MDM Flow & its Unified Management Capabilities

Trend Micro Mobile Security Server(TMMS)


A TMMS Server is mainly an addon for its OfficeScan Suite which provides MDM capabilities for different platforms like iOS, BlackBerry, Android, Symbian etc.


In this post we have the MDM server setup pattern explained.


For any MDM server which needs to reside in your domain there's a Master and a Policy Server.


Master Server: Mainly contains the various device authentication certficates like APNS for iOS. These certificates allow the devices to be connected to the server provisioning.


Policy Server: A Policy server is mainly kept on the DMZ and takes care of any policies that you implement on your devices. Eg: Remote Data Wipe, Remote Locate, Remote Lock etc.


Though you can have both the roles installed on the same server but its rather not recommended.



Features of any MDM Suite can sum to the following benefits:



Centralized Device Manager Server:
Manage  multiple mobile device platforms such as iOS, Android, Symbian, Windows Mobile using a single  server enabling a productive and cost effective infrastructure.
BlackBerry Enterprise Server Sync:
Manage your BES servers using a single and more powerful console.
Easy migration/merge of existing BlackBerry devices to the new MDM Infrastructure.
Policy Server Implementation:
Ensure a secure and robust network by deploying a Policy Server on the DMZ and avoid unwanted devices.
SMS Sender:
Provisioning devices using SMS Sender through the unified Access Console



Role Based Access Control:
Provision roles as  per  Access Level Requirement , user types and based on users’ day-to-day activities.

Local & Active Directory User Management:
Manage devices depending on users’ AD data or by creating local profiles to ensure security and application dependency

Policy Management:
Manage devices using policies based on respective OS and their configurations.



Scheduling:
Schedule device sync timings with the Device Manager server.
Device Password policy:
Enable password lock on device to manage secure access ensuring proper data usage.
Email Setup Policy:
Automatic email configuration policy to enable users’ Corporate Email account without user having to enter any technical details.
GPS & File Transfer:
Manage GPS location, file transfer and Roaming ability of device .


Source: Zenprise & TrendMicro Mobile Security

Comments