Secure Your Mobile Devices: How to Configure MDM and MAM


Updated on:

I’ve seen countless individuals fall prey to mobile device hackers, putting their personal and financial information at risk. It’s no secret that mobile devices have become an integral part of our daily lives, making it crucial to secure them against potential threats.

That’s where Mobile Device Management (MDM) and Mobile Application Management (MAM) come into play. By configuring these tools correctly, you can protect yourself and your information from cyber threats.

In this post, I’ll walk you through the steps to configure MDM and MAM, ensuring your mobile devices are secure and your peace of mind is intact. So grab your phone or tablet, and let’s get started!

How to configure MDM and MAM?

Configuring MDM and MAM can be a daunting task, but with the right guidance, it can be done with ease. To begin, log in to the Azure portal and select “Azure Active Directory” followed by “Mobility (MDM and MAM)” and then “Microsoft Intune”. Once you have accessed this portal, it’s time to start configuring MDM by focusing on the following steps:

  • Configure MDM User scope: This involves selecting which devices and users are to be controlled through Microsoft Intune. Once you have determined the correct user scope, you’ll be able to manage their devices with ease.
  • Utilize the default settings: Microsoft Intune provides default settings for URLs which can be used to configure MDM Conditions of Use URL. This is an important step in ensuring that you have control over the devices.
  • Select Save: When you have configured the MDM and are happy with your settings, the final step is to select Save. This will ensure that your settings are saved and activated throughout your organization.

    Overall, with the correct steps and guidance, MDM and MAM configurations can be done with ease. Ensure that you take your time to configure the settings correctly to ensure that your devices are secure and easily managed.

  • ???? Pro Tips:

    1. Assess your organization’s needs: Before configuring MDM and MAM, it’s important to understand your company’s requirements for mobile device management and application management. This includes identifying the type of devices you’ll be managing, the applications your employees will use, and the level of security required.

    2. Choose the right solution: There are a variety of MDM and MAM solutions available, so it’s crucial to research and select the one that meets your specific needs. Factors to consider include ease of implementation, scalability, support for multiple platforms, and security features.

    3. Develop policies: Setting employee policies is critical to ensure that devices and applications are used securely and effectively. Establishing a comprehensive policy that addresses aspects like security protocols, application installation, and data sharing will help maintain a secure mobile environment for your organization.

    4. Test and adjust: Once an MDM or MAM solution has been implemented, it’s important to test it thoroughly to identify possible security loopholes. Testing should be conducted on a regular basis to ensure that the solution remains effective and that updates do not break existing policies or configurations.

    5. Educate your users: It’s important to provide training to your users about company policies, security protocols, and best practices for device and application usage. This can be done through workshops, email bulletins or articles, or company-wide training sessions.

    How to Configure MDM and MAM?

    Accessing Azure Portal:

    Before starting the MDM and MAM configuration, you must log in to the Azure portal. If you don’t have an account, you can sign up for a free trial. Once you are logged in, follow these simple steps:

    1. Go to the Azure Active Directory.
    2. Click on the ‘Mobility (MDM and MAM)’ button at the top of the page.
    3. Select ‘Microsoft Intune’ from the submenu.

    Navigating to Azure Active Directory:

    You can access Azure Active Directory by clicking on the corresponding button on the Azure portal’s dashboard page. Once you are on the Azure Active Directory page, you will see a few different menus on the left-hand side of the page. These menus include options to manage users, groups, devices, and applications.

    Setting up MDM and MAM:

    Microsoft Intune provides a single user interface for managing mobile devices, protecting your data, and managing applications. To set up MDM and MAM, simply follow the steps below:

    1. Click on the ‘Mobility (MDM and MAM)’ option in the Azure Active Directory menu bar.
    2. Select ‘Microsoft Intune’ from the submenu.
    3. Click on ‘Start Trial’ or ‘Buy Now’ to set up Intune.

    Configuring MDM User Scope:

    After setting up Intune, the next step is to configure the MDM User scope. This step defines which devices of users are to be controlled through Microsoft Intune. To complete this step, simply follow the instructions below:

    1. Click on the ‘Manage’ option in the Microsoft Intune menu bar.
    2. Select ‘Device Enrollment’ from the submenu.
    3. Click on ‘Choose MDM Authority’ and select ‘Microsoft Intune’ from the list of options.
    4. Choose the type of user scope you want, depending on the devices you want to control
    5. Assign the user groups for whom the settings will apply.

    Choosing Devices to Control through Microsoft Intune:

    After configuring the MDM User scope, you can select which devices of users are to be controlled through Microsoft Intune. To perform this task, follow the steps below:

    1. Click on the ‘Devices’ option in the Microsoft Intune menu bar.
    2. Select ‘All Devices’ or ‘Device Groups’ depending on the devices you want to manage.
    3. Choose the action you want to perform on the device, such as blocking or wiping a device.

    Utilizing Default Settings for MDM Conditions of Use URL:

    The MDM Conditions of Use URL is used to specify where your organization’s MDM terms and conditions can be found, and how they should be presented to users. By default, Microsoft Intune uses the settings shown below. However, you may choose to customize these settings to suit your needs.

    • Discovery URL:
    • Terms of Use: Select ‘Require users to accept this conditions of using the service’.

    Saving Configuration Changes:

    After configuring all the settings, it is important to save changes to ensure that the MDM and MAM configuration is working efficiently. To save changes in Microsoft Intune, click on the ‘Save’ button at the bottom right-hand corner of the page.

    In summary, configuring MDM and MAM can seem daunting but it is a relatively straightforward procedure. By accessing the Azure portal, navigating to Azure Active Directory, setting up MDM and MAM, configuring MDM User scope, choosing devices to control through Microsoft Intune, utilizing default settings for MDM Conditions of Use URL, and saving configuration changes, you can have an efficient MDM and MAM system that ensures the secure management of mobile devices.