Start preparing for your Next Exam | Use coupon – TOGETHER | Avail 30% discount

Microsoft Endpoint Manager overview

  1. Home
  3. Microsoft Endpoint Manager overview

Go back to Tutorial

In this tutorial, we will learn and understand the Microsoft Endpoint Manager and get a brief overview of its services.

Microsoft Endpoint Manager assists in offering the contemporary workplace and modern management to keep your data secure on-premises and in the cloud. It covers the tools and services you use to manage and monitor mobile devices, desktop computers, virtual machines, embedded devices, and servers.

Furthermore, Microsoft Intune, Configuration Manager, Desktop Analytics, co-management, and Windows Autopilot are all included in Endpoint Manager. These services are part of the Microsoft 365 stack and aid with secure access, data protection, and risk response and management.

Endpoint Manager Services

Endpoint Manager includes the following services:

1. Microsoft Intune
  • Intune is a 100% cloud-based mobile device management (MDM) and mobile application management (MAM) provider for your apps and devices.
  • Secondly, it lets you control features and settings on Android, Android Enterprise, iOS/iPadOS, macOS, and Windows 10 devices.
  • Thirdly, it integrates with other services, including Azure Active Directory (AD), mobile threat defenders, ADMX templates, Win32 and custom LOB apps, and more.
  • Next, if you have the on-premises infrastructures, such as Exchange or an Active Directory, the Intune connectors are also available:
    • Firstly, the Intune Connector for Active Directory adds entries to your on-premises Active Directory domain for computers that enroll using Windows Autopilot.
    • Secondly, the Intune certificate connector processes certificate requests from devices that use certificates for authentication and S/MIME email encryption.
  • Lastly, use Intune for creating and checking for compliance, and deploying apps, features, and settings to your devices using the cloud.
Practice tests Microsoft Endpoint Manager
2. Configuration Manager
  • Firstly, Configuration Manager is an on-premises management solution to manage desktops, servers, and laptops that are on your network or internet-based.
  • Secondly, you can cloud-enable it to integrate with Intune, Azure Active Directory (AD), Microsoft Defender for Endpoint, and other cloud services.
  • Thirdly, use Configuration Manager for deploying apps, software updates, and operating systems. You can also monitor compliance, query and act on clients in real-time, and much more.
3. Co-management
  • Co-management integrates your existing on-premises Configuration Manager investment with cloud services such as Intune and Microsoft 365.
    • However, for each of the seven workload groups, you may pick whether Configuration Manager or Intune is the management authority.
  • Co-management also takes advantage of cloud capabilities, such as restricted access, as part of Endpoint Manager.
4. Desktop Analytics
  • Desktop Analytics is a cloud-based service that integrates with Configuration Manager.
  • Secondly, it provides insight and intelligence for you to make more informed decisions about the update readiness of your Windows clients. However, the service combines data from your organization with data aggregated from millions of devices connected to the Microsoft cloud.
  • Thirdly, it provides information on security updates, apps, and devices in your organization, and identifies compatibility issues with apps and drivers.
5. Windows Autopilot
  • Windows Autopilot sets up and pre-configures new devices, getting them ready for usage. It is, however, for simplifying the lifetime of Windows devices, from initial deployment to end-of-life, for both IT and end-users.
  • Use Autopilot as part of Endpoint Manager to preconfigure devices and enroll them in Intune automatically. For more sophisticated device setups, you may also use Autopilot in conjunction with Configuration Manager and co-management (in preview).
6. Azure Active Directory (AD)
  • Endpoint Manager uses Azure Active Directory to manage device, user, and group identities, as well as multi-factor authentication (MFA).
  • However, Azure AD Premium provides extra capabilities to help safeguard devices, applications, and data, such as dynamic groups, auto-enrollment, and restricted access, which may come at an additional fee.
7. Endpoint Manager admin center
  • The admin centre is a one-stop shop for setting up policies and keeping track of your devices. Other important device management features, such as groups, security, restricted access, and reporting, are integrated.
  • Devices controlled by Configuration Manager and Intune are also visible in this admin centre (in preview).
sc-900 online course

Reference: Microsoft Documentation

Go back to Tutorial

Menu