What does MDM stand for?

MDM stands for mobile device management. The "mobile" is historical - the category grew up around smartphones and tablets, but modern MDM platforms manage laptops and desktops too, which is why you will also see the broader labels UEM (unified endpoint management) and EMM (enterprise mobility management) used for what is essentially the same idea: controlling device configuration and security from one console.

What is the difference between MDM and MAM?

MDM manages the whole device - it can enforce a passcode, push configuration, and wipe everything. MAM (mobile application management) manages only the work apps and their data, leaving the rest of the device alone. MAM is the common compromise for personal phones, where full device control feels intrusive: the company can wipe the work email container without touching family photos.

Can MDM track a phone's location?

Most MDM platforms can report a managed device's location, subject to OS-level privacy rules and, on personal devices, the user's consent - many configurations deliberately disable it. It is a device-recovery feature for lost or stolen hardware, not a people-tracking tool, and in most jurisdictions using it as one creates serious privacy and employment-law problems.

MDM Meaning: Mobile Device Management Explained

MDM (mobile device management) is software that lets IT teams configure, secure, monitor, and wipe phones, tablets, and laptops remotely.

MDM (mobile device management) is software that lets an IT team configure, secure, monitor, and - when necessary - remotely lock or wipe phones, tablets, and laptops from a central console. Instead of setting up each device by hand and hoping nobody disables the screen lock, IT defines policies once and the MDM platform enforces them on every enrolled device, wherever it is. MDM is the standard answer to two awkward facts of modern work: company data lives on devices that leave the building every day, and on BYOD personal devices it shares space with someone’s private life.

How MDM works

A device is enrolled - either through a management framework built into the operating system or by installing an agent app. From then on it checks in with the MDM server over the internet and receives profiles: bundles of settings and rules pushed from the console. Because enrolment ties into the OS itself, the policies survive reboots and cannot simply be switched off by the user. Devices bought through corporate channels can even enrol automatically on first boot, so a laptop shipped straight to a new hire arrives configured.

What MDM is used for

Security baselines - require a passcode, enforce disk encryption, set screen-lock timers, block jailbroken or rooted devices.
Configuration - push wifi, VPN, email, and certificate settings so devices work on day one.
App management - install and update approved apps, block forbidden ones.
Lost and stolen devices - locate (where policy and consent allow), lock, or remotely wipe a device, which turns a stolen phone from a data breach into a hardware loss.
Work-personal separation - on personal devices, keep work data in a managed container that can be wiped alone.

MDM vs MAM

MDM manages the device; MAM (mobile application management) manages only the work applications and their data. The distinction matters most on personal phones: full MDM enrolment gives the employer device-level control that many people reasonably resist, while MAM draws the boundary at the work apps - the company can enforce a PIN on the mail app and wipe its container at offboarding without ever touching personal photos. Many platforms offer both modes and let the enrolment type follow device ownership.

MDM vs an asset register

MDM knows the live software state of every enrolled device: OS version, installed apps, encryption status, last check-in. It does not know what the device cost, whose budget bought it, when its warranty ends, or that it was handed to a contractor last month - and it knows nothing at all about kit that cannot enrol, like monitors, docks, and peripherals. That custody-and-cost record belongs to hardware asset management, where each device is a tracked configuration item with an owner and a history. Mature teams run both and reconcile them: the MDM console and the IT inventory should agree on how many laptops exist, and the gap between the two lists is where lost and unmanaged devices hide.

BYOD - personal devices at work, the problem MDM and MAM were built to manage
Hardware Asset Management - the ownership, cost, and custody record MDM does not keep
IT Inventory - the device count to reconcile against the MDM console
Asset Discovery - finding devices that never got enrolled or recorded
Configuration Item - the ITSM term for a managed, tracked component

Glossary

What Is MDM (Mobile Device Management)?

How MDM works

What MDM is used for

MDM vs MAM

MDM vs an asset register

Related guides

Monitor Tracking: Keep Track of Office Monitors and Displays

Tracking Desktop Computers: Build a Simple PC Asset Register

Glossary terms used in this guide

Put your register to work

We value your privacy

How MDM works

What MDM is used for

MDM vs MAM

MDM vs an asset register

Related terms

Related guides

Monitor Tracking: Keep Track of Office Monitors and Displays

Tracking Desktop Computers: Build a Simple PC Asset Register

Glossary terms used in this guide

Put your register to work