If your company or school uses Microsoft Intune for Mobile Device Management and Mobile application management, you can enroll your iOS device to get access to company email, files, and other resources. When you enroll your devices, your IT department can manage the resources, keep them secure, and give you the freedom to use your preferred device to get your work done.
The steps mentioned below should be followed by all users who hold an Apple device to enroll their iPhone/iPad with Microsoft Intune so that your device can be managed by Microsoft Intune.
Note
- Please make sure that your device has a good Wi-Fi connectivity or a good 3G/4G connection before going through the below-mentioned steps.
- Please ensure that your iOS version is not less than 8.0.
Detailed steps
- Open the App Store and search for Microsoft Intune company portal app, as shown in the image below.
- Download and install the Microsoft Intune Company Portal app. Once done, you should be able to see it on your Apple device home screen.
- Open the Intune company portal app and sign in with your Office 365 UPN address, as shown in the image below.
- Enter your Office 365 UPN password as well.
- Once done, you will be redirected to the Company Access Setup page, as shown in the image below.
- Click on "Begin" at the top right corner of the screen and this will start preparing your portal.
- You will be taken to a screen which describes why you need to enroll your device. You can go through the guidelines if required and tap on "Continue".
- The next screen will tell you what can be viewed by your IT Admin once the device has been enrolled with Intune and what cannot be viewed by the IT Admin. You can go through all the details if you’re concerned about your privacy. Then, tap on "Continue".
- Now, the next screen will ask you to click on “Enroll” to enroll your device with Intune, please go ahead and click on Enroll.
- Once done, the next screen will prompt you for Multi-Factor Authentication which is nothing but an extra layer of security just to ensure that your connection is legitimate.
- Based on the option you chose above, you would either get a text message or a phone call with a passcode. Please go ahead and enter the code correctly and tap on Next, as shown in the image below.
- Once done, the device enrollment process will start and you would see the below mentioned screen.
- After that, you will get the below screen asking you to install the profile for Mobile Device management. Tap on "Install", as shown in the image below.
- You would also get the installation prompt in the next few screens, please go ahead and tap on "Install" on the next screens. Once done, if you already have a passcode for your device, it will prompt for that. Please key-in that passcode, as shown in the image below.
- On the next screen, you will be asked if you trust this profile for Mobile device management. Here, tap on "Trust".
- You will be taken to the certificate enrollment process in the next screen, as shown in the image below.
- The next screen will be asking you to open the Company portal app as shown in the image below. Please go ahead and open.
- After that’s completed, you will get the below screen where you can notice that the portal is getting prepared.
- You would get the below-mentioned screen post that. Please go ahead and tap on "Install", as shown in the image below.
- The next screen will ask you to choose your device category. In my case, I’ve chosen “personal-owned device “as I’m enrolling my personal iPhone with Intune.
- Once done, you would be prompted to change your passcode as shown in the image below. Please change it and confirm it once again as shown in the image below.
Note
Please make sure that you haven't forgotten your passcode.
- After confirming the passcode, you will be taken to the confirmation screen which confirms that your device has been successfully enrolled with Intune.
- Now, go back to the home screen on your iPhone and open the Intune company portal app .You can check the list of apps which are available for download from company portal app, as shown in the image below.
- Now, you can search for the “Outlook” mobile app in the portal and install it as shown in the image below.
Note
If your IT admin has configured a policy in Intune such that you should only be using the Outlook mobile app that’s available in the Intune Company portal to configure your emails, then you won’t be able to download and use the Outlook mobile app that’s available in the App Store. This is part of Mobile Application Management in Intune. In addition to that, you won’t be able to do the below things based on the policies which your IT admin has enforced.
- A user tries to copy the content from his Office 365 mailbox and tries to paste it into his personal email account (i.e. Gmail, Hotmail etc..) and Intune restricts it.
- A user tries to download an attachment from his Office 365 mailbox and tries to save it to his Drop box or personal OneDrive and Intune restricts it.
Please go through the link below to know more about the MAM policies in Intune -
https://docs.microsoft.com/en-us/intune-classic/deploy-use/configure-and-deploy-mobile-application-management-policies-in-the-microsoft-intune-console
- Once you’re done with installing the “Outlook” mobile app from the Intune company portal, please go back to the home screen and open the “Outlook” app.
- Open the Outlook mobile app. You would be prompted to choose the email account which you want to setup. In my case, it prompts to add either of the two, Office 365 email account as well as my Hotmail account. I’ve chosen to configure Office 365 email account only as shown in the image below. In your case, you might only see your Office 365 email account.
Note
Even if you have added your Hotmail account, Intune will take care of only your Office 365 mail address and not your Hotmail account .
- Once you’ve chosen your Office 365 email account, please give it some time and your mailbox will start downloading all the emails, contacts, and meetings etc. as shown in the image below.
- You can also use some cool features like @mentions and focused inbox in Office 365.
- In addition to this, you can also remotely manage your mobile device from your laptop or PC once it’s enrolled with Intune, by accessing the Intune Company portal site. In order to do that, please login to the below mentioned URL using your Office 365 UPN address and password.
https://portal.manage.microsoft.com/
- Once done, you should be able to see your Apple device which has been enrolled with Intune, as shown in the image below.
- You can rename, remove, reset the passcode as well as remotely lock your device from your laptop/PC. So, if you ever encounter a scenario where your device has been lost/stolen, you can remotely wipe it from here.
Thanks for reading this post!!! Good luck with Intune.