了解企业移动性 + 安全性Learn about Enterprise Mobility + Security

组织在进行数字转换时确保高效工作、协作和企业数据安全非常重要,Microsoft 致力于提供一种新方法来确保这种转换。Securing productivity, collaboration and enterprise data is critically important as organizations digitally transform and Microsoft is committed to delivering a new approach to secure this transition. Microsoft 的 安全高效企业 (SPE) 是可靠、安全和高效的处理方法,它融合了 Office 365、企业移动性 + 安全性和 Windows 10 企业版的最佳性能来促进员工的工作,让组织顺利实施数字转换,它重点关注以下方面:Microsoft’s Secure Productive Enterprise (SPE) is the most trusted, secure, and productive way to work that brings together the best of Office 365, Enterprise Mobility + Security, and Windows 10 Enterprise to empower your employees and lead your organization through its digital transformation with special focus on the following areas:

  • 协作Collaboration. 在整个组织内实现无缝、高效的协作。Enable seamless, efficient collaboration across your organization.
  • 移动性Mobility. 让员工在任何地方任何设备上都可以高效工作。Enable a productive workforce anywhere on any device.
  • 智能Intelligence. 让员工拥有受业务和个人数据驱动的更强的洞察力。Provide employees greater business and personal data-driven insights.
  • 信任Trust. 在不影响高效工作的情况下保护公司信息。Protect company information without disrupting productivity.

作为 SPE 的一部分,企业移动性 + 安全性 (EMS) 提供灵活、全面的移动性和安全性解决方案,能使你过渡到移动性和云。As part of SPE, Enterprise Mobility + Security (EMS) provides flexible, comprehensive mobility and security solutions that enable your transition to mobility and the cloud. 在移动优先、云优先的世界中组织需使其员工能通过任何设备在任何地方都能够访问所有数据和应用程序。Organizations in the mobile-first, cloud-first world need to empower their employees to access all their data and applications from every device and every location. 用户需要彼此协作,与合作伙伴协作,并与客户联系。Users need to collaborate with each other, their partners, and connect with customers. 并且他们所用的工具不再只在受保护和受控的本地环境中操作。And the tools they use don’t operate only in a protected and controlled on-premises environment any more. 可以在任何公共云中找到它们。They can be found in any public cloud.

借助 EMS,你可以获得标识驱动的创新,它能帮助用户安全高效地使用自己喜欢的应用和设备。With EMS you get identity-driven innovations that help your users stay secure and productive on their favorite apps and devices. EMS 提供完整的安全解决方案,它受 Microsoft 云量级智能安全图支持,能够在不断变化的环境中保护你的业务免受高级威胁(传统工具无法解决)的攻击。EMS provides a complete security solution backed by Microsoft’s cloud scale intelligent security graph to protect your business in a world of evolving challenges and advanced threats that cannot be mitigated with traditional tools. 借助 EMS,员工可以在不牺牲效率的情况下高效工作。With EMS, your employees also get productivity without compromise. 无缝保护公司数据,并且不会对用户使用造成影响,因此他们可以在自己喜欢的设备上顺利地工作。Company data is seamlessly protected without slowing down users so they can do their best work on their favorite device.

观看此短视频,了解企业移动+安全性 (EMS) 如何独一无二地为你节省开支、快速启动和运行,并通过安全的方式让企业管理和保护用户、设备、应用和数据:Watch this short video to learn more about how Enterprise Mobility + Security (EMS) is uniquely positioned to save you money, get up and running quickly, and securely address enterprise scenarios for managing and protecting users, devices, apps, and data:

EMS 包括什么?What’s included in EMS?

购买 Microsoft 企业移动性 + 安全性产品非常便捷。It’s easy to buy Microsoft Enterprise Mobility + Security offerings. 为便捷起见,每个产品按用户而不是按设备标价,并且还可享受批量折扣。To keep things simple, each product is priced per user, not per device, and there are also volume discounts.

可以通过 EMS E3 或 EMS E5 产品/服务购买 EMS 许可证。You can purchase EMS licenses through either the EMS E3 or EMS E5 offering. 使用 EMS E5,可以获得 E3 中包含的所有功能以及其他云安全功能,如下表所示:With EMS E5, you get everything included in E3 along with additional cloud security capabilities as you can see in the following table:

