Category: Azure Information Protection

Part 2 – Define Privileged Desktop & Universal Applications for Enterprise Data Protection

On By Ronny de JongIn Azure, Azure Information Protection, Azure RMS, Cloud, Configuration Manager, Enterprise Data Protection, Enterprise Mobility, Enterprise Mobility Suite, Microsoft Intune, System Center, Windows 10, Windows Information Protection, Windows Mobile 102 Comments

My very first challenge – which was in my modest opinion the hardest part – with Enterprise Data Protection (EDP) was defining protected applications in a correct way. Many of you including myself were struggling how to define restricted applications.

image

In a serie blog posts I will provide some guidance how EDP works and how to configure protected apps, Configuration Manager and Microsoft Intune.

In this blog I’ll explain how you can retrieve the mandatory information required in order to define protected applications for your Enterprise Data Protection policies.

Continue reading “Part 2 – Define Privileged Desktop & Universal Applications for Enterprise Data Protection”

Blog series: Protect your Company Data using Enterprise Data Protection (EDP)

On By Ronny de JongIn Azure Information Protection, Azure RMS, Cloud, Configuration Manager, Enterprise Data Protection, Enterprise Mobility Suite, Microsoft Intune, System Center, Windows 10Leave a comment

Recently I had the chance during a technical Friday jam session to play around with Enterprise Data Protection (EDP) with some other geeks .

EDP

In short Enterprise data protection (EDP) helps to protect against potential data loss without interfering end-user experience. EDP also helps to protect enterprise apps & data against accidental data loss on enterprise-owned devices, including personal devices that end-users bring to work without requiring changes to your environment or other apps.

Although EDP is introduced with Windows 10 release, the underlying technologies are common known. EDP is primary relying on Encrypted File System (EFS) and AppLocker. In a serie blog posts I will provid some guidance how EDP works and how to configure protected apps, Configuration Manager and Microsoft Intune.

Note!

Enterprise data protection is currently being tested with a number of enterprise customers, and will become available to Windows Insiders soon.

Stay tuned!

Part 1 – Introduction: Windows 10 Enterprise Data Protection – Under the hood…

On By Ronny de JongIn Azure Information Protection, Cloud, Enterprise Mobility, Enterprise Mobility Suite, Microsoft Intune, Windows 10, Windows Information Protection25 Comments

UPDATE: Enterprise Data Protection is available again from Windows 10 Version 1511 rs1 builds if you want to test Enterprise Data Protection!

UPDATE: Stay on Windows 10 Version 1511 th2 build 10576 if you want to test Enterprise Data Protection!

In this blog I’ll cover a brand new Windows 10 feature, Enterprise Data Protection (EDP). The Microsoft Intune product team recently announced EDP policies as part of the Intune October service update. With this update you’re able to create and deploy configuration policies for Windows 10 enterprise data protection (EDP) settings, such as the list of apps that should be protected by EDP, enterprise network locations, protection level, and encryption using the new Windows 10 Enterprise data protection template.

Win10_CheckIn_Partner_ Training_20150807

In a series blog posts I will provide some guidance how EDP works and how to configure protected apps, Configuration Manager and Microsoft Intune.

In this blog I’ll show you how to configure and apply EDP to your Windows 10 devices. Including some experiences from the field.

Continue reading “Part 1 – Introduction: Windows 10 Enterprise Data Protection – Under the hood…”

The Enterprise Mobility Suite Portal Survival Guide

On By Ronny de JongIn Azure, Azure AD, Azure Information Protection, Cloud, Enterprise Mobility, Enterprise Mobility Suite, Microsoft Intune, Mobile Device Management, Office 365Leave a comment

survival-guide I’m more than happy being your tour guide for today and walkthrough the various portals that the Microsoft Enterprise Mobility Suite (EMS) houses. For those who are involved with EMS, this might be a handy overview of all current available portals. I often heard  that it is not always clear which portal you need and where you can find it. In this blog I’ll do my best to cover all the portals including their purpose.

