Category: Microsoft|Sep 12, 2020 | Author: Admin

How Jamf plans to let Microsoft Endpoint manage enterprise iPhones

Share on

A new solution due out soon will allow IT to use Microsoft Endpoint Manager to manage iOS devices as well as Macs.

While it’s widely known that Apple is enjoying growing use across the enterprise, it’s also true that employee choice means most businesses must support multiple platforms. A new solution promises to make that task a little easier.

Managing hybrid environments with Azure
Jamf is currently previewing its new iOS Device Compliance solution and expects to introduce it later this year. What does it do?

Microsoft Corporate Vice President Brad Anderson explains:

“Trends like employee technology choice programs and the consumerization of IT continue to grow, and organizations need management tools that can adapt and shift to hybrid environments.”

That’s what this solution provides. It lets IT teams “consolidate management of employee devices, while not losing the ability to provide key ecosystem-specific functionality,” he said.

iOS Device Compliance relies on Microsoft Endpoint Manager, which can see things such as compliance status and device information that relates to the Apple systems.

This isn’t completely new (though support for iOS is).

Jamf and Microsoft already offer Conditional Access for Macs, which they developed in 2017; it included the ability to share inventory data from Jamf Pro to Microsoft Intune.

It’s important to recall Anderson’s comment last year that Microsoft Office runs on millions of Macs while Office Mobile is in use on more than 90 million iOS and Android devices.

That means it’s reasonable to protect those devices and the information on them. This is even more vital when you consider how many enterprises are now working remotely as they navigate the COVID-19 pandemic.

How this works
The idea is that in order to access enterprise applications connected with Azure Active Directory, users must first register the device(s) they want to use with those apps (including Microsoft 365 apps).

When they try to register an iOS device, Jamf will gather information concerning device compliance to ascribed security policies and will share device information with Microsoft Endpoint Manager for review.

The latter will then assess device compliance and then use Azure Active Directory to dynamically grant or deny access. Users will be told what they must do to raise compliance in the event their request is rejected.

Just as on the Mac, the Apple device is managed by Jamf, but access and compliance for that device are handled by Microsoft.

One useful selling point (at least on the Mac) is that devices are not required to pass through the proxy, which makes the protection more robust.

The advantage is that business users should find it easier to run mixed-platform networks and support employee choice programs. IT can use Jamf to manage the Apple devices, while also being able to make use of Azure Active Directory to power Conditional Access settings. That allows only trusted users on security compliant devices to access anything – and IT can even control which apps are able to access this information.

It goes beyond this – IT can also prevent authorized users from using devices that don’t comply with their security policies.

What does Jamf say?
“We know IT teams want the simplicity of managing and securing all their devices within a single pane, while still providing the intended Apple experience employees demand and deserve,” said Jamf CTO Jason Wudi in a statement.

“Jamf and Microsoft have a long history of collaborating to better empower the end-user and IT, and today’s announcement of iOS device compliance shows we are committed to continuing to innovate to make the modern management experience better for enterprises growing their Apple fleet.”

Microsoft’s move to support the provision of such protection is another illustration of the extent to which the enterprise IT environment has changed in recent years. It proves that even the Windows developer recognizes it must support multiple platforms, reflecting the vision of Microsoft CEO Satya Nadella.

Sponsored Ads:

Comments:


Korea arrests CEO for adding DDoS feature to satellite receivers

Category: IT|Dec 3, 2024 | Author: Admin

Google Chrome’s AI feature lets you quickly check website trustworthiness

Category: Google|Dec 2, 2024 | Author: Admin

Novel phising campaign uses corrupted Word documents to evade security

Category: IT|Dec 1, 2024 | Author: Admin

SpyLoan Android malware on Google play installed 8 million times

Category: Google|Nov 30, 2024 | Author: Admin

New Windows Server 2012 zero-day gets free, unofficial patches

Category: Microsoft|Nov 29, 2024 | Author: Admin

Microsoft re-releases Exchange updates after fixing mail delivery

Category: Microsoft|Nov 28, 2024 | Author: Admin

Cloudflare says it lost 55% of logs pushed to customers for 3.5 hours

Category: IT|Nov 27, 2024 | Author: Admin

Hackers exploit critical bug in Array Networks SSL VPN products

Category: IT|Nov 26, 2024 | Author: Admin

Microsoft 365 outage impacts Exchange Online, Teams, Sharepoint

Category: Microsoft|Nov 25, 2024 | Author: Admin

Meta removes over 2 million accounts pushing pig butchering scams

Category: IT|Nov 24, 2024 | Author: Admin

Hackers abuse Avast anti-rootkit driver to disable defenses

Category: IT|Nov 23, 2024 | Author: Admin

Windows 11 KB5046740 update released with 14 changes and fixes

Category: Microsoft|Nov 22, 2024 | Author: Admin

Fortinet VPN design flaw hides successful brute-force attacks

Category: IT|Nov 21, 2024 | Author: Admin

US charges five linked to Scattered Spider cybercrime gang

Category: IT|Nov 20, 2024 | Author: Admin

CISA tags Progress Kemp LoadMaster flaw as exploited in attacks

Category: General|Nov 19, 2024 | Author: Admin
more