The consumerization of IT is changing the role of IT. To remain relevant in the face of the cloud, IT needs to enable and even encourage users to securely do what they want from wherever they are and with whatever devices or utilities they want to use. The BYOD phenomenon is here to stay and has shifted the focus of IT management from devices to the users themselves that will undoubtedly access their corporate workspaces from multiple devices, either personal or company-issued.
Managing these complex and cloudy environments can be difficult with traditional systems management tools, but new cloud-based offerings like Microsoft Intune gives IT administrators a centralized place to manage distributed environments, encouraging user and enterprise productivity. Enterprises like Toyota Motor Europe (TME) are already using Intune. A Microsoft case study details how TME is using Intune to manage 3,500 vehicle diagnostics PCs running outside the corporate domain at 3,000 dealerships.
Users are already accessing apps and data from multiple devices from various locations on the network. Depending on security policies, IT administrators can use Intune to restrict which apps and data users can access based on:
System Center Configuration Manager (SCCM) integrates with a Windows Intune subscription providing unified management for all types of cloud devices, like smartphones and tablets, for instance. For unsecured devices, IT administrators can deliver secure workspaces using virtual desktop infrastructure (VDI) or Windows To Go. Users can access Windows, IOS, Android or Windows RT applications through a unified storefront. Windows Server 2012 Dynamic Access Control provides adaptive user access levels defined by security rules. Active Directory Rights Management Services permits control over documents spread outside the company (by email or USB devices, etc.). All of these new features are now part of Windows Server 2012 and System Center 2012 SP1 products.