Microsoft Intune 的新功能What's new in Microsoft Intune

適用對象:Azure 入口網站的 IntuneApplies to: Intune in the Azure portal
您需要傳統入口網站的 Intune 相關文件嗎?Looking for documentation about Intune in the classic portal? 請移至這裡Go here.

了解每週的 Microsoft Intune 新功能Learn what’s new each week in Microsoft Intune. 您也可以了解即將推出的變更、關於服務的重要通知,以及過去版本的相關資訊。You can also find out about upcoming changes, important notices about the service, and information about past releases.

注意

具備 Configuration Manager 的混合式部署於未來將會支援多數的這些功能。Many of these features will eventually be supported for hybrid deployments with Configuration Manager. 如需新混合式功能的詳細資訊,請查看我們的混合式新增功能頁面。For more information about new hybrid features, check out our hybrid What’s New page.

2017 年 10 月 2 日當週Week of October 2, 2017

Intune 應用程式Intune apps

對公司入口網站之裝置安裝工作流程的改善 Improvements to device setup workflow in Company Portal

我們已改善 Android 版公司入口網站應用程式中的裝置安裝工作流程。We've improved the device setup workflow in the Company Portal app for Android. 我們採用您公司專屬的語言、對使用者來說更簡單明瞭,並盡量將可以合併的畫面合併。The language is more user-friendly and specific to your company, and we've combined screens where possible. 您可以在應用程式 UI 的新功能頁面中,查看這些變更。You can see these on the what's new in app UI page.

改善在 Android 裝置上要求存取連絡人的相關指引 Improved guidance around the request for access to contacts on Android devices

Android 版公司入口網站應用程式通常會要求使用者接受「連絡人」權限。The Company Portal app for Android often requires the end user to accept the Contacts permission. 如果使用者拒絕此存取權,系統現會顯示應用程式內通知,提醒他們授與此權限以進行條件式存取。If an end user declines this access, they will now see an in-app notification that alerts them to grant it for conditional access.

Android 的安全啟動修復 Secure startup remediation for Android

如果使用者是使用 Android 裝置,可以點選公司入口網站應用程式中的不相容原因。End users with Android devices will be able to tap the non-compliance reason in the Company Portal app. 如此一來,系統會盡可能將使用者直接移至設定應用程式的正確位置,以修正問題。When possible, this will take them directly to the correct location in the settings app to fix the issue.

在 Android Oreo 的公司入口網站應用程式上新增終端使用者的推播通知 Additional push notifications for end users on the Company Portal app for Android Oreo

終端使用者將會看到其他通知,這些通知會指出 Android Oreo 版公司入口網站應用程式正在執行背景工作,例如從 Intune 服務擷取原則。End users will see additional notifications to indicate to them when the Company Portal app for Android Oreo is performing background tasks, such as retrieving policies from the Intune service. 這樣可讓終端使用者清楚了解公司入口網站在其裝置上執行的系統管理工作。This increases transparency for end users about when the Company Portal is performing administrative tasks on their device. 這是適用於 Android Oreo 版公司入口網站應用程式之整體公司入口網站 UI 最佳化的一部分。This is part of the overall optimization of the Company Portal UI for the Company Portal app for Android Oreo.

在 Android Oreo 中啟用的新 UI 項目已進一步最佳化。There are further optimizations for new UI elements that are enabled in Android Oreo. 終端使用者會看到額外的通知,顯示出公司入口網站執行背景工作 (例如從 Intune 服務擷取原則) 的時間。End users will see additional notifications that will indicate to them when Company Portal is performing background tasks such as retrieving policy from the Intune service. 這可讓使用者清楚知道公司入口網站在裝置上執行管理工作的時間。This increases transparency for end users about when Company Portal is performing administrative tasks on the device.

