Forum Discussion
Intune BYOD examples
I am jumping into creating a BYOD configuration for IOS and Android devices. Are there examples out there of how others have set this up? Kind of a guide with examples? Thank you in advance.
1 Reply
Hi,
first we have to understand the different kinds of configuration
MDM - Mobile Device Management - configure the whole device
MAM - Mobile Application Management - configure only apps and data usage (for BYOD).
We usually configure those points:
- MDM Authority: Intune is already set as an MDM instance.
- Device Automatic Enrollment: Automatic enrollment is configured correctly.
- Create Groups for Differentiation by: MAM/MAM, DEV/TEST/PROD, Android/iOS
- Enrollment Device Platform Restrictions
- Enrollment Device Limit Restrictions: Standard policy, possibly adaptation for BYOD.
- Conditional Access Policy: MFA and App Protection required for access to Office 365 for Android /iOS
- Enrollment profiles: iOS: BYOD profile only. Android: BYOD
- Compliance Policies: Different requirements for MDM and MAM.
- Configuration Policies: Not used because of MAM. Only for MDM devices (not for BYOD).
- App Protection Policies: Protection of company data within the apps.
- App Configuration Policies: example Outlook and the usage of native apps. for specific app settings.
- AppsUse this as checklist and try it.
https://learn.microsoft.com/en-us/intune/intune-service/fundamentals/deployment-guide-enrollment-mamwe
https://cloudinfra.net/initial-setup-of-microsoft-intune-mam-mdm/
BR