标识和访问管理Identity and access management 托管移动工作效率Managed mobile productivity 信息保护Information protection 标识驱动安全Identity driven security
EMS E3EMS E3 Azure Active Directory Premium P1Azure Active Directory Premium P1. 对云和本地应用安全单一登录。Secure Single-Sign on to cloud and On-premises apps. MFA,条件性访问和高级安全报告。MFA, Conditional Access and advanced security reporting. Microsoft Intune。Microsoft Intune. 移动设备和应用管理,用于保护任意设备上的企业应用和数据。Mobile device and app management to protect corporate apps and data on any device. Azure 信息保护高级版 P1Azure Information Protection Premium P1. 对所有文件和存储位置进行加密。Encryption for all files and storage locations. 基于云的文件跟踪。Cloud based file tracking. Microsoft 高级威胁分析Microsoft Advanced Threat Analytics. 利用用户帐户和实体行为分析保护免受高级针对性攻击。Protection from advanced targeted attacks leveraging user and entity behavioral analytics.
EMS E5 (包括 EMS E3 中的所有功能)EMS E5 (includes all capabilities in EMS E3) Azure Active Directory Premium P2Azure Active Directory Premium P2. 针对用户和特权标识的标识和访问管理以及高级保护。Identity and Access Management with advanced protection for users and privileged identities. (包括 P1 中的所有功能)(includes all capabilities in P1) Azure 信息保护高级版 P2Azure Information Protection Premium P2. 对组织内外的共享文件进行智能分类和加密(包括 P1 中的所有功能)Intelligent classification, & encryption for files shared inside & outside your organization (includes all capabilities in P1) Microsoft Cloud App SecurityMicrosoft Cloud App Security. 针对云应用程序的企业级可见性、控制和保护。Enterprise-grade visibility, control, and protection for your cloud applications.

提示:Secure Productive Enterprise (SPE) 将取代企业云套件 (ECS) 成为最可靠、安全和高效的处理方法,它将 Office 365、企业移动性 + 安全性和 Windows 10 企业版结合在了一起。Tip: Secure Productive Enterprise (SPE) replaces the Enterprise Cloud Suite (ECS) as the most trusted, secure, and productive way to work that brings together Office 365, Enterprise Mobility + Security, and Windows 10 Enterprise. 而且,与 EMS 相同,你可以购买 SPE E3 或 E5 产品/服务And, just like EMS you can purchase either the SPE E3 or E5 offering.

Office 365 和 EMS。Office 365 and EMS. 结合使用效果更佳。Better together.

EMS 使员工能够充分全面地使用 Office 365(基于云的生产力软件的专业标准)。EMS enables your employees to unlock the full potential of Office 365, the professional standard for cloud-based productivity software. EMS 和 Office 365 协同工作能够为员工创建一个安全且高效的环境。EMS and Office 365 work together to create a secure and productive environment for the workforce. 与 EMS 功能融合时改进了某些 Office 365 的基本功能以支持新的工作效率模型。Some of the basic functionality of Office 365 is enhanced when paired with the capabilities of EMS to support new productivity models. Office 365 和 EMS 基于相同的后端构建,协同工作效果更好。Office 365 and EMS are built on the same backend and work better together. 跨服务集成是内置的,而不是附加的。The cross service integration is built-in and not bolted on.

标识和访问管理Identity and access management 托管移动工作效率Managed mobile productivity 信息保护Information protection 标识驱动安全Identity-driven security
Office 365Office 365 基于 O365 的 Azure AD 的基本标识管理 O365 的单一登录和 O365 基本多重身份验证 (MFA)。Basic identity management via Azure AD for O365 Single sign-on for O365 and basic multi-factor authentication (MFA) for O365. 基于 O365 的 MDM 的基本移动设备管理设备设置管理、选择性擦除以及内置于 O365 管理的控制台。Basic mobile device management via MDM for O365 Device settings management, selective wipe, and built into the O365 management console. 基于 O365 的 RMS 的 RMS 保护保护存储于 Office 的内容(O365 本地)、对 RMS SDK 的访问,并携带你自己的密钥。RMS protection via RMS for O365 Protection for content stored in Office (on-premises for O365), access to RMS SDK, and bring your own key. 高级安全管理 深入了解 Office 365 中的可疑活动。Advanced Security Management Insights into suspicious activity in Office 365.
企业移动性 + 安全性 (包括 Office 365 中的所有功能)Enterprise Mobility + Security (includes all capabilities in Office 365) O365 + 的Azure AD 高级安全报告、所有应用的单一登录、高级 MFA、自助服务组管理以及密码重置和回写到本地 AD、动态组和基于许可证分配的组成员身份。Azure AD for O365 + Advanced security reports, single sign-on for all apps, advanced MFA, self-service group management and password reset & write-back to on-premises AD, dynamic groups, and group memberships based on license assignment. O365 + 的 MDM 电脑管理、移动应用管理(阻止从公司应用到个人应用的剪切/复制/粘贴/另存为操作)、安全内容查看器、证书预配和 System Center 集成。MDM for O365 + PC management, mobile app management (prevent cut/copy/paste/save as from corporate apps to personal apps), secure content viewers, certificate provisioning, and System Center integration. O365 + 的 RMS 自动智能分类和标记数据、共享文档的跟踪和通知、保护本地 Windows Server 文件共享。RMS for O365 + Automated intelligent classification and labeling of data, tracking and notifications for shared documents, and protection for on-premises Windows Server file shares. Cloud App Security 所有云应用的可见性和控制、高级威胁分析本地标识中的标识高级威胁 Azure AD 高级版 P2 基于风险的条件性访问。Cloud App Security Visibility and control for all cloud apps, Advanced Threat Analytics Identify advanced threats in on-premises identities, Azure AD Premium P2 Risk based conditional access.