Android 公司入口網站應用程式使用工作設定檔的新行為 New behaviors for the Company Portal app for Android with work profiles

當您使用工作設定檔註冊 Android for Work 裝置時,是由工作設定檔中的公司入口網站應用程式來執行裝置上的管理工作。When you enroll an Android for Work device with a work profile, it's the Company Portal app in the work profile that performs management tasks on the device.

除非您使用個人設定檔中啟用 MAM 的應用程式,否則 Android 公司入口網站應用程式不再有任何用途。Unless you are using a MAM-enabled app in the personal profile, the Company Portal app for Android no longer serves any use. 為了改善工作設定檔的體驗,Intune 會在成功註冊工作設定檔後,自動隱藏個人的公司入口網站應用程式。To improve the work profile experience, Intune will automatically hide the personal Company Portal app after a successful work profile enrollment.

您可以隨時啟用個人設定檔中的 Android 公司入口網站應用程式,方法是瀏覽 Play Store 中的公司入口網站,然後點選 [啟用]。The Company Portal app for Android can be enabled at any time in the personal profile by browsing for Company Portal in the Play Store and tapping Enable.

Windows 8.1 和 Windows Phone 8.1 版公司入口網站移至維持模式 Company Portal for Windows 8.1 and Windows Phone 8.1 moving to sustaining mode

自 2017 年 10 月起,Windows 8.1 和 Windows Phone 8.1 公司入口網站應用程式將會移至維持模式。Beginning in October 2017, the Company Portal apps for Windows 8.1 and Windows Phone 8.1 will move to sustaining mode. 這表示這些平台將會繼續支援應用程式和現有的案例 (例如註冊和合規性)。This means that the apps and existing scenarios, such as enrollment and compliance, will continue to be supported for these platforms. 這些應用程式仍可透過現有的發行通道 (例如 Microsoft 市集) 下載取得。These apps will continue to be available for download through existing release channels, such as the Microsoft Store.

一旦進入維持模式,這些應用程式僅會接收重大安全性更新。Once in sustaining mode, these apps will only will receive critical security updates. 但是,將不會針對這些應用程式發行額外的更新或功能。There will be no additional updates or features released for these apps. 如需新功能,建議您將裝置更新為 Windows 10 或 Windows 10 行動裝置版。For new features, we recommend that you update devices to Windows 10 or Windows 10 Mobile.

裝置註冊Device enrollment

封鎖不支援的 Samsung Knox 裝置註冊 Block unsupported Samsung Knox device enrollment

公司入口網站應用程式只會嘗試註冊支援的 Samsung Knox 裝置。The Company Portal app only attempts to enroll supported Samsung Knox devices. 為了避免 KNOX 啟用錯誤而導致 MDM 註冊失敗,系統只會嘗試針對 Samsung 發佈的裝置清單中所含的裝置進行裝置註冊。To avoid KNOX activation errors that prevent MDM enrollment, device enrollment is only attempted if the device appears in the list of devices published by Samsung. 有些 Samsung 裝置型號可能支援 KNOX,而有些不支援。Samsung devices can have model numbers that support KNOX while others that don't. 在您購買及部署之前,請先跟裝置轉銷商確認 KNOX 相容性。Verify Knox compatibility with your device reseller before purchase and deployment. 您可以在 Android 和 Samsung KNOX Standard 原則設定中找到已驗證裝置的完整清單。You can find the full list of verified devices in the Android and Samsung KNOX Standard policy settings.

結束對 Android 4.3 和較舊版本的支援End of support for Android 4.3 and lower

受管理的應用程式和 Android 公司入口網站應用程式需要 Android 4.4 及更新版本才能存取公司資源。Managed apps and the Company Portal app for Android will require Android 4.4 and higher to access company resources. 今年 12 月會強制淘汰所有已註冊的裝置,以致無法存取公司資源。By December, all enrolled devices will be force retired in December, resulting in loss of access to company resources. 如果您使用不含 MDM 的應用程式保護原則,應用程式就不會接收更新,其體驗品質會隨著時間而降低。If you are using app protection policies without MDM, apps will not receive updates, and the quality of their experience will diminish over time.

通知使用者可在已註冊裝置上看到哪些裝置資訊 Inform end users what device information can be seen on enrolled devices

針對所有公司入口網站應用程式的 [裝置詳細資料] 畫面,我們會新增 [擁有權類型]。We are adding Ownership Type to the Device Details screen on all Company Portal apps. 如此一來,使用者就能夠直接從公司可以看到哪些資訊?一文中,了解隱私權的詳細資訊。This will allow users to find out more about privacy directly from the What information can your company see? article. 在不久的將來,這項功能就會跨所有公司入口網站應用程式推出。This will be rolling out across all Company Portal apps in the near future. iOS 的這項功能已於 9 月推出。We announced this for iOS in September.

2017 年 9 月 25 日當週Week of September 25, 2017

裝置註冊Device enrollment

Intune 支援 iOS 11 Intune supports iOS 11

Intune 支援 iOS 11。Intune supports iOS 11. 這項資訊之前已在 Intune 支援部落格宣布過。This was previously announced on the Intune Support blog.

結束對 iOS 8.0 的支援End of support for iOS 8.0

受管理的應用程式和 iOS 公司入口網站應用程式需要 iOS 9.0 及更新版本才能存取公司資源。Managed apps and the Company Portal app for iOS will require iOS 9.0 and higher to access company resources. 今年 9 月前未更新的裝置將不再能存取公司入口網站或這些應用程式。Devices that aren't updated before this September will no longer be able to access the Company Portal or those apps.

Intune 應用程式Intune apps

重新整理動作已新增至 Windows 10 的公司入口網站應用程式 Refresh action added to the Company Portal app for Windows 10

Windows 10 公司入口網站應用程式可讓使用者提取以重新整理,或按桌上型電腦的 F5,重新整理應用程式中的資料。The Company Portal app for Windows 10 allows users to refresh the data in the app by either pulling to refresh or, on desktops, pressing F5.

2017 年 9 月 11 日當週Week of September 11, 2017

裝置註冊Device enrollment

通知終端使用者可看到哪些 iOS 裝置資訊 Inform end users what device information can be seen for iOS

我們在 iOS 的公司入口網站應用程式 [裝置詳細資料] 畫面新增了 [擁有權類型]。We have added Ownership Type to the Device Details screen on the Company Portal app for iOS. 這樣可讓使用者直接從此頁面從 Intune 終端使用者文件尋找有關隱私權的詳細資訊。他們也能夠在 [關於] 畫面上找到這項資訊。This will allow users to find out more about privacy directly from this page from the Intune end user docs. They will also be able to locate this information on the About screen.

允許使用者存取適用於 Android 的公司入口網站應用程式,不需要註冊。Allow end users to access the Company Portal app for Android without enrollment

使用者很快地不必註冊裝置也能存取 Android 的公司入口網站。End users will soon not have to enroll their device to access the Company Portal app for Android. 使用應用程式保護原則的組織使用者,在開啟公司入口網站應用程式時,將不會再收到註冊裝置的提示。End users at organizations that are using App Protection Policies will no longer receive prompts to enroll their device when they open the Company Portal app. 使用者也可以從公司入口網站安裝應用程式,不用註冊裝置。End users will also be able to install apps from the Company Portal without enrolling the device.

Android 公司入口網站應用程式中更易了解的措辭 Easier-to-understand phrasing for the Company Portal app for Android

Android 公司入口網站應用程式的註冊程序已經使用新的文字來簡化,讓使用者可更輕鬆地進行註冊。The enrollment process for the Company Portal app for Android has been simplified with new text to make it easier for end users to enroll. 如果您有自訂註冊文件,建議您予以更新,以反映新的畫面。If you have custom enrollment documentation, you will want to update it to reflect the new screens. 您可以在 Intune 終端使用者應用程式頁面上找到範例影像。You can find sample images on our UI updates for Intune end user apps page.

