Endpoint Manager combines services such as Microsoft Intune, with Windows Autopilot, Configuration Manager/SCCM,Desktop Analytics co-management. These services are part of the Microsoft 365 package and help secure devices, manage access, protect data, and thus enable better risk management.
Microsoft Intune
Intune is a fully cloud based mobile device management (MDM) and mobile application management (MAM) provider for your applications and devices. It allows you to control functionality and settings on Android, Android Enterprise, iOS / iPadOS, macOS and Windows 10 devices. As part of Endpoint Manager, Intune is used to create and verify compliance, and deploy applications, features and settings to your devices using cloud.
Configuration Manager
Configuration Manager (SCCM) is an on-site management solution for managing desktops, servers and laptops on your network or on the Internet. You can enable it at cloud to integrate with Intune, Azure ADMicrosoft Defender ATP and other services cloud . Use Configuration Manager to deploy applications, software updates and operating systems. You can also monitor compliance, query and act on customers in real time, and more.
Desktop Analytics
Desktop Analytics is a cloud based service that integrates with Configuration Manager. It provides information and insights to help you make more informed decisions about the availability of updates for your clients Windows. It provides information about security updates, applications and devices in your organization and identifies compatibility issues with applications and drivers.
Windows Autopilot
Windows Autopilot configures and pre-configures new devices, making them ready for use. It is designed to simplify the lifecycle of Windows devices for both IT and end users, from initial deployment to end of life. As part of Endpoint Manager, use Autopilot to pre-configure devices and automatically enroll them in Intune.
Azure AD Premium
Azure AD is used by Endpoint Manager for devices, users, groups, dynamic groups, automatic enrollment, multi-factor authentication and conditional access. These features are essential to protect devices, applications and data.
Benefits
As modern working practices evolve, business and IT departments not only have to manage a wide devices, but also an increasingly mobile workforce. End-users are increasingly accessing corporate corporate data from multiple devices. multiple devices. Somesome being personalwhich which can increase the risks and introduce threats to the company.
Having a centralised device managementplatform is essential fororganisations tomanage their devices .Without it, IT departments not only have to manage a large number ofdevices, but will also need a number of products to ensure security,deploy patches, install and update software and set policies.
Microsoft Endpoint Manager offers a numberof advantages to customers:
- Simplified licenses offer customers a simple way to purchase Endpoint Manager without having to worry about on-premises or cloud baseddevices . Microsoft Intune licenses include ConfigMgr client licenses.
- Customers have the advantage of using ConfigMgr for on-premises devices that are not ready for cloud or can use co-management to share the workload of ready devices. Having both a cloud and on-premises device management solution provides maximum flexibility.
- Finally, the integration of anumber of Microsoft technologies provides more choice and options for business needs as well as a simpler administration console.
Deployment mode
Our published projects around MEM
Complete Digital Transformation: How we helped a company with 1,400 users successfully migrate to M365
Initial situation Our customer, a transport company with 1,400 users, had identified technological improvement opportunities before working with us. They were using a telephony solution that had reached its limits, a document management platform that required security upgrades, and messaging and email services that were out of date.
Improved administrator password security with Microsoft Intune LAPS
Initial situation Our client like many others allows its users to use iMac and iPad for daily tasks. All types of application installation or changes must be done manually on each device. This individual management poses a problem in terms of time, tracking and security. Goal The customer's objective was to be able to [...]
Mac and iPhone/iOS management with Microsoft Endpoint Manager / Intune
Initial situation Our client like many others allows its users to use iMac and iPad for daily tasks. All types of application installation or changes must be done manually on each device. This individual management is problematic in terms of time, tracking and security. Goal The customer's objectives were to [...]
Migration from SCCM/MECM to Intune/MEM - 800 Windows devices
Initial State The process of migrating over from an On-Premise SCCM/MECM infrastructure to Intune/MEM for Modern Workplace Management can be quite a huge task depending on your current MECM infrastructure and also specific roles in which it plays. We find that Co-Management or other hybrid type solutions are indeed a great way to have the [...]
Modern Windows 10 management with Microsoft Endpoint Manager - Intune
Initial situation Our client had an aging IT asset management system running MDT (Microsoft Deployment Toolkit), and wanted to modernize the management and deployment of approximately 200 PCs and Macs. With Microsoft 365 E3 licenses and wanting to move into the Cloud world, our client turned to the "Modern [...]
Articles about MEM
Guide to Azure AD Conditional Access
Conditional Access is one of Microsoft's most powerful security features and the core engine of their Zero Trust architecture. In our opinion it should be the foundation of any Zero Trust strategy for organizations based on cloud. However, if you don't understand how conditional access works, it could bring you a [...]
Will there be a Windows 11?
That's the rumour that's been circulating for a few weeks now, and it looks like the Windows event on 24 June will answer all the questions. According to Michael Niehaus, former Principal Program Manager at Microsoft, it seems that, yes. It is increasingly likely that Windows 10 will become Windows 11. But that really doesn't change much, beyond [...]
What's new in Windows 10, version 2004?
The 2004 version of Windows 10 is now available on Windows Server Update Services (WSUS) and Windows Update for Business. In this article we summarize the main changes in Windows 10 Release 2004 for the Intune and AutoPilot part. For more detailed information we recommend you to read the full article by Joe [...]
Ensuring effective patch management in the WFH (Working from Home) era
The global Covid-19 pandemic has created a sudden and dramatic shift to work-from-home (WFH) that has caught many organisations off guard from a security perspective. Specifically, in the case of patch management, many organisations quickly discovered that their current solutions had to be replaced.
Microsoft Intune vs VMware Workspace ONE
There is a wide range of needs around device management, and every organisation is different. It is therefore important to take stock of these through a detailed analysis. Choosing the right supplier and the right solution can be a complicated process that requires extensive research and often comes down to a simple question of who is the right supplier and who is the right solution.
Microsoft Teams Rooms now supports modern authentication
About Modern Authentication Modern Authentication is a Microsoft generic term for a combination of more secure authentication and authorisation methods between a client (e.g. PC or phone) and a server, as well as some security measures that rely on access policies. It includes: Authentication methods: multi-factor authentication (MFA); authentication by [...]
Let's go further together!
If you have a question or a suggestion, we are at your disposal to answer it by email or by phone.