Enforcing Mobile Device Management

Mobile device services from Microsoft offer users conditional access, access to services in exchange for allowing their devices and data to be managed by their organizations. The services address users who are increasingly taking advantage of bring-your-own-device (BYOD) programs, a practice that has rendered management of mobile devices more problematic than it has been for PCs imaged and deployed by organizations. However, Microsoft offers a mix of management tools online, and to a lesser degree on-premises, with different capabilities and device reach. Organizations should plan their mobile device management solutions to minimize data loss, risk, and compliance issues.

Getting Some Control Over User-Provided Devices

Mobile devices, whether they are BYOD or company-owned and personally enabled, bring new management challenges with them. These devices are often purchased by end users, removing the ability for an IT department to configure or secure them before they are deployed. This contrasts with traditional Windows PCs, which organizations typically set to a standard configuration through drive imaging and maintain in that configuration remotely through Active Directory (AD) and Group Policy (GP).