Windows 10 公司入口網站應用程式已新增到 Windows 資訊保護允許原則 Windows 10 Company Portal app added to Windows Information Protection allow policy

Windows 10 公司入口網站應用程式已經更新,以支援 Windows 資訊保護 (WIP)。The Windows 10 Company Portal app has been updated to support Windows Information Protection (WIP). 此應用程式可以加入到 WIP 允許原則。The app can be added to the WIP allow policy. 透過這項變更,此應用程式將不再需要新增至 [豁免] 清單。With this change, the app no longer has to be added to the Exempt list.

2017 年 8 月 21 日這週Week of August 21, 2017

裝置註冊Device enrollment

裝置概觀改善 Improvements to device overview

裝置概觀改善現在會顯示已註冊的裝置,但不包含 Exchange ActiveSync 所管理的裝置。Improvements to the device overview now display enrolled devices but excludes devices managed by Exchange ActiveSync. Exchange ActiveSync 裝置與已註冊裝置的管理選項不同。Exchange ActiveSync devices do not have the same management options as enrolled devices. 若要在 Azure 入口網站中檢視 Intune 中的已註冊裝置數目以及依平台的已註冊裝置數目,請移至 [裝置] > [概觀]。To view the number of enrolled devices and number of enrolled devices by platform in Intune in the Azure portal, go Devices > Overview.

裝置管理Device management

Intune 所收集裝置清查的改善Improvements to device inventory collected by Intune

在此版本中,我們已對您管理的裝置所收集的清查資訊進行下列改善:In this release, we’ve made the following improvements to the inventory information collected by devices you manage:

  • 對於 Android 裝置,您現在可以將資料行新增至裝置清查,以顯示每個裝置的最新修補程式等級。For Android devices, you can now add a column to device inventory that shows the latest patch level for each device. Security patch level 資料行新增至裝置清單,以查看這項資訊。Add the Security patch level column to your device list to see this.
  • 當您篩選裝置檢視時,現在可以依其註冊日期篩選裝置。When you filter the device view, you can now filter devices by their enrollment date. 例如,您可以只顯示在所指定日期之後註冊的裝置。For example, you could display only devices that were enrolled after a date you specify.
  • 我們已改善 Last Check-in Date 項目所使用的篩選。We’ve made improvements to the filter used by the Last Check-in Date item.
  • 在裝置清單中,您現在可以顯示公司所擁有裝置的電話號碼。In the device list, you can now display the phone number of corporate owned devices. 此外,您還可以使用篩選窗格,依電話號碼來搜尋裝置。Additionally, you can use the filter pane to search for devices by phone number.

如需裝置清查的詳細資料,請參閱如何檢視 Intune 裝置清查For more details about device inventory, see How to view Intune device inventory.

macOS 裝置的條件式存取支援Conditional access support for macOS devices

您現在可以設定條件式存取原則,要求 Mac 裝置向 Intune 註冊,並符合其裝置的合規性原則。You can now set a conditional access policy that requires Mac devices to be enrolled into Intune and compliant with its device compliance policies. 例如,使用者可以下載適用於 macOS 的 Intune 公司入口網站應用程式,並在 Intune 中註冊其 Mac 裝置。For example, users can download the Intune Company Portal app for macOS and enroll their Mac devices into Intune. Intune 會評估 Mac 裝置是否符合 PIN、加密、作業系統版本和系統完整性等需求。Intune evaluate whether the Mac device is compliant or not with requirements like PIN, encryption, OS version, and System Integrity.

對 macOS 來說,公司入口網站應用程式目前為公開預覽 Company Portal app for macOS is in public preview

公開預覽中目前提供 macOS 的公司入口網站應用程式,以於 Enterprise Mobility + Security 中進行條件式存取。The Company Portal app for macOS is now available as part of the public preview for conditional access in Enterprise Mobility + Security. 此版本支援 macOS 10.11 及更新版本。This release supports macOS 10.11 and above. 若要下載,請前往 https://aka.ms/macOScompanyportalGet it at https://aka.ms/macOScompanyportal.

Windows 10 的新裝置限制設定New device restriction settings for Windows 10

在此版本中,我們已在下列類別中新增 Windows 10 裝置限制設定檔的新設定:In this release, we’ve added new settings for the Windows 10 device restriction profile in the following categories:

  • Windows Defender SmartScreenWindows Defender SmartScreen
  • App StoreApp store

BitLocker 設定的 Windows 10 端點保護裝置設定檔更新Updates to the Windows 10 endpoint protection device profile for BitLocker settings

在此版本中,我們已對 BitLocker 設定在 Windows 10 端點保護裝置設定檔中的運作方式進行下列改善:In this release, we’ve made the following improvements to how BitLocker settings work in a Windows 10 endpoint protection device profile:

在 [BitLocker OS 磁碟機設定] 下,針對 [具有不相容 TPM 晶片的 BitLocker] 設定,當您選取 [封鎖] 時,以前這會導致實際允許 BitLocker。Under Bitlocker OS drive settings, for the setting BitLocker with non-compatible TPM chip, when you select Block, previously, this would cause BitLocker to actually be allowed. 我們現在已修正這個問題,以在選取 BitLocker 時進行封鎖。We have now fixed this to block BitLocker when it is selected. 在 [BitLocker OS 磁碟機設定] 下,針對 [以憑證為基礎的資料修復代理程式] 設定,您現在可以明確地封鎖以憑證為基礎的資料修復代理程式。Under Bitlocker OS drive settings, for the setting Certificate-based data recovery agent, you can now explicitly block the certificate-based data recovery agent. 不過,預設會允許代理程式。By default, however, the agent is allowed. 在 [BitLocker 固定式資料磁碟機設定] 下,針對 [資料修復代理程式] 設定,您現在可以明確地封鎖資料修復代理程式。Under BitLocker fixed data-drive settings, for the setting Data recovery agent, you can now explicitly block the data recovery agent. 如需詳細資訊,請參閱 Windows 10 和更新版本的 Endpoint Protection 設定For more information, see Endpoint protection settings for Windows 10 and later.

應用程式管理App management

Android 公司入口網站使用者和應用程式防護原則使用者的新登入體驗 New signed-in experience for Android Company Portal users and App Protection Policy users

使用者現在可以使用 Android 公司入口網站應用程式來瀏覽應用程式、管理裝置及檢視 IT 連絡人資訊,而無需註冊其 Android 裝置。End users can now browse apps, manage devices, and view IT contact information using the Android Company Portal app without enrolling their Android devices. 此外,如果終端使用者已使用由 Intune 應用程式防護原則保護的應用程式,並啟動 Android 公司入口網站,則終端使用者無法再收到註冊裝置的提示。In addition, if an end user already uses an app protected by Intune App Protection Policies and launches the Android Company Portal, the end user no longer receive a prompt to enroll the device.

Android 公司入口網站應用程式中用來切換電池最佳化的新設定 New setting in the Android Company Portal app to toggle battery optimization

適用於 Android 的公司入口網站應用程式中的 [設定] 頁面,具有新的設定,可讓使用者輕鬆關閉公司入口網站及 Microsoft Authenticator 應用程式的電池最佳化功能。The Settings page in the Company Portal app for Android has a new setting that easily lets users turn off battery optimization for Company Portal and Microsoft Authenticator apps. 設定中所顯示的應用程式名稱,會依管理公司帳戶的應用程式而有所不同。The app name shown in the setting will vary depending on which app manages the work account. 建議使用者關閉電池最佳化功能,以提升同步電子郵件與資料的公司應用程式效能。We recommend that users turn battery optimization off for better performance of work apps that sync email and data.

OneNote for iOS 的多重身分識別支援 Multi-identity support for OneNote for iOS

終端使用者現在可以搭配使用不同的帳戶 (公司和個人) 與 Microsoft OneNote for iOS。End users can now use different accounts (work and personal) with Microsoft OneNote for iOS. 應用程式保護原則可以套用至工作筆記本中的公司資料,而不會影響其個人筆記本。App protection policies can be applied to corporate data in work notebooks without affecting their personal notebooks. 例如,原則可讓使用者在工作筆記本中尋找資訊,但會防止使用者將公司資料從工作筆記本複製並貼入個人筆記本。For example, a policy can allow a user to find information in work notebooks, but will prevent the user from copying and pasting and corporate data from the work notebook to a personal notebook.

在 Samsung KNOX Standard 裝置上允許或封鎖應用程式的新設定New settings to allow and block apps on Samsung KNOX Standard devices

在此版本中,我們新增新的裝置限制設定,可讓您指定下列應用程式清單:In this release, we are adding new device restriction settings that let you specify the following app lists:

  • 允許使用者安裝的應用程式Apps that users are allowed to install
  • 封鎖使用者執行的應用程式Apps that users are blocked from running
  • 對使用者隱藏的裝置應用程式Apps that are hidden from the user on the device

您可依 URL、套件名稱,或從管理的應用程式清單中指定應用程式。You can specify the app by URL, package name or from the list of apps you manage.

IT 管理員現在可以透過 Azure AD 工作負載中的新條件式存取原則 UI,來設定應用程式條件式存取原則。IT admins can now set app-based conditional policies via the new conditional access policy UI in the Azure AD workload. Azure 入口網站的 [Intune 應用程式防護] 區段中,應用程式條件式存取會暫時保留不動,且會強制並存。The app-based conditional access that is in the Intune App Protection section in the Azure portal will remain there for the time being and will be enforced side-by-side. Intune 工作負載中另有提供方便的連結,可連至新的條件式存取原則 UI。There’s also a convenience link to the new conditional access policy UI in the Intune workload.

通知Notices

Intune 的 IP 位址已更新IP addresses for Intune updated

防火牆 Proxy 設定有更新的 DNS 名稱和 IP 位址清單An updated list of DNS names and IP addresses is available for firewall proxy settings.

使用 Azure Active Directory 進行條件式存取Use Azure Active Directory for conditional access

Azure 入口網站的 Azure Active Directory 區段提供條件式存取,在設定 Office 365 Exchange Online 和 SharePoint Online 等雲端應用程式的原則時,可提供更強大而彈性的架構。Conditional access is available in the Azure Active Directory section of the Azure portal and provides a more powerful and flexible framework for setting policies for cloud apps like Office 365 Exchange Online and SharePoint Online. 使用 [Azure Active Directory] 刀鋒視窗中的 [條件式存取] 來設定原則,以取代 Intune 主控台。Use the Conditional access in Azure Active Directory blade to configure policies instead of the Intune console. Intune 主控台中的現有原則,必須在 Azure 入口網站中重新建立。Existing policies in the Intune console need to be re-created in the Azure portal. 如需詳細資訊,請參閱建立 Azure AD 條件式存取原則For more information, see Create Azure AD conditional access policies.

直接存取 Apple 註冊案例 Direct access to Apple enrollment scenarios

對於在 2017 年 1 月之後建立的 Intune 帳戶,Intune 已經啟用使用 Azure 入口網站中的「註冊裝置」工作負載直接存取 Apple 註冊案例。For Intune accounts created after January 2017, Intune has enabled direct access to Apple enrollment scenarios using the Enroll Devices workload in the Azure portal. Apple 註冊預覽原本只能從 Intune 傳統入口網站中的連結存取。Previously, the Apple enrollment preview was only accessible from links in the Intune classic portal. 在 2017 年 1 月之前建立的 Intune 帳戶需要進行一次性移轉,才能在 Azure 中使用這些功能。Intune accounts created before January 2017 require a one-time migration before these features are available in Azure. 移轉的排程尚未宣布,但將會盡快提供詳細資料。The schedule for migration has not been announced yet, but details will be made available as soon as possible. 如果您現有的帳戶無法存取 Azure 入口網站,我們強烈建議您建立試用帳戶來測試新的體驗。We strongly recommend creating a trial account to test out the new experience if your existing account cannot access the Azure portal.

