使用 Intune 设置 Skycure 集成Set up the Skycure integration with Intune

适用于:经典控制台中的 IntuneApplies to: Intune in the classic console
正在查找有关 Azure 中的 Intune 的文档?Looking for documentation about Intune on Azure? 请转到此处Go here.

你需要将 Skycure 应用添加到 Azure AD,以具备单一登录功能。You need to add Skycure apps into Azure AD to have Single Sign On capabilities.

在开始之前Before you begin

用于集成 Intune 和 Skycure 的 Azure AD 帐户Azure AD account used to integrate Intune and Skycure

  • 在启动 Skycure 基本设置流程前,请务必在 Skycure管理控制台中正确配置 Azure AD 帐户。Make sure you have the Azure AD account properly configured in the Skycure Management console, before starting the Skycure Basic setup process.

完全集成与只读Full integration vs. Read-only

Skycure 支持与 Intune 集成的两种模式:Skycure supports two modes of integration with Intune:

  • 只读集成(基本设置):仅列出来自 Azure Active Directory 的设备清单并在 Skycure 控制台中对其进行填充。Read-only integration (Basic setup): Only inventories devices from Azure Active Directory and populates them in the Skycure console.
    • 如果在 Skycure 管理控制台中未选中“向 Intune 报告设备的运行状况和风险”和“同时向 Intune 报告安全事件”框,集成将为只读模式,并因此绝不会更改 Intune 中的设备状态(符合或不符合)。If the Report the health and risk of devices to Intune, and Also report security incidents to Intune boxes are not selected in the Skycure Management console, the integration is read-only and therefore will never change a devices state (compliant or non-compliant) in Intune.
  • 完整集成:允许 Skycure 向 Intune 报告设备风险和安全事件详细信息,这将在两个云服务中之间创建双向通信。Full integration: Allows Skycure to report devices on risk and security incident details to Intune, which creates a bi-directional communication between both cloud services.

Skycure 应用如何与 Azure AD 和 Intune 一起使用?How the Skycure apps are used with Azure AD and Intune?

  • iOS 应用:允许最终用户使用 iOS 应用登录到 Azure AD。iOS app: Allows end-users to sign in to Azure AD using an iOS app.

  • Android 应用:允许最终用户使用 Android 应用登录到 Azure AD。Android app: Allows end-users to sign in to Azure AD using an Android app.

  • 管理应用:这是 Skycure Azure AD 多租户应用,可实现与 Intune 之间的服务到服务通信。Management app: This is the Skycure Azure AD multi-tenant app which enables service-to-service communication with Intune.

在 Intune 和 Skycure 之间设置只读集成To set up the read-only integration between Intune and Skycure

重要

Skycure 管理员凭据是必须属于 Azure Active Directory 中有效用户的电子邮件,否则登录失败。The Skycure admin credentials is an e-mail that must belong to a valid user in the Azure Active Directory, otherwise the login will fail. Skycure 使用 Azure Active Directory 对使用单一登录 (SSO) 的管理员进行身份验证。Skycure uses Azure Active Directory to authenticate its admin using Single Sign On (SSO).

  1. 转到 Skycure 管理控制台Go to Skycure Management Console.

  2. 输入你的“Skycure 管理员凭据”,然后单击“继续”。Enter your Skycure admin credentials, then click Continue.

  3. 转到“设置”,选择“Intune 集成”下的“基本设置”。Go to Settings, choose Basic Setup under Intune Integration.

  4. 在“iOS 应用”标签上,单击“添加到 Active Directory”。On the iOS App label, click on Add to Active Directory.

    Skycure 管理控制台上的 iOS 应用

  5. 登录页打开后,输入你的 Intune 凭据,然后单击“接受”。Login page opens, enter your Intune credentials, then click Accept.

    iOS 应用 Intune 登录提示

  6. 将应用添加到 Azure AD 后,可以看到应用已成功添加到 Skycure 管理控制台上 Azure AD 的提示。Once the app is added into Azure AD, you can see an indication that the app was successfully added into Azure AD on the Skycure Management console.

    iOS 应用完成屏幕

备注

Skycure Android 应用和管理应用重复相同的过程。Repeat the same process for the Skycure Android and Management apps.

将 Azure AD 安全组添加到 SkycureAdd an Azure AD Security group into Skycure

需要添加 Azure AD 安全组,其中包含运行 Skycure 的所有设备。You need to add an Azure AD security group that contains all devices running Skycure.

  1. 输入并选择运行 Skycure 的设备的所有安全组,然后单击“应用更改”。Enter and select all the security groups of devices that are running Skycure, then click on Apply changes.

    配置安全组 Skycure 管理控制台

Skycure 将运行其移动威胁防御服务的设备与 Azure AD 安全组同步。Skycure syncs the devices running its Mobile Threat Defense service with the Azure AD security groups.

在 Skycure 管理控制台上完成的安全组配置

在 Intune 和 Skycure 之间设置完全集成Set up the full integration between Intune and Skycure

  1. 转到 Skycure 管理控制台Go to Skycure Management Console.

  2. 输入你的“Skycure 管理员凭据”,然后单击“继续”。Enter your Skycure admin credentials, then click Continue.

  3. 转到“设置”,选择“Intune 集成”下的“完全集成”。Go to Settings, choose Full Integration under Intune Integration.

  4. 检查以下设置:Check the following settings:

    a.a. 向 Intune 报告设备的运行状况和风险Report the health and risk of device to Intune

    b。b. 此外,向 Intune 报告安全事件Also report security incidents to Intune

  5. 单击“应用更改”。Click on Apply changes.

    已完成的 Skycure 完全集成

后续步骤Next steps

在 Intune 中启用 Skycure 移动威胁防御Enable Skycure Mobile Threat Defense in Intune

要提交产品反馈,请访问 Intune Feedback