InTune InAction
Olav Tvedt

MVP - Software Packaging, Deployment & Servicing

Twitter: @olavtwitt – Blog: http://olavtvedt...
• Device Control

• PC
• Mobile Phones
• Tablets

• Application Management
• Overview
• Reporting
• Deployment

• Patch Ma...
THE MISSING PART
Microsoft Deployment Toolkit
• OS Deployment
• Refresh
• Upgrade
• New

• Application Deployment
• Can Deploy Using:
• PXE...
DEMO:
MDT MEDIA
CLOUD MANAGEMENT
VS.
UNIFIED MANAGEMENT

www.windowsazure.com/en-us/solutions/identity
Cloud Management Capabilities
Capability / Platform Windows 8
Application management
Endpoint Protection
Hardware Inventor...
Unified Management Capabilities
Capability/Platform
Application
management
Endpoint Protection

Windows Windows
8
7, Vista...
In Short:
•

More Supported Clients
•
•
•
•
•

•
•
•
•

Windows Servers
Windows Embedded
Windows To Go
Mac OS
Linux

OS De...
More Unified Management
• Wally Mead:
• Deploying a System Center 2012 R2 Configuration
Manager Environment to Manage Mobi...
PC MANAGEMENT

www.windowsazure.com/en-us/solutions/identity
PC Management
•
•
•
•

Inventory
Software Deployment
Patch Management
Antivirus Management
DEMO:
PC Management
IDENTITY MANAGEMENT

www.windowsazure.com/en-us/solutions/identity
Syncing AD Too Intune (& Office365)
• Windows Azure Active Directory Sync Tool
• Windows Server Essentials
• ADFS - SSO

h...
Windows Server Essentials Feature

DC

• Only 1 Domain Controller
• Feature Must Run On Domain Controller
Directory Synchronization Tool

DC

DirSync

• DirSync Cannot Run On Domain Controller
Single Sign on

NLB
DC

ADFS

DirSync

ADFS Proxy
DEMO:
Essentials Feature
MDM
Mobile Device Management
Direct Mobile Device Management VS. Exchange ActiveSync
Direct MDM

EAS

Implementation

Managed directly from the cloud u...
Direct Mobile Device Management Prerequisites

Windows RT
Infrastructure
Requirements

Windows Phone 8

iOS

EAS Based Dev...
Direct Mobile Device Management Prerequisites

Windows RT
Infrastructure
Requirements

Windows Phone 8

iOS

EAS Based Dev...
Preparing For MDM
Intune Configuration
• Configure Mobile Device
Management Authority
•

Configure Direct Management For
•...
Requirements Windows Phone 8
• Symantec Certificate
• Microsoft Certificate
Requirements iOS
• Apple Certificate
•
•

New Users: https://appleid.apple.com
Apple Push Certificates Portal: https://ide...
Requirements Android
• EAS
Testing Windows Phone 8
• Support Tool for Windows Intune Trial
Management of Window Phone 8
•

http://www.microsoft.com/e...
Software
Software Installation
Win 8

Win RT

Win 7, Vista,
XP

WP 8

iOS

Android

Company
Portal App

Yes

Yes

No

Yes

Yes

Yes...
Software Installation
Exe & Msi Files

All Others

• Push & Pull
Deployment

• Pull Only
Prerequisite For Deploying Software
• Installation Files Must:
• Include a single .exe or msi installation file
• Include ...
DEMO:
Software Installation
Web sites
• Intune
•
•
•
•

• Office365

Portal.manage.microsoft.com
Manage.Microsoft.com
M.manage.Microsoft.com
Account.m...
Extending Intune
• Office365
• Windows Server Work Folders
Testing Intune
• Free 30 Day Trial
•

http://www.microsoft.com/en-us/windows/windowsintune/try.aspx

• Bring Your Own Devi...
Please evaluate the session
before you leave

Olav Tvedt

MVP - Software Packaging, Deployment & Servicing

Twitter: @ola...
In tune inaction
In tune inaction
Upcoming SlideShare
Loading in …5
×

In tune inaction

1,587 views

Published on

Published in: Technology
  • Be the first to comment

  • Be the first to like this

In tune inaction

  1. 1. InTune InAction Olav Tvedt MVP - Software Packaging, Deployment & Servicing Twitter: @olavtwitt – Blog: http://olavtvedt.blogspot.com
  2. 2. • Device Control • PC • Mobile Phones • Tablets • Application Management • Overview • Reporting • Deployment • Patch Management • Antivirus w/Management 3
  3. 3. THE MISSING PART
  4. 4. Microsoft Deployment Toolkit • OS Deployment • Refresh • Upgrade • New • Application Deployment • Can Deploy Using: • PXE Boot • CD • USB
  5. 5. DEMO: MDT MEDIA
  6. 6. CLOUD MANAGEMENT VS. UNIFIED MANAGEMENT www.windowsazure.com/en-us/solutions/identity
  7. 7. Cloud Management Capabilities Capability / Platform Windows 8 Application management Endpoint Protection Hardware Inventory Software Inventory Remote control Reporting Software updates Compliance settings     3   2 Windows 7,Vista,XP        2 Windows Windows Phone RT 8 iOS  O  1 3  O 2  O  1 O  O 2  O  1 O  O 2 Android  O  1 O  O 2 1 = Managed applications only 2 = Compliance reporting but no remediation automation 3 = Via Remote Assistance
  8. 8. Unified Management Capabilities Capability/Platform Application management Endpoint Protection Windows Windows 8 7, Vista,XP Windows Embedded Windows To Mac Go OS Windows Windows RT Phone 8 iOS Android          Compliance settings                                O  O  O  2 5   3 O  2 O   3 O  2 O  4 3 O 1 2 O  O 3 OS deployment   N/A  O N/A N/A N/A N/A Out of band management   N/A N/A O N/A N/A N/A N/A         O O O O O O O O O O Hardware Inventory Software Inventory Remote control Reporting Software updates Power management Software metering 1 = Basic information only through Exchange ActiveSync 2 = Managed applications only 3 = Compliance reporting but no remediation automation 4 = Device User has to accept the update 5 = Via Remote Assistance
  9. 9. In Short: • More Supported Clients • • • • • • • • • Windows Servers Windows Embedded Windows To Go Mac OS Linux OS Deployment Software Metering Compliance Etc.
  10. 10. More Unified Management • Wally Mead: • Deploying a System Center 2012 R2 Configuration Manager Environment to Manage Mobile Devices • Managing Mobile Devices with System Center 2012 R2 Configuration Manager and Windows Intune
  11. 11. PC MANAGEMENT www.windowsazure.com/en-us/solutions/identity
  12. 12. PC Management • • • • Inventory Software Deployment Patch Management Antivirus Management
  13. 13. DEMO: PC Management
  14. 14. IDENTITY MANAGEMENT www.windowsazure.com/en-us/solutions/identity
  15. 15. Syncing AD Too Intune (& Office365) • Windows Azure Active Directory Sync Tool • Windows Server Essentials • ADFS - SSO http://technet.microsoft.com/en-us/library/hh852469.aspx
  16. 16. Windows Server Essentials Feature DC • Only 1 Domain Controller • Feature Must Run On Domain Controller
  17. 17. Directory Synchronization Tool DC DirSync • DirSync Cannot Run On Domain Controller
  18. 18. Single Sign on NLB DC ADFS DirSync ADFS Proxy
  19. 19. DEMO: Essentials Feature
  20. 20. MDM Mobile Device Management
  21. 21. Direct Mobile Device Management VS. Exchange ActiveSync Direct MDM EAS Implementation Managed directly from the cloud using the native management capabilities in the device Managed from Exchange Server through the cloud using EAS Requirements Integrated into Windows Intune Exchange Server 2010 Connector None Exchange Server Connector Security Layer Operating System Application Capability (dependent on platform) • • • • • • App Distribution Windows 8 Apps Distribution (Self-Service App) Line-of-business application distribution through company portal (iOS) Hardware inventory Policy Settings Management Pull Software Distribution Device Wipe (iOS and Windows Phone) Compliance Monitoring iCloud policy control (iOS only) • • • • Basic settings Pull software distribution Device wipe (iOS and Windows Phone) Mailbox wipe (Windows 8 and Windows RT) Line-of-business application distribution through Web company portal
