MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima
-
Upload
tomislav-lulic -
Category
Internet
-
view
274 -
download
1
Transcript of MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima
![Page 1: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/1.jpg)
Advanced Technology Days18. i 19. studenog 2015., Cinestar Arena Centar
![Page 2: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/2.jpg)
MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajimaTomislav Lulić[email protected]
![Page 3: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/3.jpg)
![Page 4: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/4.jpg)
Ukratko o predavaču
Tomislav Lulić (Adria-Scan d.o.o.)• iskustvo u mnogim industrijama,
‐ Logistika, teška industrija, prehrana, farmaceutika itd.
• MS licenciranje i upravljanje životnim ciklusom softvera,
• U novije vrijeme projekti vezani za Cloud servise i migracije u Cloud s naglaskom na Office 365 i Azure
• Bivši korisnik BlackBerry uređaja i sustava• Ljubitelj hokeja
![Page 5: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/5.jpg)
O čemu ću pričati• Koncept Enterprise Mobile Suite• Upravljanje uređajima
‐ Zašto je to bitno‐ Licenciranje
• Kako to izgleda
![Page 6: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/6.jpg)
Kratki (Dilbert) uvod u temu…
![Page 7: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/7.jpg)
Zašto brinuti o mobilnim uređajimaZašto uopće brinuti o sustavu?
![Page 8: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/8.jpg)
Malo povijesti…
•Mobilni uređaji (i računala generalno)‐ Jučer:
nekad su bili ogromni, isključivo za telefoniranje‐ Danas:
velika procesorska snaga, mnogo aplikacija velika količina podataka i pristup korporativnim resursima putem mobilnog uređaja
![Page 9: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/9.jpg)
Izazovi• Biti dostupan putem raznih uređaja• Dohvatiti dokumente i aplikacije• Povećanje broja korisničkih imena kao i načina pristupa
kroz platforme• Zbog povećanja procesorske snage i prostora za pohranu,
mogućnost brzog prijenosa/kopiranja• Otežano praćenje i zaštita dokumenata i pristupa njima
![Page 10: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/10.jpg)
Licenciranje• Microsoft Intune (Standalone)• Enterprise Mobility Suite
‐ Microsoft Intune‐ Azure Active Directory Premium‐ Azure Rights Management
• Enterprise Cloud Suite‐ Enterprise Mobility Suite‐ Office 365 Enterprise E3‐ Windows Software Assurance (per User)
![Page 11: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/11.jpg)
Windows SA po korisnikuDanas: Enterprise Cloud Suite
Jučer: Enterprise Desktop Platform
Lokalna instalacija ENT
Zahtjevi
VDI
Licenčni model
MDOP
Svaki uređaj zahtijeva Win PRO
Licenciranje po uređaju
Jedan uređaj
po uređaju
Samo za jedan uređaj
Samo primarni uređaj zahtijeva Win PRO
Proširno na sve uređaje bez dodatnih troškova
Na bilo koji PRO uređaj ili ≤10.1” Windows tablet
Po korisniku – neograničen broj uređaja
Dostupno na svim uređajima
Windows SA (po uređaju)
x86 PC/Mac
Windows SA (po korisniku)
Tablet/Phone/Chromebook(RT/WinPhone/iOS/Android)
x86 PC/Tablet PC/Mac
Star t Justi
![Page 12: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/12.jpg)
Office 365 upravljanje
![Page 13: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/13.jpg)
office 365 upravljanje
![Page 14: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/14.jpg)
Primjeri mogućnosti upravljanja uređajima
Windows Phone 8.1 iOS 7.1+ Android 4+Require a password ✔ ✔ ✔Prevent simple password ✔ ✔ ✖
Require an alphanumeric password ✔ ✔ ✖
Minimum password length ✔ ✔ ✔Number of sign-in failures before device is wiped
✔ ✔ ✔
Minutes of inactivity before device is locked ✔ ✔ ✔
Password expiration (days) ✔ ✔ ✔Remember password history and prevent reuse
✔ ✔ ✔
![Page 15: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/15.jpg)
Primjeri mogućnosti upravljanja uređajima
Windows Phone 8.1 iOS 7.1+ Android 4+
Require data encryption on devices
Windows Phone 8.1 is already encrypted and cannot be unencrypted
✖ ✔
Email profile is managed ✖ ✔ ✖
Block connection with removable storage ✔ ✖ ✖
Block Bluetooth connection ✔ ✖ ✖
![Page 16: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/16.jpg)
Što čini Enterprise Mobility Suite?
