Configure Android for Work Binding for Microsoft Intune

clip_image001[6]

Step 3- Log in to Google using your Google Account.
On Google’s sign-in page, enter the Google account that will be associated with all Android for Work management tasks for this tenant

clip_image002[4]

Step 4- Finally Click Confirm Tab to Complete the BIND of Android for Work with Microsoft Intune portal.

clip_image003[4]

Step 5- Click Complete Registration.

clip_image004[4]

Step 6- After the Registration Completes, you can see the Integration status of Android for Work + Microsoft Intune. Once the Sync is Complete, you will be able to visible Work Application you have purchased under Volume Purchased App Location. Check Figure 7.

clip_image005[4]

Step 7 – Volume Purchased App Location as below. All the apps which you have purchased can visible in the below location

clip_image006[4]

Note- The same method you can use for iOS Devices as well and all the Apple Volume Purchase Program (Apple – VPP) can integrate too.

How to Manage Rooted Devices Using Intune Mobile Application Management Policies

Hello,

In this Blog I am going to show you how we identify the Rooted devices which your users are using in your environment. This is basically covering under Microsoft Intune Mobile Application Management feature. Basically, here we protect LOB Apps using MAM Policies but WITHOUT Enrolling it with Intune. So how we do this ?

It is very straight Forward.

Step1- Create an Application Policy based on my Previous Blog Article which mentioned HERE.

Step2- On the Policy Configuration Tab, Configure the below option in case if you need to identify the Rooted devices. In this scenario, I am going to use the Android Device which I have rooted using Cynogen Mode :).

Note- In case if you Don’t want Users to Access using the Rooted devices, You can simply Block them even without letting them to open any of the LOB Documents.

clip_image001

Step 3- Once you configured Policies based on the above way, you will get a Notification on the Dash Board Under the Flagged Users area as shown in below screen.

clip_image002

Step 4- Further, when you click the Flagged User Tab, you can find the User and the Device Details as follows.

clip_image003

Step 5- In case if you Block the Rooted Device for users you will get a notification like this in your device.

clip_image004

Hope the above step gives you some idea how to manage Rooted Devices.

Thanks

Protect line-of-business apps and data on devices that are not enrolled in Microsoft Intune

Note- Before you add the Line-Of-Business Apps to the MAM Portal, make sure to WRAP it using Android App Wrapper Tool.

https://docs.microsoft.com/en-us/intune-classic/deploy-use/decide-how-to-prepare-apps-for-mobile-application-management-with-microsoft-intune

Step-1 Go to https://Portal.Azure.com and search for Intune Mobile Application Management

clip_image001

Step2- Go to App Policy and Create a New Policy using Add a Policy Option

clip_image002

Step 3- Type a Name to the Policy and Select the Mobile Platform Version. So in my case I have selected the platform as Android.

clip_image003

Step 4- After that finished just add the Application which you want to Manage. By default, there are few applications available and in case if you have inhouse developed application, you can add it as well. In this case I am going to add a custom application.

clip_image004

Step 5- Click More Apps and Type the Package ID which basically goes as com.app.xxxxxxx. This you can get from the developer. Package ID is the identifier for your LOB app. Once you add the wrapped app in to the More Apps, you will be able to see it listing down in your Application list.

image

Screen clipping taken: 07/06/2017 14:54

clip_image006

Screen clipping taken: 07/06/2017 14:42

Step 6- Once that is completed, Next you have to configure the policies for your Application. Basically in here you can configure all the policies you want to bind with your app. Click Create option once you completed these configurations.

clip_image007

Step-7- Once the policy creation is done, you must assigned the users to the same policy. The user who is signed in to this app will get all the policies you have define in this policy settings.

clip_image008

Step 8- Click Assignments to Add user Groups. In my case I have a separated user group for Android users only. Click Select Option to add the user groups.

clip_image009

Step 9- Once the above completion is done you must install the LOB app in to your device and try to access it and see how the behaviour is and further the policies you have define is working or not.

In addition to that on the main page you will get all the notification for these and even if user is using a Rooted device, you will get the notification under Flagged Users View.

clip_image010