Close Menu
Blog
  Back
Posted by Andrew Ballantyne on 2nd March 2021

Endpoint Manager Overview

In a recent LinkedIn post, I provided 4 suggestions as to how organisations can secure their remote workers, a thing I’m sure most would agree is of paramount importance under the circumstances.

Of the 4 suggestions, I have already written blog posts that look in more detail at Azure Information Protection, Conditional Access and more recently, Multi Factor Authentication. That leaves me with just Endpoint Manager to cover.

What is Endpoint Manager and why is it important right now…

Given what has happened over the last 12 months, with workforce mobility being put into practice on a larger-than-ever scale, device management has jumped to the forefront of many of our thoughts. Well, mobile device management (and device management generally) is where Microsoft’s Endpoint Manager comes in, and in this blog I will look to shed some light on how it works.

To start us off, here is an overview of the purpose of Endpoint Manager in Microsoft’s own words:

“by connecting to the cloud, you gain scale, security and intelligence to better manage your company’s devices and apps… while delivering a better end user experience.”

That’s great, but I need more detail…

A Microsoft product you might have heard of or even used to some extent is Intune. In more recent times, you might have heard Endpoint Manager and Intune used interchangeably, or at least in the same context. Well, there’s good reason for that, because Endpoint Manager is a Microsoft cloud product that has incorporated the functionality of Intune and Config Manager, as well a couple of other products you may or may not have heard of (which I will touch on shortly).

To understand why Microsoft have done this, we need to look at what Config Manager and Intune are responsible for in the first place:

Config Manager allows IT decision makers within an organisation to centrally manage devices on their network (such as laptops and servers), thus enabling a centralised rollout of software, updates, apps and operating systems.

Intune is Microsoft’s fully cloud-based mobile device management and mobile application management tool, allowing IT decision makers all the same functionality as Config Manager, only its direct cloud access allows for more nuanced policy options that are available as part of the Microsoft 365 suite.

The reason Microsoft have brought the two under the Endpoint Manager umbrella is to meet organisations at whatever point they’re at in their IT journey. A lot of organisations may have already written their policies and created their imaging in Config Manager and are therefore not ready (or wanting) to move to connecting everything to the cloud (Intune). Endpoint Manager therefore allows IT decision makers the simultaneously manage their current Config Manager, as well as adding any devices directly to Intune where necessary.

How does this Connection work…

IT decision makers can cloud-enable their Configuration Manager so that it can integrate with your Azure AD and Intune. Doing also gives you access to some of the more powerful features available in the Microsoft 365 suite, such as Conditional Access (which I have covered in a previous blog post).

It is at this point that it is necessary for me to introduce Co-management. Co-management is one of the main ways that organisations attach their existing Configuration Manager to the Microsoft 365 cloud. Co-manager is a product that is designed to simultaneously manage your Windows 10 devices with both Configuration Manager and Intune, giving you the power to choose which policy/app workloads should be managed by which product. The End Point Manager admin centre is the place where you can see which devices are managed by either Intune or Config Manager, and is also the centralised location through which all of your policy and device management can be carried out.

What kind of things can be done using Endpoint Manager…

Now that the high-level concept of Endpoint Manager is in place, I thought it would be good for me to give you some ideas of how Circle Cloud have used the product to improve the ways in which I customers manage their devices.

  1. Microsoft AutoPilot

Onboarding new computers for existing and new employees can be time consuming if not done correctly. In a cloud environment where people expect to work remotely, it seems old fashioned to have to setup a computer for each person manually, or attend the office to have an image applied to a machine. Windows Autopilot allows the automation of building new computers to your organisation’s specification directly over the internet. Here is an example of what Circle Cloud have used this tool for when supporting our customers:

  • Automatically sets up a user’s computer over the internet, including connecting the device to your Microsoft 365 or Active Directory domain
  • Ensure new starters are onboarded efficiently
  • Automatically install software that is appropriate for the specific user upon setup
  • Configure Office, Outlook and Teams for the user upon first logon

 

  1. Microsoft Intune

Once your organisation’s devices are enrolled in Intune, they receive your rules and settings using the central policies that you’ve created. At a time when increased employee mobility brings new security challenges, it’s important to ensure that we have control over mobile devices through which company information is accessed.

When creating a device compliance policy for your organisation, you can define the security standards a device must meet before being able to install Outlook, Office and Teams such as:

  • Device must be encrypted
  • Device must have a pin code set (meeting complexity requirements)
  • Device must change pin code on a specified time interval (e.g. six months)
  • Device cannot be jail broken or rooted
  • Device must have a screen lock applied after ‘x’ amount of minutes, preventing a lost device being picked up and left open for somebody to view and extract information.

Intune also give you the ability to wipe the device or specific Office applications of company data either when a device is lost, or an employee leaves the business.

Final Remarks…

Hopefully this blog post has given you an idea of what Microsoft Endpoint Manager is, as well as what it is designed to achieve. At a time when it is important for our workforces to be mobile, it is equally important that we find new ways of meeting the security challenges posed by new ways of working. Cloud-based management of our end user devices give us so many options as to how we can maintain robust security measures, without compromising on the mobility our workforces require to function.

If you would like to speak to one of our team about Microsoft Endpoint Manager, please get in touch!

 

What Next?

Click Here to see a recent webinar recording where we covered Endpoint Manager in more detail.

If you're interested in finding out howEndpoint Manager fits into Circle Cloud's Managed Service Plans, Click Here.

