2
Agenda
Enterprise challenges
Mobile device management
Data protection
Offering details
Hybrid identity
The time to address enterprise mobility is now
Data leakage resulting from device loss or theft is a top smartphone security risk –European Union Agency for Network and Information Security
29% of today’s global workforce use 3+ devices, work from multiple locations and use many apps.
67% of people who use a smartphone
for work and 70% of people who use a
tablet for work choose the devices
themselves
80%+ employees admit to using non-
approved software-as-a-service (SaaS)
applications in their jobs
The explosion of devices is eroding the standards-based approach to corporate IT.
Devices
Deploying and managing applications across platforms is difficult.
Apps
Today’s challenges
Data
Users need to be productive while maintaining compliance and reducing risk.
Users expect to be able to work in any location and have access to all their work resources.
Users
Devices AppsUsers
Empowering People-centric IT
Enable users
Allow users to work on the devices of their choice and provide consistent access to corporate resources.
Unify your environment
Deliver a unified application and device management on-premises and in the cloud.
Protect your data
Help protect corporate information and manage risk.
Management. Access. Protection.
Data
Empowering people-centric IT
Mobile device management
Access and information protection
Desktop Virtualization
Hybrid Identity
Enterprise Agreement (EA) prices starting at $4 per user per monthLimited time EA Level A promotion pricing. Requires 250 seat minimum purchase and underlying CAL Suite license (Core CAL Suite and Enterprise CAL Suite)
Windows Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
Group management,
security reports, and
audit reports
Self-service password
reset and multi-factor
authentication
Connection between
Active Directory and
Azure Active Directory
Introducing the Enterprise Mobility Suite
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
Windows Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Enterprise Mobility Suite
Microsoft Azure Active Directory Premium
Group management,
security reports, and
audit reports
Self-service password
reset and multi-factor
authentication
Connection between
Active Directory and
Azure Active Directory
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
Hybrid identityBridging on-premises and Azure Active Directory
Enable your users
Provide users with self-serviceexperiences to keep them productive
Enable single sign-on for users across the resources they need access to
Protect your data
Enforce strong authentication when users access resources and apply conditional access controls to sensitive company information
Configure single sign-on across all company applications
Ensure compliance with governance, attestation, and reporting
Unify your environment
Create a centralized identity across on-premises and cloud environments
Use identity federation to maintain centralized authentication, and share and collaborate with external users and businesses more securely
Azure Active Directory Premium
Take advantage of a directory in the cloud
Group-based application access assignment and provisioning to thousands of software-as-a-service (SaaS) applications for single sign-on
Company branding
Enterprise SLA of 99.9 percent
Empower users
Self-service password reset
Delegated group management
Monitor and protect access to applications
Security reports based on machine learning
Application usage reports
Multi-factor authentication
Built on top of a free offering
Robust set of capabilities for empowering enterprises with demanding identity and access management needs
Usage rights for Microsoft Forefront Identity Manager server licenses and CALs
Feature comparison of Azure Active Directory offerings
Feature Comparison of Windows Azure MFA offerings
MFA for Office 365/Azure
Administrators
Windows Azure Multi-Factor
Authentication / EMS
Windows Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
Group management,
security reports, and
audit reports
Self-service password
reset and multi-factor
authentication
Connection between
Active Directory and
Azure Active Directory
Enterprise Mobility Suite
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
Mobile device management
Enable your users
Access company resources consistently across devices
Simplify device registration and enrollment
Synchronize corporate data
Protect your data
Protect corporate information by selectively wiping applications and data from retired or lost devices
Use a common identity for accessing resources on-premises and in the cloud
Identify compromised mobile devices
Unify your environment
Manage on-premises and cloud-based devices from a single console
Get simplified, user-centric app management across devices
Get comprehensive settings management across platforms, including certificates, VPNs, and wireless network profiles
Unify your environmentComprehensive application and device management
Enable IT to manage the device and application life cycle
Get comprehensive settings management across platforms, including certificates, VPNs, and wireless network profiles
Single admin console User
Enable IT to manage devices “where they live” through a unified infrastructure