![Page 17: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/17.jpg)
Enterprise Mobility Suite
Microsoft Azure Active Directory Premium• Upravljanje grupama,
sigurnosni i revizijski izvještaji
• Self-service password reset
and multi-factor authentication
• Konekcija između Active Directory i Azure Active Directory
Hybrid Identity
Windows Intune• Upravljanje postavkama
mobilnih uređaja
• Upravljanje mobilnim aplikacijama
• Selektivno brisanje (wipe)
Mobile Device
Management Microsoft Azure Rights Management Service• Zaštita informacija
• Spajanje na on-premises uređaje i podatke
• Bring your own key
Data Protection
![Page 18: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/18.jpg)
Microsoft Intune
• Upravljanje mobilnim uređajima‐ Windows, Windows Phone, iOS i Android
• Upravljanje politikama i aplikacijama• Izvještavanje o usklađenosti (Compliance reporting)• Uvjetovani pristup resursima• Selektivno brisanje podataka na uređajima• Hibridno / Cloud rješenje
![Page 19: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/19.jpg)
Azure Active Directory Premium• Active Directory u Oblaku
‐ Federation and Identity provisioning• Centralno upravljanje identiteta
‐ Sinhronizacija, Single User Identity (SSO)‐ Veliki portfolio SaaS aplikacija koje podržavaju AAD (SAP, O365,
SalesForce itd)• Nadgledanje i zaštita pristupa prema aplikacijama u Oblaku
‐ Autentifikacija i sigurnosni izvještaji‐ Multi-Factor autentifikacija (MFA)
• Upravljanje za krajnje korisnike‐ Self-Service restiranje zaporke
![Page 20: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/20.jpg)
Microsoft Azure Rights Management• Enkripcija i kontrola
‐ Dokumenti‐ Mailovi
• Onemogućava neželjeni pregled/ispis ili pristup korporativnim podacima
![Page 21: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/21.jpg)
Microsoft Mobility Solution
Common Identity
Active Directory ISV/Custom
Apps
Cloud Services
Independent Cloud App Vendors
Specific product/service connections and data sync
Windows Server Active
Directory DatacenterWindows Server
File ServicesSystem Center Configuration
ManagerLoB Apps SharePoint Remote Access
![Page 22: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/22.jpg)
Office 365 i Enterprise Mobility Suite
Best
BetterGood
Desktop EA Customers(Windows Ent / Office / CAL Suites)
Desktop EA + O365 Customers
(Windows Ent / Office / CAL Suites+O365)
Enterprise Mobility Suite(Microsoft Intune / Azure AD Premium / Azure RMS)
• Domain based Identity Management (SSO for on prem apps)
• Centralized PC Management • Information Protection for On
prem Office
• Hybrid identity & SSO for O365
• MFA for O365• Cloud based information
protection for O365 (E3/E4 only)
• Group Management & Security / audit reports
• Self Service Password Reset & MFA• Connection between AD / Azure AD
• Information protection• Connection to on-premises assets
• Mobile device settings management• Mobile app management• Selective wipe
On Premises Cloud Solution
![Page 23: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/23.jpg)
Dodatna prednost za Office 365 korisnikeCloud i hibridno
upravljanje identitetima
Upravljanje mobilnim uređajima Zaštita podataka
Enterprise Mobility
Suite
•Zastita za O365 sadržaj•Zaštita za on-prem Exchange SharePoint sadržaj•Pristup RMS SDK•Bring your own Key
•Zaštita za dijeljenje datoteka na on-premises Windows Server
•Basic Mobile Device Management via EAS
•PIN enforcement•Device wipe
•Upravljanje PC•Upravljanje mobilnim uređajima•Upravljanje mobilnim aplikacijama•Certificate Provisioning•Selektivno brisanje
•Single Sign on for O365 •Basic Multifactor Authentication (MFA) za O365
•SSO za sve apl. u Oblaku •Napredni MFA za sva okruženja•Self Service upravljanje i reset zaporke sa povratom zapisa u On-prem AD•Napredni sigurnosni izvještaji•Forefront IDManager (Server + CAL)
![Page 24: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/24.jpg)
Microsoft Intune
![Page 25: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/25.jpg)
Intune klijentski zahtjevi• Apple iOS 7.1 and later• Google Android 4.0 and later (includes Samsung KNOX)• Windows Phone 8.0 and later• Windows RT and Windows 8.1 RT
• Windows Vista - Business, Enterprise and Ultimate versions• Windows 7 - Professional, Enterprise, and Ultimate versions• Windows 8 - Professional and Enterprise versions• Windows 8.1 - Professional and Enterprise versions• Windows 10 - Professional and Enterprise versions
