Soon, IT teams will be able to manage iOS devices that need conditional access to Microsoft's suite of apps via Jamf's newly extended collaboration with Microsoft Enterprise Mobility + Security.
Since 2017, IT teams have been able to utilize Conditional Access on macOS devices when sharing inventory data from Jamf with Microsoft Endpoint Manager. This ensures that only trusted users can access company data while using compliant devices and approved apps.
Soon, IT teams will be able to leverage Conditional Access for iOS devices as well. This will enable them to restrict authorized users from using any iOS devices that do not comply with security policies.
Jamf requires users to register devices they want to use to access Azure Active Directory applications, which includes Microsoft 365 Apps. Then, compliance criteria are established and measured on the iOS device by Jamf, who collects device information and sends it to Microsoft Endpoint Manger.
Endpoint Manager checks the device's compliance, dynamically granting or denying access via Azure Active Directory. If the device is not compliant, the user gets a notification, which directs them to solve the issue through Jamf Self Service.
"We know IT teams want the simplicity of managing and securing all their devices within a single pane, while still providing the intended Apple experience employees demand and deserve," said Jason Wudi, chief technology officer, Jamf. "Jamf and Microsoft have a long history of collaborating to better empower the end user and IT, and today's announcement of iOS device compliance shows we are committed to continuing to innovate to make the modern management experience better for enterprises growing their Apple fleet."
Currently, the program is available in closed preview. The iOS Device compliance is expected to be available to all Jamf customers in late 2020.