MTP. MTP AirWatch Integration Guide. Release 1.0



Similar documents
VMware Identity Manager Administration

Mobile Device Management Version 8. Last updated:

Configuring Single Sign-on from the VMware Identity Manager Service to WebEx

NAS 221 Remote Access Using Cloud Connect TM

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

Integrating Cisco ISE with GO!Enterprise MDM Quick Start

Copyright 2013, 3CX Ltd.

Managing Qualys Scanners

PULSE SECURE FOR GOOGLE ANDROID

VMware Identity Manager Administration

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

Sophos Mobile Control Startup guide. Product version: 3

HOTPin Integration Guide: Microsoft Office 365 with Active Directory Federated Services

Sophos Mobile Control Startup guide. Product version: 3.5

Configuring Single Sign-On from the VMware Identity Manager Service to Office 365

AlienVault Unified Security Management (USM) x. Configuring High Availability (HA)

Defender Token Deployment System Quick Start Guide

SOA Software API Gateway Appliance 7.1.x Administration Guide

EndUser Protection. Peter Skondro. Sophos

Web Application Firewall

Configuring Single Sign-on from the VMware Identity Manager Service to Dropbox

Security Provider Integration Kerberos Authentication

Installing and Configuring vcloud Connector

Introduction to Google Apps for Business Integration

Unified Security, ATP and more

CounterACT Plugin Configuration Guide for ForeScout Mobile Integration Module MaaS360 Version ForeScout Mobile

Administrator's Guide

GRAVITYZONE HERE. Deployment Guide VLE Environment

The ForeScout Difference

INTEGRATION GUIDE. DIGIPASS Authentication for Google Apps using IDENTIKEY Federation Server

Drobo How-To Guide Drobo Apps - Configuring ElephantDrive

HOTPin Integration Guide: Google Apps with Active Directory Federated Services

Vodafone Secure Device Manager Administration User Guide

Introduction to Mobile Access Gateway Installation

INTEGRATION GUIDE. DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server

Salesforce Integration

The Secure Web Access Solution Includes:

Product Manual. MDM On Premise Installation Version 8.1. Last Updated: 06/07/15

GRAVITYZONE UNIFIED SECURITY MANAGEMENT. Use Cases for Beta Testers

uh6 efolder BDR Guide for Veeam Page 1 of 36

Symantec Mobile Security

Microsoft Windows Intune: Cloud-based solution

MaaS360 Mobile Device Management (MDM) Administrators Guide

Installing and Configuring vcenter Support Assistant

NovaBACKUP Remote Workforce Version 12.5 Cloud Restore

Codeproof Mobile Security & SaaS MDM Platform

VMware Identity Manager Connector Installation and Configuration

Xopero Backup Build your private cloud backup environment. Getting started

ForeScout MDM Enterprise

Request Manager Installation and Configuration Guide

HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services

INTEGRATION GUIDE. DIGIPASS Authentication for VMware Horizon Workspace

Employee Active Directory Self-Service Quick Setup Guide

Securing Corporate on Personal Mobile Devices

Symantec Database Security and Audit 3100 Series Appliance. Getting Started Guide

OneLogin Integration User Guide

Coillte IT has recently upgraded the Remote Access Solution to a new platform.

Centrify Cloud Connector Deployment Guide

IBM Security QRadar SIEM Version MR1. Vulnerability Assessment Configuration Guide

Services Deployment. Administrator Guide

Adobe Marketing Cloud Bloodhound for Mac 3.0

Dell Mobile Management. Apple Device Enrollment Program

VMware vcenter Log Insight Getting Started Guide

LEVEL PLATFORMS INTEGRATION GUIDE

Configuring Single Sign-on from the VMware Identity Manager Service to ServiceNow


Learn More MaaS360 Cloud Extender Checklist (MDM for Blackberry)

F-Secure Internet Gatekeeper Virtual Appliance

10 BEST PRACTICES FOR MOBILE DEVICE MANAGEMENT (MDM)

Cloud Services ADM. Agent Deployment Guide

Virtual Appliance Setup Guide

Failover Manager for WhatsUp Gold v16.0 Quick Start Guide

How To Protect Your Mobile Device From Attack

Single Sign On for ShareFile with NetScaler. Deployment Guide

Introduction to the AirWatch Cloud Connector (ACC) Guide

Comodo Web Application Firewall Software Version 2.11

Administering Adobe Creative Cloud for Enterprise with the Casper Suite v9.0 or Later. Technical Paper October 2013

