Introduction

iManage Work Mobility for Intune lets users view, download, edit iManage Work files, and upload the edited copies or new versions to iManage Work. Users can also preview, reply, reply all, forward iManage Work emails, and download email attachments.

Microsoft Intune is a service used to provide MAM (mobile application management) to manage apps and content on Apple iOS devices. With Intune, users in your organization can access their apps and data on the device of their choice while you manage and secure the devices, apps, and content on your network. For example, you can deploy corporate apps as managed apps and prevent users from sharing their data with unmanaged/personal apps, such as Dropbox.

Intune offers an additional layer of mobile corporate security on top of the inherent security capabilities of iOS. As an administrator, you don't need to wrap the iManage Work Mobility app to take advantage of Intune's extra security features. 

By deploying iManage Work Mobility for Intune, you can leverage the key advantages of Intune:

• Prevent editing iManage files when a user is signed in to Microsoft Office apps with a personal Microsoft 365 account: Microsoft 365 applications require users to sign in with a Microsoft account. This can be a personal or business account. Enterprises typically want to prevent personal accounts from accessing corporate data, however, there's no existing way in iOS to control personal accounts. Intune provides the ability to control this type of access.
  Microsoft Office applications present a unique security case that can't be solved with conventional MDM (mobile device management) or MAM solutions. Users can sign in to the Office applications using both personal and corporate accounts. Traditional MDMs such as Blackberry and Ivanti (formerly MobileIron) can’t oversee what happens inside of an application. This is where Microsoft Intune provides value. Intune lets administrators:

  • Configure copy/paste DLP (Data Loss Prevention) policies.

  • Control what happens inside of the Microsoft Office applications.

  • Ensure that corporate data remain within corporate boundaries.

• Prevent iManage files from being attached to emails sent from personal accounts configured in Outlook: When signed in to Microsoft Office applications using their corporate account, users can access and save content to iManage Work, but are blocked from saving content to other third-party vendors.

• Allow unmanaged/personal apps to share their data with the iManage Work Mobility for Intune app: Control which apps, such as a note-taking app that the user downloaded, can share data with iManage Work Mobility for Intune.

• Prevent sharing of data to unsanctioned cloud storage services: Inside Microsoft Office applications, users can configure Dropbox, Box, or other storage providers with a personal account to store content. Typically, these sites are blocked because they can't enforce proper security controls in these environments. While users may want to use Dropbox or Box for their personal storage, you can use Intune to block your users from saving content to these sites when they're signed in to an Office application using their corporate account.

The following deployment options are supported:

For more information about understanding the differences between deploying MAM versus MDM, go to the following:

https://learn.microsoft.com/en-us/intune/intune-service/fundamentals/what-is-device-management#choose-the-device-management-solution-thats-right-for-you

To learn more about Intune's app protection features, go to the following:

• https://learn.microsoft.com/en-us/intune/intune-service/apps/app-protection-policy

• https://learn.microsoft.com/en-us/intune/intune-service/apps/app-protection-policy-settings-ios