Intune Mobile Device Management (MDM) Software

Learn more about how to use the Microsoft Intune MDM software.

UC San Diego has implemented the Secure Connect program to protect the safety and security of UC Systems. UC San Diego will use Microsoft Intune Mobile Device Management (MDM) software to streamline and automate the implementation of UC cybersecurity requirements on devices (e.g., computers, laptops, etc.) requiring access to trusted resources. The MDM solution allows us to protect UC Systems by automating the installation of security software, registering the device in our configuration management database (CMDB), and automating updates to ensure that devices remain compliant.

What Devices Are Affected?

Only devices that access trusted resources (via wired, VPN, or UCSD-PROTECTED) will be required to enroll in Intune.

You are not required to enroll if:

• You only use Eduroam or UCSD-GUEST networks
• You're only accessing services that are available through the internet, such as email, Canvas, Zoom, or other cloud-based tools.

Note: If your device is owned and managed by UC San Diego your IT department will make sure your device is compliant.

How UC San Diego Intune MDM will be used

UC San Diego Intune MDM will be used to:

• Install and configure the use of a university signed and issued certificate to unambiguously identify and register the device in our CMDB
• Install and update university required security software (Qualys Vulnerability Management and Trellix Endpoint Detection & Response security software)
• Help your device meet the minimum requirements for accessing trusted resources

UC San Diego Intune MDM will not be used to:

• Access your personal applications, messages, emails, or call history
• Read or collect your personal files, photos, or browsing history
• Track your real-time location or collect GPS data
• View, modify, or delete personal apps on your device
• Monitor personal activity, keystrokes, or phone calls
• Perform a full device wipe on personally owned (BYOD) devices

Steps for Intune Enrollment to Access Trusted Resources

Only devices that access trusted resources (via wired, VPN, or UCSD-PROTECTED) will be required to enroll in Intune.

• Users with UC San Diego Owned Devices: If your device is already managed by your department's IT team, you don’t need to do anything—your IT team will handle enrollment for you. If you're unsure whether this applies to your device, please check with your department's IT support or your Unit Information Security Lead (UISL).
• Principal Investigators (PIs): Please complete the Intune Enrollment Intake Form (coming soon) to indicate your enrollment path preferences. 
• All Other Users: If your device is not owned and managed by UC San Diego, please follow the Intune installation guide that corresponds to your device’s operating system
  • Intune Installation Guide: Windows
  • Intune Installation Guide: Mac

Frequently Asked Questions