Embed Size (px)
Citation preview
Windows Phone 8device and app managementAlan MeeusSr. Technical Product ManagerWindows Phone Division Microsoft Corporation
WPH205
Windows Phone 8 is still pre-release
This qualifies this session as pre-release too
Agenda
App management on managed phones
Windows Phone management in the enterprise
Custom Company Hub
Security update
App deployment on unmanaged phones
App sandboxingLeast privilege, secure chambers model is applied to operating system services, inbox apps, and store appsMarketplace developer validation, app certification, and malware scanningAssures apps can be trusted and helps protect against malware
Robust security helps to protect informationSecure boot
Complete boot sequence is securedAssures operating system integrity and know state, helps protect against malware
Code signingAll code is signedMaking sure only known and trusted software components can execute
Device encryptionAlways-on, hardware assisted, and accelerated, full internal storage encryption
Device management choice
App and device management with native Mobile Device ManagementFor app distribution and access policy management
Exchange ActiveSync with Exchange Server and Office 365 for email and device managementWidely used for mobile email and access policy management
Simple passwordAlphanumeric passwordMinimum password lengthMinimum password complex charactersPassword expirationPassword historyDevice wipe thresholdInactivity timeoutIRM enabledRemote device wipeDevice encryption (new)Disable removable storage card (new) Remote update of business apps (new)Remote or local un-enroll (new)
(NA)
EASMobile Manager PoliciesMobile device management policyMD
M
Server configured policy valuesQuery installed enterprise app Device name Device IDOS platform typeFirmware versionOS versionDevice local timeProcessor typeDevice modelDevice manufacturerDevice processor architectureDevice language
Enterprise reporting
Phone application platformFamiliar and compatibleCreate applications that integrate with the Windows Phone experienceBest-of-breed and familiar Visual Studio toolsXAML and C# code platform enables efficient and rapid development and Sharing with Windows 8C and C++ for easy migration of apps to Windows Phone platform
Enterprise App Ecosystem Overview
2. Signing Tools
3. App Catalog
1. Registration
1. Develop App
2. Package and sign
1. Device Enrollment
2. Get apps
4. Create Token
3. Cert and Enterprise IDRegistration
1. Enterprise registers with App Hub
2. Enterprise downloads app tools
3. Microsoft notifies CA of pending enterprise registration
4. Vets enterprise5. CA checks that vetting is
complete, and generates a certificate for enterprise
IT organizationApp Hub Windows Phone
Enterprise app ingestionEnterprise apps are not submitted to Marketplace for ingestion App ingestion in enterprise catalog is owned and managed exclusively by ITIT is responsible for the quality of enterprise apps IT is responsible for any impact on the overall experience on the phone
May use the Windows Phone Marketplace Test Kit to evaluate appsEnterprise app capabilities are the same as a public apps Capabilities are enforced on the phone at app install time
If app uses the location capability, prompt for user approval and give the user an option to disable
Unmanaged Phones - Enterprise App Enrollment
Enterprise generates app enrollment token
App enrollment steps
1.Enterprise emails a link to the app enrollment token
2.User authenticates with domain credentials3.User downloads and installs app enrollment token-or-4.Enterprise emails app enrollment token using IRM5.User authenticates with IRM and installs app
enrollment token
Unmanaged Phones enterprise app deployment
1.Enterprise IT signs the XAP2.XAP is posted to the private Enterprise App
Store3.User navigates to the Enterprise App Store
(via web browser or client app) and selects the app to install
4.App is downloaded and installed on the phoneEnterprise app installation works only for enrolled phones
Enrollment & Management Architecture
Discovery
CAEnrollment Server
Management Server
App Catalog
Email and pwdSuccess
cert requestGet certGet app token
Get Policy
Get Custom Hub
Install Apps
Managed Phones Enterprise App Enrollment
Managed by MDM
1.The phone initiates enrollment with MDM2.MDM provisions certificates to the phone and
sends the app enrollment token to the phone3.Optionally, the user can install an app discovery
app that provides access to apps in the enterprise store
Phones enrolled with the enterprise
Managed Phones enterprise app deployment
1.Enterprise IT signs the XAP2.XAP is posted in the App Catalog3.User opens the app discovery app that
displays all available apps and selects the app to install
Or3. User browses the app catalog using the
browser4.App is downloaded and installed on the
phone
Remotely or locally remove policy, apps & app data
The mobile device management advantage Built-in for management set up &
configurationOne-step enrollment and company policy provisioningLOB application provisioning and auto deployment of first company applicationOn-going application deployment and auto app updates
Asset and inventory management
Custom company hub management
Company Hub
Questions
Windows Phone Sessions
Tuesday12:00
G105
WPH201 What's New
14:45
G105
WPH203 Build Apps and Games for WP 7.5
16:30
E107 WPH202 Collaborate Through Exchange, SharePoint, Lync and Office 365
Wednesday12:00
E104 WPH204 Application UI Design Principles
14:45
D201
WPH304 Security Deep Dive
17:00
G105
WPH206 How to Make Money with your Applications and Games
Thursday08:30 G10
5WPH205 Device and App Management
12:00 G105
WPH301 Tiles and Notifications
14:45 G105
WPH207 Building Enterprise Apps
16:30 D201
WPH302 Localization and Globalization
Friday08:30
G105 WPH303 Windows Phone: Optimizing Application Performance
10:15
G105 WPH208 Windows Phone: MVVM and Unit Testing Step by Step
Resources
Connect. Share. Discuss.
http://europe.msteched.com
Learning
Microsoft Certification & Training Resources
www.microsoft.com/learning
TechNet
Resources for IT Professionals
http://microsoft.com/technet
Resources for Developers
http://microsoft.com/msdn
Evaluations
http://europe.msteched.com/sessions
Submit your evals online
© 2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to
be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS
PRESENTATION.