Continue reading “The Enterprise Mobility Suite Portal Survival Guide”

ICYMI: 50 Enterprise Mobility tips you should consider!

On By Ronny de JongIn Azure AD, Azure Information Protection, Cloud, Enterprise Mobility, Enterprise Mobility Management, Enterprise Mobility Suite, Mobile Device ManagementLeave a comment

iot

Last weekend Rob Tiffany announced a fun but just as usefully 50 enterprise mobility tips twitter live stream. If you’re doubting how to address Enterprise Mobility in your company, these 50 pointers should give you a good start to feel comfortable and start embrace Enterprise Mobility.

I’ve tried hard to create my favorite top 5 Enterprise Mobility tips – but I didn’t make it…

Continue reading “ICYMI: 50 Enterprise Mobility tips you should consider!”

Assign EMS licenses based on Local Active Directory Group Membership

On By Ronny de JongIn Active Directory, Azure, Azure AD, Azure Information Protection, Cloud, Enterprise Mobility, Enterprise Mobility Suite, Infrastructure, Intune, Microsoft Intune4 Comments

 

 

As all roads lead to Rome there are many ways to assign Enterprise Mobility Suite (EMS) licenses to end-users. This can be a manual process or automated by using PowerShell. Both options have in common that you must be a global administrator of your Azure subscription to assign these licenses.

The majority of the available public resources and publications describes the (manual) process bassed on per user- or group assignment through the Azure Management Portal. Downside of assigning EMS licenses through the Azure Management Portal or by PowerShell is that you must be a member of the global administrator user role. A right you want to keep to a limited number of accounts, further these accounts are often not responsible for such tasks as assigning licenses.

Continue reading “Assign EMS licenses based on Local Active Directory Group Membership”

Get in touch with the Microsoft Enterprise Mobility Suite ‘blackbelt’s’ and drop your feedback!

On By Ronny de JongIn Azure, Azure AD, Azure Information Protection, Cloud, Configuration Manager, Events, Microsoft Intune, Windows Phone 8.1Leave a comment

we-started-our-day-at-building-33-which-is-next-to-building-34-which-is-where-ceo-steve-ballmer-works

I’m very excited having the opportunity to meet the product teams on Enterprise Mobility Suite (EMS) during a 4-day stay in Redmond (WA) next week! As my employer Inovativ is participating in the Red Carpet Program we’re invited to join the Enterprise Mobility airlift. An airlift is an event which outlines new features being released in a new wave/product release. This airlift includes deep dive sessions on Azure AD Premium, Microsoft Intune and Azure RMS. As Microsoft Partner we’ll be lined up with the latest technology and have the chance to discuss and provide feedback on the components involved with the Enterprise Mobility Suite.

Further I’m looking foward to meet some community friends in person like Mr. ‘IoT’ and ‘Enterprise Mobility’ Rob Tiffany. I let me assure that the coffee is ready at Satya’s office ;-)

So I challenge you to collect your best feedback and questions on Azure AD Premium, Microsoft Intune, Azure Rights Management and bring it on, I’ll forward them to the PG’s! You can drop me a line by Twitter, Facebook or by e-mail

Continue reading “Get in touch with the Microsoft Enterprise Mobility Suite ‘blackbelt’s’ and drop your feedback!”

Assign Enterprise Mobility Suite licenses– Quick Reference Guide

On By Ronny de JongIn Azure, Azure AD, Azure Information Protection, Cloud, Microsoft Intune, Office 365Leave a comment

Just drop you a quick line how to assign Enterprise Mobility Suite licenses to end-users. This is is a straight forward process with an one-stop-shop!

1. Sign into the Azure Management Portal as the global administrator of the directory you wish to customize.
2. Click on Active Directory, and then select the directory where you want to assign licenses.
3. Select the Licenses tab, select Enterprise Mobility Suite, and then click Assign.

clip_image002[4] Continue reading “Assign Enterprise Mobility Suite licenses– Quick Reference Guide”