DOCSLIB.ORG

Managing and Securing Ipads & Iphones in The

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Managing and Securing Ipads & Iphones in The Managing and Securing iPads & iPhones in the Zero Trust World – Best Practices Jonathan Scarborough Senior Technical Support Engineer Device Enrollment Program Volume Purchase Program Agenda Apple Business Manager iOS with MobileIron Access & MobileIron Authenticator Device Enrollment Program (DEP) • Automate device enrollment during activation • Streamlined device setup • Wireless Supervision Device Enrollment Program Volume Purchase Program Agenda Apple Business Manager iOS with MobileIron Access & MobileIron Authenticator Volume Purchase Program (VPP) • Allows organizations to bulk purchase and distribute apps • Available for public and B2B apps • Apps can be assigned to users or devices Device Enrollment Program Volume Purchase Program Agenda Apple Business Manager iOS with MobileIron Access & MobileIron Authenticator Apple Business Manager DEP VPP ABM Apple Business Manager – Device Enrollment Requirements Apple Business Manager is available to organizations in supported countries or regions that purchase devices from any of the following channels: • Directly from Apple • Participating Apple Authorized Resellers • Cellular carriers Device Enrollment works on any of these devices: • iOS devices with iOS 7 or later • Mac computers with OS X Mavericks 10.9 or later • Apple TV devices (4th generation or later) with tvOS 10.2 or later DEP Process Create MDM Assign iOS entry in ABM & Enroll in ABM devices to MDM Link to Core/MI server Cloud Create/Edit DEP Assign devices Enrollment to Enrollment Activate Devices Profiles Profiles DEP Setup – MobileIron Cloud 1. Download the key from MobileIron Cloud 2. Upload the key to business.apple.com & download the server token 3. Upload server token to MI Cloud DEP Setup – MobileIron Core 1. Download the key from MobileIron Core 2. Upload the key to business.apple.com & download the server token 3. Upload server token to Core DEP – Device Assignment Authentication Type Password Anonymous PIN • Most common • Least common • Device records must be pre- • Default option • Auto assigns devices to created • Does not require “Signed-Out” • Independent of device record label global pre-creation • Devices are not authentication associated with a settings username Enrollment Profile - Enforce Basic Requirements Enable Require MDM Allow MDM Allow Pairing Supervision Enrollment Removal Allows additional Can enforce Allows users to Allows management features: MDM enrollment remove profile communication restrictions, controls, or allow users after enrollment with Mac/PC and functions, etc to skip enrollment during setup Important if If disallowed, can Must occur re-enroll is necessary complicate log during device setup collection when troubleshooting Setup wirelessly during device enrollment Enforce Basic Requirements – MI Cloud Enforce Basic Requirements – Core Why Supervision Matters Legal Enhanced Single App Lost Mode Requirements Management Mode Activation Branding & Silent App iOS Update Lock Bypass Uniformity Installation Management Customize User Experience – Core Customize User Experience – Cloud Await Device Configuration during DEP Setup Core MI Cloud Establishing Trust Anchor Certificates Pairing Certificates • Required for environments with • Certificate is applied to devices; internally-signed or self-signed certificate and private keys must certificates be installed on admin • Devices return obvious status workstations codes for trust issues • Highly recommended if pairing is disabled by Enrollment Profile or Restrictions Establishing Trust Core MI Cloud Volume Purchase Program VPP Setup – Download Location-based Token VPP Setup – Add VPP token to MI Cloud VPP Setup – Add VPP token to Core VPP Distribution Options Device-Based User-Based App Assignment App Assignment • App licenses are assigned to • Users must create/manage devices, not users their own Apple ID • Does not require Apple ID for • Users must register with VPP app installation by accepting an invitation • Allows silent app installation (supervised devices only) User/Device License Assignment – MI Cloud User/Device License Assignment - Core VPP – Legacy Token vs Location-Based Token Legacy Location-Based Token Token • Downloaded from • Downloaded from volume.itunes.apple.com business.apple.com • Single token for entire app • App licenses can be grouped purchase history into different locations • Tokens are unique across locations Unsupervised iOS devices Device Enrollment Program Volume Purchase Program Agenda Apple Business Manager iOS with MobileIron Access & MobileIron Authenticator MobileIron Access – Conditional Rules MobileIron Access – Conditional Rules Authentication Models: Traditional Authentication Models: Network/Cloud Authentication Models: Federated Authentication Models: Zero touch What is Access? • Access is a proxy for federated authentication that can incorporate device posture as part of it’s decision making process • Access acts as a… • Service Provider for Identity Providers • Identity Provider for Service Providers Authentication with Salesforce Service Provider Identity Provider MobileIron Access with Salesforce MobileIron Authenticator with iOS Access Overview Access Overview Access Overview Access Overview In Summary • Enforce OTA supervision for greater control • Simplify and lockdown iOS app management • Control access to cloud-based services with MobileIron Access Q & A .
Load more

Recommended publications
  • How Ios 7 Stacks Up:Smartphone OS User Experience Shootout
    How iOS 7 Stacks Up: Smartphone OS User Experience Shootout a Pfeiffer Report Benchmark Project www.pfeifferreport.com @pfeifferreport Introduction Why is it that the arrival of iOS 7 Whether we like it or not, We do not look at features, we do not smartphones have become a compare cutting-edge options and is necessarily a momentous software game. Take any recent gadgets, we only look at aspects event for the smartphone top-of-the-line smartphone, and you that have a direct impact on the are likely to get a well-designed, fast, day-to-day user experience of an market? Simple: Unlike any other pleasant to use bit of hardware: fluid average, non-technical user. operating system out there, it will operation, responsive interaction, fast The aspects we have surveyed and be in the hands of millions or tens graphics. The difference of user rated are the following: experience, therefore, stems of millions of users within a few cognitive load, efficiency, almost exclusively from the customization, as well as user days after its launch. operating system, the user interface experience friction. Based on And that will make it a force to be design, the application integration, the the results from these benchmarks overall coherence. we have then established an overall reckoned with. This report compares the five Mobile Operating System User major mobile operating systems Experience Index presented at the * The question is, of course: in use today: iOS 7, iOS 6, Android , end of this document. Windows Phone 8, and Blackberry 10, The benchmarks are based on the How good is it really? and rates them in terms of user Pfeiffer Consulting Methodology experience.
    [Show full text]
  • Iphone Ios 5 Development Essentials
    iPhone iOS 5 Development Essentials i iPhone iOS 5 Development Essentials – First Edition ISBN-13: 978-1466337275 © 2011 Neil Smyth. All Rights Reserved. This book is provided for personal use only. Unauthorized use, reproduction and/or distribution strictly prohibited. All rights reserved. The content of this book is provided for informational purposes only. Neither the publisher nor the author offers any warranties or representation, express or implied, with regard to the accuracy of information contained in this book, nor do they accept any liability for any loss or damage arising from any errors or omissions. This book contains trademarked terms that are used solely for editorial purposes and to the benefit of the respective trademark owner. The terms used within this book are not intended as infringement of any trademarks. Rev 2.3p ii Table of Contents Preface ............................................................................................................................................................... xix 1. About iPhone iOS 5 App Development Essentials .............................................................................................. 1 1.1 Example Source Code ................................................................................................................................... 2 1.2 Feedback ...................................................................................................................................................... 2 2. The Anatomy of an iPhone 4S ...........................................................................................................................
    [Show full text]
  • Legal-Process Guidelines for Law Enforcement
    Legal Process Guidelines Government & Law Enforcement within the United States These guidelines are provided for use by government and law enforcement agencies within the United States when seeking information from Apple Inc. (“Apple”) about customers of Apple’s devices, products and services. Apple will update these Guidelines as necessary. All other requests for information regarding Apple customers, including customer questions about information disclosure, should be directed to https://www.apple.com/privacy/contact/. These Guidelines do not apply to requests made by government and law enforcement agencies outside the United States to Apple’s relevant local entities. For government and law enforcement information requests, Apple complies with the laws pertaining to global entities that control our data and we provide details as legally required. For all requests from government and law enforcement agencies within the United States for content, with the exception of emergency circumstances (defined in the Electronic Communications Privacy Act 1986, as amended), Apple will only provide content in response to a search issued upon a showing of probable cause, or customer consent. All requests from government and law enforcement agencies outside of the United States for content, with the exception of emergency circumstances (defined below in Emergency Requests), must comply with applicable laws, including the United States Electronic Communications Privacy Act (ECPA). A request under a Mutual Legal Assistance Treaty or the Clarifying Lawful Overseas Use of Data Act (“CLOUD Act”) is in compliance with ECPA. Apple will provide customer content, as it exists in the customer’s account, only in response to such legally valid process.
