Middlebury

Secure Storage MDM Enrollment

Revision as of 15:29, 8 September 2020 by Thomas Hugo (talk | contribs)

Introduction

Middlebury is introducing secure storage for sensitive data. We will use Microsoft Teams and its underlying SharePoint infrastructure to store this data, restrict access to appropriate users and secured devices, and ensure organizational compliance with our DCP (Data Classification Policy).

The DCP can be found here: https://www.middlebury.edu/office/information-technology-services/policies/information-security-policies/data-classification-policy

ITS will work with your team to configure secure storage. Once setup is complete, a “Sensitive” label will be visible for the secure team at the top of the Teams app and the top of its SharePoint site.

One requirement to access sensitive data normally is that your device is enrolled in Middlebury’s MDM, or Mobile Device Management. This allows Middlebury to remotely install software, determine if your device is encrypted and compliant with organizational policies, as well as lock or erase the device if it is lost or otherwise compromised.

If you attempt to access sensitive data from an unmanaged device, you will be limited to “web only” access. Essentially, you will be able to view and change Office files using the web interface, but you will not be able to download, print, or sync data to your device.

MDM Enrollment Steps

  1. First, click here to start the enrollment process. [1]
  2. Confirm that you want to switch apps by clicking “Yes”.
  3. Enter your Middlebury email address and password, then complete the MFA prompt if you are off campus.
  4. If authentication is successful, you will see the following screen.
  5. To confirm that your device is enrolled, open the “Settings” app, then navigate to Accounts”, then “Access work or school” and you can see that you are connected to Middlebury College MDM.