設定 Skycure 與 Intune 整合Set up the Skycure integration with Intune

您必須將 Skycure 應用程式新增至 Azure AD,才能使用單一登入功能。You need to add Skycure apps into Azure AD to have Single Sign On capabilities.

開始之前Before you begin

用來整合 Intune 與 Skycure 的 Azure AD 帳戶Azure AD account used to integrate Intune and Skycure

  • 在開始 Skycure 基本設定程序之前,請確定您已經在 Skycure 管理主控台中正確設定 Azure AD 帳戶。Make sure you have the Azure AD account properly configured in the Skycure Management console, before starting the Skycure Basic setup process.

完整整合與唯讀Full integration vs. Read-only

Skycure 支援兩種與 Intune 整合的模式:Skycure supports two modes of integration with Intune:

  • 唯讀整合 (基本設定):僅清查來自 Azure Active Directory 的裝置,並將它們填入 Skycure 主控台。Read-only integration (Basic setup): Only inventories devices from Azure Active Directory and populates them in the Skycure console.
    • 如果未在 Skycure 管理主控台中選取 [向 Intune 報告裝置的健全狀況和風險] 和 [也向 Intune 報告安全性事件] 方塊,則整合將會是唯讀,並因此一律不會變更 Intune 中的裝置狀態 (符合規範或不符合規範)。If the Report the health and risk of devices to Intune, and Also report security incidents to Intune boxes are not selected in the Skycure Management console, the integration is read-only and therefore will never change a devices state (compliant or non-compliant) in Intune.
  • 完整整合:允許 Skycure 向 Intune 報告裝置的風險和安全性事件詳細資料,這會在兩個雲端服務之間建立雙向通訊。Full integration: Allows Skycure to report devices on risk and security incident details to Intune, which creates a bi-directional communication between both cloud services.

Skycure 應用程式如何搭配 Azure AD 和 Intune 使用?How the Skycure apps are used with Azure AD and Intune?

  • iOS 應用程式︰允許使用者使用 iOS 應用程式登入 Azure AD。iOS app: Allows end-users to sign in to Azure AD using an iOS app.

  • Android 應用程式︰允許使用者使用 Android 應用程式登入 Azure AD。Android app: Allows end-users to sign in to Azure AD using an Android app.

  • 管理應用程式︰這是 Skycure Azure AD 多租用戶應用程式,可啟用與 Intune 的服務對服務通訊。Management app: This is the Skycure Azure AD multi-tenant app which enables service-to-service communication with Intune.

設定 Intune 和 Skycure 之間的唯讀整合To set up the read-only integration between Intune and Skycure

重要

Skycure 系統管理員認證必須是屬於 Azure Active Directory 有效使用者的電子郵件,否則登入將會失敗。The Skycure admin credentials is an e-mail that must belong to a valid user in the Azure Active Directory, otherwise the login will fail. Skycure 會使用 Azure Active Directory,透過單一登入 (SSO) 來驗證它的系統管理員。Skycure uses Azure Active Directory to authenticate its admin using Single Sign On (SSO).

  1. 移至 Skycure 管理主控台Go to Skycure Management Console.

  2. 輸入您的「Skycure 系統管理員認證」,然後按一下 [繼續]。Enter your Skycure admin credentials, then click Continue.

  3. 移至 [設定],選擇 [Intune 整合] 底下的 [基本設定]。Go to Settings, choose Basic Setup under Intune Integration.

  4. 在 [iOS 應用程式] 標籤上,按一下 [新增至 Active Directory]。On the iOS App label, click on Add to Active Directory.

    Skycure 管理主控台上的 iOS 應用程式

  5. 隨即會開啟登入頁面。請輸入您的 Intune 認證,然後按一下 [接受]。Login page opens, enter your Intune credentials, then click Accept.

    iOS 應用程式 Intune 登入提示

  6. 一旦將應用程式新增至 Azure AD,您就可以在 Skycure 管理主控台上看到指示,指出應用程式已成功新增至 Azure AD。Once the app is added into Azure AD, you can see an indication that the app was successfully added into Azure AD on the Skycure Management console.

    iOS 應用程式完成畫面

注意

針對 [Skycure Android] 和 [管理] 應用程式重複相同程序。Repeat the same process for the Skycure Android and Management apps.

將 Azure AD 安全性群組新增至 SkycureAdd an Azure AD Security group into Skycure

您需要新增包含所有執行 Skycure 之裝置的 Azure AD 安全性群組。You need to add an Azure AD security group that contains all devices running Skycure.

  1. 輸入並選取所有執行 Skycure 之裝置的安全性群組,然後按一下 [套用變更]。Enter and select all the security groups of devices that are running Skycure, then click on Apply changes.

    設定安全性群組 Skycure 管理主控台

Skycure 會將執行其 Mobile Threat Defense 服務的裝置,與 Azure AD 安全性群組同步。Skycure syncs the devices running its Mobile Threat Defense service with the Azure AD security groups.

在 Skycure 管理主控台上完成的安全性群組設定

設定 Intune 和 Skycure 之間的完整整合Set up the full integration between Intune and Skycure

  1. 移至 Skycure 管理主控台Go to Skycure Management Console.

  2. 輸入您的「Skycure 系統管理員認證」,然後按一下 [繼續]。Enter your Skycure admin credentials, then click Continue.

  3. 移至 [設定],選擇 [Intune 整合] 底下的 [完整整合]。Go to Settings, choose Full Integration under Intune Integration.

  4. 選取下列設定:Check the following settings:

    a.a. 向 Intune 報告裝置的健全狀況和風險Report the health and risk of device to Intune

    b。b. 也向 Intune 報告安全性事件Also report security incidents to Intune

  5. 按一下 [套用變更]。Click on Apply changes.

    完成的 Skycure 完整整合

後續步驟Next steps

設定 Skycure 應用程式Set up Skycure apps