Microsoft Unified Device Management
It’s all about the experience
Nico Sienaert (@nsienaert)
Lead Infrastructure Consultan...
Session Objectives
Let’s start the UDM ride
It’s all about the experience
Today’s challenges
Devices Apps DataUsers
Identity &
Access
Management
Mobile Device
Management
Mobile
Application
Managem...
Abrreviations all over the place
Mobile Device Management
Mac OS X
Linux  Unix
Windows PCs
(x86/64, Intel SoC),
Windows to Go
Windows Embedded
Windows RT,
...
Windows Intune Features
Things to come
PCManagementfeatures
MDM Features
June
2012
+
Service Pack1
Early 2013
iOS & Android
SW Publishing,
EAS Int...
Windows Phone Enterprise FP
Demo: Intune
It’s all about the experience
It’s not only about Intune
Microsoft Remote Access
Trigger VPN
• Add-VpnConnectionTriggerApplication [-Name] <string> –ApplicationID <String[]> -PassThru
• Full support in C...
Demo: Trigger VPN
It’s all about the experience
RDP App for iOS, Android and OSX
Multi Factor Authentication
Any two or more of the following factors for authentication:
21
Demo: Azure Multi Factor
Authentication
It’s all about the experience
MFA in action
Workplace Join
IT can publish accessto corporate resourceswith the Web Application
Proxy based on device awarenessand the ...
Demo: Workplace Join
It’s all about the experience
Work Folders
Data management
Quotas
File screens
Reporting
Classification
RMS protection
Device management policy
Limit ac...
Work Folders positioning
Demo: Work Folders
It’s all about the experience
Dynamic Access Control
Classification Access control Auditing
Rights
Management
Services protection
• Files inherit classi...
Demo: Dynamic Access Control
It’s all about the experience
Things to come
Or just arrived ☺
Enterprise Mobility Suite
Azure RMS Architecture
Azure RMS Experience in Office
https://portal.aadrm.com/home/download
Azure Remote App
3
1
RemoteApp Service
Pre-built template image
Automatically maintained
Published Apps
Session
Host …
Ses...
Azure Active Directory Sync
Abbreviations all over the place
Microsoft’s UDM Building Blocks
Recap
And take home the
Lumia 1320
Present your feedback form when you exit
the last session & go for the drink
Give Me Feedback
Follow Technet Belgium
@technetbelux
Subscribe to the TechNet newsletter
aka.ms/benews
Be the first to know
Belgiums’ biggest IT PRO Conference
Upcoming SlideShare
Loading in …5
×

Sysctr Track: Unified Device Management: It’s all about the experience

444 views
242 views

Published on

by Nico Sienaert

This session we will give you a complete overview of the UDM vision that Microsoft has. This vision goes further than the traditional PC & Server Management as we know it today.

Discover what building blocks you can use from the Microsoft stack and how you combine them to give the Unified Experience to your users.

Do you want to attend a discussion on all these technology blocks like Workplace Join, Work Folders, MFA, RMS, Intune…?
•Do you want to learn on how you make this to work?
•Do you want to see them in action?
•Do you want to know about the competition?
•Do you want answers?

Sit down and enjoy the UDM ride. It’s all about the Experience

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
444
On SlideShare
0
From Embeds
0
Number of Embeds
5
Actions
Shares
0
Downloads
9
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Sysctr Track: Unified Device Management: It’s all about the experience

