使用 Microsoft Intune 监视应用保护策略Monitor app protection policies with Microsoft Intune

可以监视已应用于用户的应用保护策略的符合性状态。You can monitor the compliance status of the app protection policies that you've applied to users. 可找到的信息包括受应用保护策略影响的用户、它的符合性状态和用户可能遭遇的任何问题。You'll be able to find information about the users affected by the app protection policies, its compliance status, and any issues that your users might be experiencing.

可在 3 个不同的位置监视合规性状态:There are three different places to monitor the compliance status:

  • 摘要视图Summary view

  • 详细视图Detailed view

  • 报表视图Reporting view

摘要视图Summary view

请按下面 3 个步骤打开“摘要”视图:Follow the three steps below to open the Summary view:

  1. 转到 Azure 门户,然后输入你的凭据。Go to the Azure portal, and enter your credentials.
  2. 选择“更多服务”,然后在筛选器文本框中键入“Intune”。Choose More Services, and type Intune in the filter textbox.
  3. 选择“Intune 应用保护”。Choose Intune App Protection.

在“Intune 移动应用程序管理”边栏选项卡上,可查看合规性状态的摘要:On Intune mobile application management blade, you can see a summary of the compliance status:

“Intune 移动应用程序管理”边栏选项卡上的“摘要”磁贴。

  • 用户:公司中正在工作环境中使用与该策略相关联的应用的用户总数。Users: The total number of users in your company who are using an app which is associated with a policy in a work context.

  • 通过策略进行管理:已在工作环境中使用某应用且已分配到策略的用户数。MANAGED BY POLICY: The number of users who have used an app who have a policy assigned to them in a work context.

  • 无策略:正在工作环境中使用任何策略均不以其为目标的应用的用户数。NO POLICY: The number of users who are using an app that is not targeted by any policy in a work context. 可以考虑将这些用户添加到策略。You might consider adding these users to the policy.

    备注

    如果每个平台有多个策略且已至少为用户分配了一个策略,则会考虑通过策略对用户进行管理。If you have multiple policies per platform, a user will be considered managed by policy when they have at least one policy assigned to them.

  • 已标记用户:遇到问题的用户数量。Flagged users: The number of users who are experiencing issues. 目前仅将具有已越狱设备的用户报告在“已标记用户”下。Currently, only users with jailbroken devices are reported under Flagged users.

详细视图Detailed view

可以通过选择“用户状态”磁贴(基于设备操作系统平台)和“已标记用户”磁贴转到摘要的详细视图。You can get to the detailed view of the summary by choosing the User status tile (based on device OS platform), and the Flagged users tile.

用户状态User status

可搜索单个用户并查看该用户的合规性状态。You can search for a single user and check the compliance status for that user. “应用报告”边栏选项卡显示已选择用户的以下信息:The App reporting blade shows the following information for a selected user:

  • 与用户帐户关联的设备Devices that are associated with the user account

  • 设备上具有应用保护策略的应用Apps with an app protection policy on the device

  • 状态:Status:

    • 已签入:策略已部署到用户,且应用在工作环境中至少使用了一次。Checked in: The policy was deployed to the user, and the app was used in the work context at least once.

    • 未签入:策略已部署到用户,但应用从那时起尚未在工作环境中使用。Not checked in: The policy was deployed to the user, but the app has not been used in the work context since then.

备注

如果搜索的用户没有部署应用保护策略,你将看到一条消息,告知你用户不是任何应用保护策略的目标对象。If the users you searched for does not have the app protection policy deployed to them, you'll see a message informing you that the user is not targeted by any app protection policies.

若要查看用户的报告,请按照这些步骤进行操作:To see the reporting for a user, follow these steps:

  1. 若要选择用户,请选择“摘要”磁贴。To select a user, choose the Summary tile.

