publish public and private applications by using Microsoft Endpoint Manager

Microsoft Endpoint Manager is a robust tool that plays a crucial role in creating, managing, and publishing your organization’s public and private applications. When preparing for the MS-101 Microsoft 365 Mobility and Security exam, it’s vital to understand how you can utilize Microsoft Endpoint Manager to manage both types of applications.

Publishing Public Applications with Microsoft Endpoint Manager

Public applications are typically available in public app stores, like Google Play Store for Android and Apple App Store for iOS. To distribute these apps to your managed users, you use Microsoft Endpoint Manager to publish them. Here is how to do it:

1. In the Microsoft Endpoint Manager admin center, go to “Apps” > “All Apps” > “Add.”
2. Select the app type, insert the app information from the public app store, and click “Add.”
3. Configure the app settings according to your organization’s needs.

Your chosen public application is now published via Microsoft Endpoint Manager, deployed, and available for target users to install on their managed devices.

Publishing Private Applications with Microsoft Endpoint Manager

Private applications are custom apps developed by your organization, not available in the public app stores. The process of publishing these apps is slightly different:

1. In Microsoft Endpoint Manager admin center, go to “Apps” > “All Apps” > “Add.”
2. Select the app type — line-of-business app, and upload your app package file.
3. Insert the required application details and configurations.
4. Click “Add” to publish the app.

Upon completion, this will allow your custom application to be deployed to your users’ managed devices.

Comparing Public and Private Applications Management in Microsoft Endpoint Manager

Why use Microsoft Endpoint Manager for Publishing Applications?

Microsoft Endpoint Manager doesn’t just help you publish applications; it also provides robust management capabilities. You can control app permissions, update distribution, and in-depth app analytics, helping ensure that your workforce has secure and easy access to the applications they need to improve their productivity.

Whether you’re publishing public applications, private ones, or a combination of both, Microsoft Endpoint Manager provides a centralized platform to manage and control app distribution with ease. This is a crucial aspect of the MS-101: Microsoft 365 Mobility and Security exam and an integral part of ensuring your organization’s application security strategy is robust and effective.

Practice Test

True or False: Microsoft Endpoint Manager can manage applications and devices that belong to an organization.

• Answer: True

Explanation: Microsoft Endpoint Manager is a platform that provides a unified management interface where you can control all devices and apps in an organization.

Single Select: Which of the following services is a part of Microsoft Endpoint Manager?

• a) Intune
• b) Azure Logic Apps
• c) Microsoft 365
• d) Microsoft Teams

• Answer: a) Intune

Explanation: Intune is a part of Microsoft Endpoint Manager that you can use to manage mobile devices, apps, and app data.

Multiple Select: What are the types of applications that can be published using Microsoft Endpoint Manager?

• a) Private applications
• b) Public applications
• c) Open Source applications
• d) Android applications

• Answer: a) Private applications, b) Public applications

Explanation: With Microsoft Endpoint Manager, an organization can publish both private and public applications.

True or False: Only IT administrators can publish applications using Microsoft Endpoint Manager.

• Answer: True

Explanation: Administrators are responsible for publishing and managing applications on Microsoft Endpoint Manager, given it’s usually a company-run platform.

Single Select: What should be done to make an application available only for a specific group of users in Microsoft Endpoint Manager?

• a) Flag it as private
• b) Assign it to a user group
• c) Submit it to the app store
• d) All of the above

• Answer: b) Assign it to a user group

Explanation: Administrators can customize which groups of users have access to specific apps by using assignment policies.

True or False: Microsoft Endpoint Manager can only publish applications on Windows devices.

• Answer: False

Explanation: Microsoft Endpoint Manager is capable of publishing applications on various platforms including iOS, Android, and Windows.

Multiple Select: Microsoft Endpoint Manager is capable of doing which of the following?

• a) Manage mobile devices
• b) Manage app policies
• c) Increase storage on devices
• d) Synchronize user data

• Answer: a) Manage mobile devices, b) Manage app policies

Explanation: Microsoft Endpoint Manager can manage mobile devices and app policies, but cannot increase storage on devices or synchronize user data.

Single Select: Which feature of Microsoft Endpoint Manager helps to control access to specific apps?

• a) App Configuration
• b) App Protection
• c) App Deployment
• d) None of the above

• Answer: b) App Protection

Explanation: App Protection Policies (APP) are rules that provide policy enforcement for apps.

True or False: Microsoft Endpoint Manager does not support the integration of third-party apps.

• Answer: False

Explanation: Microsoft Endpoint Manager can integrate with third-party apps, enabling it to act as a unified platform for managing all apps in an organization.

Single Select: Which feature of Microsoft Endpoint Manager can safeguard company information in an employee’s personal device?

• a) Mobile Device Management
• b) Mobile Application Management
• c) Bring Your Own Device (BYOD)
• d) All of the above

• Answer: d) All of the above

Explanation: All these features of Microsoft Endpoint Manager help protect company data in personal devices by providing control over the company’s apps and data.

Interview Questions

What is Microsoft Endpoint Manager?

Microsoft Endpoint Manager is an integrated solution for managing all of your devices. It brings together Configuration Manager and Intune, includes Device Management Admin Center (DMAC), and Windows Autopilot capabilities, offering seamless, end-to-end management solution without the complexity of a migration or disruption to productivity.

How can I use Microsoft Endpoint Manager to publish private applications?

Private applications can be published by uploading an APK file (for Android) or IPA file (for iOS) to Microsoft Endpoint Manager admin center. Then, you can assign the application to a group of users or devices.

Can I publish public applications using Microsoft Endpoint Manager for Android and iOS devices?

Yes, you can distribute public applications to Android and iOS devices through Microsoft Endpoint Manager. The applications are obtained from the Google Play Store or the Apple App Store.

What does it mean to “approve” an application in Microsoft Endpoint Manager?

Approving an application means that it is acceptable for distribution and use by your employees. When you approve an application, you also agree to the terms and conditions set forth by the developer and the app platform.

What is a ‘Managed Google Play app’ in Endpoint Manager?

A Managed Google Play app in Microsoft Endpoint Manager refers to the ability to manage and distribute Android applications through the Google Play Store.

How can you assign applications to user groups in Microsoft Endpoint Manager?

Application assignments can be made by going to the Application Management section in Microsoft Endpoint Manager admin center, selecting the desired application, and assigning it to a group.

What is the difference between a ‘required’ and an ‘available’ assignment in Microsoft Endpoint Manager?

A ‘required’ assignment will automatically install the application on the device, while an ‘available’ assignment will list the application in the company portal, allowing users to install it if they wish.

What are the prerequisites of deploying apps using Microsoft Endpoint Manager?

The device should be enrolled with Microsoft Endpoint Manager and be licensed for Intune. For Android devices, it requires a managed Google Play account.

How can you track the status of app installation using Microsoft Endpoint Manager?

You can track the status of app installation under the ‘Monitoring’ tab in Microsoft Endpoint Manager. It provides the details of user name, device name, install status, and last report time.

Can I deploy Web Applications using Microsoft Endpoint Manager?

Yes, you can deploy Web apps via Microsoft Endpoint Manager. It creates a shortcut to a URL to access a company’s web application.

How does Microsoft Endpoint Manager ensure the security of private applications?

Microsoft Endpoint Manager offers application protection policies and conditional access policy to protect data in the application, ensuring that only authorized users can access and interact with the application.

What type of applications can be deployed through Microsoft Endpoint Manager?

Microsoft Endpoint Manager can deploy Public apps, Private or Line-of-business(LOB) apps, Web link, and Built-in apps.

What are LOB (Line-of-Business) applications in Microsoft Endpoint Manager?

LOB applications are those that are not publicly distributed and are typically developed by or for an organization for internal purposes. These can be deployed by Microsoft Endpoint Manager.

What are the benefits of using Microsoft Endpoint Manager to publish applications?

Benefits include centralized management of applications, consistent approach to deploying and configuring apps, enhanced security and protection for your apps, and user-based targeted distribution of apps.

Can I set access conditions for applications in Microsoft Endpoint Manager?

Yes, you can set access conditions for applications using Conditional Access in Microsoft Endpoint Manager. These conditions can be based on user risk, device compliance, network location, and other factors.