Windows 10 企业版和 EMS。Windows 10 Enterprise and EMS. 结合使用效果更佳。Better together.

与 Windows 10 企业版结合使用,EMS 可以保护应用程序访问,提供灵活的设备和应用程序管理,并帮助在任何地方保护数据。Used together with Windows 10 Enterprise, EMS can protect application access, provide flexible device and application management, and help secure data everywhere.

标识和访问管理Identity and access management 托管移动工作效率Managed mobile productivity 信息保护Information protection 标识驱动安全Identity-driven security
Windows 10Windows 10 企业云应用的单一登录、设备安装以及适用于 Windows 设备的注册。Single sign-on for business cloud apps and device setup and registration for Windows devices. 适用于企业的 Windows 应用商店、传统的域连接可管理性和基于 MDM 和 MAM 的可管理性。Windows Store for Business, traditional domain join manageability, and manageability via MDM and MAM. 对静止数据和设备上生成的数据进行加密,并对包含在漫游设置中的数据进行加密。Encryption for data at rest and generated on device and encryption for data included in roaming settings. Windows Defender 高级威胁防护识别针对 Windows 10 行为传感器的高级威胁。Windows Defender Advanced Threat Protection Identify advanced threats focused on Windows 10 behavioral sensors.
企业移动性 + 安全性 (包括 Windows 10 中的所有功能)Enterprise Mobility + Security (includes all capabilities in Windows 10) Windows 10 + 用于保护单一登录的条件性访问策略、MDM 自动注册、Bitlocker 自助恢复、回写到本地的密码重置、基于云的高级安全报告和监视以及企业状态漫游。Windows 10 + Conditional access policies for secure single sign-on, MDM auto-enrollment, self-Service Bitlocker recovery, password reset with write back to on-premises, cloud-based advanced security reports and monitoring, and Enterprise State-Roaming. Windows 10 + 移动设备管理、移动应用管理、 安全内容查看器、 证书、 Wi-Fi、 VPN、 电子邮件配置文件预配和 Windows 设备管理(通过 ConfigMgr 加入域和通过 Intune 实现基于 internet 的网站)。Windows 10 + Mobile device management, mobile app management, secure content viewer, certificate, Wi-Fi, VPN, email profile provisioning, and management of Windows devices (domain-joined via ConfigMgr and internet-based via Intune). Windows 10 + 自动智能分类和标记数据、共享文档的跟踪和通知、保护存储于 Office 和 Office 365 以及本地 Windows Server 上的内容。Windows 10 + Automated intelligent classification and labeling of data, tracking and notifications for shared documents, and protection for content stored in Office and Office 365 & Windows Server on premises. Cloud App Security 所有云应用的可见性和控制。Cloud App Security Visibility and control for all cloud apps. 高级威胁分析针对高级的威胁检测的行为分析。Advanced Threat Analytics Behavioral analytics for advanced threat detection. Azure AD 高级版基于风险的条件性访问。Azure AD Premium Risk based conditional access.

已获得 EMS 许可证,接下来做什么?You’ve got EMS licenses, now what?

进行数字转换的组织需要保护自己免受新的威胁和挑战,同时还要求 IT 不断追求更高的效率和性价比。Organizations going through digital transformation need to protect themselves from new threats and challenges while IT is continually being asked to drive efficiency and do more with less. 此外,在当今云优先、移动优先的世界中,用户希望在任何地方通过任何设备都可以高效工作。In addition, in a cloud-first, mobile-first world users expect to be productive from anywhere and on any device. 现在,你已有 EMS 许可证,可以 开始使用 EMSNow that you have EMS licenses, it's time to get started using EMS.

了解详细信息Learn more

请访问 Microsoft 企业移动性 + 安全性页面Visit the Microsoft Enterprise Mobility + Security page

开始使用企业移动性 + 安全性Start using Enterprise Mobility + Security