Mobile Application Management (MAM) Overview
Mobile Application Management (MAM) uses app protection policies to ensure that an organization’s data remains safe or contained within a managed app. This means that the University protects how users can access and store University data on their personal phones and tablets.
MAM enables the management of data within an application without requiring management of the entire device. Enrollment involves adding your work account (user@fiu.edu) to the policy associated with your device type (iOS/Android). Once enrolled, any protected applications that use your M365 fiu.edu account, such as Outlook and Teams, will be protected with specific policies designed to safeguard FIU data.
Important Note: These policies do NOT apply to any personal accounts in Microsoft applications. For example, these policies do not affect your personal email in the Outlook application, only your fiu.edu account.
iOS Requirements:
- The Microsoft Authenticator App must be installed before setting up the Outlook app. Users will be prompted to install it if not already done during Outlook configuration.
Android Requirements:
- The Intune Company Portal app must be installed before setting up Outlook. Users will be prompted to install it during the configuration process. Note that this application is only used to manage policy on your device, and sign-in to the Company Portal app is not required.
MAM Setup Guides:
- iOS Install Instructions
- Android Install Instructions
Frequently Asked Questions
What data can FIU see? FIU can only see that you have a mobile device enrolled, the device type (iPhone/Android), and the names of protected applications (Outlook/Teams).
Do I need to accept permissions as an Android user? Permissions can be denied, and the app will still function as intended to protect FIU data. Below is a detailed explanation of permissions and their functions.
Why do we need MAM? To protect user privacy while maintaining the security of FIU data. FIU data could be exposed in the event of theft, loss, or unauthorized access to your device. Mobile Application Management allows FIU to control how FIU data is accessed on mobile devices. For example, you must create a PIN to protect FIU data in protected applications (similar to many banking apps). MAM also enforces policies that control how FIU data is stored, such as restricting backup to personal accounts (e.g., iCloud).
My job doesn’t require special protection of data. Everyone has information in their email that could pose a risk to the University, such as research information, vendor information, information about software or other products we use, or protected information like FERPA or HIPAA data.
App Permissions for Android Users The Company Portal App is required on the device for Android users to receive App Protection Policies. The Company Portal requests app permissions to access information on your device for workflow integration and to improve the user experience.
During setup, the app will ask you to grant permissions to:
- Allow Company Portal to make and manage phone calls.
- Allow Company Portal to access your contacts.
- Allow Company Portal to access photos, media, and files on your device.
These requests may seem invasive due to the messaging, which seems counterintuitive to maintaining your privacy. However, these messages are stock messages from Google (Android) and cannot be changed to reflect the FIU permission requests.
None of these requests need to be approved to continue installing and using the Company Portal App. You may select deny on all of them, and it will continue to function as intended.
Helpful Links for More Information about MAM: