Based on an announcement on the Microsoft Intune team blog yesterday, a set of new features will be coming to Microsoft Intune this week. The update will be rolled out between November 17 and November 19 and applies to Intune standalone (or cloud) only.
With this update Microsoft also throws the “Windows Intune” term into the dustbin. “Microsoft Intune” will be the terminology used for the future, as the capabilities nowadays extend a lot further than just the Windows platform (iOS and Android).
A quick overview of the new features:
- Enhanced user interface for Intune administration console
- Ability to restrict access to Exchange on-premises email based upon device enrollment
- Bulk enrollment of devices using a single service account
- Lockdown of Supervised iOS devices and devices using Samsung KNOX with Kiosk mode
- Targeting of policies and apps by device groups
- Ability to report on and allow or block a specific set of applications
- Enforcement of application install or uninstall
- Deployment of certificates, email, VPN and WiFi profiles
- Ability to push free store apps to iOS devices
- More convenient access to internal corporate resources using per-app VPN configurations for iOS devices
- Remote pin reset for Windows Phone 8.1 devices
- Multi-factor authentication at enrollment for Windows 8.1 and Windows Phone 8.1 devices
- Ability to restrict administrator access to a specific set of user and device groups
- Updated Company Portal apps to support customizable terms and conditions
For those experienced with Microsoft’s UDM solution –where ConfigMgr and Intune are integrated- you will recognize quite some familiar features.
More info can be found on the Intune Team blog.
Until next time!
Last week I was at the Midwest Management Summit (MMS) in Minneapolis, a three day conference organized by the Minnesota System Center User Group.
At this event I had the pleasure to deliver two sessions for which I again teamed up with my friend and ECM MVP Kenny Buntinx. Based on the feedback received on our sessions so far, we did well again at evangelizing Unified Device Management (UDM) with Configuration Manager and Intune.
Having a lot of time for Q&A made these sessions very interactive and allowed attendees to (hopefully) ask all their questions. If you did attend and have further feedback, questions, or comments please make sure to send them to Kenny and/or myself.
Next to speaking I also had the opportunity to attend some really nice sessions. As my focus is on Enterprise Client Management I was really pleased to see so many sessions on ECM topics on the schedule. Building a schedule for the conference was quite challenging.
Having these sessions delivered by community experts is a big plus as you have the chance pick up a lot of experience (and potential pitfalls) from the field. One really nice example of this would be the session on Pull DP’s with Todd Hemsell. Also the sponsor sessions were a great fit: I attended those from 1E and Secunia and really enjoyed the technical level of these sessions. No marketing fluff.
Another highlight for me was the talk on getting MMS right at home where the user group leads could share experiences. Next to that the event also brought back some of the best ingredients from the ‘old MMS’, for example the Configmgr State of the Union and the Jeopardy Quiz.
Overall this has been a really great event – except for the outside temperatures there are really no negatives I could think of.
Although still to be confirmed I sincerely hope there will be a 2015 edition of this event! I for sure would love to attend!
Tip: looking for session content and want to grab it all in one shot? Check out this script to download the files.
Until next time!
At MMS I will be delivering two sessions together with my friend and fellow MVP Kenny Buntinx. Our sessions are scheduled on Tuesday the 11th and both will be about Unified Device Management with Configuration Manager and Intune.
During the first session we will dive into the setup and configuration aspects while in the second session we will look more into practical scenarios related to mobile device management.
More details and a complete sessions overview can be found on the event website.
Interested? Registrations are currently still open so you can still attend!
Hope to see you there!
On October first I was awarded with the Microsoft Most Valuable Professional (MVP) award.
Now would be the perfect time to take the opportunity and thank all those who have supported, encouraged and helped me in the past few years. Without that support I would not be where I am today.
To my community peers: it is a pleasure and an honor to be able to spend time with all of you! Thanks for all the technical talks and knowledge shared, but also for all the fun and good times!
Also a big thanks to those who have attended my sessions, follow my blog, reach out on social media, etc. … this makes all the time and effort spent more than worthwhile!
Getting up to this point has been quite a journey – and for sure there is much more to come!
I arrived back in Belgium last Saturday after what has been a very exciting week at the IT/Dev Connections event in Las Vegas. A quick debrief of the event:
First of all a big thumbs-up to Megan, Angela, Rod and the entire team organizing the event. I honestly believe the ingredients and the recipe for this event are spot on. Great venue, awesome speakers and session content, plus plenty of social activity and networking opportunities.
Next to being an attendee I also had the pleasure to deliver two sessions with my friend Kenny. Our morning session was packed to the extent that a few people were without seats and had to stand up in the back of the room. The afternoon session was less crowded but I was pleased to see a lot of people from the morning session came back to see us.
I would like to take the opportunity again to thank everyone who joined our sessions. Further feedback, comments or questions on these sessions are always welcome. For those of you who submitted session evals: we were informed the feedback will be provided to us in the upcoming days and we will definitely take your input into account. Also make sure to check the session wrap-ups here and here.
From a networking perspective I honestly cannot start to describe and/or quantify what this events has meant to me. Not only did I meet a lot of new people, it has also been the perfect opportunity to meet up with friends from the System Center community that I had not seen in quite some time. This to me is worth even more than the excellent session content.
One last fun fact: based on the twitter analytics published by Martina Grom and Toni Pohl it seems that "the Belgians" have been very busy on Twitter as well during the entire event. Unknowingly we made it into the top of the statistics. Make sure to check out the full report here.
I had a fantastic time at the event and I am already looking forward to the 2015 edition of IT/Dev Connections! From what I heard more about that will be announced soon!
Until next time.
Yesterday Microsoft has made available Cumulative Update 3 for System Center 2012 R2 Configuration Manager.
Details on the issues that were fixed, and other additional changes introduced by this CU, can be found here: http://support.microsoft.com/kb/2994331
As we saw with earlier Cumulative Updates the changes related to Powershell are documented in a separate article. Read more about those here: http://support.microsoft.com/kb/2999304
Stay tuned for more details on how to implement this CU soon.
To be able to demonstrate Unified Device Management scenarios we recently added some new mobile devices to our demo environment. Amongst these devices are also iPads and iPhones which we had to enroll. The integration between Windows Intune and System Center 2012 R2 Configuration Manager was done earlier on.
Over-the-air enrollment of iOS devices is a rather straightforward process. In this blog post we will outline the step by step procedure to enroll an iPhone.
Time to fire up our iPhone 3GS and get started:
First you need the get the Windows Intune Company Portal app from the App Store. Be aware that this app can only be installed on devices that are running iOS 6 or a later version.
As soon as the Company Portal app is opened you will have to provide your user credentials and tap Sign In. We have ADFS implemented in our demo environment so we provide our AD credentials.
So far so good – but at this point our device is not enrolled yet. The notification icon in the top right corner, and the blue ‘i’ icon on the device name indicate there are still further actions to be taken. Tap the icon at the top or the device name at the bottom.
Tap Add this device.
Tap Add in the top right corner.
The device is being enrolled. This may take a minute.
Tap the install button to install the management profile.
A notification is displayed. Confirm by tapping Install Now.
Tap Install in the top right corner.
Profile installed successfully. Tap Done in the top right corner.
And that is all there is to it!
The device then also becomes visible in the ConfigMgr console. Our ConfigMgr administrators are now able to manage this device.
If you encounter any problems during the enrollment process you can shake the iOS device to get a diagnostics screen. Make sure the Company Portal app is running when you start shaking.
A diagnostics dialog box is shown where you can open up the log file for further analysis or email it.
Removing the profile
The management profile can be removed afterwards as well. This is the out-of-the-box behavior. We can block the user from doing this but that is a subject for a future blog post.
To remove the management profile go to Settings > General > Profile – Management Profile.
I hope you found this information helpful.
Until next time!