![]() ![]() In this approach we have to add some Intune specific libraries and Methods and functions into the source code of the application.The Intune App SDK, available for both iOS and Android, enables our app to support Intune app protection policies.Software development toolkits allow developers to add functionality to their applications and enable them to build the standard components of their apps easier and faster.Which one to choose- that would depend on a lot of factors which we will try to clarify in this post. The end goal in both the cases is the same i.e. SDK Integration and App Wrapping: There are 2 ways by which we can make our LOB app, MAM aware so that it can comprehend the Intune MAM policies, viz- App Wrapping and Intune SDK integration. However that would not make the application MAM aware and enable it to understand Intune’s App protection policies. Note- While developing a LOB application, we can always inculcate some DLP functionality onto the same in the app’s code. In this article we are going to explore the methodologies of making a LOB app- MAM aware so as to apply MAM policy onto the same.Now this would bring up a major concern to all the security folks of all the organizations- “How do we protect the org data and implement MAM policies to LOB apps”(custom apps made by the org). ![]() A very important thing to notice above is- All the MAM enlightened apps for Android and iOS are – store apps.This list is ever growing and app developers are increasingly integrating more and more applications with the Intune sdk while developing their application and publishing it to the store.As we can see above there are a lot of applications which are MAM enlightened-> Meaning they understand and comprehend the Intune MAM policy.Enforcing encryption the corporate data saved by the application.Require users to sign in with their work\school accounts to access a specific application.Remotely wiping corporate data from the application in the device.Enable app protection on devices managed with 3rd party EMM tools.Setup security(PIN), storage location etc.Enable app protection without requiring enrollment.Apply data loss prevention policies without managing the user’s device.Enable multi-identity use and app-level Conditional Access.Configure web links to open inside the secure Microsoft browser.Restrict copy-and-paste and save-as functions.The policies are applied only in a work context, which gives you the ability to protect company data without touching personal data.End-user productivity isn’t affected, and policies don’t apply when using the app in a personal context.Because mobile app management doesn’t require device management, we can protect company data on both managed and unmanaged devices. Protecting the company data at the app level. ![]() MAM focuses only on corporate-owned data in applications MAM differs from Mobile Device Management (MDM), which administers the entire device. It allows you to manage and protect your organization’s data within an application. Mobile Application Management refers to the suite of Intune that lets us publish, push, configure, secure, monitor, and update mobile apps for the users.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |