What is Intune?
Microsoft Intune is a cloud-based endpoint management solution. It manages user access to organizational resources and simplifies app and device management. Intune is a tool used to verify users' identities to allow them to more freely access Chatham resources. Are you annoyed with needing to login multiple times a day to access email, Brightspace, Cayuse, Qualtrics, etc? With Intune on your Chatham-issued computer, you will only have to login one time to gain access to these different resources.
Why do we need Intune?
This project was started in 2022. It is needed to bring Chatham computers up to industry standards. This level of security is necessary to be compliant with FERPA, HIPPA, GLBA and several other acts that protect personal information and financial data.
How does Intune Work?
On the backend of Intune, there are various tools to manage users' access to tools and deployment of various software. As a user, Intune will utilize a pin code, or fingerprint, or facial recognition to authenticate. Please note that this biometric data is stored on a TPM chip locally on the motherboard of your computer. However, if you are concerned, you can setup the pin. A 4 digit pin is more secure than a 16-character passcode!
What Intune Doesn't Do!
Intune does not monitor your email, web browsing, webcams or keystrokes. Intune is used to deploy software to devices and give users secure access to Chatham specific resources.
How will Intune be Deployed?
Intune will be a 4 phase project. Phase 1 began in 2022, Phase 2 has begun after a long delay for various reasons. More about the deployment timelines can be seen below. The most important date to remember is the 2024-2025 academic school year -- that is when Intune will be deployed to all users.
Intune Project Timeline
PHASE 1 TIMELINE
Project name: Security Improvements – Phase 1
- Started planning Phase 1 security & device management project September 2022.
- Kick-off call for Phase 1 – February 15, 2023.
- CDI began working with us March 2023.
Phase 1 involved getting our internal AD environment setup and running correctly.
- On site management system configured for devices
- Primary configuration manager
- Distribution points systems at each site
- Standardized “image” for each Windows system
- Build machine collections to improve software deployment
- Updates
- Software packages
- Windows Defender
PHASE 2 TIMELINE