In this webinar, join security experts from Microsoft and SECUDE, a well-established security provider specializing in SAP, to learn how enterprises can embrace cloud and mobility, while ensuring that corporate assets are well protected.
1)The message is clear- today’s fast pace technology landscape is in place to support the success of your business.
2)That success is tied to your information. Information, in the form of raw data, is collected, organized, analyzed, shared, and reported.
3)This makes data your business’s top asset. How will you protect it?
The Enterprise Mobility Suite (EMS) provides you with:
Hybrid identity enabled by Azure Active Directory Premium.
Mobile device management enabled by Windows Intune.
Data protection enabled by Azure Rights Management service.
(CLICK) The EMS suite is available for as little as $4 per user per month.
Let’s take a closer look at each part of the suite.
Today, users want access to corporate applications from anywhere and on whatever device they choose, whether it’s their laptop, smartphone, tablet, or home PC. IT departments are challenged to empower users with consistent, rich experiences across a wide spectrum of device types.
The Microsoft mobile device management solution helps reduce costs and improve IT efficiency by unifying the management and security for cloud- and on-premises-based PCs and mobile devices in an integrated infrastructure.
With the releases of Windows Server 2012 R2, System Center 2012 R2 Configuration Manager, and Windows Intune, Microsoft builds on a comprehensive, people-centric solution that empowers user productivity while supporting the management needs of IT.
For enterprise users, Microsoft solutions enable user productivity and provide:
Access to company resources consistently across devices. Users can use the device of their choice to access corporate resources regardless of location.
Simplified registration and enrollment of devices. Users can manage their devices as well as install corporate applications through a consistent company portal.
Synchronized corporate data. Users will have access to data stored on a centralized file server and enable that data to be synchronized onto their mobile device.
For IT professionals, Microsoft solutions unify the environment and provide:
Unified management of on-premises and cloud-based mobile devices. IT can extend its System Center Configuration Manager infrastructure with Windows Intune to support cloud management of mobile devices. This enables IT to publish corporate applications and services across device types, regardless of whether they’re corporate-connected or cloud-based.
Simplified, user-centric application management across devices. IT gains efficiency with a single administration console, where policies can be applied across group and device types.
Comprehensive settings management across platforms, including certificates, virtual private networks (VPNs), and wireless network profiles. Policies can be applied across various devices and operating systems to meet compliance requirements, and IT can provision certificates, VPNs, and Wi-Fi profiles on personal devices within a single administration console.
These solutions also help protect corporate data by providing:
The ability to protect corporate information by selectively wiping applications and data. IT can access managed mobile devices to remove corporate data and applications in the event that the device is lost, stolen, or retired from use.
A common identity for accessing resources on-premises and in the cloud. IT can better protect corporate information and mitigate risk by being able to restrict access to corporate resources based on user, device, and location.
Azure Active Directory Premium, Microsoft’s advanced identity and access management solution for the cloud, has been generally available since April 2, 2014. Capabilities like synchronization with on-premises directories, single sign-on to thousands of software-as-a-service applications, security and usage reports based on machine learning, alerting, multi-factor authentication, company branding, self-service password reset, group management delegation, an enterprise-scale SLA, and more will provide the level of reliability required by enterprises with advanced identity and access management needs.
In addition to all of its cloud capabilities, Azure Active Directory Premium offers usage rights for Microsoft Forefront Identity Manager Server and Client Access Licenses (CALs). Organizations get an unlimited number of servers and a use CAL for every Azure Active Directory Premium subscriber user.
Free services, such as Azure Active Directory Free, do not have a service-level agreement (SLA). Azure Active Directory is the identity foundation for many Microsoft services like Windows Intune, Office 365, and others. These services have an uptime SLA of 99.9 percent, and Azure Active Directory has to maintain the same stringent availability standards as the services that depend on it.
Let’s look at the Azure Rights Management service component now.
Microsoft has a history of providing rich IT-infrastructure solutions to help manage every aspect of enterprise operations. Microsoft’s people-centric solution consists of products and technologies that can help IT departments handle the influx of consumer-oriented technology and the work style expectations of users, thereby helping increase productivity and satisfaction for the people within their organizations.
Microsoft’s people-centric IT vision helps organizations enable and embrace the consumerization of IT by:
Enabling your end users by allowing users to work on the device(s) of their choice and providing consistent access to corporate resources from those devices.
Helping protect your data by protecting corporate information and managing risk.
Unifying your environment by delivering comprehensive application and device management from both your existing on-premises infrastructure, including System Center Configuration Manager, Windows Server, and Active Directory, as well as cloud-based services, including Windows Intune and Azure.
Let’s discuss each of these areas in more detail.
With the Hybrid Cloud support, Halocore can support an environment with an on premise Active Directory and Azure RMS.
Or
Full Cloud support with Azure Rights Management and AD in the cloud.
Full collaboration with 3rd parties
Full mobile device support
Convenient: Provides a simple, user-friendly experience for classifying sensitive information.
When the user chooses to download information from SAP- this is the UI that pops up prompting them to apply a policy to the document.
User can choose from
Filtered list of Company Policies recommended by Halocore based on the attributes of the data
Create his/her own policy depending on whether they have the authority to do so
Choose to save unprotected upon which a text box can force a reason for wanting to download data without any protection
Do nothing. This UI can be made transparent and a pre determined company policy can apply to any data being downloaded.
We preconfigure the auditing log with certain basic maps that pertain to the Application Component. For instance- it PLM maps to domain Logistics and Engineering, Payroll maps to domain confidential and HR If you need a more fine grained auditing capabilities- this can be done by using the extended select option to map user groups and even transaction codes and so on.