Mobile Device Management - Ensure that Users Cannot Connect From Devices That Are Jail Broken or Rooted

 







Summary

Users should not be allowed to use or connect with the mobile devices that have been jail broken or rooted.

Reason

These devices generally have had basic protections disabled to run software that is often malicious and could very easily lead to an account or data breach. 

What If?

This setting should not cause any noticeable impact, however, in a event when a device is jailbroken or running a developer build of a mobile Operating System, it will be blocked from connecting.

How to?

To set mobile device management policies, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Endpoint Management.
  2. Select Devices and then under Policy select Configuration profiles
  3. Select Create Policy
  4. Set a Name for the policy, choose the appropriate Platform
  5. Under Settings and Device Health ensure that Jailbroken devices or Rooted devices is set to Block.

Monitor:

To verify mobile device management policies, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Endpoint Management.
  2. Select Devices and then under Policy select Configuration profiles
  3. Review the list of profiles. Ensure that a profile exists for each Platform.
  4. Review the Device Health section under Settings and verify Jailbroken devices or Rooted devices is set to Block.









































Comments

Popular posts from this blog

Deployment (Part 3)

Project Resourcing (Part 2)

Design Planning (Part 3)