You can prevent a compromised managed Windows Mobile device from establishing a connection through Mobile Device Manager (MDM) Gateway Server by blockingthe device. You block a device when you add it to the blocked device list.

A blocked device cannot establish a virtual private network (VPN) connection with MDM Gateway Server until you remove the device from the block list, or you enroll it with a new certificate.

You can use MDM Shell cmdlets and PowerShell scripts to automate Windows Mobile device management tasks. For more information on blocking managed devices with MDM Shell cmdlets, see Blocked Device Cmdlets.

See Also