SYMANTEC ENDPOINT PROTECTION SMALL BUSINESS EDITION

What We Do: Simplify Enterprise Mobility

User Management Tool 1.5

Technical Notes. Avamar Enterprise Manager Transition to Backup & Recovery Manager October, 2015

Setting Up Resources in VMware Identity Manager

Technical Note. CounterACT: Powerful, Automated Network Protection Inside and Out

EMC SYNCPLICITY FILE SYNC AND SHARE SOLUTION

TECHNICAL NOTE SETTING UP A STRM UPDATE SERVER. Configuring your Update Server

Integrating with IBM Tivoli TSOM

How To Integrate An Ipm With Airwatch With Big Ip On A Server With A Network (F5) On A Network With A Pb (Fiv) On An Ip Server On A Cloud (Fv) On Your Computer Or Ip

WHAT S NEW IN WEBSENSE TRITON RELEASE 7.8

PaperClip. em4 Cloud Client. Manual Setup Guide

Strengthen Microsoft Office 365 with Sophos Cloud and Reflexion

VMware Mirage Web Manager Guide

Upgrading VMware Identity Manager Connector

Samsung KNOX User Guide KNOX for Consumers Edition

Sophos Mobile Control User guide for Apple ios. Product version: 4

Quick Start 5: Introducing and configuring Websense Cloud Web Security solution

JUNOS PULSE APPCONNECT

THREE KEYS TO COST-EFFECTIVE SECURITY FOR YOUR SMALL BUSINESS

Hillstone StoneOS User Manual Hillstone Unified Intelligence Firewall Installation Manual

Sophos Mobile Control User guide for Windows Phone 8. Product version: 3.5

Upgrade Guide. McAfee Vulnerability Manager Microsoft Windows Server 2008 R2

Transcription:

MTP MTP AirWatch Integration Guide Release 1.0

FireEye and the FireEye logo are registered trademarks of FireEye, Inc. in the United States and other countries. All other trademarks are the property of their respective owners. FireEye assumes no responsibility for any inaccuracies in this document. FireEye reserves the right to change, modify, transfer, or otherwise revise this publication without notice. Copyright 2015 FireEye, Inc. All rights reserved. Mobile Threat Prevention AirWatch Integration Guide Release 1.0 Revision 1 FireEye, Inc. Website: www.fireeye.com Support Email: support@fireeye.com Phone: United States: 877.FIREEYE (877.347.3393) United Kingdom: 44.203.106.4828 Other: 408.321.6300 (Undefined variable: Other.Year) (Undefined variable: Other.CompanyName) 1

Contents About the FireEye MTP Service 1 About FireEye Mobile Threat Protection Platform 1 About AirWatch 1 About Unified Mobile Threat Policy Enforcement 2 Applying Policy to Enforce Malware Removal 2 Restoring Functionality When Malware is Removed 2 Deploying the MTP Service with AirWatch 4 Types of Deployment 4 AirWatch Managed Client Communication 4 MTP Managed Client Communication 4 Deployment Requirements 4 Integrating MTP with AirWatch 6 Connecting MTP to the AirWatch Server 6 Prerequisites 7 What To Do Next 8 2015 FireEye, Inc. i

Contents ii 2015 FireEye, Inc.

About the FireEye MTP Service FireEye has partnered with AirWatch by VMware to provide a unified mobile threat detection and policy enforcement solution. FireEye Mobile Threat Prevention (MTP) service monitors mobile devices on your network and detects threats that can be used to exploit your network. AirWatch Mobile Device Management uses this information to restrict network access to compromised mobile devices. About FireEye Mobile Threat Protection Platform The MTP service detects malware found on mobile devices. MTP is made up of three components: FireEye MTP appliance or cloud service. A hardware appliance or cloud service that manages the communication between the MTP cloud service, mobile devices and the AirWatch appliance. FireEye MTP Cloud service. A cloud-based service that tests mobile apps for security threats and maintains an up-to-date database of all known threats associated with tested mobile apps. The MTP cloud service extends the FireEye Malware Prevention Platform to mobile devices. FireEye Mobile Security App. An application that resides on each mobile device on the network. This application detects any new or updated applications on the mobile device and forwards this new or updated application to the MTP appliance for processing. About AirWatch AirWatch Mobile Device Management allows IT administrators to remotely manage and configure mobile phones and tablets. Administrators can also manage compliance with security policies to reduce the risk of accidental or improper disclousure of data to anyone outside your organization. 2015 FireEye, Inc. 1

