While it’s extensively identified that Apple is having fun with rising use throughout the enterprise, it’s additionally true that worker alternative means most companies should assist a number of platforms. A brand new resolution guarantees to make that job a bit simpler.
Managing hybrid environments with Azure
Jamf is at the moment previewing its new iOS Device Compliance resolution and expects to introduce it later this yr. What does it do?
Microsoft company Vice President Brad Anderson explains:
“Trends like worker expertise alternative applications and the consumerization of IT proceed to develop, and organizations want administration instruments that may adapt and shift to hybrid environments.”
That’s what this resolution gives. It lets IT groups “consolidate administration of worker units, whereas not dropping the power to present key ecosystem-specific performance,” he stated.
iOS Device Compliance depends on Microsoft Endpoint Manager, which may see issues equivalent to compliance standing and system data that relates to the Apple methods.
This isn’t fully new (although assist for iOS is).
It’s important to recall Anderson’s comment last year that Microsoft Office runs on millions of Macs while Office Mobile is in use on more than 90 million iOS and Android devices.
That means it’s reasonable to protect those devices, and the information on them. This is even more vital when you consider how many enterprises are now working remotely as they navigate the COVID-19 pandemic.
How this works
The idea is that in order to access enterprise applications connected with Azure Active Directory, users must first register the device(s) they want to use with those apps (including Microsoft 365 apps).
When they try to register an iOS device, Jamf will gather information concerning device compliance to ascribed security policies, and will share device information with Microsoft Endpoint Manager for review.
The latter will then assess device compliance and then use Azure Active Directory to dynamically grant or deny access. Users will be told what they must do to raise compliance in the event their request is rejected.
Just as on the Mac, the Apple device is managed by Jamf, but access and compliance for that device is handled by Microsoft.
One useful selling point (at least on the Mac) is that devices are not required to pass through the proxy, which makes the protection more robust.
The advantage is that business users should find it easier to run mixed-platform networks and support employee choice programs. IT can use Jamf to manage the Apple devices, while also being able to make use of Azure Active Directory to power Conditional Access settings. That allows only trusted users on security compliant devices to access anything – and IT can even control which apps are able to access this information.
It goes beyond this – IT can also prevent authorized users from using devices that don’t comply with their security policies.
What does Jamf say?
“We know IT teams want the simplicity of managing and securing all their devices within a single pane, while still providing the intended Apple experience employees demand and deserve,” said Jamf CTO Jason Wudi in a statement.
“Jamf and Microsoft have a long history of collaborating to better empower the end user and IT, and today’s announcement of iOS device compliance shows we are committed to continuing to innovate to make the modern management experience better for enterprises growing their Apple fleet.”
Microsoft’s move to support the provision of such protection is another illustration of the extent to which the enterprise IT environment has changed in recent years. It proves that even the Windows developer recognizes it must support multiple platforms, reflecting the vision of Microsoft CEO Satya Nadella.
Please follow me on Twitter, or be part of me within the AppleHolic’s bar & grill and Apple Discussions teams on MeWe.
Copyright © 2020 IDG Communications, Inc.