Connettore Check Point SandBlast Mobile Threat Defense con IntuneCheck Point SandBlast Mobile Threat Defense connector with Intune

È possibile controllare l'accesso dei dispositivi mobili alle risorse aziendali usando l'accesso condizionale in base alla valutazione dei rischi condotta da Check Point SandBlast Mobile, una soluzione di Mobile Threat Defense integrata in Microsoft Intune.You can control mobile device access to corporate resources using conditional access based on risk assessment conducted by Check Point SandBlast Mobile, a mobile threat defense solution that integrates with Microsoft Intune. La valutazione dei rischi viene eseguita in base ai dati di telemetria raccolti dai dispositivi che eseguono l'app Check Point SandBlast Mobile.Risk is assessed based on telemetry collected from devices running the Check Point SandBlast Mobile app.

È possibile configurare criteri di accesso condizionale in base alla valutazione dei rischi di Check Point SandBlast Mobile abilitata tramite i criteri di conformità dei dispositivi di Intune, che possono essere usati per consentire o impedire ai dispositivi non conformi di accedere alle risorse aziendali a seconda delle minacce rilevate.You can configure conditional access policies based on Check Point SandBlast Mobile risk assessment enabled through Intune device compliance policies, which you can use to allow or block non-compliant devices to access corporate resources based on detected threats.

In che modo Intune e Check Point SandBlast Mobile consentono di proteggere le risorse aziendali?How do Intune and Check Point SandBlast Mobile help protect your company resources?

L'app Check Point SandBlast Mobile per Android e iOS acquisisce (se disponibili) i dati di telemetria relativi al file system, allo stack di rete, al dispositivo e alle applicazioni e li invia al servizio cloud Check Point SandBlast per la valutazione del livello di rischio delle minacce per dispositivi mobili.Check Point Sandblast Mobile app for Android and iOS captures file system, network stack, device and application telemetry where available, then sends the telemetry data to the Check Point SandBlast cloud service to assess the device's risk for mobile threats.

I criteri di conformità dei dispositivi di Intune includono una regola per Check Point SandBlast Mobile Threat Defense, basata sulla valutazione dei rischi eseguita da Check Point SandBlast.The Intune device compliance policy includes a rule for Check Point SandBlast Mobile Threat Defense, which is based on the Check Point SandBlast risk assessment. Quando questa regola è abilitata, Intune valuta la conformità del dispositivo in base ai criteri abilitati.When this rule is enabled, Intune evaluates device compliance with the policy that you enabled. Se il dispositivo risulta non conforme, l'accesso degli utenti a risorse aziendali come Exchange Online e SharePoint Online viene bloccato.If the device is found non-compliant, users are blocked access to corporate resources like Exchange Online and SharePoint Online. Gli utenti ricevono inoltre istruzioni dall'app Check Point SandBlast Mobile installata nei relativi dispositivi per risolvere il problema e ottenere nuovamente l'accesso alle risorse aziendali.Users also receive guidance from the Check Point SandBlast mobile app installed in their devices to resolve the issue and regain access to corporate resources.

<!-- ## Sample scenarios

Here are some common scenarios:

Control access based on threats from malicious apps

When malicious apps such as malware are detected on devices, you can block devices until the threat is resolved:

  • Connecting to corporate e-mail

  • Syncing corporate files with the OneDrive for Work app

  • Accessing company apps

Block when malicious apps are detected:

Check Point MTD block when malicious apps are detected

Access granted on remediation:

Check Point MTD access granted

Control access based on threat to network

Detect threats like Man-in-the-middle in network, and protect access to Wi-Fi networks based on the device risk.

Block network access through Wi-Fi:

Check Point MTD block network access through Wi-Fi

Access granted on remediation:

Check Point MTD Wi-Fi access granted

Control access to SharePoint Online based on threat to network

Detect threats like Man-in-the-middle in network, and prevent synchronization of corporate files based on the device risk.

Block SharePoint Online when network threats are detected:

Check Point MTD block SharePoint Online access

Access granted on remediation:

Check Point MTD SharePoint Online access granted

Supported platforms

  • Android 4.1 and later

  • iOS 8 and later

Pre-requisites

  • Azure Active Directory Premium

  • Microsoft Intune subscription

  • Check Point SandBlast Mobile Threat Defense subscription

Next steps

Set up CheckPoint SandBlast Mobile app

Integrate CheckPoint SandBlast with Intune

Enable CheckPoint SandBlast Mobile MTD connector

Create CheckPoint SandBlast Mobile device compliance policy

Per inviare commenti e suggerimenti sul prodotto, visita la pagina Intune Feedback