Azure 入口網站中將被取代的系統管理角色Administration roles being replaced in Azure portal

在 Intune 傳統入口網站 (Silverlight) 中使用的現有行動應用程式管理 (MAM) 系統管理角色 (參與者、擁有者或唯讀) 在 Intune Azure 入口網站中會被取代為一組新的、完整的角色型系統管理控制 (RBAC)。The existing mobile application management (MAM) administration roles (Contributor, Owner, and Read-Only) used in the Intune classic portal (Silverlight) are being replaced with a full set of new role-based administration controls (RBAC) in the Intune Azure portal. 當您移轉至 Azure 入口網站之後,必須將系統管理員重新指派至這些新的系統管理角色。Once you are migrated to the Azure portal, you will need to reassign your admins to these new administration roles. 如需 RBAC 和新角色的詳細資訊,請參閱 Microsoft Intune 的角色型存取控制For more information about RBAC and the new roles, see Role-based access control for Microsoft Intune.

未來動態What's coming

iOS 11「郵件」應用程式將會支援 OAuth iOS 11 Mail app will support OAuth

Intune 條件式存取支援在 iOS 裝置上進行更安全的 OAuth 驗證。Conditional access with Intune supports more secure authentication on iOS devices with OAuth. 為了支援進行更安全的驗證,iOS 公司入口網站應用程式的流程已有所改變。To support this, there will now be a different flow on the Company Portal app for iOS to allow for more secure authentication. 當終端使用者在「郵件」應用程式中嘗試登入新的 Exchange 帳戶時,會出現網頁檢視提示。When end users try to sign in to a new Exchange account in the Mail app, they will see a web view prompt. 在 Intune 中註冊時,使用者會看見要求允許原生「郵件」應用程式存取憑證的提示。Upon enrollment in Intune, users will see a prompt to allow the native Mail app to access a certificate. 大多數的使用者都不再會看到任何隔離的電子郵件。Most end users will not see any more quarantined emails. 現有郵件帳戶會繼續使用基本驗證通訊協定,因此,這些使用者仍會收到隔離的電子郵件。Existing mail accounts will continue to use basic authentication protocol, so these users will still have quarantine emails delivered to them. 終端使用者的此登入體驗很類似於 Office Mobile 應用程式的模式。This sign in experience for end users is similar to the one on Office mobile apps.

公司入口網站的 UI 更新 UI updates to the Company Portal website

精選 App 的更新Updates to Featured Apps
我們已將專用頁面新增至網站 (使用者可在其中瀏覽您選為精選的應用程式),並對首頁上的 [精選] 區段進行一些 UI 調校。We've added a dedicated page to the site where users can browse apps that you've chosen to feature, and made some UI tweaks to the Featured section on the homepage. 您可以在應用程式 UI 的新功能頁面看到這些變更的樣子。You can see what these changes look like on the what's new in app UI page.

平台支援提醒:Windows Phone 8.1 的主要支援已於 2017 年 7 月 11 日結束Platform Support Reminder: Windows Phone 8.1 mainstream support ended July 11, 2017

Windows Phone 8.1 平台已於 2017 年 7 月 11 日結束主要支援。On July 11, 2017, the Windows Phone 8.1 platform reached end of mainstream support. Windows 8.1 電腦的支援不受影響。Windows 8.1 PC support is not impacted.

受 Intune 服務管理的所有 Windows Phone 8.1 裝置沒有直接影響。There is no immediate impact to any Windows Phone 8.1 device that is managed by the Intune service. 已註冊的裝置會繼續運作,而所有的原則、設定和應用程式也會一如預期般運作。Devices that are enrolled will continue to work and all policies, configurations, and apps will continue to work as expected. 請注意,沒有以 Intune 服務內的 Windows Phone 8.1 平台為目標的改進,也沒有以 Windows Phone 8.1 公司入口網站應用程式為目標的改進。Note that there are no improvements targeted for the Windows Phone 8.1 platform within the Intune Service, and for the Windows Phone 8.1 Company Portal app.

我們建議您儘早將符合資格的 Windows Phone 8.1 裝置升級至 Windows 10 行動裝置版。We recommend that you upgrade eligible Windows Phone 8.1 devices to Windows 10 Mobile at your earliest opportunity.

Intune iOS 公司入口網站應用程式的支援變更 Changes in support for the Intune iOS Company Portal app

iOS 的 Microsoft Intune 公司入口網站應用程式很快將會有更新,屆時將只支援執行 iOS 9.0 或更新版本的裝置。Coming soon, there will be a new version of the Microsoft Intune Company Portal app for iOS that will support only devices running iOS 9.0 or later. 支援 iOS 8 的公司入口網站版本仍然可以使用非常短的一段時間。The version of the Company Portal that supports iOS 8 will still be available for a very short period of time. 不過,請注意,如果您也使用啟用 MAM 的 iOS 應用程式,我們支援 iOS 9.0 及更新版本,因此您會想要確保您的終端使用者更新到最新的作業系統。However, note that if you also use MAM-enabled iOS apps we support iOS 9.0 and later, so you'll want to ensure your end users update to the latest OS.

此變更對我造成什麼影響?How does this affect me?

我們讓您事先知道這項資訊,雖然我們沒有特定的日期,您仍有時間進行規劃。We are letting you know this in advance, even though we don't have specific dates, so you have time to plan. 請確認您的使用者更新為 iOS 9+,且當公司入口網站應用程式發行時,要求您的終端使用者更新其公司入口網站應用程式。Ensure your users are updated to iOS 9+ and when the Company Portal app releases, request that your end users update their Company Portal app.

我需要為這項變更做什麼準備?What do I need to do to prepare for this change?

鼓勵您的使用者更新到 iOS 9.0 或更新版本,以便完全利用 Intune 的新功能。Encourage your users to update to iOS 9.0 or later to take full advantage of new Intune features. 鼓勵使用者安裝新版的公司入口網站,並利用它將提供的新功能。Encourage users to install the new version of the Company Portal and take advantage of the new features it will offer.

在 Azure 入口網站中移至 Intune,檢視 [裝置] > [所有裝置],並依 iOS 版本篩選,以查看作業系統早於 iOS 9 的任何目前裝置。Go to the Intune in the Azure portal and view Devices > All Devices and filter by iOS version to see any current devices with operating systems earlier than iOS 9.

Apple 要求必須更新 Application Transport Security Apple to require updates for Application Transport Security

Apple 宣布將會強制執行 Application Transport Security (ATS) 的特定需求。Apple has announced that they will enforce specific requirements for Application Transport Security (ATS). ATS 可用來對透過 HTTPS 進行的所有應用程式通訊,強制執行更嚴格的安全性。ATS is used to enforce stricter security on all app communications over HTTPS. 此變更會影響使用 iOS 公司入口網站應用程式的 Intune 客戶。This change impacts Intune customers using the iOS Company Portal apps.

我們已透過 Apple TestFlight 方案,提供符合新 ATS 需求的 iOS 版公司入口網站應用程式。We have made available a version of the Company Portal app for iOS through the Apple TestFlight program that enforces the new ATS requirements. 如果您想試用該版本以便測試 ATS 合規性,請傳送電子郵件到 CompanyPortalBeta@microsoft.com,並附上您的姓氏、名字、電子郵件地址和公司名稱。If you would like to try it so you can test your ATS compliance, email CompanyPortalBeta@microsoft.com with your first name, last name, email address, and company name. 如需詳細資訊,請檢閱我們的 Intune 支援部落格Review our Intune support blog for more details.

另請參閱See also