Configure Microsoft Intune MDM for Android
- To enroll Android devices, refer https://docs.microsoft.com/en-us/int...r-work-devices
- For Android dedicated devices, refer https://github.com/MicrosoftDocs/Int...es-fully-manag...
Push the MCS App to Android
Push the Mobile Cloud Security (MCS) application to the Android device.
- Click on Client apps → Apps → Add
- App type → Choose Managed Google Play → Search with Mobile Cloud Security in android app store → Select the Mobile Cloud Security application. Approve & Save and click OK → to finish the step click Sync.
Give MCS Access to Users
- Client apps → Apps → select the Mobile Cloud Security Client from the list.
- Select Assignments → Add group → select the group to give access of the MCS application.
Configure MCS
- Client apps → App configuration policies → Add.
- Select Managed devices from the drop-down that appears.
- Enter a valid name for the policy, set the Platform to Android Enterprise.
- Select the SMCS app and then click Next.
- From the Configuration Settings drop-down list, select Use configuration designer, and click Add. In the right pane, select all four values, and then click OK.
- Enter the following values for each field and then click Next.
- Local ID: {{IMEI}}@domain.com where domain.com is the DNS domain associated with your AzureAD tenant.
- Remote ID: vpn.skyhigh.cloud
The ID of the VPN Responder as provided by Skyhigh. - User Certificate: set_certificate_alias
- Excluded Subnets: Configure single or multiple subnets (such as 192.128.0.0/24 172.0.0.0/8 using space separators) so that the traffic to these subnets will not be routed via VPN.
- SMCS Gateway Address: c<customer ID>.mcs.skyhigh.cloud
You can get this information from the certificate page.
- Click the drop-down to assign the policy to All users and all devices. Then click Next.
- Click Create to confirm the policy.