Implement application protection and security using Microsoft Intune
Intermediate
Administrator
Microsoft 365
Microsoft Intune
This module covers how to use Microsoft Intune Mobile Application Management (MAM) and App Protection Policies (APP) to secure corporate data at the application layer. You learn to plan protection strategies, configure policies for unenrolled BYOD and enrolled corporate devices, define data protection and conditional launch settings, enforce access with Microsoft Entra Conditional Access, and assign, monitor, and troubleshoot policies across your user base.
Learning objectives
By the end of this module, you'll be able to:
- Distinguish Mobile Application Management (MAM) from Mobile Device Management (MDM) and identify when to use App Protection Policies
- Plan and configure App Protection Policies for unenrolled BYOD and enrolled corporate devices
- Define data protection, encryption, app restriction, access requirement, and conditional launch settings
- Use Microsoft Entra Conditional Access to enforce App Protection at sign-in
- Assign, monitor, and troubleshoot App Protection Policies across your organization
Prerequisites
- Working knowledge of Microsoft Intune and the Intune admin center
- Familiarity with Microsoft Entra ID users, groups, and Conditional Access concepts
- Basic understanding of mobile device enrollment and BYOD scenarios