Cisco Systems MaaS360 manual Application Distribution

Page 39

Reassign the device to a secured location group. This group effectively removes all corporate applications and data, provisions lock-down profiles—effectively rendering the device useless—and leaves the device under management such that forensic data is available in the event the enterprise would pursue legal options.

Blacklist the device in ISE to prevent corporate access. Also issue an Enterprise Wipe command to the device to remove all corporate data. This also removes the MDM profile. The device will become unmanaged, lifting all operational restrictions on the device including the ability to locate the device.

Blacklist the device in ISE to prevent corporate access. Also issue a Full Wipe to the device to remove all information and return it to the factory default configuration. The carrier will need to be involved to prevent the now factory fresh device from having a resale value.

The exact response an enterprise would take in the event of a stolen device should be public knowledge, especially where a Full Wipe is issued since the response could be an incentive to some criminals.

Application Distribution

Applications can be marked as required or optional. Required applications are usually automatically pushed to the device. Users can browse optional applications using the Fiberlink MaaS360 App Catalog on their device. Applications can be from the public application store or developed in-house. This is the complete list of features offered by Fiberlink MaaS360:

Manage and distribute third-party and in-house mobile apps from the Fiberlink MaaS360 Admin Portal.

Develop a catalog of recommended mobile apps on iOS and Android devices.

Users can view apps, install, and be alerted to updated apps on the private app catalog.

Manage lifecycle of app workflow:

Real-time software inventory reports

App distribution and installation tracking

App update publishing

Provisioning profile management

Administer mobile app security and compliance policies:

Blacklist and whitelist mobile apps downloaded from the Apple App Store and Google Play.

Enforce out-of compliance rules such sending user alerts, blocking email or VPN, and remote wiping.

Limit native apps available on the device such as YouTube.

Require user authentication and authorization before they download in-house apps.

Detailed reporting across app compliance events and remediation actions.

Host and distribute in-house mobile apps on Fiberlink MaaS360 Cloud.

Support for volume purchase programs on Apple App Store:

Automatically upload redemption codes in the Fiberlink MaaS360 Cloud.

Track provisioning, manage licenses, monitor compliance, and eliminate manual VPP management.

Integrating Fiberlink MaaS360 with Cisco Identity Services Engine

39

 

 

Page 38 Page 40
Image 39
Page 38 Page 40
Contents Revised August 6 Page Page Overview Fiberlink MaaS360 Capabilities and FeaturesCapability Features Fiberlink MaaS360-Key Capabilities Deployment Models Import MDM Certificate to ISE Getting Fiberlink MaaS360 Ready for ISEExporting the MDM Site Certificate with Internet Explorer Grant ISE Access to the Fiberlink MaaS360 API Manage Administrator Account Add Account Add MDM Server to ISE Configure the MDM API on ISE Message Explanation Verify Connectivity to MDMReview MDM Dictionaries DMZ Enterprise IntegrationFiberlink MaaS360 Cloud Extender Download Cloud Extender Installation Wizard AD Group Memberships Active Directory/LDAP IntegrationOwnership User Group Restrictions MDM Profiles Create Policies Shows the flow of this process MDM APNS/GCN Mobile Client Application-Fiberlink MaaS360 AgentDevice Ownership MDM On-boarding User ExperienceMDM Enrollment MDM Enrollment-Terms of Acceptance Pass Code Complexity Enterprise Application StoreInstallation of Maas360 Application Data at-Rest Corporate DataForced CoA from ISE Corporate WipeVerify Device Compliance End User PortalISE Compliance versus MDM Compliance Action Type Options Device Scanning Intervals Device Compliance/RestrictionsManually Updating the MDM Server PINLockStatusManage Lost/Stolen Devices Jailbroken or Rooted devicesRegisterStatus Application Distribution Cisco Applications Jabber, etc Disclaimer Conclusion
Top Page Image Contents