📖 About this Domain
This domain covers the lifecycle management of applications on endpoints. You will focus on deploying, updating, and securing applications using Microsoft Intune and Microsoft 365 services. Key areas include application deployment strategies, policy enforcement, and application control.
🎓 What You Will Learn
- Learn to deploy various application types, including Win32 apps and Microsoft 365 Apps, using Microsoft Intune.
- Understand how to configure and assign Application Protection Policies (APP) and Application Configuration Policies (ACP) to protect corporate data.
- Explore managing Microsoft 365 Apps deployments and updates through the dedicated Microsoft 365 Apps admin center.
- Discover how to implement application control using Microsoft Defender Application Control and AppLocker to restrict application execution.
🛠️ Skills You Will Build
- You will build proficiency in packaging, deploying, and troubleshooting Win32 applications and LOB apps with Intune.
- You will gain skills in creating and targeting app protection and configuration policies to manage app behavior and data security.
- You will develop the ability to create and enforce AppLocker and Microsoft Defender Application Control policies for endpoint hardening.
- You will learn to manage update channels, servicing profiles, and inventory for Microsoft 365 Apps across the enterprise.
💡 Top Tips to Prepare
- Gain hands-on experience by packaging a Win32 app with the Microsoft Win32 Content Prep Tool and deploying it via Intune.
- Clearly differentiate between Application Protection Policies (APP) for data protection and Application Configuration Policies (ACP) for app settings.
- Study the differences, use cases, and implementation methods for AppLocker versus Microsoft Defender Application Control.
- Familiarize yourself with the Microsoft 365 Apps admin center dashboard, focusing on inventory, security updates, and servicing profiles.
