Forum Discussion
MAM without enrollment.
Hi All,
In my environment, AirWatch is used as the MDM solution for corporate Devices.
I understand, Intune MAM policies will apply for user identity not for device identity. Assume a scenario, whereas the same user in my organization is having both corporate and BYOD device, So if apply a MAM policy to a user, will it apply to the managed apps in both corporate and BYOD device ?
If yes, is there any way where I can deploy the separate MAM policies with different data protection settings to control the managed apps in both corporate and BYOD device used by the same user identity?
5 Replies
- My blog about this topic (managed vs unmanaged) will show you what you will need to know and configure
https://call4cloud.nl/2021/03/the-chronicles-of-mam/- Rudy_Ooms_MVP Nathan Blasac
Thank you for your response. I have rephrased my question. Please provide your inputs.
Actually the devices provided to users by my company are enrolled in AirWatch not in intune. My users BYOD devices are also not enrolled in Intune.
In this case, How can we apply two separate App protection policies to the same user identity configured in the device provided by company and his own device.- You can connect Airwatch as MDM provider to Azure AD. I don't know if devices are created in Azure AD when you do that. But if that's the case, you might be able to create a group with all Airwatch managed devices to assign one app protection policy and create one app protection policy for all devices and exclude the Airwatch managed devices
You can indeed separate MAM policies by targetting "Managed" and "Unmanaged" devices from within the app protection policy. Further, if you have two competing policies on the same user,
I ran into a similar request.
https://nathanblasac.com/how-to-enforce-a-particular-application-protection-mam-policy-managed-vs-unmanaged-devices-71eb9cb219c8
