You are here
SEC0114 - ISE 1.2 BYOD MDM Integration (Part 2) - iPhone
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Security
The video walks you through Cisco ISE 1.2 integration with MobileIron MDM. You will be able to see all required configuration on both ISE and MDM to complete the integration process, and how user onboarding experience changes now that they need to register their devices to the MDM system. We will enforce MDM security policy using PIN lock as our example and allow differentiated level of access according to device posture information. At the end, we will review actions available to users on the MyDevices portal and demonstrate initiation of screen lock and corporate-wipe to iPhone and Android. Since MDM integration is an extension to ISE onboarding, this lab is built on top of the previous lab so see SEC0113 - ISE 1.2 BYOD Wireless Onboarding Single SSID for detail of the completed configuration. Note that although this video is specific to MobileIron, the concept and majority of configuration steps are also applicable to other MDM vendors.
Part 2 of this video shows device registration and compliance check on an iPhone
Topic:
- MobilIron Configuration and Policy
- MDM Certificate Download and Install
- MDM Integration
-
Policy Element Result
- Authorization (Downloadable ACL)
- Authorization (Authorization Profile)
- Authentication Policy
- Authorization Policy
- Device Compliance Information and Status
- iPhone, Android
- MyDevices Portal
- Corporate Wipe and PIN Lock
Supported MDM Vendors (as of ISE 1.2)
- Airwatch, Inc.
- Good Technology
- MobileIron, Inc.
- Zenprise, Inc.
- SAP Afaria
- FiberLink Maas360
- Cisco Mobile Collaboration Management Services (MCMS)
Relevant Video: