
Intune MAM and MDM policies
I started looking at MAM policies and how they could better protect our company data if we go the BYOD direction. Reading through the documentataion it sounds like I have to pay attention to were I apply the policy either MDM or MAM
Is it possible to have both MDM and MAM policies applied to the same user at the same time, for different devices? For example, if a user could be able to access their work resources from their own MAM-enabled machine, but also come to work and use an Intune MDM-managed device. Are there any caveats to this idea?
If you apply a MAM policy to the user without setting the device state, the user will get the MAM policy on both the BYOD device and the Intune-managed device. You can also apply a MAM policy based on the managed state. So when you create an app protection policy, next to Target to all app types, you’d select No. Then do any of the following:
Apply a less strict MAM policy to Intune managed devices, and apply a more restrictive MAM policy to non MDM-enrolled devices.
Apply an equally strict MAM policy to Intune managed devices as to 3rd party managed devices.
Apply a MAM policy to unenrolled devices only.
https://docs.microsoft.com/en-us/mem/intune/apps/mam-faq
More Stories
Azure AD and Windows hello for business, SSO for on-premises resources
We disabled WFB when we first rolled out autopilot because we are not ready to deploy and support passwordless at...
Recover Microsoft forms from old users
Microsoft forms are a great way to collect data from the user. However, what happens when the user leaves the...
Creating a document management system with SharePoint
Searching for documents can be a cumbersome and time-consuming task, especially if there is no proper system in place for...
Internal certificates for desktop phones
We are looking at a new cloud based phone system. Most use Poly or Yealink phones, we use 802.1x on...
Intune certificate connector
upgrading to certificate connector 6.2 that is required in Sept 2022, has broke our NDES for intune. I'm collecting all...
Microsoft ATP documentation
We've deployed ATP to our windows workstation, now I'm researching it for our MACs and IOS devices. I pushed it...