 

 
Recent Posts

Some of our happy clients...

Mark Arundale
Managing Director- Sine Consulting

We moved to Circle Cloud just over a year ago because our IT was costing us productivity. There was a lot of downtime and unpredictability, which made running our business harder than it needed to be. Circle Cloud have made things so much more straightforward. Their IT Management Plans are perfect for our needs as a small business. The service is so clear and well designed, we have regular reviews and now have a more proactive and professional provider

Beverly Goodall
Managing Director- Abacus Bean

As the owner of an accountancy practice, there’s so much to think about. I need to stay focussed on our own products and services and making sure our customers are looked after. That’s why working with Circle Cloud has been perfect. They’ve taken away any concerns I’ve had around information security. The initial 30 day onboarding process made such a big difference, and the support we’ve had since has been excellent.

Andy Craddock
Managing Director- Accurate Data Services

In our industry it is critical to be constantly focussed on information security. At Accurate Data Services Ltd we always deal with extremely sensitive data, so remaining one step ahead of IS risk is our top priority.  We wanted to work with Circle Cloud because there IS infrastructure design continuously ticks all of the right boxes, can be delivered quickly and is scaleable.  It really is a comfort to everyone in the business that Circle Cloud are there, constantly having our back and making sure that our IS systems are always best in class.

Tony Crocker
Managing Director- IWC Wills & Probate

Circle Cloud’s IT Managed Service has been brilliant for us. It really is focussed on the security side of things. That matters a lot. When you think about all the emails and information that get shared on a daily basis, there is always that worry that something important might slip through. But Circle Cloud have put everything in place to make sure we’re safe.

Mark Pendlebury
IT Manager- Cosatto Limited

Working with Circle Cloud to implement the transition of our ERP system and SQL server into Azure has been a great choice. They have shown great knowledge of the platform and it's possibilities and have worked closely with us to ensure key project milestones and testing phases were met resulting in a successful and on time go live. Furthermore, they have also offered great advice and help on licensing to ensure costs are kept to a minimum.

Deborah Hugill
IT Director- Nigel Wright Ltd

We needed to modernise our server infrastructure in order to enhance resilience, as well as improve accessibility for our European workforce.  This is why we decided to move to the cloud, however we needed a supplier that could help us on our journey. We found the perfect technology partner in Circle Cloud, who specialise specifically in the Microsoft Cloud. They moved all our applications and files to Microsoft Azure which has proven extremely robust, ticking all the boxes we needed it to.

Urfan Durrani
IT Director- Protec International

As a business we had various challenges from moving a legacy on premise exchange system into hosted Office365 environment. Our Office365 system offers the users almost guaranteed uptime, accessible from any place and device, whilst its management facilities make it easier to monitor and control. The commitment to quality and care by Circle Cloud, provided the management team with assurances.

Craig Kippling
Director- Studio Anyo

We needed a telephone system that offered the functionality of a PBX solution. Circle Cloud were the perfect partner to guide us. They demonstrated how Microsoft Teams itself could be used as our full, business-wide telephone solution. They scoped our requirements and migrated our group to Microsoft Business Voice, which bolts seamlessly onto Microsoft Teams.  Our decentralised workforce can now make and receive business calls from anywhere using mobile apps and laptop headsets. This has proven invaluable over the last year and will assist in our future growth. 

Rebecca Pendlebury
Customer Care Manager- Scamp & Dude

As our Customer Care team grew we soon realised we needed to open up forms of contact for our customers. We also needed a system that was flexible and easy to use. As we already used Teams, it felt natural to incorporate Teams Voice and we couldn’t be happier with the result. As a result of Circle Cloud’s recommendations, implementation and training, we now have a happy team and customers.

Ian Burns
IT Services Manager- Waterton Academy

Circle Cloud’s offer of Office 365 security audits catered for every aspect of the brief, however it excelled in the way it was delivered to us as a customer. The added value area of mapping out detailed next steps alongside flagged areas was highly valued and demonstrated their unique ethos of being able to provide an external sound board/advisory presence and where needed, action change by their internal staff as a commissioned service. Based on the experience we had from Circle Cloud, including value for money, the accuracy and attentiveness from staff, we have now adopted the company as our external consultant for Microsoft cloud technologies.

John Painter
IT Systems & Development Manager- Denbury Homes

In November 2021 Circle Cloud were engaged after a shortlisting process, for a time sensitive tenant to tenant domain migration following a business separation- each tenant being wholly separate to the other. Several companies were contacted and their tools assessed, but none could provide a ‘one stop shop’. The expectation was that end users would see no visible difference with regards to experience or content, with the exception of a new temporary password and new MFA registration process. Circle Cloud were able to achieve this within the tight deadline. Denbury Homes are happy to recommend Circle Cloud for Office 365 and Azure Cloud to Cloud migrations, as well as On Premise to Cloud migrations.

Circle Cloud Limited
Company

Circle Cloud Ltd.
Fusion Hive
North Shore Road
TS18 2NB

  0191 672 7012
  info@circlecloud.co.uk
Products
Company
Social
Accreditation
  • ISO/IEC 27001
    Cert Number: IS 697 097
  • Cyber Essentials Certified
Site by Calm Digital Limited
© 2024 Circle Cloud Ltd.
Drop us a message...
Open Menu Open Menu
Contact Us
Open Menu Open Menu
CONTACT US