1. bpmurr's Avatar
    I'm in the process of evaluating Windows Phone 8 to offer on my company's BYOD program. I'm currently using a Lumia 920 for testing and XenMobile by Citrix is our MDM suite. We currently allow iOS devices and Samsung Android devices. I'm running into a problem with Windows Phone.

    The devices will be owned by the employee and I want to be able to wipe all data company related data from the device. However, I want them to retain all personal data. I've connected to the XenMobile server using the company apps section. When I go to do a selective wipe it wipes the company apps connection but leaves the Exchange mailbox active. This doesn't make a lot of sense to me. On both the iOS and Android side if I do a selective wipe it also gets ride of the Exchange mailbox. On Windows Phone 8 see the following message.

    Click image for larger version. 

Name:	wp8.jpg 
Views:	11 
Size:	158.4 KB 
ID:	30166

    Anyone deploy Windows Phone 8 successfully in their corporate environment and able to wipe all company data including mail without wiping out personal data? Thanks!
    03-06-2013 09:48 AM
  2. bpmurr's Avatar
    83 views not one post. I guess that speaks volumes about the lack of Windows Phone 8 deployments in the Enterprise space. From the additional research I've done it seems this is a limitation of Microsoft's remote wipe feature. Not sure what Microsoft was thinking with this one. I highly doubt many employees at my company will opt for a Windows Phone 8 device knowing if they leave the company their entire phone would have to be wiped. I can't believe they're so far behind Apple in this arena.
    03-06-2013 03:08 PM
  3. BeaverJuicer's Avatar
    To my knowledge...
    What you would need to do is remove the Exchange account from the phone. This can be done from the phone, or by simply changing the password on the Exchange server. When an email account is removed from the phone, things like contacts, emails, calendar appointments, etc that were associated with that account will be removed.

    All that warning says, is that IT Policies (not emails, etc) associated with Exchange Server will remain in place until the user deletes the account... This just gives them extra incentive to remove the aforementioned account.


    And as an FYI regarding your second post... Just keep in mind that you catch more bees with honey. This is primarily an end user forum. 84 views over the course of the day is nothing, and your question targets a very select audience.
    Marcos Hidalgo likes this.
    03-06-2013 03:19 PM
  4. bpmurr's Avatar
    To my knowledge...
    What you would need to do is remove the Exchange account from the phone. This can be done from the phone, or by simply changing the password on the Exchange server. When an email account is removed from the phone, things like contacts, emails, calendar appointments, etc that were associated with that account will be removed.

    All that warning says, is that IT Policies (not emails, etc) associated with Exchange Server will remain in place until the user deletes the account... This just gives them extra incentive to remove the aforementioned account.


    And as an FYI regarding your second post... Just keep in mind that you catch more bees with honey. This is primarily an end user forum. 84 views over the course of the day is nothing, and your question targets a very select audience.
    Well if you do a selective wipe it doesn't remove the Exchange email account. It's still active until you disable their AD account. Even after it's disabled they would still have access to any existing email on the device. You're then relying on that person to delete the account themselves and not use any of that information. That won't fly with my enterprise security team. It's disappointing because I was pushing really hard to get Windows Phone 8 approved for BYOD use.
    03-06-2013 03:42 PM
  5. realwarder's Avatar
    Can you not remotely wipe the unit?
    03-06-2013 04:06 PM
  6. summer600's Avatar
    Not wanting to be a view only reader :-) I Binged and found this post: Newswire / Capricode Introduces the First Features for Windows Phone 8 - Software - Capricode Ltd | NewswireToday which mentions selective wipe with IronShield also removes the email account. Could it be that selective wipe is implemented differently by different vendor?
    Bartdog likes this.
    03-06-2013 04:16 PM
  7. Ordeith's Avatar
    You can control a Windows Phone through System Center. Use Microsoft Tools for Microsoft products.
    Additionally, it is a real Exchange client supporting EAS with encrpytion, you are able to use Exchange to perform the wipe
    Perform a Remote Wipe on a Mobile Phone: Exchange 2013 Help
    Bartdog likes this.
    03-06-2013 04:16 PM
  8. Phone Guy 4567's Avatar
    Well if you do a selective wipe it doesn't remove the Exchange email account. It's still active until you disable their AD account. Even after it's disabled they would still have access to any existing email on the device. You're then relying on that person to delete the account themselves and not use any of that information. That won't fly with my enterprise security team. It's disappointing because I was pushing really hard to get Windows Phone 8 approved for BYOD use.
    I would never push hard for any platform, since there is no upside for me. There is a big potential downside if they give in to my pushing and it all goes wrong.
    03-06-2013 04:53 PM
  9. slashd0t's Avatar
    As someone who works for a vendor that makes an MDM product, I can share that Microsoft doesn't give MDM vendors much in the way of API's for management... It's frustrating.
    03-06-2013 05:13 PM
  10. lipper2000's Avatar
    You really need to enquire on the Microsoft tech sites specifically for IT professionals...
    You might get the odd person here that knows the backend stuff but most of us are just end users....
    03-06-2013 05:32 PM
  11. GReeN SCoRPioN 8K's Avatar
    I am also Testing the MDM Features of WP8 and can Confirm that Exchange E-Mail will not Deleted by a "Selective Wipe".

