Microsoft Intune App Protection for Windows (MAM for Windows)

preview_player
Показать описание
In this brief tutorial, I'll be keeping it light and breezy, discussing:

The What: MAM for Windows in plain English.
The Wow: Its slick features and how they’re a game-changer.
The How: Quick guide to set it up without breaking a sweat.

It's Windows security and data protection done right!

0:00 What's the problem?
1:24 What's the solution?
2:15 Create a policy for Windows
4:00 Create a CA policy to enforce MAM for Windows
6:00 Test it out
8:11 Conclusion?
  1. Dean Ellerby MVP
  2. Microsoft Intune
  3. Microsft Intune
  4. Intune App
  5. Intune Application
  6. App Protection
Рекомендации по теме
Microsoft Intune App 0:09:04

Microsoft Intune App Protection Policies demo and discussion

Microsoft Intune App 0:09:01

Microsoft Intune App Protection for Windows (MAM for Windows)

How to set 0:12:28

How to set up App Protection Policies in Microsoft Intune

Microsoft Intune App 0:33:01

Microsoft Intune App Protection Policies with policy assurance

How to Manage 0:14:12

How to Manage Personal Smartphones in Microsoft 365

Configuring Intune App 0:04:22

Configuring Intune App Protection

How to set 0:10:06

How to set up App Protection Policies in Microsoft Intune || Intune Tutorial Series || Part 17

App Protection Policies 0:25:06

App Protection Policies in Microsoft Intune

Intune App Protection 0:21:19

Intune App Protection Policy | Intune MAM

S02E27 - Configure 0:51:02

S02E27 - Configure Conditional Access & App Protection Policies for iOS in Microsoft Intune - (I...

Application Protection Policies 0:14:01

Application Protection Policies - Microsoft Intune

How to protect 0:17:02

How to protect data and secure devices with Intune [App Protection Policy] 📱🔒

Client apps Android 0:04:56

Client apps Android App protection policies - Microsoft Intune Training Series video No#89

Microsoft Office 365 0:07:29

Microsoft Office 365 Administrator Episode#07 Microsoft Intune App Protection Policies

Microsoft Intune App 0:26:22

Microsoft Intune App Protection Policy - A complete Demo - MS Intune Training Series video No#114

Microsoft Intune Suite 0:33:22

Microsoft Intune Suite - Deploying Apps, Updates & Managing Security!

Client apps Windows 0:06:49

Client apps Windows 10 app protection - Microsoft Intune Training Series video No#90

Microsoft Intune From 0:39:08

Microsoft Intune From Zero to Hero

Lock Down Your 0:22:09

Lock Down Your Microsoft 365: Your Essential Security Policies

Intune Application Protection 0:10:37

Intune Application Protection | Intune MAM

What is the 0:00:20

What is the purpose of Intune app protection policies

What Is Microsoft 0:11:12

What Is Microsoft Intune? (Microsoft Endpoint Manager)

MS Intune MDM 0:09:13

MS Intune MDM App protection policy Demo

07 Intune App 0:21:19

07 Intune App Protection Policy Intune MAM

Комментарии
Автор

My CAP is blocking me from accessing teams online and it's stating I don't have a app protection policy. If you can only define EDGE in the app protection policy, how did you get it to work?

cfizz
Автор

Hi Dean, A unique requirement I am facing, We have a CA policy applied to Windows devices, when accessing the Outlook app it will require BYOD devices to be enrolled and compliant to a compliance policy.. But, when the same user accesses OWA on a internet cafe machine, only a App protection policy needs to apply to that session .. the issue I am facing is that, both the App and OWA reports as a "Browser" to the CA policy.

QuintenMarais
Автор

Thank you, very interesting! Now, I am not sure why I would still use "App Enforced Restrction"...

lasolution
Автор

Hi Dean, very nice tutorial! Just a question: what are the dynamic rules for the 'Personal Device Users ' EntraID Group?

sXRaider
Автор

Hi..
After trying all the steps.. i am getting an error code of 53003.
Test id not able to login chrome browser as per policy APP but getting an error in edge browser.

AutoNagri
Автор

nice one, what is the roadmap for this? Will this only support the browser based scenario or will it extend to the fat apps ?

samv
Автор

The issue I am facing is that the work account gets registered under the local laptop work or school account after the MAM app protection policy for MS Edge is applied locally on the personal Windows laptop. Because of this, the user is able to login to local Teams, OneNote, Onedrive apps under the work account, but these applications cannot prevent copy and paste of information including files to other external applications. The app protection policy does work for the Office products within the Edge browser. How can I prevent the user from logging in to company O365 environment from the locally installed Teams, OneNote, Onedrive applications from the personal Windows laptop but allow all company O365 apps/data from MS Edge where the app protection policy works?

asdf
Автор

Can we enforce a policy wherein end user could not install any software and prompt to have admin rights to install or block them when they try to install non compliance software. Thank you!

leklektv
Автор

What about preventing a user from using the Outlook App on a personal device?

cyphernz
Автор

tried screenshotting? wonder if that works

danzirulez
Автор

Do you need to enable WIP in Automatic Enrollment?

lasolution
Автор

what licnses i need to enable to be able to use MAM>

joblearn
Автор

Hi Dean, I have more than 50 corporate iPad which are not under any vendor ABM or MDM and they all needs to be enrolled under our ABM. Is there any way to bulk enrol the devices under the ABM instead of manually doing it one by one using the Apple Configurator? I am using Intune as a MDM solution. Please suggest. Thanks

i_m_veer_singh
Автор

I'm trying to add Edge app for windows MAM but it says "Can't find any apps". Do you know anything about it?

skoul
Автор

For the policy to take effect, does this require that the user be signed into the Edge browser with work profile/creds?

Mkt