Sophos Mobile ControlTechnical Information

Name: Thomas Lippert – Product Management DPG

Date: 13-Jan-2011

2

AgendaOver the Air – Installation

Installation via Self-Service Portal

Over the Air – Operation

Over the Air – Installation (Apple)

Over the Air – Operation (Apple)

System setup

EAS Proxy – E-Mail for trusted devices

3

Over the Air - Installation1. Phone is defined in Admin GUI

2. Installation package is assigned

3. Install SMS send out

4. Client download on smartphone

5. Config data taken from SMS

6. Access SMC server 1 2

3

4 5

6

4

Installation via Self-Service Portal (SSP)1. Smartphone user gets a mail to

register

2. User accesses SSP and registers phone

3. Install SMS send out

4. Client download on smartphone

5. Config data taken from SMS

6. Access SMC server

1

2

3

4 5

6

5

Over the Air - Operation1. Create config package in Admin

GUI

2. Assign package to phone or phone group

3. Command SMS send out

4. Smartphone client calls home for configuration

5. Configuration will be applied

1 2

3

4 5

6

Over the Air – Installation (Apple)1. iPhone connects to APNS

2. APNS assigned a unique token to the device (no IMEI or phone number)

3. This token is used by the management app

4. iPhone calls home for to publish the token

1

23

4

7

Over the Air – Operation (Apple)1. SMC sends notification to APNS

2. APNS forwards the notification to the iPhone

3. Management app gets notified

4. iPhone calls home for configuration

5. Configuration will be downloaded and applied

1 2 3

4

5

8

System Setup

JBOSS

SMC Service

EAS

SSP Admin

Active Directory

Exchange Server

SMS DC

SMS

9

EAS Proxy – E-Mail for trusted devices

Internet

EAS Proxy

DMZ LAN

HTTPS HTTP

Microsoft Exchange

SQLDB

Permitted?1

2

3

42

1. Smartphone has internet connection

2. Smartphone retrieves mails

3. Validation of smartphone access

4. E-Mail access granted

10

Questions