Zimperium Mobile Threat Defense connector with Intune

You can control mobile device access to corporate resources using Conditional Access based on risk assessment conducted by Zimperium, a Mobile Threat Defense (MTD) solution that integrates with Microsoft Intune. Risk is assessed based on telemetry collected from devices running the Zimperium app.

You can configure Conditional Access policies based on Zimperium risk assessment enabled through Intune device compliance policies for enrolled devices, which you can use to allow or block noncompliant devices to access corporate resources based on detected threats. For unenrolled devices, you can use app protection policies to enforce a block or selective wipe based on detected threats.

Supported platforms

  • Android 5.1 and later

  • iOS 10 and later

Prerequisites

  • Azure Active Directory Premium

  • Microsoft Intune subscription

  • Zimperium Mobile Threat Defense subscription

How do Intune and Zimperium help protect your company resources?

The Zimperium app for Android and iOS/iPadOS captures file system, network stack, device, and application telemetry where available, then sends the telemetry data to the Zimperium cloud service to assess the device's risk for mobile threats.

Sample scenarios

See below a few scenarios when integrating Zimperium with Intune:

Control access based on threats from malicious apps

When malicious apps such as malware are detected on devices, you can block devices until the threat is resolved:

  • Connecting to corporate e-mail

  • Syncing corporate files with the OneDrive for Work app

  • Accessing company apps

Block when malicious apps are detected:

Product flow for blocking access due to malicious apps.

Access granted on remediation:

Product flow for granting access when malicious apps are remediated.

Control access based on threat to network

Detect threats like Man-in-the-middle in network, and protect access to Wi-Fi networks based on the device risk.

Block network access through Wi-Fi:

Product flow for blocking access through Wi-Fi due to an alert.

Access granted on remediation:

 Product flow for granting access through Wi-Fi after the alert is remediated.

Control access to SharePoint Online based on threat to network

Detect threats like Man-in-the-middle in network, and prevent synchronization of corporate files based on the device risk.

Block SharePoint Online when network threats are detected:

Product flow for blocking access to the organizations files due to an alert.

Access granted on remediation:

Product flow for granting access to the organizations files after the alert is remediated.

Control access on unenrolled devices based on threats from malicious apps

When the Zimperium Mobile Threat Defense solution considers a device to be infected:

Product flow for App protection policies to block access due to malware.

Access is granted on remediation:

Product flow for App protection policies to grant access after malware is remediated.

Next steps