Intune and ARM

What is Microsoft Intune?

Microsoft Intune is a cloud-based service that focuses on mobile device management (MDM) and mobile application management (MAM). You control how your organization’s devices are used, including mobile phones, tablets, and laptops. You can also configure specific policies to control applications. For example, you can prevent emails from being sent to people outside your organization. Intune also allows people in your organization to use their personal devices for school or work. On personal devices, Intune helps make sure your organization data stays protected, and can isolate organization data from personal data.

What is Enterprise Mobility + Security?

Intune is part of Microsoft’s range of Enterprise mobility tools, these tools are designed to protect your business data across devices. Allowing your business to take advantage of the mobile revolution whilst making sure your data remains in-house and secure from potential security breaches.

Enterprise Mobility is defined into 3 pillars

The EM+S E3 and E5 Suites are also available as part of the Microsoft 365 Suite, which also includes Office 365 and Windows 10 Enterprise.

Mobile Device + Application Management (MDM):  

Keep Microsoft, iOS & Android devices secure business-wide, all from a single interface with Intune.

Mobile App Management (MAM):  

Help your employees stay productive whilst keeping personal and business data separate with Intune & Azure Rights Management

Identity + Access Management (IAM):  

Manage identities across your data centre and the cloud with a mobile device management software solution with Azure AD Premium

What is Azure Rights Management?

Azure Rights Management (Azure RMS) is the cloud-based protection technology used by Azure Information Protection.

Azure RMS helps to protect files and emails across multiple devices, including phones, tablets, and PCs by using encryption, identity, and authorization policies.

For example, when employees email a document to a partner company, or save a document to their cloud drive, Azure RMS’s persistent protection helps secure the data.

  • Protection settings remain with your data, even when it leaves your organization’s boundaries, keeping your content protected both within and outside your organization.
  • Azure RMS may be legally required for compliance, legal discovery requirements, or best practices for information management.

Azure RMS ensures that authorized people and services, such as search and indexing, can continue to read and inspect the protected data.

Ensuring ongoing access for authorized people and services, also known as "reasoning over data", is a crucial element in maintaining control of your organization's data. This capability may not be easily accomplished with other information protection solutions that use peer-to-peer encryption.