From the course: Career Essentials in System Administration by Microsoft and LinkedIn

Endpoint Manager

From the course: Career Essentials in System Administration by Microsoft and LinkedIn

Endpoint Manager

- [Educator] Microsoft Intune is a 100% cloud-based mobile device management and mobile application management provider for apps and devices. You can control features and settings on Android, Apple iOS, macOS, and Windows 10 and 11 devices. Configuration Manager is an on-Premises management solution to manage desktops, servers, and laptops that are on your network or internet-based. You can cloud enable it to integrate with Intune, Azure Active Directory, Microsoft Defender, and other cloud services. You can use Configuration Manager to deploy apps, software updates, and operating systems. If you're ready to move some tasks to the cloud, consider Co-management. Desktop analytics is a cloud-based service that integrates with Configuration Manager. It provides inside and intelligence for you to make more informed decisions about the update readiness of your Windows clients. It provides information on security updates, apps, and devices in your organization. Windows Autopilot sets up and pre-configures new devices, getting them ready for use. As part of Endpoint Manager, use Autopilot to pre-configure devices and automatically enroll devices in Intune. You can also integrate Autopilot with Configuration Manager and Co-management for more complex device configurations. Azure Active Directory is used by Endpoint Manager for identity of devices, users, groups, and multifactor authentication. Azure Active Directory Premium, which may be at an additional cost, has additional features to help protect devices, apps, and data. The Admin Center is a one-stop website to create policies and manage your devices. It plugs in other key device management services including groups, security, conditional access, and reporting. The Admin Center also shows devices managed by Configuration Manager and Intune. I'm in the Azure portal at portal.azure.com. And you can see under Azure services, there's an option for Intune, but if I click on it, we can see we're going to get redirected to another location which is now endpoint.microsoft.com. Microsoft Endpoint Manager is the new home for Intune, and is a combined amount of different applications all in one website. And I can get there either by going to the endpoint.microsoft.com or if I'm in the Microsoft 365 Admin Center, in the lower left side, you'll see all the different admin centers, you can click on Endpoint Manager, and this will take you to Endpoint Manager where Intune and all the other applications live. I'm now in the Endpoint Manager Admin Center. And here we see some useful information about the status. We can also click on Dashboard for even more information about our devices. And in this case, I just have the one device and it's a Windows 10 computer but you can see below in the Intune enrolled device areas that we also have the option to add an Android, iOS, PadOS, macOS, Windows mobile, and we can put those all together in one location. We can even click on the device to see more information about compliance and other things that we can do. So we can see it's managed by Intune. It's a corporate device, it's Windows 10, and we can click on hardware, discovered applications, whether or not it's in compliance and other things as well. So we can drill down into each of the devices to see how they're doing. We can also go in and restart, run updates, wipe the entire hard drive if we think it's been compromised or we just need to install a new operating system. I can also go to All Services. And here are all the different services that are included with our Endpoint Manager, such as Endpoint Security, Groups, Surface Management Portal for using a Surface device, desktop analytics, reports, things like that. Then we can go to Devices and here we can add devices, we can look at our devices, and for instance, we can even check it out by various different platforms. If I go to Endpoint Security, we can see whether or not our devices are in compliance with security such as with Defender. We can also check on disk encryption, the firewall, and other issues that will affect the security of our devices. There's also an area that links into Azure Active Directory so we can see the same users and groups that we would see if we were logged into Azure Active Directory through the Azure Portal. Endpoint Manager allows flexibility for managing existing Microsoft cloud and on-premises products you can quickly deploy.

Contents