O documento discute as soluções da Microsoft para gerenciamento de mobilidade empresarial, identidade e proteção de dados, incluindo Intune para gerenciamento de dispositivos móveis e aplicativos, Azure Active Directory para gerenciamento de identidade em nuvem e on-premises, e Azure RMS para compartilhamento seguro de documentos. A abordagem unificada da Microsoft oferece uma variedade de ferramentas para proteger informações corporativas e permitir acesso seguro de qualquer lugar.
3. Custo
Risco
Mudança gera complexidade
Soluções de VDI
Soluções de Segurança de
Dados
Soluções de MDM
System Center
Identidade
?
?
?
?
?
Nova Solução
Custo
Risco
Custo
Risco
Custo
Risco
Custo
Risco
ComplexidadeComplexidadeComplexidadeComplexidadeComplexidadeComplexidade
Custo
Risco
?
Abordagem unificada da Microsoft
Custo
Risco
Complexidade
Progresso
4. Gerenciar Aplicações
Móveis
Gerenciar PCGerenciar Dispositivos
Móveis
Gerenciar mobilidade empresarial com Intune
Intune ajuda empresas a disponibilizar para seus funcionários acesso a aplicações, dados e recursos
corporativos de qualquer lugar e de quase todos os dispositivos, enquanto mantém segura as informações
corporativas
User IT
5. Self-service
MFA
Single sign on
•••••••••••
Username
Gerenciar Identidade com
Azure Active Directory
Conexão Simples
Nuvem
SaaS
Azure
Office 365Public
cloud
Outros
Diretórios
Windows Server
Active Directory
On-premises Microsoft Azure Active Directory
6. Gerenciar Proteção de Daddos com Azure RMS
Aplicações Nativas e Genéricas usando
Protected File (PFILE)
Eu posso proteger e compartilhar
informações em diferentes tipos de
dispositivos de forma segura
User
7. Sharing documents securely
Use Microsoft Azure RMS para compartilhamento
seguro de documentos com colegas e parceiros de
negócios
8. Gerenciamento de
dispositivo e
aplicação móvel
Gerenciamentode
configuraçãode
dispositivo móvel
Acesso condicional e
wipe seletivo
Gerenciamentode
aplicaçãomóvel
comoapps do Office
Identidade Hibrida
ActiveDirectory Premium
Single sign-on em
mais de 2,500
aplicações SaaS
Portal de redefinição
de senha e
gerenciamento de
grupo
Relatório de
segurança e
auditoria, Múltiplo
Fator de
Autenticação
Proteção de
acesso e
informação
Proteção de
Informação
Conexão com
recursos on-
premises
Criptografia de
arquivos
Enterprise Mobility Suite
Rights Management
What’s the role of TI in this new world? Is it to keep users productive? Or secure company assets? To embrace change and turn it into a competitive advantage? Or avoid unnecessary risco? The answer is, of course, all of the above. The buck really does start and stop with TI. But keeping up with such fast moving and changing trends has its own challenges. TI has had to jump-in and fire-fight on several fronts: from getting unmanaged devices on the corporate network under policy to coming up with strategies to avoid sensitive customer data from falling into the wrong hands. All while keeping users happy…
Let’s take a look at what that means for your average user and your average TI administrator. Start with the user. They’re always on the road and works from a number of different devices and locations. They need email on their devices – whether that’s a PC, tablet or phone. They also want apps. LOB apps. Productivity apps. And more recently SaaS apps. The user expects to have access to all the apps they need to stay as productive as possible wherever they are. But they also need to be able to work on documents across devices, so they a way to pull synchronized data from the cloud to be accessed on different devices. And that may mean that they require access to sensitive data while they’re out on the road using a non-corporate device.
For the TI admin, all these scenarios create risco. A certain amount of risco can be tolerated. But as user requirements increase, TI has to take action to ensure the risco is maintained at an acceptable level. This has led to investment in point solutions being deployed to address pain points and risco. However, each point solution adds custo to the business and complexidade to TI. And as each point solution has to be integrated with the previous point solutions, the impact is amplified with each new solution.
While individual tools to solve individual problems is undoubtedly effective, it may not always be efficient in either custo or time. For example, having one tool to manage PCs and a different tool to manage mobile devices is inevitably going to lead to duplication of certain tasks – and may lead to an inconsistent experience for the end user across different devices.
Having one user identity for accessing corporate on-premises applications and a different identity or identities for cloud apps is creating extra work for TI and putting a burden on the user to remember a raft of different login IDs and passwords.
By constantly addressing challenges with point solutions, you may be tactically solving a problem, but you are adding custo and complexidade to your business. Not just the custo of net new technologies. But also the custo of standing them up, integrating them, staffing and maintaining them.
Now let’s take a closer look at Microsoft Intune and how Intune delivers enterprise mobility management.
With Intune, you can provide employees with access to corporate applications, data, and resources from anywhere on almost any device, while helping to keep corporate information secure.
With Intune’s Mobile Device Management (MDM) capabilities, you can:
Restrict access to Exchange email based upon device enrollment and compliance policies
Deploy certificates, WiFi, VPN, and email profiles automatically once a device is enrolled for management
Simplify device enrollment in the case of large scale deployments using Apple Configurator or Intune service accounts
Provide a self-service Company Portal for users to enroll their own devices and install corporate applications across iOS, Android, Windows and Windows Phone
Intune also provides Mobile Application Management (MAM) capabilities, you can:
Maximize mobile productivity with Intune-managed Office mobile apps while still protecting corporate data by restricting actions such as copy/cut/paste/save outside of your managed app ecosystem
Extend these same management capabilities to existing line-of-business apps using the Intune app wrapper
Provide secure viewing of content using the Managed Browser, PDF Viewer, AV Player, and Image Viewer apps for Intune
Additionally, you can also manage PCs using Intune:
Provide lightweight, agentless management from the cloud or deliver agent-based management
Connect Intune to System Center 2012 R2 Configuration Manager to manage all of your devices on-premises and in the cloud, including Macs, Unix/Linux servers, PCs, and mobile devices from a single management console
Provide real-time protection against malware threats on managed computers
Collect information about hardware configurations and software installed on managed computers
Deploy software based on policies set by the administrator
The Enterprise Mobility Suite (EMS) delivers on Microsoft’s cloud-based people-centric IT vision with a combination of products that integrates hybrid identity management, mobile device and application management, access and information protection, all into one simple licensing bundle. EMS is composed of three products: Microsoft Intune, Microsoft Azure Active Directory (AD) Premium, and Microsoft Azure Rights Management Services (RMS).
The EMS suite is available to EA customers, and the current promotional pricing is $4 per user per month, on top of existing CAL suite offers. EMS simplifies the procurement process—all you need is one vendor, one contract, and one SKU.
Note: These products can also be purchase separately.