You’re talking about MDM in Intune which is only used on corporate owned devices. MAM is used for personal devices and does not have device administration access. It’s in the name - Mobile Application Management.
This implies that the company has a competent IT team that rolls it out correctly, and that there won’t be some way to exploit it and dig in further than expected.
Also:
On personal devices, it’s normal and expected for users to check email, join meetings, update files, and more. Many organizations allow personal devices to access organization resources.
(From the site)
Lmao WHAT? It’s normal for users to do company shit on their personal phone? What kind of delusional Spongebob bullshit is that? Is the company gonna pay for data or subsidize the cost of my phone? Are they going to pay me to be on call if they expect me to of this shit outside of my working hours?
Intune installs as a device adminstration. I’m not sure how much I’d trust that on my personal device period.
That’s a fair point. Microsoft says that they don’t… but, not that they can’t. It’s especially tricky on iOS.
You’re talking about MDM in Intune which is only used on corporate owned devices. MAM is used for personal devices and does not have device administration access. It’s in the name - Mobile Application Management.
https://learn.microsoft.com/en-us/mem/intune/fundamentals/intune-planning-guide#personal-devices-vs-organization-owned-devices
This implies that the company has a competent IT team that rolls it out correctly, and that there won’t be some way to exploit it and dig in further than expected.
Also:
(From the site)
Lmao WHAT? It’s normal for users to do company shit on their personal phone? What kind of delusional Spongebob bullshit is that? Is the company gonna pay for data or subsidize the cost of my phone? Are they going to pay me to be on call if they expect me to of this shit outside of my working hours?