airwatch, office 365, intune

we have now airwatch for our mobile devices management

all mailboxes are on office 365, we have ADFS on premise

wanted to know what are the advantages of air watch integration with office 365

or can we remove completely air watch and put all mobile device management in intune?

is there any way we can do it

any reason why we should use workspace one over airwatch?
pramod1Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

btanExec ConsultantCommented:
Should stay on with AirWatch. It is quite a full fledged Enterprise Mobile Mgmt solution. Office365 integration is not new to AirWatch.

1) AirWatch makes it easy to deploy the Office apps and email to the users that are licensed for them, and sets the users up so they sign in automatically to the apps using the same identity as their corporate account.

2) You can further the integration with VMware Identity Manager. It provides an adaptive access control framework to ensure that all work applications, including O365, can only be installed and run on managed and compliant devices.

3) One key strength is the containerization capabilities. AirWatch relies on the native OS Mobile Application Management (MAM) controls ensures encryption of data at rest, prevents corporate data leakage, and supports enterprise (selective) wipe  of devices.

4) AirWatch can also leverage digital certificates to automatically sign the user into O365; providing password-less authentication. It is more security by using certificates to authenticate rather than Active Directory passwords.

In fact, you mentioned Workspace ONE and Intune. The latter has Mobile Application Management (MAM). These can be integrated for a seamless experience.

Example, Intune MAM has an open API (the Graph API) so VMware’s Workspace ONE can manage the security and deployment of these Intune MAM settings. The MAM primary is to secure the 0365 as an appl but fall short on the device management aspect such as detection of rooted device, app having its own App VPN and control over application data movement across devices including unmanaged ones.

https://blogs.vmware.com/euc/2017/04/workspaceone_o365.html

I see the tripartite as leveraging  O365 DLP settings using Intune; and extend the capabilities further with AirWatch, which ensures support and oversight for multiple platforms, app types, and device ownership.

You have the right solution so don't waste it as you can explain the use case to better protect the mobile device to suite your environment. Probably the below can give you a holistic mobile enterprise security perspective.

https://www.experts-exchange.com/articles/32496/Know-you-Mobile-DNA-Secure-the-Mobile-device-and-apps-better.html
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Mobile

From novice to tech pro — start learning today.