Sign in to the Microsoft Intune admin center and go to Apps > App configuration policies > Add. This app configuration policy for supervised devices is applicable only to managed devices and should be targeted for ALL managed iOS devices as a best practice. Configure Supervised Mode via Microsoft IntuneĬonfigure the supervised mode for Defender for Endpoint app through an App configuration policy and Device configuration profile. This gives end-users a seamless experience while still being protected from phishing and other web-based attacks.Īdmins can use the following steps to configure supervised devices. It can also provide Web Protection without setting up a local VPN on the device. The Microsoft Defender for Endpoint on iOS app has specialized ability on supervised iOS/iPadOS devices, given the increased management capabilities provided by the platform on these types of devices. In the app information page that is displayed, in the Monitor section, select Device install status to verify that the device installation has completed successfully.Ĭomplete deployment for supervised devices In a few moments, the Defender for Endpoint app should be created successfully, and a notification should show up at the top-right corner of the page. In the Review + Create section, verify that all the information entered is correct and then select Create. The selected user group should consist of Microsoft Intune enrolled users. You can then choose the user group(s) that you would like to target Defender for Endpoint on iOS app. In the Assignments section, go to the Required section and select Add group. Review the rest of information about the app and click Next. Select iOS 15.0 as the Minimum operating system. In the search results section, click on Microsoft Defender and click Select. On the Add app page, click on Search the App Store and type Microsoft Defender in the search bar. In the Microsoft Intune admin center, go to Apps > iOS/iPadOS > Add > iOS store app and click Select. ![]() It can be skipped for the zero touch (silent) onboarding.ĭeployment steps (applicable for both Supervised and Unsupervised devices)ĭeploy Defender for Endpoint on iOS via Microsoft Intune Company Portal. User Enrollment setup (only for Intune User Enrolled devices) - Admins can deploy and configure the Defender for Endpoint app on the Intune User Enrolled devices also.Ĭomplete onboarding and check status - This step is applicable for all enrollment types to ensure app is installed on the device, onboarding is completed and device is visible in the Microsoft Defender portal. This step is not recommended in Zero touch configurations. ![]() Auto Onboarding of VPN - Defender for Endpoint VPN profile is automatically set up without having the user to do so during onboarding.Zero touch (Silent) Onboarding - App is automatically installed and activated without the need for users to open the app.Control Filter - Provides Web Protection without the local loopback VPN.Īutomated Onboarding setup (only for Unsupervised devices) - Admins can automate the Defender for Endpoint onboarding for users in two different ways:.App is automatically installed and activated without the need for user to open the app. Zero touch (Silent) Control Filter - Provides Web Protection without the local loopback VPN and also enables silent onboarding for users.This step is not needed for VPP (volume purchase) apps.Ĭomplete deployment (only for Supervised devices)- Admins can select to deploy any one of the given profiles. Microsoft Defender for Endpoint on iOS is available in the Apple App Store.ĭeployment steps (applicable for both Supervised and Unsupervised devices)- Admins can deploy Defender for Endpoint on iOS via Microsoft Intune Company Portal.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |