email, VPN and WiFi profiles
- Ability to push free store apps to iOS devices
- More convenient access to internal corporate resources using per-app VPN configurations for iOS devices
- Remote pin reset for Windows Phone 8.1 devices
- Multi-factor authentication at enrollment for Windows 8.1 and Windows Phone 8.1 devices
- Ability to restrict administrator access to a specific set of user and device groups
- Updated Intune Company Portal apps to support customizable terms and conditions
- Enhanced user interface for Intune Company Portal website
Resources
- Microsoft Intune Home Page
- Mobile client supported configuration
- Full list of compliance settings for mobile devices
- Detailed information about data sent and stored in Windows Intune
- Hotfix to extends the client notification component
- Intune Status Page
- SCCM 2012 Mobile Device Management SP1 New features
- SCCM 2012 Mobile Device Management R2 New features
- Intune November 2014 Standalone Update
SCCM 2012 Mobile Device Management
The post Mobile Device Management with Intune and SCCM 2012 appeared first on System Center Dudes.