![Page 26: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/26.jpg)
Microsoft Intune (što napraviti)
• Aktivirajte korisnike‐ povežite s licencom‐ bitno je to da se servis veže uz korisnika (ne uređaj)
• Zaštita podataka‐ selektivno brisanje korporativnih podataka‐ E-mail, podaci
![Page 27: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/27.jpg)
Intune• Na Desetki, startati u IE-u i ugasiti Compability View
![Page 28: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/28.jpg)
Intune policy
![Page 29: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/29.jpg)
Intune i Azure AD
![Page 30: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/30.jpg)
Nastavak Intune
![Page 31: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/31.jpg)
Upravljanje mobilnim uređajima
![Page 32: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/32.jpg)
iOS
![Page 33: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/33.jpg)
Intune application sideload
![Page 34: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/34.jpg)
Company portal (Win-mobilni)
![Page 35: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/35.jpg)
iPhone postavke
![Page 36: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/36.jpg)
Microsoft Azure Active Directory
![Page 37: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/37.jpg)
Azure AD
![Page 38: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/38.jpg)
Microsoft Azure RMS
![Page 39: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/39.jpg)
Azure Rights Management• Proširuje AD RMS• Omogućava kontrolu što korisnici rade primarno kroz Office 365, no
i šire• Datoteke, poruke• Područje pokrivanja
‐ Windows platforma (računala, mobilni uređaji, tableti)‐ Ne-Microsoft platforma (iPhone, Android)
![Page 40: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/40.jpg)
Azure Rights Management• Nadzire pristup korisnicima koji posjeduju prava
pristupa korporativnim dokumentima• Najveća prednost je što se AD RMS nalazi u Oblaku• Olakšana administracija• Olakšano apliciranje prava i zaštitnih mjera
‐ Pristup sa svih točaka i uređaja‐ Olakšan pristup korisnicima izvan korporativne
mreže
![Page 41: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/41.jpg)
Microsoft Azure Rights Management
Exchange
SharePoint
Windows Server FCI
ExchangeOnline
SharePointOnline
Azure RMS
Azure ADIdentity
and
Collaboration
KMSP(HSM)
Azure KMS
Office 2007, 2010, 2013, 2016
![Page 42: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/42.jpg)
Azure Rights Management
![Page 43: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/43.jpg)
Azure Rights Management
![Page 44: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/44.jpg)
Azure Rights Management
![Page 45: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/45.jpg)
Aktiviranje RM statusa
![Page 46: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/46.jpg)
I za kraj…
![Page 47: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/47.jpg)
Kratka usporedbaMDM for Office 365 Enterprise Mobile Suite
Upravljanje uređajima Kroz Office 365 admin centre Kroz Intune konzolu, kroz SCCM centar
Podržani uređaji <iOS 7.1, <Android 4.0, WP <iOS 7.1, <Android 4.0, WP
MogućnostiOgraničen na upravljanje mobilnih uređaja, selektivni Wipe, uvjetni pristup uređajima
Uključuje sve sa Office 365Napredno upravljanje uređajima (PC, mobile)Napredno upravljanje aplikacijamaUpravljanje dokumentima i pristupom dokumentima… i mnogo više, pošto Azure AD otvara mnoge mogućnosti kombiniranja on-premise i Cloud rješenja
![Page 48: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/48.jpg)
Twitter: @tlulicBlog: http://tlulic.wordpress.comE-mail: [email protected]
![Page 49: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/49.jpg)
Korisni linkovi• OMA Device management
‐ https://en.wikipedia.org/wiki/OMA_Device_Management‐ http://scug.be/sccm/category/oma-uri/
• Azure RMS‐ https://portal.eu.azurerms.com
• Upravljanje mobilnim uređajima‐ https://
technet.microsoft.com/en-us/library/ms.o365.cc.devicepolicysupporteddevice.aspx
![Page 50: MDM - Pregled Enterprise Mobility Suite i Office 365 upravljanja mobilnim uređajima](https://reader036.fdocuments.in/reader036/viewer/2022062503/58eb38cd1a28abe8058b478b/html5/thumbnails/50.jpg)
© 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.