Sophos Mobile ControlTechnical Information

Name: Thomas Lippert – Product Management DPG

Date: 13-Jan-2011

2

Agenda

Over the Air – Installation

Installation via Self-Service Portal

Over the Air – Operation

Over the Air – Installation (Apple)

Over the Air – Operation (Apple)

System setup

EAS Proxy – E-Mail for trusted devices

3

Over the Air - Installation1. Phone is defined in Admin GUI

2. Installation package is assigned

3. Install SMS send out

4. Client download on smartphone

5. Config data taken from SMS

6. Access SMC server1 2

3

4 5

6

4

Installation via Self-Service Portal (SSP)1. Smartphone user gets a mail to

register

2. User accesses SSP and registers

phone

3. Install SMS send out

4. Client download on smartphone

5. Config data taken from SMS

6. Access SMC server

1

2

3

4 5

6

5

Over the Air - Operation1. Create config package in Admin

GUI

2. Assign package to phone or

phone group

3. Command SMS send out

4. Smartphone client calls home for

configuration

5. Configuration will be applied

1 2

3

4 5

6

Over the Air – Installation (Apple)1. iPhone connects to APNS

2. APNS assigned a unique token to

the device (no IMEI or phone

number)

3. This token is used by the

management app

4. iPhone calls home for to publish

the token

1

23

4

7

Over the Air – Operation (Apple)1. SMC sends notification to APNS

2. APNS forwards the notification to the iPhone

3. Management app gets notified

4. iPhone calls home for configuration

5. Configuration will be downloaded and applied

1 2 3

4

5

8

System Setup

JBOSS

SMC Service

EAS

SSP Admin

Active Directory

Exchange Server

SMS DC

SMS

9

EAS Proxy – E-Mail for trusted devices

Internet

EAS Proxy

DMZ LAN

HTTPS HTTP

Microsoft Exchange

SQLDB

Permitted?

1

2

3

42

1. Smartphone has internet connection

2. Smartphone retrieves mails

3. Validation of smartphone access

4. E-Mail access granted

10

Questions