2.9.7 Malware-infected device control function through Microsoft Intune linkage
If you are using Microsoft Intune as MDM System and you are using Agent to deploy Managed devices and manage both Microsoft Intune and JP1/IT Desktop Management 2 - Manager, you can automatically blocked malware-infected devices detected by Microsoft Intune from Network.
![[Figure]](./GRAPHICS/Z030051J.GIF)
If the device is in the malware state shown below in Microsoft Intune, the device permission state in JP1/IT Desktop Management 2 - Manager will be "Force blocked" and the network connection will be blocked.
-
Active
-
Removal failure
-
Requires manual steps
-
Full scan required
-
Requires Restart
-
Allowed
The computer user deletes the malware on the device to which network connection was blocked and execute for another virus scan. After scanning for viruses and verifying that the device is safe, the administrator manually recovers network connection.
- Important
-
Even if the device is managed together, the management server, the relay system, and the computer with Network Monitor enabled cannot block the network connection.
- Important
-
The malware-infected device control function can control up to 30,000 devices.
- Tip
-
If Network Connect of many devices is turned blocked for reasons such as malware error detection in Microsoft Intune, you can also download the network control list just before it was shut down and restore network connectivity all at once.
For details on how to operate malware-infected device control, refer to the explanation of the procedure for enabling the setting of malware-infected device control with Microsoft Intune in the manual JP1/IT Desktop Management 2 Administration Guide.