When you first start with Windows Information Protection (WIP), you might want to consider starting with the Protection Mode set to Silent. This is also called Windows Information Protection Learning Mode or WIP Learning Mode. In silent/learning mode WIP runs silently and will not block anything. It will however encrypt and log all actions including […]
Category: Enterprise Mobility + Security
Monitoring and collecting WIP audit event logs
Let’s have a look at collecting WIP audit event logs using Azure Monitor and how to read and monitor event logs from Windows 10 devices. Windows Information Protection offers data separation, keeping corporate and personal data separate, and leak protection, by blocking the use of cut and paste actions. Most events triggered by Windows Information […]
Troubleshooting Windows Information Protection on Windows 10
Troubleshooting Windows Information Protection can be a lengthy and time consuming process. If all goes according to plan, you can sit back and relax. If not, I hope this post will help you get on the right track again. There are a couple of other post you might want to read: This post is part […]
WIP Without Enrollment Selective Wipe
In my previous post I’ve walked through the WIP-WE user experience (Windows Information Protection without enrollment) and showed you what the users experience when working on a Windows 10, BYOD (Bring Your Own Device). In the first part this post I’ll show you what happens to corporate data when an administrator performs a selective wipe […]
Azure Rights Management for WIP
This post is part of the Windows Information Protection (WIP) series. Firstly I walked through the basic, the actual WIP configuration and deployment. Secondly I wrote about the user experience on both MDM enrolled (company owned) and BYO devices (personally owned). Finally in this post I will focus on Azure Rights Management and how it […]
WIP-WE User Experience
In this post I’ll focus on WIP-WE User Experience. Also known as Windows Information Protection without enrollment on Windows 10 devices. WIP Without Enrollment is a great solution for organizations supporting a BYOD solution. In addition, WIP-WE provides a degree of control to manage and secure corporate data on personal devices. If you want to […]
Windows Information Protection User Experience
In this post I’ll focus on Windows Information Protection user experience (WIP) on MDM enrolled Windows 10 devices. If you haven’t read my previous post about WIP, have a look below. This post is part of a series. Have a look at my other posts for more information about WIP. Introduction to Windows Information Protection […]
Windows Information Protection with Enrollment
In this post I’ll configure Windows Information Protection with enrollment for devices that are managed with Microsoft Intune. If you’ve configured automatic MDM enrollment for Windows 10, then all devices for users in the MDM user scope will automatically enroll in MDM. Therefore the Windows Information Protection with enrollment (WIP-MDM) policy will apply. In a […]
Windows Information Protection without enrollment
Please read about the basics of Windows Information Protection in my previous blog. First of all WIP Without Enrollment is a great solution for organizations supporting a BYOD solution but at the same time, want to manage the corporate applications and data securely. As always, I ask you to also check the official Microsoft documentation […]
Configuring Intune MDM User Scope and MAM User Scope for Windows 10
In a previous blog I wrote about the basics on Windows Information Protection (WIP). If you did not read that post, I suggest you go back and read it for a complete understanding before continuing. If you’re here to learn more about MDM User scope and MAM user scope, then I hope this post will […]