แก้ไข

แชร์ผ่าน


Connect Trend Micro Mobile Security as a Service with Microsoft Intune

Connect Trend Micro Mobile Security as a Service to monitor and mitigate device risk levels on Intune-managed devices. Trend Micro Mobile Security as a Service works by reporting device risk levels to Microsoft Intune. Intune then uses that information to enforce the appropriate app configuration and risk assessment policies. For more information about Trend Micro Mobile Security as a Service, see Getting Started with Mobile Security in the Trend Micro documentation.

This article describes the requirements and steps to connect Trend Micro Mobile Security as a Service in your tenant.

Before you begin

The following subscriptions and accounts are required to integrate Trend Micro Mobile Security as a Service with Microsoft Intune.

  • Microsoft Intune Plan 1 subscription
  • Microsoft Entra account with Global Administrator rights to grant the following permissions:
    • Sign in and read user profile
    • Access the directory as the signed-in user
    • Read directory data
    • Send device information to Intune
  • Admin sign-in credentials to access the Trend Micro Vision One management console

Trend Micro Mobile Security as a Service App authorization

The following authorization process happens when you configure the integration with Trend Micro Mobile Security as a Service:

  • Allow Trend Micro Mobile Security as a Service to communicate information related to device health state back to Intune. To grant these permissions, you must use Global Administrator credentials. Granting permissions is a one-time operation. After the permissions are granted, the Global Administrator credentials aren't needed for day-to-day operation.
  • Allow Trend Micro Mobile Security as a Service to sync Microsoft Entra enrollment group membership to populate its device's database.
  • Allow Trend Micro Vision One management console to use Microsoft Entra single sign-on (SSO).
  • Allow Trend Micro Mobile as a Service agent app to sign in using Microsoft Entra SSO.
  • Allow Trend Micro Mobile Security as a Service to get installed app information to perform malware scanning.
  • Allow Trend Micro Mobile Security as a Service to add its mobile apps in Intune for deployment.
  • Allow Trend Micro Mobile Security as a Service to create device configuration profiles.
  • Allow Trend Micro Mobile Security as a Service to perform remote actions when necessary.

For more information about consent and Microsoft Entra applications, see Introduction to permissions and consent.

Configuration Overview

The configuration of Trend Micro Mobile Security as a Service and Intune integration can be done on Trend Micro Vision One console with the following steps:

  1. Configure Intune integration settings. - Grant permissions required by Trend Micro Mobile Security as a Service, select the platforms of your mobile devices, and choose data synchronization frequency. Device configuration profiles and app configuration policies are created automatically in Intune.

  2. Select groups to install Trend Micro Mobile Security as a Service mobile app. - Trend Micro Mobile Security as a Service mobile app installs automatically on devices in the selected groups.

  3. (Optional) Create mobile policies. - Optionally create customized mobile security policies provided by Trend Micro Mobile Security as a Service. For more information, see Configuring Mobile Policies.

  4. Confirm mobile app status update.

Set up Mobile Security as a Service integration

  1. Sign in to the Microsoft Intune admin center with an Intune administrator account.
  2. Go to Tenant administration.
  3. Select Connectors and tokens.
  4. Under Cross platform, select Mobile Threat Defense.
  5. Select Add.
  6. For Select the Mobile Threat Defense connector to setup, choose Trend Micro.
  7. Select Open the Trend Micro Vision One console. Keep the Microsoft Intune tab open for later.
  8. Sign in with your Trend Micro Vision One administration account, and then follow the instructions in Setting up Intune Integration (opens Trend Micro Mobile Security documentation) to complete setup.
  9. After you finish setup in the Trend Micro Vision One console, Trend Micro Mobile Security as a Service is now available in Intune.

Next steps