    [Show full text]
  • Enterprise Best Practices for Ios Devices On
    White Paper Enterprise Best Practices for iOS devices and Mac computers on Cisco Wireless LAN Updated: January 2018 © 2018 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 1 of 51 Contents SCOPE .............................................................................................................................................. 4 BACKGROUND .................................................................................................................................. 4 WIRELESS LAN CONSIDERATIONS .................................................................................................... 5 RF Design Guidelines for iOS devices and Mac computers on Cisco WLAN ........................................................ 5 RF Design Recommendations for iOS devices and Mac computers on Cisco WLAN ........................................... 6 Wi-Fi Channel Coverage .................................................................................................................................. 7 ClientLink Beamforming ................................................................................................................................ 10 Wi-Fi Channel Bandwidth ............................................................................................................................. 10 Data Rates .................................................................................................................................................... 12 802.1X/EAP Authentication ..........................................................................................................................
    [Show full text]
  • VPAT Ipad Mini RD Ios 7
    The following Voluntary Product Accessibility information refers to the Apple iPad mini with Retina display running iOS 7 or later. For more information on the accessibility features of the iPad mini and to learn more about iPad mini features, visit http:// !www.apple.com/ipad-mini and http://www.apple.com/accessibility ! Summary Table ! Voluntary Product Accessibility Template Criteria Supporting Features Remarks and explanation Section 1194.21 Software applications and operating systems. Not applicable Section 1194.22 Web-based intranet and internet information and applications. Not applicable Section 1194.23 Telecommunications products. Please refer to the attached VPAT Section 1194.24 Video and multimedia products. Not applicable Section 1194.25 Self contained closed products. Please refer to the attached VPAT Section 1194.26 Desktop and portable computers. Not applicable Section 1194.31 Functional performance criteria. Please refer to the attached VPAT Section 1194.41 Information, documentation, and support. Please refer to the attached VPAT ! Subpart B -- Technical Standards !Section 1194.23 Telecommunications products. Criteria Supporting Features Remarks and explanations (a) Telecommunications products or systems which Not applicable provide a function allowing voice communication and which do not themselves provide a TTY functionality shall provide a standard non-acoustic connection point for TTYs. Microphones shall be capable of being turned on and off to allow the user to intermix speech with TTY use. (b) Telecommunications products which include voice Not applicable communication functionality shall support all commonly used cross-manufacturer non-proprietary standard TTY signal protocols. iPad mini with Retina display VPAT (10.2013) Page !1 of !8 (c) Voice mail, auto-attendant, and interactive voice Not applicable response telecommunications systems shall be usable by TTY users with their TTYs.
    [Show full text]
  • Ipad User Guide for Ios 7 (October 2013) Contents
