title | titleSuffix | description | keywords | author | ms.author | manager | ms.date | ms.topic | ms.service | ms.subservice | ms.localizationpriority | ms.assetid | ms.reviewer | ms.suite | search.appverid | ms.custom | ms.collection | ||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Set up Check Point Harmony integration with Intune |
Microsoft Intune |
How to set up CheckPoint Harmony Mobile Threat Defense (MTD) with Microsoft Intune to control mobile device access to your corporate resources. |
brenduns |
brenduns |
dougeby |
11/17/2023 |
how-to |
microsoft-intune |
protect |
high |
1e9b1576-b239-48cc-a672-da6b5fb7be0a |
aanavath |
ems |
MET150 |
intune-azure |
|
Complete the following steps to integrate the Check Point Harmony Mobile Threat Defense solution with Intune.
Note
This Mobile Threat Defense vendor is not supported for unenrolled devices.
The instructions in this article are done in the Check Point Harmony Mobile console.
Before starting the process of integrating Check Point Harmony Mobile with Intune, make sure you have the following configurations:
-
Microsoft Intune Plan 1 subscription
-
Microsoft Entra admin credentials to grant the following permissions:
- Sign in and read user profile
- Access the directory as the signed-in user
- Read directory data
- Send device information to Intune
-
Admin credentials to access Check Point Harmony Mobile MTD console.
The Harmony Mobile Protect app authorization process consists of the following steps:
-
Allow the Check Point Harmony Mobile service to communicate information related to device health state back to Intune.
-
CheckPoint Harmony Mobile syncs with Microsoft Entra Enrollment Group membership to populate its device's database.
-
Allow Check Point Harmony admin console to use Microsoft Entra single sign-on (SSO).
-
Allow the Harmony Mobile Protect app to sign in using Microsoft Entra SSO.
-
Go to Check Point Harmony Mobile MTD console and sign in with your credentials.
-
Select on the Settings tab.
-
Choose Device management, then Settings.
-
Choose Microsoft Intune from the MDM Service drop-down list.
-
Once you set Microsoft Intune as the MDM Service, the Microsoft Intune Configuration window pops up, choose the Add to my organization for each device platform: iOS/iPadOS, Android and Windows to authorize Harmony Mobile Protect to communicate with Intune and Microsoft Entra ID.
[!IMPORTANT]
You must add all device platforms to proceed to the next step.
-
Choose Accept to authorize the Harmony Mobile Protect app to communicate with Intune and Microsoft Entra.
-
Once you enabled all device platforms, you need to enter the Microsoft Entra security group.
-
Choose Verify, once the Microsoft Entra security group is successfully verified, choose Save.