Mobile Application Management Deploying to UA Staff
- July 2nd, 2024
- in Software News
OIT will deploy security enhancements to protect UA data on Microsoft mobile device applications starting September 3.
OIT will use Mobile Application Management (MAM) to protect UA data in University email addresses connected to Microsoft applications on mobile devices.
Security enhancements include:
- User authentication via PIN or biometric data, such as fingerprint or facial recognition, will be required to open Microsoft mobile apps connected to UA email accounts.
- If a mobile device is lost or stolen, OIT can remove UA user data remotely. If data is removed, it will still be accessible from other devices and can quickly be restored to the original or new mobile device by logging into the apps again.
- Restrictions will be placed on how UA users can store UA data on personal mobile devices. For example, users won’t be able to backup data to a personal account (i.e., iCloud).
These MAM security enhancements do not apply to any personal accounts in Microsoft mobile applications. OIT cannot see nor track any personal information or data outside of the UA user’s Microsoft account.
How to Setup
The setup process differs for iOS and Android devices.
For both device types, upon opening a Microsoft mobile app for the first time after September 3, you will see a notification prompt that says, “Your IT Administrator is now helping you protect work or school data in this app.”
iOS Users
iOS users will be prompted to create a PIN within Microsoft apps connected to your UA email. After that, each time you open the app, you will be prompted to enter the PIN or use a biometric login, such as facial recognition or fingerprint in order to launch the app.
Android Users
Android apps do not have a management layer that is needed for UA to put restrictions on UA data storage, etc. Because of this, you will be prompted to download the Intune Company Portal app. Once the app is downloaded and you have logged into it using your myBama credentials, you will be prompted to create a PIN. After that, each time you open a Microsoft app such as Outlook, you will be prompted to enter the PIN or use a biometric login, such as facial recognition or fingerprint, in order to launch the app.
Note: When installing the Intune Company Portal app, your Android device will prompt you to grant or deny certain permissions for the app. The permission prompts, which are generic and the same for all Google apps, don’t necessarily reflect what the app will actually do. All permissions can be denied and the app will still work as intended to protect UA data. For details on what each of these permissions mean, see the FAQ on OIT’s mobile application management web page.
For FAQs and more information on these security measures, visit OIT’s mobile application management web page.