The client will make this possible by connecting to the corporate management infrastructure and to a self-service portal, which displays applications that are available for each user to download. This provides a mechanism to download proprietary line-of-business Metro apps to employees without placing them in the public Windows Store. As the blog says, "there is no reason to broadcast these applications to others or to have their application deployment managed through the Windows Store process."
If the business or the owner of the device decides to remove it from corporate management, the client will wipe out the proprietary apps.
Before users can connect their Windows RT devices to the management service, their Active Directory settings must be changed to allow it and to specify how many devices they are allowed to connect via SSL authentication. The process involves registering the device with the network.
Each user authorized to use the management service must be specified within Active Directory as someone allowed to connect devices. Once connected, the client makes daily maintenance reports about the hardware, applies changes to settings policies on the devices, reports on compliance with those policies and updates the proprietary apps as needed.
The client also will inform the management platform whenever users initiate application installation from the self-service portal, the blog says.
Administrators will be able to set security parameters the devices must comply with such as maximum failed logins, lockout after a maximum period of inactivity, requiring passwords of specified length and complexity, imposing enabled and expired dates on passwords and maintaining password history.
The agent will also be able to set up VPN connections automatically to the management infrastructure so users don't have to do it manually. The client also will report the status of drive encryption, auto-update, antivirus, and antispyware.
Tim Greene covers Microsoft for Network World and writes the Mostly Microsoft blog. Reach him at email@example.com and follow him on Twitter https://twitter.com/#!/Tim_Greene.
Read more about software in Network World's Software section.