- What to know about Marquette's new mobile device security measures (Marquette Today)
- MDM/MAM feedback form
- ITS TechSquad
PROBLEM WITH THIS WEBPAGE?
Report an accessibility problem
To report another problem, please contact techsquad@marquette.edu.
Mobile Device Security Initiative
About the Mobile Device Security Initiative
Mobile devices, both Marquette-owned and personally owned cell phones and tablets, may access university and academic data from Marquette. If compromised, stolen, or lost, these devices can threaten data security and privacy. To address this risk, IT Services is planning to implement Mobile Device Management (MDM) for university-owned devices and Mobile Application Management (MAM) for personal devices.
MDM and MAM are technologies that allow IT Services to remotely secure mobile devices and applications that access university data. MDM and MAM can help protect university data from unauthorized access, malware, and data breaches. They can also help users locate, lock, or remove university data from their devices in case of loss or theft.
Questions?
Please review the FAQ and Myth vs. Reality sections. If you have additional questions, complete the MDM/MAM feedback form. If prompted, enter your Marquette email address and password to access the form.
FAQ
Why are we doing this?
Marquette is proactively implementing security measures to better protect Marquette data on mobile phones and tablets. Higher education institutions have seen a dramatic increase in cybersecurity threats since 2020.
What is Mobile Device Management (MDM)?
MDM is a set of tools for securing devices and data. Specifically at Marquette, MDM is intended for Marquette-owned devices to secure university data and to manage the device (e.g., updates, security settings, factory resetting a stolen device).
What is Mobile Application Management (MAM)?
MAM is one tool in the MDM toolset. Specifically at Marquette, MAM will secure university data within one or more protected apps on personally owned cell phones and tablets.
When will I need to install MAM on my personal device?
During the week of July 8, 2024, the Outlook (and MAM-protected apps) for iOS and iPadOS will notify faculty and staff of the MAM protection.
By Oct. 1, 2024, faculty and staff using Outlook (and MAM-protected apps) for Android and Apple will need to use MAM-protection to continue accessing university Microsoft (Office) 365 apps on their personal phones and tablets.
What will Marquette be able to do and see on my Marquette-owned device (with MDM) or if I have a MAM-protected application on a personally owned device?
| Capability | Marquette-Owned Devices (uses MDM) | Personally Owned Devices (uses MAM) |
|---|---|---|
| View model, serial number and operating system | Yes | Yes |
| Identify device name | Yes | Yes |
| View name of installed core Marquette Microsoft (Office) 365 apps | Yes | Yes |
| View browsing history | No | No |
| Provide permissions for the core Marquette Microsoft 365 apps to leverage camera, microphone and location for calls, meetings, etc. (Note: Marquette does not have access to view or listen to you via your camera or microphone.) | No for Apple devices, but yes for Android devices | No for Apple devices, but yes for Android devices |
| Reset lost or stolen device to factory settings | Yes | No |
| Remove Marquette data | Yes | Yes |
| See phone number | Yes | No for Apple devices, but yes for Android devices (last four digits) |
| See all installed app names | Yes (but not content) | No |
| See location of devices marked as lost | Yes | No |
| See device owner name | Yes | No for Apple devices, but yes for Android devices |
| View personal email, calendar, contacts, pictures, passwords, text messages, and call history | No | No |
What mobile apps will be protected?
MAM-protected apps include Microsoft Edge, Office (e.g., Word, Excel, PowerPoint), Loop, OneDrive, OneNote, Outlook, SharePoint, Teams, To Do, and Planner.
To continue accessing university data from apps on a personally owned device, what do I need to install on my phone or tablet?
- For iOS or iPadOS devices, install Outlook or other protected Microsoft 365 apps and Microsoft Authenticator.
- For Android, install Intune Company portal and use the newly created Work Profile to install Outlook, Edge or other protected Microsoft 365 apps.
Will it still be possible to access Marquette email via a web browser from a mobile device after this change?
Access to Marquette email will remain available via a mobile web browser.
I don’t currently use Outlook on my mobile device. Will I be able to continue using a third-party mail or calendar app (e.g., Apple Mail, Gmail)?
No, not for Marquette email or calendars. The Outlook app will be the only permitted app for accessing Marquette email and calendar. You may continue using a native or third-party email app for personal or non-Marquette related email accounts. See instructions for adding personal accounts to Outlook.
If I have a personal email account and use the Outlook app, will Marquette have access to my personal email?
No, Marquette email accounts and personal email accounts remain separate.
My Marquette email is forwarded to my personal email account. Is my personal email now visible to Marquette?
No, forwarding Marquette email to a personal email address does not make any personal email visible.
If I access my time clock, CheckMarq, or any other Marquette website from my phone, will I need to have MAM on my personally owned phone?
No, access to these websites remains available without MAM.
Will I have MAM on my personal phone if I don't have the Marquette Outlook account, OneDrive, or any of the other Marquette Microsoft 365 apps on my phone?
No, MAM is only needed when one of the protected applications is installed.
Which mobile devices will have MDM?
University-owned mobile devices will be issued with MDM installed. MDM is not required for personally owned devices.
Myth vs. Reality
Myth: Marquette was subject to a major data breach, and severe financial penalties were imposed upon Marquette.
Reality:
Marquette has not been subject to a major data breach.
Myth: IT Services can see your personal photos, browsing history, email, and/or texts.
Reality:
IT Services cannot see your personal data on your cell phone or tablet.
Myth: I’ll be required to install Mobile Application Management (MAM) on my personal device.
Reality:
One only needs MAM if you want to connect to Office 365 data sources from your cell phone or tablet.
Myth: IT Services is requiring full Mobile Device Management (MDM) on my personal device.
Reality:
IT Services is using Mobile Application Management (MAM) software for personal devices (i.e., “Bring Your Own Device,” or BYOD). MAM only manages the data in applications like Outlook, Teams, and OneDrive and does not give IT Services full control over your device.
Myth: Marquette can automatically install MDM on my personally owned phone without my knowledge.
Reality:
Marquette cannot automatically install MDM on any existing device.
Myth: MDM and MAM will keep data backups of mobile devices.
Reality:
Neither MDM nor MAM will back up data on mobile devices.