![]() Additionally, the debug menu is still accessible. Users can still access the Managed Home Screen settings pane, if configured by IT. Use of this feature ensures that the only action an end-user can take on a signed-out device is to sign in. This is an optional set of configurations to show a sign-in screen to end-users when Managed Home Screen is on the device and no user is signed in. Sign-in screen & wallpaper for sign-in screen The main features Managed Home Screen is releasing alongside their support of Azure AD Shared device mode can be found below. As always, Managed Home Screen can be optionally used on your dedicated devices to provide a locked-down, tailored experience for your end-users, giving them access to a curated set of apps, settings, and more. Microsoft’s Managed Home Screen supports Azure AD Shared device mode and offers customizations specific to this scenario. What are the new Managed Home Screen features and how do I use them? Register shared device screen Device registering Shared device registered Set up your work phone Install apps Work checklist Follow the steps on-screen to complete enrollment. Once you begin enrollment with an "Android Enterprise dedicated device with Azure AD shared mode" you will see screens similar to the ones shared below. Identify the enrollment method you would like to use, and follow the appropriate steps listed here. To enroll with Intune's dedicated device solution, make sure that you have factory reset devices that meet the requirements found here. How do I enroll my dedicated devices into Azure AD shared mode? If needed, read about how to add Managed Google Play apps to your devices and how to assign apps to groups. Step 2 - Select token type and expirationĬheck that any applications you want users to sign into with this solution have integrated with Azure AD's MSAL library and global sign-in and sign-out calls. You can choose "Android Enterprise dedicated device (default)," or "Android Enterprise dedicated device with Azure AD shared mode." To enroll your devices with Azure AD Shared device mode automatically set up during enrollment, choose the latter. With Intune's April release, you will notice an option to specify a "Token type" when you create an enrollment profile. In the Microsoft Endpoint Manager admin center, follow the steps listed here to get your dedicated device enrollment profile(s) and device groups appropriately set up. What steps do I need to take prior to enrolling with this scenario? To learn more about how to use the features, read on! Dedicated devices and Managed Home Screen.To learn more about Azure AD Shared mode, dedicated devices, and/or Managed Home Screen, please see the following articles: For example, admins can allow users to define a session PIN for the duration of their shift and configure an automatic sign-out timer. Here are additional capabilities included with this release:Įnsure device compliance with Conditional Access - Customers using Azure AD shared mode on dedicated devices will be able to secure their corporate data on user sign-in with Conditional Access that is based on device compliance.Ĭustomized sign-in experience - Customers will be able to leverage new Managed Home Screen customizations that were built specifically for Azure AD Shared device mode. More information about Azure AD Shared Mode and its capabilities can be found here. For an application to participate with Azure AD Shared mode, it must integrate with Azure AD's MSAL library. With this new capability, customers can now optionally enroll their AE dedicated devices into Azure AD Shared device mode, which will allow end-users to gain single sign-on and single sign-out across all of the participating applications on the device. Today, Microsoft Endpoint Manager customers have the option to enroll their Android devices as Android Enterprise (AE) dedicated devices. The blog below has been updated with several new screenshots. This new feature was released in public preview in the October (2010) service release and in the April (2104) service release we announced general availability. Microsoft Endpoint Manager - Intune now supports automatically enrolling Android Enterprise dedicated devices into Azure AD Shared device mode. By: Charlotte Maguire | Program Manager - Microsoft Endpoint Manager - Intune & Shantaram Punukollu | Sr Program Manager – Identity
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |