From BYOD to UYOD

%3CLINGO-SUB%20id%3D%22lingo-sub-1292382%22%20slang%3D%22en-US%22%3EFrom%20BYOD%20to%20UYOD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1292382%22%20slang%3D%22en-US%22%3E%3CP%20class%3D%22lia-align-justify%22%3EWe%20are%20experiencing%20transition%20from%20%3CSTRONG%3EBring%20Your%20Own%20Device%20(BYOD)%3C%2FSTRONG%3E%20to%3CSTRONG%3E%20Use%20Your%20Own%20Device%20(UYOD)%3C%2FSTRONG%3E%20and%20we%20need%20to%20consider%20new%20requirements%20in%20this%20case.%20In%20case%20of%20UYOD%2C%20it%20is%20user%E2%80%99s%20personal%20PC%20and%20they%20have%20their%20own%20private%20data%20and%20information%20there%20and%20they%20might%20not%20want%20administrator%20to%20manage%20them%20or%20force%20to%20use%20Azure%20Account%20or%20connect%20to%20Domain%20%2C%20but%20due%20to%20sensitivity%20of%20jobs%20we%20need%20to%20use%20techniques%20and%20method%20to%20make%20sure%20they%20are%20staying%20safe%20and%20while%20we%20respect%20them%20using%20their%20own%20PC%2C%20we%20protect%20our%20cooperate%20data%2C%20so%20here%20are%20some%20best%20practices%3A%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3E%3CSTRONG%3EManage%20Application%20User%20Account%20Not%20Windows%20Account%3A%3C%2FSTRONG%3E%20You%20could%20set%20policies%20in%20application%20level%2C%20for%20example%20if%20user%20connect%20to%20SharePoint%20online%2C%20we%20could%20set%20policy%20on%20what%20resources%20they%20have%20access%20to%20and%20what%20they%20don%E2%80%99t%20have%20and%20what%20is%20their%20access%20level.%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3E%3CSTRONG%3EProtect%20Your%20Company%20Data%3A%3C%2FSTRONG%3E%20You%20could%20use%20Microsoft%20Azure%20RMS%20or%20any%20other%20Data%20Protection%20service%20to%20protect%20sensitive%20data%20and%20even%20if%20they%20copy%20those%20data%20and%20move%20them%20around%20and%20try%20to%20share%20them%20because%20Azure%20RMS%20has%20been%20enforced%20%2C%20you%20are%20sure%20data%20won%E2%80%99t%20be%20leaked.%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3E%3CSTRONG%3EBe%20Website%20Oriented%3A%3C%2FSTRONG%3E%20We%20are%20leaving%20in%20era%20of%20Web%20Application%2C%20you%20could%20open%20Word%2C%20Excel%2C%20PowerPoint%20on%20web%20browser%2C%20you%20could%20encourage%20your%20users%20to%20use%20their%20browser%20to%20access%20company%20resources%20without%20installing%20any%20app.%20If%20they%20want%20app%20like%20experience%2C%20they%20could%20use%20cool%20new%20feature%20in%20Microsoft%20Edge%20where%20they%20could%20install%20website%20as%20application%20and%20feels%20like%20they%20install%20something%20but%20actually%20it%20is%20website.%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20class%3D%22lia-align-justify%22%3EIn%20UYOD%20%2C%20users%20might%20not%20want%20to%20be%20managed%20by%20company%20because%20it%20is%20their%20own%20personal%20device%20and%20it%20is%20their%20home%20environment%20%2C%20in%20the%20other%20hand%20company%20might%20not%20be%20able%20to%20give%20them%20additional%20device%20and%20they%20might%20not%20be%20able%20to%20get%20one%20quickly.%20However%20they%20still%20want%20to%20work%20with%20their%20own%20device%20to%20get%20their%20jobs%20done.%20In%20this%20case%2C%20we%20need%20new%20management%20style%20and%20it%20is%20managing%20and%20controlling%20users%20and%20data%20on%20untrusted%20and%20unmanage%20device%20for%20long%20time.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Valued Contributor

We are experiencing transition from Bring Your Own Device (BYOD) to Use Your Own Device (UYOD) and we need to consider new requirements in this case. In case of UYOD, it is user’s personal PC and they have their own private data and information there and they might not want administrator to manage them or force to use Azure Account or connect to Domain , but due to sensitivity of jobs we need to use techniques and method to make sure they are staying safe and while we respect them using their own PC, we protect our cooperate data, so here are some best practices:

 

Manage Application User Account Not Windows Account: You could set policies in application level, for example if user connect to SharePoint online, we could set policy on what resources they have access to and what they don’t have and what is their access level.

 

Protect Your Company Data: You could use Microsoft Azure RMS or any other Data Protection service to protect sensitive data and even if they copy those data and move them around and try to share them because Azure RMS has been enforced , you are sure data won’t be leaked.

 

Be Website Oriented: We are leaving in era of Web Application, you could open Word, Excel, PowerPoint on web browser, you could encourage your users to use their browser to access company resources without installing any app. If they want app like experience, they could use cool new feature in Microsoft Edge where they could install website as application and feels like they install something but actually it is website.

 

In UYOD , users might not want to be managed by company because it is their own personal device and it is their home environment , in the other hand company might not be able to give them additional device and they might not be able to get one quickly. However they still want to work with their own device to get their jobs done. In this case, we need new management style and it is managing and controlling users and data on untrusted and unmanage device for long time. 

0 Replies