SphereShield’s solution validates that devices are compliant with the settings defined by the MDM vendor. Once a device fails to comply, all Skype for Business sessions are terminated automatically and access is immediately blocked. For example, Skype for Business access may be blocked to a device that has become jail broken or rooted, or if the user has removed MDM control from the device.
During the sign-in process and throughout the Skype session, SphereShield verifies that the device is listed as a valid device on MDM server and is not listed as Out Of Compliance.
SphereShield leverages the MDM device owner identify to add another security factor to the authentication process.
Based on this capability, SphereShield now offers a no-password Single Sign On authentication by trusting the MDM identity for the authentication.
For other MDM vendors please refer to: MDM Binding