设计注意事项Design considerations

了解本文档中“构想 BYOD 基础结构解决方案”中详细介绍的要求之后,你可以选择适当的产品和技术来实现 BYOD 基础结构设计的要求。With an understanding of the requirements detailed in Envisioning the BYOD Infrastructure Solution in this document, you can select appropriate products and technologies to implement the requirements for your BYOD infrastructure design. 下表列出了可用于实现 BYOD 基础架构解决方案的 Microsoft 产品、技术和服务。The following table lists Microsoft products, technologies, and services that can be used to implement a BYOD infrastructure solution.

本指南中所述的用于 BYOD 基础架构解决方案的 Microsoft 产品、技术和服务分别为:Microsoft products, technologies, and services for a BYOD infrastructure solution that will be mentioned in this guide are:

用户和设备User and device

  • Windows Server 2012 R2Windows Server 2012 R2
  • Windows 10Windows 10
  • 工作区加入Workplace Join
  • 设备注册服务Device Registration Service
  • 设备注册Device Enrollment
  • Wi-Fi 配置文件Wi-Fi profile
  • Company PortalCompany Portal
  • HTTPS 协议HTTPS protocol

数据访问和保护Data access and protection

  • Windows Server 2012 R2Windows Server 2012 R2
  • Active Directory 域服务 (AD DS)Active Directory Domain Services (AD DS)
  • Azure Active Directory (Azure AD)Azure Active Directory (Azure AD)
  • Azure Multi-Factor Authentication (Azure MFA)Azure Multi-Factor Authentication (Azure MFA)
  • Active Directory 联合身份验证服务 (AD FS)Active Directory Federation Services (AD FS)
  • 动态访问控制Dynamic Access Control
  • Microsoft 权限管理服务Microsoft Rights Management service
  • Azure 信息保护Azure Information Protection
  • SMB 加密SMB Encryption
  • 单一登录(SSO)Single Sign-On (SSO)
  • 工作文件夹Work Folders
  • Web 应用程序代理 (WAP)Web Application Proxy (WAP)

ManagementManagement

  • Microsoft IntuneMicrosoft Intune
  • 设备管理策略Device Management Policies
  • 统一的管理基础结构Unified Management Infrastructure
  • 选择性擦除Selective Wipe
  • 软件分发Software Distribution
  • 分发点使用报告和管理Distribution Point Usage Reports and Management
  • System Center 2012 R2 Configuration ManagerSystem Center 2012 R2 Configuration Manager

应用Apps

  • Web 应用程序代理Web Application Proxy
  • 自动触发器 VPNAutomatic Trigger VPN
  • RemoteAppRemoteApp
  • 会话阴影Session Shadow
  • 快速重新连接Quick Reconnect
  • 重复数据删除存储Deduplication Storage
  • 安全开发生命周期 (SDL)Security Development Lifecycle (SDL)
  • Active Directory 联合身份验证服务 (AD FS)Active Directory Federations Services (AD FS)
  • HTTPS 协议HTTPS protocol

以下各节概述了设计过程,但正如本文档的“构想 BYOD 基础结构解决方案”中提到的,设计和要求定义过程在完成之前都将进行迭代。The sections that follow outline the design process, but as mentioned in Envisioning the BYOD Infrastructure Solution in this document, the design and requirements definition process is iterative until it has been completed. 文档的其余部分涉及到设计注意事项以及上表中列出的产品、技术和服务。The remainder of the document addresses design considerations and the products, technologies, and services listed in the preceding table. 在使用多种 Microsoft 产品、技术和服务来处理不同的设计注意事项时,将讨论它们之间的权衡。When multiple Microsoft products, technologies, and services can be used to address different design considerations, the tradeoffs among them are discussed.

用于支持 BYOD 的基础结构设计将总结已在本文出现的问题的解答,以及可供你使用的技术功能和选项。The infrastructure design to support BYOD brings together the answers to the questions that were presented previously in this article and the technology capabilities and options that are made available to you. 本文档讨论的设计使用基于 Microsoft 的技术。The design that is discussed in this document uses Microsoft-based technology. 但是,设计选项和注意事项可应用于任何用来实现 BYOD 模型的基础结构。However, the design options and considerations can be applied to any infrastructure used to embrace the BYOD model.