    屏幕快照 3

  2. 在打开的“应用报表”边栏选项卡上,选择“选择用户”以搜索 Azure Active Directory 用户。On the App reporting blade that opens, choose Select user to search for an Azure Active Directory user.

    “应用报告”边栏选项卡上的“选择用户”选项

  3. 从列表中选择一个用户。Select the user from the list. 可以看到该用户合规性状态的详细信息。You will see the details of the compliance status for that user.

已标记用户Flagged users

详细视图显示错误消息、错误发生时访问的应用、受影响的设备操作系统平台和时间戳。The detailed view shows the error message, the app that was accessed when the error happened, the device OS platform affected, and a time stamp.

报表视图Reporting view

可从详细视图中找到相同报表,还可通过其他报表了解应用保护策略的符合性状态:You can find the same reports from the Detailed view, and additional reports to help you with the app protection policy compliance status:

屏幕快照 - 4

  • 应用保护用户报表:概述了可在以上详细视图部分下的“用户状态”中找到的相同信息。App protection user report: It outlines the same information you can find at the User status report under the Detailed view section above.

  • 应用保护应用报表:提供了生成报表前,管理员可选择的两种不同应用保护状态。App protection app report: It provides two different app protection statuses that admins can select before generating the report. 状态可以为受保护,也可以为不受保护。The statuses can be protected or unprotected.

    • 托管 MAM 活动的用户状态(受保护):此报表概述了 每个用的每个托管 MAM 应用的活动。User status for managed MAM activity (Protected): This report outlines the activity of each managed MAM app, on a per user basis.

      • 它显示了每个用户的应用保护策略所面向的所有应用,并通过应用保护策略将每个应用的状态细分为“已签入”,或者显示以应用保护策略为目标但应用从未签入的应用。It shows all apps targeted by app protection policies for each user, and break down the status of each app as checked in with app protection policies, or that was targeted with an app protection policy but the app was never checked in.
    • 非托管 MAM 活动的用户状态(不受保护):此报表概述了每个用户目前已启用 MAM 的非托管应用的活动。User status for unmanaged MAM activity (Unprotected): This report outlines the activity of MAM-enabled apps that are currently unmanaged, on a per user basis. 发生这种情况的原因如下:This might happen according to the following reasons:

      • 用户正在使用这些应用,或者这些应用是应用保护策略目前未针对的应用。These apps are either being used by a user or an app that is not currently targeted by an app protection policy.

      • 已签入所有应用,但应用还未获取任何应用保护策略。All apps are checked in, but aren't getting any app protection policies.

屏幕快照 - 2

表格分组Table grouping

“应用保护用户报表”数据出现后,可按照以下方式聚合数据:Once the App protection user report data shows up, you can aggregate data by the following:

  • 验证结果:数据显示为按应用保护状态分组,可能是失败、警告或成功。Validation result: The data shows up grouped by app protection status, which can be failure, warning or success.
  • 应用名称:数据显示为按应用(实际应用名称)分组,有失败、警告或成功。App name: The data shows up grouped by apps (the actual app name) with failure, warning or success.

将应用保护活动导出到 CSVExport app protection activities to CSV

可以将所有应用保护策略活动导出到单个 .csv 文件。You can export all your app protection policy activities to a single .csv file. 这可帮助分析用户报告的所有应用保护状态。This can be helpful to analyze all the app protection statuses reported from the users.

按照下列步骤进行操作可生成应用保护报表:Follow these steps to generate the App protection report:

  1. 在“Intune 移动应用程序管理”边栏选项卡中,选择“应用保护报表”。On the Intune mobile application management blade, choose App protection report.

    屏幕快照 - 6

  2. 选择“是”以保存报表,然后选择“另存为”,并选择要在其中保存报表的文件夹。Choose Yes to save your report, then choose Save As and select the folder you want to save the report in.

    屏幕快照 - 7

另请参阅See also

管理 iOS 应用之间的数据传输Manage data transfer between iOS apps

要提交产品反馈,请访问 Intune Feedback