My Journey: How to Enroll and Manage Mobile devices in #MEM — Part 2
“Difficult roads always lead to beautiful destinations.” — Zig Ziglar
We covered on part 1 of the blog post — No matter how negligent or democrat we are on our day to day personal or business-related decision we want to protect our data. But our Mobile devices make us vulnerable and become a weak link to data loss.
We have gone via step-by-step guide for iOS/iPad device enrollment preparation from MEM — how to generate and save the push certificate into the MEM admin center.
Intro:
Personal Device or Bring your own device (BYOD) refers to bringing your own devices to the workplace in addition to Company owned devices. The utilization of BYOD is growing as people are increasingly become more attached to a specific type of mobile device model or functionality.
Now on Part 2
iOS/iPad — BYOD Device Enrollments — Process on the Personal device
How we start
ON your iOS/iPad
- Open App Store — and search for Company Portal
2. Download the Company Portal — when the download finish open the App
3. Sign In
Note: Authenticator App
But if you are a situation where you can’t access your Authenticator App select -”I can’t use my Microsoft Authenticator app right now”
4. After you authenticate your account — select Continue
Tips: if you have a problem authenticating– follow the steps and links under Lesson Learned part of the blog
5. Click OK
Allow for Company portal to send you notification — this allows you when a new software or new status has been added to the device
😊 Now the fun part begins — all the above process is a process to start the Company portal the real configuration starts step 6
6. Review Privacy Information — select Begin
Under device management and your privacy, you can see what your company is going to have access or visibility to your device — There are two options
Can’t
Can
I am on my DEV environment so, I select Can view the listed parameters and click Continue 😊
Revision completed — you will pass to the next stage click — Continue
7. Download Management profile
This section to the web portal for the Company portal App and
You will see a pop requesting permission to complete the download — Click Allow
You will receive a notification when the profile is downloaded — to complete the next step
8. Install Management Profile
a) Go to your apple Device Setting -> General — Profile
b) Click on Manage Profile and on the new opened window click Install
Tip: Insert your regular pass code — if you set one
Confirm on the new pop-up window to install the profile
c) You will get another request to install “Microsoft Intune Root Certification” — Click install
A pop up window will appear to request and confirm your Trust to the remote management
😊 good time if you don’t want your device to be managed and enrolled to MEM/Intune
I also quote Simon Binder, this is also to protect you from unknowingly giving control to your device enrollment and unenrollment process also to keep the integrity of your personal device intact.
d) If you got your green check mark — Verified click Done and return to the Company portal app
If you look on your profile you got the fancy staff that allows your company mange your device and you each signed an agreement to TRUST each other
Pop up window request — if you have an authenticator app to be managed by your company
Tip: if your company has a passcode requirement you will be requested to change it — this is part of the configuration process for the Company Portal. Now the device is managed by the company we have to full fill all the requirement to get access to resources
We are almost there
9. Check Device Settings
On my Dev environment I have a test scenario defined and I have the following errors
a) Set password — fixed by setting up a password — Done
b) Update your operating system — 😊 this took me a while to figure it out
- When I am working with my mentors to see if devices with certain operating system version will be allowed or rejected into the environment, we set up the apple OS version to 15. I even updated the software not knowing or reading the instructions properly but after a few hiccups I lowered the version to 14, checked the latest and greatest while I am writing blog post the iOS/iPad OS version is 14.6
c) Check Device Again — Done
10. Chose the best category for this device — working on this — select and continue
Tips: Device Category you can choose if you have already set up label — this helps you to dynamically choose a device group reference Link — https://docs.microsoft.com/en-us/mem/intune/enrollment/device-group-mapping
Complete
Lesson Learned,
While working on the blog post I have experienced
Company portal Temporarily unavailable error and retrying didn’t solve the issue, but I managed to send a Log file to @IntuneSuppTeam and received a link for Troubleshooting. Impressed with the quick reply and support from the team.
- You can email the log files by emailing it directly
- Troubleshooting Link — https://msft.it/6010nqzF2
Useful Links — For Part 2
- https://docs.microsoft.com/en-us/mem/intune/enrollment/device-group-mapping
- https://msft.it/6010nqzF2
- https://support.apple.com/en-us/HT203512
- https://support.apple.com/en-us/HT204477
Useful Links — From Part 1
https://docs.microsoft.com/en-us/mem/intune/user-help/enroll-your-device-in-intune-ios
Recommendation
· Scott Duffey — https://www.learningmem.com/
· Daniel Engberg News Letter — https://www.danielengberg.com/
Reference for Learning
- https://docs.microsoft.com/en-us/learn/
- https://app.pluralsight.com/ — Free for Azure courses
- Thomas Maurer — Cloud and Datacenter
Always let me know.
1. If you have any questions, please do not hesitate to reach out.
2. If you want me to cover a topic.
3. If you are struggling in finding your next step in your career, we will work together to find your journey and find the right mentors to connect to
OR
You want a study buddy — Let me know Love to Help!
E-mail: blacklionm@protonmail.com
Twitter: @Blacklionm1
#Blacklionm1 #MEM #WomenITpros #Immigrant #Dreamer #microsoftcertification #certification #Intune #MEM #MDM #MobileDeviceManagement #Microsoft
Especially thank you to the people who laid the foundation for my journey and the road map to my career.
