Mobile Device Management - Ensure that Devices Connecting Have AV and a Local Firewall Enabled

 







Summary

Mobile device management policies should be configured to require the PC to have anti-virus and have a firewall enabled. 

Reason

If it is not made mandatory, then, users will be able to connect from devices that are vulnerable to basic internet attacks, leading to potential breaches of accounts and data.

What If?

This setting will have minimal user impact, but if the device is not running proper protection, then, it will be blocked from connecting.

How to?

To set mobile device management policies, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Endpoint Management.
  2. Select Devices and then under Policy select Compliance Policies
  3. Select Create Policy
  4. Set a Name for the policy, choose the appropriate PC Platform
  5. Select System security under Settings. 
  6. Under Device Security set the values for Firewall, Antivirus, and Antispyware all to Require.

Monitor:

To verify mobile device management profiles, use the Microsoft 365 Admin Center:
  1. Under Admin Centers pick Endpoint Management.
  2. Select Devices and then under Policy select Compliance Policies
  3. Review the list of policies. Ensure that the policy exists for each Platform.
  4. Review the Properties section of each policy. Under Settings and System Security verify the values for Firewall, Antivirus, and Antispyware all set to Require.































Comments

Popular posts from this blog

Deployment (Part 3)

Project Resourcing (Part 2)

Design Planning (Part 3)