MICROSOFT INTUNE
Microsoft Intune is a cloud-based service that focuses on mobile device management (MDM) and mobile application management (MAM). You control how your organization’s devices are used, including mobile phones, tablets, and laptops. You can also configure specific policies to control applications. For example, you can prevent emails from being sent to people outside your organization. Intune also allows people in your organization to use their personal devices for school or work. On personal devices, Intune helps make sure your organization’s data stays protected and can isolate organization data from personal data.
Intune is part of Microsoft’s Enterprise Mobility + Security (EMS) suite. Intune integrates with Azure Active Directory (Azure AD) to control who has access and what they can access. It also integrates with Azure Information Protection for data protection. It can be used with the Microsoft 365 suite of products. For example, you can deploy Microsoft Teams, OneNote, and other Microsoft 365 apps to devices. This feature enables people in your organization to be productive on all of their devices while keeping your organization’s information protected with the policies you create.
Intune Baseline Implementation
This service offering will implement Microsoft Intune start to finish at a baseline level. This includes implementing either Intune or EMS subscriptions or any necessary configuration on the Azure AD tenant. The project will also include implementing initial device policies and configurations needed for device enrollment. We will then test and troubleshoot enrolling devices and ensuring their initial configuration state is as expected. Finally, documentation and knowledge transfer will occur to ensure a smooth hand off and clear understanding for the client. This offering is good for small and large businesses alike.
Intune FULL Implementation
This Mobile Device Management solution includes all of what is in the Baseline Implementation plus more advanced features, such as Conditional Access Policies, App Protection Policies and application packaging and deployment. These types of advanced policies are usually required by regulated businesses and companies that have a greater need to protect from leakage of company data. Examples of these advanced policies include preventing company files from being copied or shared through non-company apps or preventing the use of company data unless certain conditions are met. Not all companies need this level of additional security, but many will want to do this full Intune implementation.
AUTOPILOT DEPLOYMENT & CONFIGURATION
Windows Autopilot is a set of technologies working in conjunction to provide a cloud-based, efficient way to deliver new computers (Windows 10) to company users. It can also be used to repurpose existing computers. The aim of this project is to configure all the components necessary for a company to utilize Autopilot functionality. Certain prerequisites are assumed to already exist, including active and working Intune and AzureAD environments. This project focuses on getting the Autopilot elements working within those existing services. If Intune or AzureAD have not already been deployed, those would have to be deployed first as a separate project.