Implement Modern device services Flashcards

1
Q

How many MDM Authority solutions are there?

A

4

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is Intune Standalone?

A

1 of 4 MDM Authority Solutions
Intune Standalone.
Cloud-Only Management configured using Azure Portal.
Everything managed from the cloud

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is Intune Co-Management?

A

1 of 4 MDM Authority Solutions
Integration of Intune with the Configuration Manager.
Allows you to manage your devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is MDM for O365?

A

1 of 4 MDM Authority Solutions

Integration of O365 with Intune cloud solution

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is O365 MDM Coexistence?

A

1 of 4 MDM Authority Solutions

Activate set, and use both Intune and MDM for O365 to manage devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is Microsoft Intune?

A

• Use to secure and monitor data access
• Manage multiple devices per person using different platforms (Windows, IOS, Android).
○ E.g could have a Surface Pro running windows and a company android mobile and their own personal iPhone used to access corporate resources
• Integrate with Windows Defender to help secure devices
• Utilise Azure AD Conditional Access policies
○ Allows you to create a policy to control and manage devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is MDM

A

Mainly used to manage corportae devices
• Users enrol devices, use certificate to communicate with Intune. IT pushes apps to devices, restricts OS types, and can remotely wipe device.
• Deploy Conditional Access policy to drive users to enrol their devices
○ Integrate with Azure AD. Users can do anything till they have enrolled
○ Can use policy to configure Wi-Fi and VPN
• Certificated require to communicate with Intune
IT admins remotely manage devices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is MAM

A

(Mobile Application Management )
Mainly used for BYOD devices to devices what used can do when they are accessing corporate data
• Users use personal devices to access company resources. When opening an app, additional authentication required. If device is lost, IT can remove company information.
• Control authentication when accessing organisation resources.
• Remove corporate data from O365 servies
• Stronger authentication methods can be configured for user who access corporate data eg. Users need a pin.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What do you need to take into consideration with MDM?

A

Device Types
• Corporate owned or BYOD
• User type or devices
○ E.g kiosk machine
○ Exectuives, PA etc
Organisations Groups
• Identify each use-case and sub-use-case
○ Case - sub-use-case -Org group
○ Corporate - Executive - HR, Finance
§ So Executive that work within executives and finance
Mobile device use-case with platform & apps
• Corporate -Executive -HR, Finance -IOS
○ Corporate -Executive -HR, Finance -IOS - Email, Apps, Profiles
This would control executives within HR and Finance and their email apps and profiles.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the MDM Deployment Plan?

A

• Rollout plan - groups to target for rollout
○ Pilot groups
○ Production rollout groups
§ Can be created by departments or locations etc
• Communication plan - explain rollout plan
○ What and how information communicated
○ Who and when information communicated
• Support Plan - Resolution of reported issues
○ Who is involved in support process
○ What is support process
Who and when providing training

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the prerequisites with MDM Intergration with AAD?

A

• Active MDM subscription with provide
○ By default uses Intune
○ Third-party options available in AAD app gallery
• Configure MDM Setting
○ URLs for MDM terms of use
○ MDM discovery and compliance
○ Scope of devices
• Auto device enrolment needs AAD premium P1 or higher
• Configure devices for hybrid AAD domain join

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is a DEM?

A

Device Enrolment Manager (DEM)
• Global Admin or Intune Admin manage DEMs
• Intune permissions applied to any AAD user
• 150 maximum Intune DEMs
• Can enrol up to 1,000 devices per DEM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What does Legal Holds and eDiscovery do?

A

• Place user mailboxes on hold to preserve content - e.g if company goes court they can retain mailbox
• User query-based searches to locate and retain data
• Preserve items for specific time period or indefinitely
○ Depends on the legal case
• Keep holds transparent from user without suspending MRM
○ Messaging Records Management : Can suspend the auto-deletion of content without even being visible to user.
• Enable In-Place eDiscovery searches of on-hold items.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly