Overview
This lecture covers how Mobile Device Management (MDM) policies are used to manage and secure mobile devices through configuration and enterprise systems.
MDM Profiles and Configuration
- MDM profiles contain device settings that are communicated to mobile operating systems.
- Profiles can pre-configure device settings, such as automatic app installation and wireless network setup.
Security and Device Control with MDM
- MDM can enforce security measures, including enabling device storage encryption and requiring a lock screen.
- Remote wipe allows administrators to restore a device to factory settings remotely, protecting data if a device is stolen.
Policy Management and Distribution
- MDM provides a large range of settings, similar to Active Directory Group Policy.
- Policies are specific to each mobile operating system but can be managed and distributed centrally.
Enterprise Mobility Management (EMM) Systems
- EMM systems are used to create and distribute MDM policies.
- Device enrollment in an EMM system allows for MDM policy management.
- Many EMM systems support both Android and iOS devices.
Key Terms & Definitions
- MDM (Mobile Device Management) — System for centrally managing and configuring mobile devices.
- MDM Profile — A set of configurations and policies applied to a mobile device via MDM.
- Remote Wipe — The process of erasing all data on a device remotely, usually triggered from the MDM console.
- EMM (Enterprise Mobility Management) — A platform for managing and distributing MDM policies to devices.
Action Items / Next Steps
- Review the process for enrolling a device in an EMM system.
- Explore common security settings enforced by MDM solutions.