Intercept X for Mobile and Microsoft Intune Integration


Disclaimer: This information is posted as-is and the content should be referenced at your own risk.

 

This article provides details on how to integrate Sophos Intercept X for Mobile with Microsoft Intune. Details are also available in the Sophos Mobile admin guide at docs.sophos.com

The key steps involved are:

  1. Bind Sophos Mobile with Microsoft Intune
  2. Confirm the connection in Microsoft Intune
  3. Deploy the Intercept X for Mobile app to managed devices through Microsoft Intune

 

Bind Sophos Mobile with Microsoft Intune

  • Log in to Sophos Central
  • Navigate to the Mobile section
  • Navigate to Setup> Sophos Setup

  • Open the Intune MTD tab and click 'Bind'

  • Click Yes and log into Microsoft Intune with your Azure administrator account and accept the permission request

  • In the Sophos Central console a message is displayed to confirm the necessary permissions have been granted. Select whether the devices will be corporate or personal devices, the device group they should be member of, and which policies the devices should receive. Click Save.

 

 

Confirm the connection in Microsoft Intune

  • Log in to Microsoft Azure and navigate to Intune
  • Click 'Device compliance'

  • Click 'Mobile Threat Defense'

  • The Sophos connection should already be listed (as a result of the previous steps taken)

  • Click on the Sophos connector and enable the Android and iOS platforms (first 2 radio buttons). Click Save and the connection status will change from Available to Enabled

 

 

Deploy Intercept X for Mobile to Intune managed devices

In this stage we will deploy the Intercept X for Mobile app to iOS and Android devices.

Nb It is also necessary for the Intune Company Portal app and Microsoft Authenticator app (on iOS) to be deployed to devices. The steps for deploying these apps are not shown here.

  •  Log in to Microsoft Azure and navigate to Intune
  • Click 'Client apps'

  • Click 'Apps'

  • Click Add

Deploying the app to iOS devices

  • To add the Intercept X for Mobile app click 'iOS store app' and then 'Select'

  • Click 'Search the App store' and locate the Intercept X for Mobile app. Click 'Select'

  • View the app details displayed and click Next.

  • Click Next in the The 'Scope tags' section (this section is optional)
  • Click 'Add group' and select the Azure groups that you want the Intercept X app to be deployed to.

  • Click Next and on the summary screen click Create. The Intercept X for Mobile app is now assigned to the iOS groups selected

Deploying the app to Android devices

  • Return to the Client Apps> Apps section
  • Click Add
  • Select the Android Store app

  • Click Next in the The 'Scope tags' section (this section is optional)
  • Click 'Add group' and select the Azure groups that you want the Intercept X app to be deployed to.

  • Click Next and on the summary screen click Create. The Intercept X for Mobile app is now assigned to the Android groups selected.

 

Have an idea or suggestion regarding our Documentation, Knowledgebase, or Videos? Please visit our User Assistance forum on the Community to share your idea!