    iPad User Guide For iOS 7 (October 2013) Contents 7 Chapter 1: iPad at a Glance 7 iPad Overview 9 Accessories 9 Multi-Touch screen 10 Sleep/Wake button 10 Home button 11 Volume buttons and the Side Switch 11 SIM card tray 12 Status icons 13 Chapter 2: Getting Started 13 Set up iPad 13 Connect to Wi-Fi 14 Apple ID 14 Set up mail and other accounts 14 Manage content on your iOS devices 15 iCloud 16 Connect iPad to your computer 17 Sync with iTunes 17 Your iPad name 17 Date and time 18 International settings 18 View this user guide on iPad 19 Chapter 3: Basics 19 Use apps 21 Customize iPad 23 Type text 26 Dictation 27 Search 28 Control Center 28 Alerts and Notiication Center 29 Sounds and silence 29 Do Not Disturb 30 AirDrop, iCloud, and other ways to share 30 Transfer iles 31 Personal Hotspot 31 AirPlay 32 AirPrint 32 Bluetooth devices 32 Restrictions 33 Privacy 2 33 Security 35 Charge and monitor the battery 36 Travel with iPad 37 Chapter 4: Siri 37 Use Siri 38 Tell Siri about yourself 38 Make corrections 38 Siri settings 39 Chapter 5: Messages 39 iMessage service 39 Send and receive messages 40 Manage conversations 41 Share photos, videos, and more 41 Messages settings 42 Chapter 6: Mail 42 Write messages 43 Get a sneak peek 43 Finish a message later 43 See important messages 44 Attachments 44 Work with multiple messages 45 See and save addresses 45 Print messages 45 Mail settings 46 Chapter 7: Safari 46 Safari at a glance 47 Search the web 47 Browse the web 48 Keep bookmarks 48 Share what you discover 49 Fill in forms 49 Avoid clutter
    [Show full text]
  • Ios 7.1.2 Download Question: Q: Cannot Create Reminders in Ios 7
    ios 7.1.2 download Question: Q: Cannot create reminders in ios 7. I cannot create a new reminder in iPhone 5S. I tapped everywhere on the screen including "New List" and the plus "+" but nothing happens. Posted on Sep 21, 2013 9:40 AM. All replies. Loading page content. Page content loaded. I also tried to do it in Siri but was told "I'm not able to create your reminder. Sorry about that" Sep 21, 2013 9:46 AM. There is no longer a button. Tap the blank line below an existing reminder. It will start a new one. Sep 21, 2013 9:53 AM. Hi.. I don't have any reminders as I set up the iPhone new. I tried to tap everywhere but it just doesn't do anything. Sep 21, 2013 10:01 AM. You have to create a list first. Tap on New List. Create a list. Then create a reminder. Sep 21, 2013 10:06 AM. I tapped everywhere but nothing happens. This is really strange. I regret not testing this in iOS7 before I upgrade to 7.01. Sep 21, 2013 10:13 AM. Tap the plus sign next to where it says "New List". Sep 21, 2013 10:16 AM. Hi.. I did that as well. Nothing happens. Even tried using Siri to create new list but was told it couldn't and that I have to do so in the Reminder app. Sep 21, 2013 10:20 AM. Have you tried resetting your device by pressing and holding the Home button and power button until the silver apple appears? Sep 21, 2013 10:26 AM.
    [Show full text]
  • Ios 7 App Development Essentials
    i iOS 7 App Development Essentials ii iOS 7 App Development Essentials – First Edition ISBN-13: 978-0-9860273-5-2 © 2013 Neil Smyth/eBookFrenzy. All Rights Reserved. This book is provided for personal use only. Unauthorized use, reproduction and/or distribution strictly prohibited. All rights reserved. The content of this book is provided for informational purposes only. Neither the publisher nor the author offers any warranties or representation, express or implied, with regard to the accuracy of information contained in this book, nor do they accept any liability for any loss or damage arising from any errors or omissions. This book contains trademarked terms that are used solely for editorial purposes and to the benefit of the respective trademark owner. The terms used within this book are not intended as infringement of any trademarks. Rev 1. 0 iii Table of Contents 1. Start Here ............................................................................................................................... 1 1.1 For New iOS Developers ......................................................................................................... 2 1.2 For iOS 6 Developers .............................................................................................................. 3 1.3 Source Code Download .......................................................................................................... 4 1.4 Feedback ...............................................................................................................................
