Microsoft Intune product family

/ Uncategorized/ 0 comments

High-level architecture

Source: Microsoft

Overview

Intune

  • Intune – Microsoft’s device management product family
    • Device configuration – define settings, behavior and customize devices
    • Data protection – Control access, interaction and deletion of company data on (un)managed devices
    • App management – Deploy apps and configure application related settings
  • Intune Suite
    • Core capabilities – Cross-platform endpoint management, security, analytics and Microsoft Configuration Manager + Intune
    • Tunnel for MAM – VPN solution for iOS and Android without device enrollment (through app)
    • Management of specialty devices – Manage special, purpose-built devices (AR/VR headsets, digital signange, meeting room devices)
    • Remote Help – Remote assisstance for helpdesk
    • Endpoint Privilege Management – Feature for elevation management in Windows
    • Advanced Endpoint Analytics – Collect and analyze data from endpoints, anomaly detection
    • comming soon: Windows driver and firmware managrment (June 23 / GA: Nov 23)
    • comming soon: advanced app management and patching (June 23 / GA: Nov 23)
  • MDM and MAM – Mobile Device Management and Mobile Application Management
  • Autopilot – Enterprise capability to setup Windows for organizational use
  • Graph API – Gateway to data and intelligence in Microsoft 365
  • Windows Update – Built-in service for Windows to download and install updates
    • Windows Update for Business deployment service** – Allows organizations to control and manage the Windows Update deloyments to their devices
  • Apps
    • Apple App Store
    • Google Play Store
    • Microsoft Store
  • Endpoint analytics – Analyze and improve the performance and health of the devices
  • Intune Data Warehouse – Access historical and current Intune data through the OData standard
  • Log Analytics – First-party log storage and query product
  • Microsoft Configuration Manager – Predecessor of Intune, server-based
    • Co-management – Enable clients which are managed through ConfigMgr to use workloads from Intune
  • Mobile Threat Defense connector – Integrate data from a Mobile Threat Defense vendor as data and intelligence source
  • Network Access Control partner – NAC integration which controlls access to corporate network or VPN

Azure AD (Entra) – Identity and access management

  • Azure AD – Microsoft’s central identity provider
    • Conditional access – control access to organizational resources by evaluating signals

Defender – Security

  • Defender Antivirus
  • Defender Suite
    • Defender for Endpoint
    • Defender for Identity
    • Defender for Office 365
    • Defender for Cloud Apps
Post Views: 253
Share this Post

Leave a Comment

Your email address will not be published. Required fields are marked *

*
*