  22. 22. Direct Mobile Device Management Prerequisites Windows RT Infrastructure Requirements Windows Phone 8 iOS EAS Based Devices (Android) • Domain name for enrollment server address • • Domain name for enrollment server address • Registration with Apple Developer Program • Exchange 2010 Server Sideloading Key Code-signing certificate (optional) • Windows Phone Dev Center Company account Enterprise Mobile Code Signing Certificate • Apple Push Notification (APN) certificate Apple Developer Enterprise Program • Exchange Connector for ConfigMgr • Deployment Requirements End user Interface • • Company Portal application + Web-based • Company Portal application + Web-based • Company Portal application + Web-based Company Portal application + Webbased
  23. 23. Direct Mobile Device Management Prerequisites Windows RT Infrastructure Requirements Windows Phone 8 iOS EAS Based Devices (Android) • Domain name for enrollment server address • • Domain name for enrollment server address • Registration with Apple Developer Program • Exchange 2010 Server Sideloading Key Code-signing certificate (optional) • Windows Phone Dev Center Company account Enterprise Mobile Code Signing Certificate • Apple Push Notification (APN) certificate Apple Developer Enterprise Program • Exchange Connector for ConfigMgr Windows Intune • Deployment Requirements End user Interface • • Company Portal application • Company portal application • Web-based company portal • Depends on platform
  24. 24. Preparing For MDM Intune Configuration • Configure Mobile Device Management Authority • Configure Direct Management For • • • • Windows RT Windows Phone 8 iOS Exchange Device Configuration • Company Portal • • • App Web Define Owner
  25. 25. Requirements Windows Phone 8 • Symantec Certificate • Microsoft Certificate
  26. 26. Requirements iOS • Apple Certificate • • New Users: https://appleid.apple.com Apple Push Certificates Portal: https://identity.apple.com/pushcert
  27. 27. Requirements Android • EAS
  28. 28. Testing Windows Phone 8 • Support Tool for Windows Intune Trial Management of Window Phone 8 • http://www.microsoft.com/en-us/download/details.aspx?id=39079
  29. 29. Software
  30. 30. Software Installation Win 8 Win RT Win 7, Vista, XP WP 8 iOS Android Company Portal App Yes Yes No Yes Yes Yes Company Portal Web Visible, Install via App Visible, Install via App Yes Visible, Install via App Yes Yes File Types Appx / Exe / Msi Appx Exe /Msi Xap Ipa / Plist Apk
  31. 31. Software Installation Exe & Msi Files All Others • Push & Pull Deployment • Pull Only
  32. 32. Prerequisite For Deploying Software • Installation Files Must: • Include a single .exe or msi installation file • Include any supporting files and subfolders in a single folder structure • Support silent installation • No files larger then 3 GB
  33. 33. DEMO: Software Installation
  34. 34. Web sites • Intune • • • • • Office365 Portal.manage.microsoft.com Manage.Microsoft.com M.manage.Microsoft.com Account.manage.microsoft.com • • • Portal.Microsoftonline.com M.portal.Microsoftonline.com Office365.com • Azure • • manage.windowsazure.com www.azure.com
  35. 35. Extending Intune • Office365 • Windows Server Work Folders
  36. 36. Testing Intune • Free 30 Day Trial • http://www.microsoft.com/en-us/windows/windowsintune/try.aspx • Bring Your Own Device (BYOD) Test Lab Guides - Series v1.2 • http://www.microsoft.com/en-us/download/details.aspx?id=38778
  37. 37. Please evaluate the session before you leave  Olav Tvedt MVP - Software Packaging, Deployment & Servicing Twitter: @olavtwitt – Blog: http://olavtvedt.blogspot.com

×