Abstract: A computer system is provided. The computer system includes a memory and a processor operably coupled to the memory. The processor is configured to receive a set of rules for generating a workflow that chains one or more tasks associated with one or more applications into the workflow; receive an indication of a task to be completed; generate a task-based workflow for the task to be completed based upon the set of rules, wherein the task-based workflow provides a user with an indication of a task to be completed and which of the one or more applications to use to complete the task; monitor interaction between the user and the task-based workflow; update the task-based workflow to indicate one or more completed tasks based upon the monitored interaction to create an updated workflow; and provide an indication of the updated workflow to the user.

Abstract: A computing device may include a memory and a processor cooperating with the memory to enroll with a server having a metadata anonymization policy associated therewith, generate metadata and combine the metadata with respective user content data, where the computing device has a given metadata permission policy associated therewith from among a plurality of different metadata permission policies. The processor may further determine user content data having metadata combined therewith in violation of the metadata anonymization policy, and when the given metadata permission policy permits modification of metadata, modify the metadata in violation of the metadata anonymization policy so that only the modified metadata is accessible when the user content data is accessed.

Abstract: Methods, systems, and computer-readable media for processing policy variance requests in an enterprise computing environment are presented. A computing platform may receive, from a first endpoint computing device, a request for a first policy variance. In response to receiving the request, the computing platform may authenticate the first endpoint computing device based on enrollment information and may validate contents of the request. Subsequently, the computing platform may generate a policy variance result message based on approval or rejection of the request for the first policy variance. Then, the computing platform may send, to the first endpoint computing device, the policy variance result message. By sending the policy variance result message to the first endpoint computing device, the computing platform may cause the first endpoint computing device to execute a policy action corresponding to the approval or rejection of the request for the first policy variance.

Abstract: A computer system to authorize a first endpoint to access enterprise digital resources is provided. The computer system includes the first endpoint, a second endpoint, and an endpoint management service being executed in a server. The endpoint management service communicates with the first endpoint via the second endpoint. For example, the endpoint management service receives authentication credentials from the first endpoint via the second endpoint. Similarly, the endpoint management service, upon verification of the authentication credentials, transmits an authorization token to the first endpoint via the second endpoint. The first endpoint, upon receiving and deploying the authorization token, can execute enterprise managed application programs and can access enterprise digital resources. In some examples, both the first and second endpoints are owned and/or used by a same user.

Abstract: A computing device may include a memory and a processor cooperating with the memory to enroll with a server having a metadata anonymization policy associated therewith, generate metadata and combine the metadata with respective user content data, where the computing device has a given metadata permission policy associated therewith from among a plurality of different metadata permission policies. The processor may further determine user content data having metadata combined therewith in violation of the metadata anonymization policy, and when the given metadata permission policy permits modification of metadata, modify the metadata in violation of the metadata anonymization policy so that only the modified metadata is accessible when the user content data is accessed.

Abstract: A computing system may include a EMM server having a metadata anonymization policy associated therewith, and a client computing device configured to generate metadata and combine the metadata with respective user content data, with the client computing device having a metadata permission policy associated therewith. The client computing device may be further configured to enroll with the server, determine user content data having metadata combined therewith in violation of the metadata anonymization policy, and when the metadata permission policy permits separation of the metadata from the user content data, strip the metadata from the user content data so that the metadata is inaccessible when the user content data is accessed.

Abstract: Methods, systems, and computer-readable media for processing policy variance requests in an enterprise computing environment are presented. A computing platform may receive, from a first endpoint computing device, a request for a first policy variance. In response to receiving the request, the computing platform may authenticate the first endpoint computing device based on enrollment information and may validate contents of the request. Subsequently, the computing platform may generate a policy variance result message based on approval or rejection of the request for the first policy variance. Then, the computing platform may send, to the first endpoint computing device, the policy variance result message. By sending the policy variance result message to the first endpoint computing device, the computing platform may cause the first endpoint computing device to execute a policy action corresponding to the approval or rejection of the request for the first policy variance.

Abstract: A computing system may include a EMM server having a metadata anonymization policy associated therewith, and a client computing device configured to generate metadata and combine the metadata with respective user content data, with the client computing device having a metadata permission policy associated therewith. The client computing device may be further configured to enroll with the server, determine user content data having metadata combined therewith in violation of the metadata anonymization policy, and when the metadata permission policy permits separation of the metadata from the user content data, strip the metadata from the user content data so that the metadata is inaccessible when the user content data is accessed.