  1. 1. Microsoft Unified Device Management It’s all about the experience Nico Sienaert (@nsienaert) Lead Infrastructure Consultant @ Getronics V-Technology Solutions Professional @ Microsoft
  2. 2. Session Objectives
  3. 3. Let’s start the UDM ride It’s all about the experience
  4. 4. Today’s challenges Devices Apps DataUsers Identity & Access Management Mobile Device Management Mobile Application Management Information Protection
  5. 5. Abrreviations all over the place
  6. 6. Mobile Device Management Mac OS X Linux Unix Windows PCs (x86/64, Intel SoC), Windows to Go Windows Embedded Windows RT, Windows Phone 8 iOS, Android
  7. 7. Windows Intune Features
  8. 8. Things to come PCManagementfeatures MDM Features June 2012 + Service Pack1 Early 2013 iOS & Android SW Publishing, EAS Integration Windows RT & Window Phone 8 MDM Unified Management Oct 2011 Software deployment April 2011 Cloud-based management Windows 8 support Office 365 interoperability Early 2013 Enterprise Scale • Single License: Windows Intune + Configuration Manager • Per User • Up to 5 devices/user
  9. 9. Windows Phone Enterprise FP
  10. 10. Demo: Intune It’s all about the experience
  11. 11. It’s not only about Intune
  12. 12. Microsoft Remote Access
  13. 13. Trigger VPN • Add-VpnConnectionTriggerApplication [-Name] <string> –ApplicationID <String[]> -PassThru • Full support in ConfigMgr (via AppModel & VPN Profiles) • Split Tunneling needs to be enabled set-vpnconnection –Name “VPNName” –Splittunneling $true • Disconnects after 5 minutes inactivity (default) • Currently no support for: • Domain Joined Machines • Android • iPhone (Q4)
  14. 14. Demo: Trigger VPN It’s all about the experience
  15. 15. RDP App for iOS, Android and OSX
  16. 16. Multi Factor Authentication Any two or more of the following factors for authentication:
  17. 17. 21
  18. 18. Demo: Azure Multi Factor Authentication It’s all about the experience
  19. 19. MFA in action
  20. 20. Workplace Join IT can publish accessto corporate resourceswith the Web Application Proxy based on device awarenessand the user’sidentity.; multi-factor authenticationcan be used throughWindows Azure Active Authentication(formerlyPhoneFactor) Users can registerBYO devices for single sign-on and access to corporate data with Workplace Join. As part of this, a certificateis installed on the device Users can enroll devicesthat configure the device for management with Windows Intune; the user can then use the Company Portal for easy access to corporate applications As part of the registration process, a new deviceobject is created in Active Directory, establishing a link between the user and their device Data from Windows Intune is in sync with Configuration Manager,which provides unified managementacross both on- premises and in the cloud
  21. 21. Demo: Workplace Join It’s all about the experience
  22. 22. Work Folders Data management Quotas File screens Reporting Classification RMS protection Device management policy Limit access to registered devices File encryption / selective wipe Require password / device lock Authentication Kerberos (Windows Auth) Digest (Windows Auth) ADFS (OAuth) https://workfolders.contoso.com
  23. 23. Work Folders positioning
  24. 24. Demo: Work Folders It’s all about the experience
  25. 25. Dynamic Access Control Classification Access control Auditing Rights Management Services protection • Files inherit classification tags from parent folder • File owners tag files manually • Files are tagged automatically • Files are tagged by applications • Central access policies are based on classification • Access conditions for user claims, device claims, and file tags are based on expressions • Assistance is available for denial of access • Central audit policies can be applied across multiple file servers • Audits for user claims, device claims, and file tags are based on expressions • Audits can be staged to simulate policy changes in a real environment • Automatic Rights Management Services (RMS) protection is available for Microsoft Office documents • Protection is in near-real– time when a file is tagged • RMS protection extends to files not created in Microsoft Office
  26. 26. Demo: Dynamic Access Control It’s all about the experience
  27. 27. Things to come Or just arrived ☺
  28. 28. Enterprise Mobility Suite
  29. 29. Azure RMS Architecture
  30. 30. Azure RMS Experience in Office https://portal.aadrm.com/home/download
  31. 31. Azure Remote App 3 1 RemoteApp Service Pre-built template image Automatically maintained Published Apps Session Host … Session Host Session Host Elastic Runtime Persistent user data (50GB per user) Microsoft Account Azure Active Directory On-premises Network Windows Server Active Directory DirSync RDP Identity Options Authentication On-premises Network Azure VPN Domain Joined Subject to IT policy via GP, System Center, or other enterprise management tools Standalone ModelHybrid Model
  32. 32. Azure Active Directory Sync
  33. 33. Abbreviations all over the place
  34. 34. Microsoft’s UDM Building Blocks
  35. 35. Recap
  36. 36. And take home the Lumia 1320 Present your feedback form when you exit the last session & go for the drink Give Me Feedback
  37. 37. Follow Technet Belgium @technetbelux Subscribe to the TechNet newsletter aka.ms/benews Be the first to know
  38. 38. Belgiums’ biggest IT PRO Conference

×