Windows Intune
Mobile device settings
management
Mobile application
management
Selective wipe
Microsoft Azure Active Directory Premium
Group management,
security reports, and
audit reports
Self-service password
reset and multi-factor
authentication
Connection between
Active Directory and
Azure Active Directory
Enterprise Mobility Suite
Microsoft Azure Rights Management service
Information protection Connection to on-
premises assets
Bring your own key
Access and information protection
Enable your users
Simplify bring your own device (BYOD) registration and enrollment
Automatically connect to internal resources when needed
Access company resources consistently across devices
Protect your data
Centralize corporate information for compliance and data protection
Provide policy-based access control for applications and data
Unify your environment
Use a common hybrid identity to access resources on-premises and in the cloud
Protect data with rights management
Take advantage of hybrid options across Windows Server and Azure Rights Management service
Integrate Microsoft SharePoint and Microsoft Exchange Server
Automatically identify and classify data based on content with automatic encryption
More securely share documents with colleagues and business partners
Improve ease of use through integration with Office 2010/13, Windows Shell extensions, and cross-platform clients
Feature Comparison of Windows Azure RMS Offerings
RMS for O365 Azure RMS (EMS)
Existing Customer benefits
Domain-based identity management
(single sign-on for on-premises
applications)
Centralized PC management
Information protection for on-premises
Office deployments
Hybrid identity and single sign-on for
Office 365
Multi-factor authentication for Office 365
Cloud-based information protection for
Office 365
security reports, and multi-factor
authentication
Self-service password reset and Group
management
Connection between Active Directory and
Azure Active Directory
Mobile device settings management
Mobile application management
Selective wipe
Information protection
Connection to on-premises assets
On-premises solution Cloud solution
Cloud and hybrid identity management
Simplified procurement
Mobile device management
Information protection
Other options in the market
Azure Active Directory Premium Windows Intune Azure Rights Management service
Ping Identity
Okta
Centrify
Salesforce Identity
Amazon Web Services
AirWatch MobileIron
Good
KaseyaSymantec Seclore
FasooAdobe LiveCycle
EMS: One Vendor, One Contract, One SKU
Why Microsoft?
$4.50
60-percent discount
and introductory
promotion
Enterprise Mobility
Suite add-on
promotion4
People-centric IT with one license suite
and one vendor
60-percent discount over list pricing
with limited time promotion
Add-on SKU requires Core CAL, ECAL, or
Bridge CAL
Microsoft solution value
1. Seclore assumes blended cost across 500 authors ($7 per user) , 1000 consumers (no cost).
2. AirWatch per device per month Cloud Hosted MDM Suite List pricing. Management of multiple devices per user requires additional licensing.
3. Salesforce Identity per user per month list pricing , included for existing Salesforce customers.. Okta list price $10 per user per month.
4. Per user per month Open NL price $4.5/u/m. EA pricing starts at $4/u/m. Promo requires 250 minimum purchase and qualifying CAL Suite license.
Exchange / EOA SharePoint LyncOffice Pro PlusWindows Server CAL (Active Directory)
Active Directory RMS
Configuration Manager and Endpoint Protection
Licensing
Information protection(Azure RMS)
Cloud identity (Azure Active Directory Premium)
Enterprise Mobility Suite add-on
NEW
Office 365 add-on
Office 365 ProPlus
Exchange Online
SharePoint Online
Lync Online
Cloud add-on
Desktop EA
Office + CAL Suites
Users Devices Apps Data Apps Mail Collaboration IM, voice, and
conferencing
EMS add-on
Office 365 full user subscription
EMS add-onEMS add-on
Office 365 Add-on
Enterprise Mobility Suite (EMS) add-on offer requires existing CAL licensing
Bridge CAL for Office 365
CAL Suites (standalone or via Pro/Enterprise Desktop)
CAL Suites (standalone or via Pro/Enterprise Desktop)
Add-on licensing prerequisites
Enterprise Mobility Market Reaction
“Microsoft is making enterprise solutions that more easily, efficiently and effectively
integrate Apple's iOS devices, as well as Android devices, including those sporting
Samsung's KNOX security platform. That's a winning combination of efforts for
businesses smart enough to take advantage of both.”http://www.cio.com/article/750992/Microsoft_Gets_Strategic_with_its_Enterprise_Mobility_Suite?page=3&taxonomyId=3081
“Microsoft has done a good job of understanding the problem set, and delivering a
solution that covers the breadth of those different use cases. The all-in pricing, a fullness
of the offering make EMS a positive development in the identity and mobile
management space.”http://www.forbes.com/sites/benkepes/2014/03/30/microsofts-enterprise-mobility-suite-covering-all-the-bases-flexibly/
Enterprise Mobility Suite Overview
Thank you
Appendix
Support options
http://www.windowsazure.com
/en-us/support/plans/
https://support.microsoftonlin
e.com/default.aspx?productke
y=intunesupp&scrx=1
http://office.microsoft.com/en
-us/support/contact-us-
FX103894077.aspx