    But in my test the User werent able to Sync with the Exchange anymore. Maybe that Depend on your MDM Solution cuase we use a other Software...

    Update: After a few more test we are able to "Retire" the Device in our MDM and Everything including Exchange is Deleted! So its no a Microsoft Problem its maybe a Problem of your MDM Solution!
    Last edited by GReeN SCoRPioN 8K; 03-07-2013 at 03:11 AM.
    03-07-2013 01:51 AM
  12. bpmurr's Avatar
    I am also Testing the MDM Features of WP8 and can Confirm that Exchange E-Mail will not Deleted by a "Selective Wipe".

    But in my test the User werent able to Sync with the Exchange anymore. Maybe that Depend on your MDM Solution cuase we use a other Software...

    Update: After a few more test we are able to "Retire" the Device in our MDM and Everything including Exchange is Deleted! So its no a Microsoft Problem its maybe a Problem of your MDM Solution!
    Would you mind tell me what MDM solution you're using?
    03-07-2013 08:53 AM
  13. bpmurr's Avatar
    You can control a Windows Phone through System Center. Use Microsoft Tools for Microsoft products.
    Additionally, it is a real Exchange client supporting EAS with encrpytion, you are able to use Exchange to perform the wipe
    Perform a Remote Wipe on a Mobile Phone: Exchange 2013 Help
    We'd like to have the the platforms managed in one location. XenMobile formally Zenprise before Citrix bought them has very robust management of iOS devices. We might have to management the Windows Devices separately because I'd like to also offer RT and Windows 8 tablets on the BYOD program.
    03-07-2013 08:56 AM
  14. tk-093's Avatar
    Have you spoken to Citrix support as to why it doesn't work?
    03-07-2013 09:06 AM
  15. bpmurr's Avatar
    Have you spoken to Citrix support as to why it doesn't work?
    Yes, they said it's a limitation imposed by Microsoft. They have a put in a request with Microsoft to add this feature in the next release. Hence why I'm interested in the name of the company Green Scorpion 8k is using.
    03-07-2013 09:50 AM
  16. slashd0t's Avatar
    Yes, they said it's a limitation imposed by Microsoft. They have a put in a request with Microsoft to add this feature in the next release. Hence why I'm interested in the name of the company Green Scorpion 8k is using.
    Again, I work for a company that makes MDM products (I work on that product ;) ) and Zenrprise/Citrix is correct. Microsoft has limited their MDM API's to essentially remote wipe and passlock enforcement. It's sad really.
    03-07-2013 10:29 AM
  17. airwolf878's Avatar
    We'd like to have the the platforms managed in one location. XenMobile formally Zenprise before Citrix bought them has very robust management of iOS devices. We might have to management the Windows Devices separately because I'd like to also offer RT and Windows 8 tablets on the BYOD program.
    Check out the Microsoft Intune service. It covers all WP8, Win8 and RT devices, as well as iOS and Android.
    03-07-2013 12:57 PM
  18. Peter Boev's Avatar
    Would you mind tell me what MDM solution you're using?
    My guess would be Intune, seeing that the device is being ''retired''. My experience with Intune confirms that the Exchange account would be removed completely upon device retirement, without wiping the personal data on it.

    I guess that MS gave a competitive advantage to their own system in this regard.
    03-08-2013 06:46 AM
  19. bpmurr's Avatar
    My guess would be Intune, seeing that the device is being ''retired''. My experience with Intune confirms that the Exchange account would be removed completely upon device retirement, without wiping the personal data on it.

    I guess that MS gave a competitive advantage to their own system in this regard.
    Interesting, I'll have to check it out.
    03-11-2013 12:25 PM
  20. GReeN SCoRPioN 8K's Avatar
    Sorry for late answer...

    API's are Limited (Which is realy sad and i hope gets better by updates soon) but with a Retire you can "Selective Wipe" your Device! i have done this a lot of times now!

    To my Knowledge there are only 2 Big MDM Solutions (Expept of Microsofts Intune) out there which can Handle WP8 correct. (But also there are Problems and not all is working fine)
    One is MobileIron and the other is Airwatch.
    03-13-2013 08:47 AM

Similar Threads

  1. Windows Phone in the Wild
    By EvanKr in forum Windows Phone 7
    Replies: 10
    Last Post: 11-03-2012, 12:26 AM
  2. Replies: 5
    Last Post: 03-03-2012, 03:25 PM
  3. New Windows Phones in Canada?
    By Steener13 in forum Windows Phone 7
    Replies: 5
    Last Post: 11-06-2011, 08:49 PM
  4. Windows Phone in Crisis.
    By Averry in forum The "Off Topic" Lounge
    Replies: 5
    Last Post: 09-02-2011, 12:20 PM
  5. Windows Phone Mango - The Logo
    By Soaked in forum Windows Phone 7
    Replies: 5
    Last Post: 08-27-2011, 04:21 PM
LINK TO POST COPIED TO CLIPBOARD
";