As apps like Outlook are increasingly adopted, they tend to be utilised for both business and personal use – sometimes from the same device at the same time. Whilst this provides convenience for the user, for the IT department it presents the headache of securing corporate data, whilst at the same time not interfering with the user’s personal data.
The best way to do this is by targeting your Mobile Application Management (MAM) policy onto just the corporate account. This will enable you to tick all the boxes of securing corporate data whilst maintaining the end user’s experience and the privacy of their own data.
Supporting multi-identities with Intune
Microsoft Intune has supported multi-identity for some time. So, when a user installs and signs into an app that supports multi-identity on an Intune-managed device, Intune will check if the new account matches the enrolled, managed account on the device.
If the account is managed and there is also a MAM policy for the app and the user, then the MAM policy settings protect data in that account. When the user adds personal accounts to the app as well, those accounts will exist outside of Intune management and protection. This enables personal use of the application without compromising corporate protection.
Your MAM policy can be setup to ensure access to corporate data is fully protected. This includes actions such: encryption, having to enter a PIN or preventing data being copied and pasted to personal email accounts. This way multi-identity support will allow your users to continue to utilise their apps for both business and personal use, while maintaining security of your corporate data.
To find out more about how the multi-identity support offered by Intune can help your organisation protect its data whilst maintaining your user’s experience and the privacy of their own data, please contact us.