Moving MDM from Intune to Office 365 *update*

For years I’ve been a Office 365 user and earlier this year and every few months (of sometimes weeks Knipogende emoticon ) new features arrive in the Office 365 Management Portal. Since a couple of months it’s possible to do some (basic) MDM stuff with Office 365.

Since I’m a big fan of Microsoft Intune I prefer to use Intune to do my Mobile Device Management, but sometimes the MDM capabilities will do. In my demo environment I was using Intune, but if I want to switch my MDM Authority to Office 365 there is (at this moment) no automated way to do this.

 

image

To change the MDM Authority you have to contact Intune Support (thanks to Henk Hoogendoorn for the tip) to let them flip the switch for you. The procedure is quiet easy, just follow the steps on the Intune Support website.

  • First you have to select the correct problem type (Service Administration), after which you can select the category Reset mobile device authority. When you click the Start Request button just follow the wizard to create the change.
    image

 

  • A few moments after you submitted the incident you will receive a confirmation email (check the email address you enter during the process).
    SNAGHTML87f8048

 

  • Next up is an email with some questions you should answer. The support engineer would like you to confirm your tenant ID, asks you to retire all devices and remove some stuff from the Intune Admin Console.
    SNAGHTML881d583

 

  • After I send the confirmation and answering the asked questions a few hours later I received another email stating that the request have been submitted to the engineers. It also warns me not to configure my Intune subscription during the process. Doing this prematurely may cause corruption and/or impact your ability to use Intune.
  • This step can take up to 5 days, but typically occur within 1 business day.

The following was added on August 13th:

  • On August 11th I received a reminder that the Intune Support team is still working on resetting the MDM authority for me….and finally two days later I received a phone call from the Microsoft US telling me that the MDM authority had been reset. A few hours later I also received the confirmation through email….
    SNAGHTML9d1c8fd[4]
  • So when I checked my Office 365 Portal again, I was indeed able to enable Office 365 as may MDM Authority! Yeah!
    image

 

In the end the entire process took about 7 business days.

New version of Microsoft Intune arrives this week!

Last week I already wrote a short blog about an issue I ran into, but today everything became clear. They were probably doing some last testing of the new Microsoft Intune portal, because earlier today Microsoft has announced it will release a service update (read: new Microsoft Intune version) between today (November 17th) and Wednesday (November 19th) that will bring us some cool new stuff to Intune (cloud only!).

This are the new features:

  • Enhanced user interface for Intune administration console
  • Ability to restrict access to Exchange on-premises email based upon device enrollment
  • Bulk enrollment of devices using a single service account
  • Lockdown of Supervised iOS devices and devices using Samsung KNOX with Kiosk mode
  • Targeting of policies and apps by device groups
  • Ability to report on and allow or block a specific set of applications
  • Enforcement of application install or uninstall
  • Deployment of certificates, email, VPN and WiFi profiles
  • Ability to push free store apps to iOS devices
  • More convenient access to internal corporate resources using per-app VPN configurations for iOS devices
  • Remote pin reset for Windows Phone 8.1 devices
  • Multi-factor authentication at enrollment for Windows 8.1 and Windows Phone 8.1 devices
  • Ability to restrict administrator access to a specific set of user and device groups
  • Updated Company Portal apps to support customizable terms and conditions

Also, as part of this service update, you’ll notice that all references to Windows Intune have been updated to Microsoft Intune. This name more accurately represents Intune’s cloud-based mobile device management (MDM) and mobile application management (MAM) capabilities across iOS and Android platforms, as well as Windows.

Since Intune if, off course, Cloud based….they can’t update everything at once. You can check on which service instance your Intune subscription is running by opening the Intune Administration Console and click on the Administration tab (on the bottom left) and press the View Service Status link.

image

A new page will open and at the top of that page you can see on which service instance your subscription is running.

image

My subscription is running at North America 05, so I’m in the first Scheduled Maintenance time slot.

Source : Intune Blog

New version of Microsoft Intune arriving soon?

Tonight while I was working on the last slides of my Microsoft Intune demo tomorrow morning, Microsoft decided that it was time to launch the new version of Microsoft Intune. Microsoft already showed the new version at TechEd Europe a couple of weeks ago, but it looks like their launching it as we speak. Too bad the new interface isn’t quiet ‘working’ yet, so after a short ‘loading’ I’ll receive en error.

When the new version is completely available, I’ll probably will blog about it some more….

Current Version (November 13, 2014 –  23:00 CET)

image

image

 

Old version (November 13, 2014 – before 22:30)

image

New version (screenshot from TechEd Europe, available later today?)

image

image