    [Show full text]
  • Say Hello to Iphone
    Say hello to iPhone A quick look at iPhone This guide describes iOS 11 for: iPhone 8 Plus iPhone 8 iPhone SE iPhone 7 Plus iPhone 7 iPhone 5s iPhone 6s Plus iPhone 6s iPhone 6 Plus iPhone 6 Your features and apps may vary depending on the model of iPhone you have, and on your location, language, and carrier. Note: Apps and services that send or receive data over a cellular network may incur additional fees. Contact your carrier for information about your iPhone service plan and fees. See also Apple Support article: Identify your iPhone model Compare iPhone models website iOS Feature Availability website iPhone 8 Plus FaceTime HD camera Side button SIM card tray Home button/Touch ID Lightning connector Volume buttons Ring/Silent switch Dual wide-angle and telephoto rear cameras Quad-LED True Tone flash See also Turn on iPhone Set up iPhone Charge and monitor the battery iPhone 8 FaceTime HD camera Side button SIM card tray Home button/Touch ID Lightning connector Volume buttons Ring/Silent switch Rear camera Quad-LED True Tone flash See also Turn on iPhone Set up iPhone Charge and monitor the battery iPhone 7 Plus FaceTime HD camera Sleep/Wake button SIM card tray Home button/Touch ID Lightning connector Volume buttons Ring/Silent switch Dual wide-angle and telephoto rear cameras Quad-LED True Tone flash See also Turn on iPhone Set up iPhone Charge and monitor the battery iPhone 7 FaceTime HD camera Sleep/Wake button SIM card tray Home button/Touch ID Lightning connector Volume buttons Ring/Silent switch Rear camera Quad-LED True Tone flash
    [Show full text]
  • VS-1049 Certified Iphone Apps Developer Sample Material
    Certified iPhone Apps Developer Sample Material VS-1049 Certified iPhone Apps Developer 1. IOS INTRODUCTION iOS (formerly iPhone OS) is a mobile operating system created and developed by Apple Inc. exclusively for its hardware. It is the operating system that presently powers many of the company's mobile devices, including the iPhone, iPad, and iPod Touch. It is the second most popular mobile operating system globally after Android. Originally unveiled in 2007 for the iPhone, iOS has been extended to support other Apple devices such as the iPod Touch (September 2007) and the iPad (January 2010). As of January 2017, Apple's App Store contains more than 2.2 million iOS applications, 1 million of which are native for iPads. These mobile apps have collectively been downloaded more than 130 billion times. The iOS user interface is based upon direct manipulation, using multi-touch gestures. Interface control elements consist of sliders, switches, and buttons. Interaction with the OS includes gestures such as swipe, tap, pinch, and reverse pinch, all of which have specific definitions within the context of the iOS operating system and its multi-touch interface. Internal accelerometers are used by some applications to respond to shaking the device (one common result is the undo command) or rotating it in three dimensions (one common result is switching between portrait and landscape mode). Apple has been significantly praised for incorporating thorough accessibility functions into iOS, enabling users with vision and hearing disabilities to properly use its products. Major versions of iOS are released annually. The current version, iOS 11, was released on September 19, 2017.
    [Show full text]
  • Upgrading to Ios 7
    1. Pre-Update Reminders Make sure you have at least 80% battery life remaining, or your device plugged into its charger Make sure you’re connected to a strong Wi-Fi connection. SOI Wireless is highly recommended when available. Indiana Public Wi-Fi can be used, but remember to get past the agreement page before starting the update. Make sure all your apps have been updated via the App Store as they may not work after the update. If there are every any questions, please submit a help ticket! 2. Upgrading to iOS on INDOT iPads 1. Prior to accepting any update to iOS, please make sure all your applications have been updated to their current version. Particularly important is that MobileIron be updated if one is available. 2. To verify that your applications are up to date, first look at the App Store icon, if updates are available, you will see a small number badge on top of the icon noting the number of applications that have available updates. 3. Tap on the App Store Icon and select the Update option on the lower right of the bottom toolbar. The Update entry should have the badge that again shows the number of available updates. 1 4. On the Updates screen, you’ll see your applications that have available updates. Either use the Update All Button to start the update for all applications, or individually start the Updates via the Update button. 5. With the Application updates complete, you can then proceed to start the iOS upgrade. Note that the upgrade can happen one of 3 ways: a.
    [Show full text]
  • Zenworks Mobile Management 3.2.X Ios App Release Notes
    www.novell.com/documentation iOS App Release Notes ZENworks® Mobile Management 3.2.x October 2015 Legal Notices Novell, Inc., makes no representations or warranties with respect to the contents or use of this documentation, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc., reserves the right to revise this publication and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. Further, Novell, Inc., makes no representations or warranties with respect to any software, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc., reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes. Any products or technical information provided under this Agreement may be subject to U.S. export controls and the trade laws of other countries. You agree to comply with all export control regulations and to obtain any required licenses or classification to export, re-export or import deliverables. You agree not to export or re-export to entities on the current U.S. export exclusion lists or to any embargoed or terrorist countries as specified in the U.S. export laws. You agree to not use deliverables for prohibited nuclear, missile, or chemical biological weaponry end uses. See the Novell International Trade Services Web page (http://www.novell.com/info/exports/) for more information on exporting Novell software.
    [Show full text]