About the FireEye MTP Service MTP AirWatch Integration Guide About Unified Mobile Threat Policy Enforcement The Mobile Threat Prevention service monitors and detects malware on mobile devices on a network. Each time a user adds or updates a app to his or her device, the client app scans the device and sends the scan data to the MTP appliance. The MTP forwards the app information to the FireEye Mobile Threat Protection (MTP) cloud service, which sends analysis data through MTP to AirWatch. AirWatch uses the analysis data to enforce security policies. Applying Policy to Enforce Malware Removal One possible use case for unified mobile threat policy enforcement is to require users to remove malware from their devices. With unified mobile threat policy enforcement, MTP will alert AirWatch of any malicious apps on a device, and AirWatch can then enforce a policy, such as blocking Wi-Fi. If a user downloads a malicious app, MTP analyzes the device and reports the incident to AirWatch, which then blocks the user's email service on that device. Restoring Functionality When Malware is Removed When a user removes a malicious app, MTP scans the app, and sends the scan data to AirWatch. AirWatch then restores email to the device. 2 2015 FireEye, Inc.

Release 1.0 About Unified Mobile Threat Policy Enforcement 2015 FireEye, Inc. 3

Deploying the MTP Service with AirWatch MTP AirWatch Integration Guide Deploying the MTP Service with AirWatch This section will guide you through the steps required to successfully add the Mobile Threat Protection service to your network. Types of Deployment There are two ways to deploy the MTP service with the AirWatch system: AirWatch managed client communication MTP managed client communication AirWatch Managed Client Communication With AirWatch managed client communication, you do not deploy the FireEye MTP client application on each user s mobile device. To specify AirWatch managed client communication select the Periodic Sync checkbox within the AirWatch Settings section of the Web UI Settings tab. MTP Managed Client Communication With MTP managed client communication, the MTP server communicates directly with user s mobile devices over the network s WiFi network. MTP managed client communication is recommended. To use MTP managed client communication, each user s mobile device needs to have the FireEye MPT client application installed. To specify MTP managed client communication deselect the Periodic Sync checkbox within the AirWatch Settings section of the Web UI Settings tab. Deployment Requirements Before you can add the FireEye MTP service on your network, you need the following: 4 2015 FireEye, Inc.

Release 1.0 Deployment Requirements An AirWatch server running on your network with a current AirWatch license The AirWatch client application installed on all mobile devices to be protected by the FireEye MTP solution An AirWatch user account and password to be used by the FireEye MTP appliance to access the AirWatch instance A FireEye MTP appliance installed on your network with a active connection to the MTP Cloud service (only required for MTP Managed Client Communication) The following licenses installed on the MTP appliance: A current FireEye MTP appliance license A current FireEye support license A current FireEye Content Update license 2015 FireEye, Inc. 5

Integrating MTP with AirWatch MTP AirWatch Integration Guide Integrating MTP with AirWatch This section describes how to integrate an existing installation of the FireEye MTP Management console with AirWatch. The following information is covered: Connecting MTP to the AirWatch Server 6 If you have not yet installed the FireEye MTP management console, you can integrate with AirWatch as part of the initial login and setup procedure. See the following documents: FireEye MTP Management Appliance System Administration Guide FireEyeMTP Management Cloud System Administration Guide Connecting MTP to the AirWatch Server You should use the MTP Management console Web UI to configure the AirWatch connection. 6 2015 FireEye, Inc.

Release 1.0 Connecting MTP to the AirWatch Server Prerequisites The AirWatch server installed on the network. An AirWatch user account and password to be used by the MTP management console. The AirWatch API Key used to authenticate access the AirWatch APIs An AirWatch App Group defined on the AirWatch appliance A compliance policy that uses a blacklist to block malicious apps associated with the AirWatch App Group defined on the AirWatch appliance The MTP management console installed on the network with a direct network access to the AirWatch server. Follow the steps in this section to connect to the AirWatch server. To connect to AirWatch: 1. In the MTP Web UI, click the Settings tab. 2. Enter the hostname or URL of the AirWatch API port. 3. Enter the pre-defined AirWatch user name and password. 4. Enter the AirWatch API Key. 5. Enter the HighRisk App group name. This HighRisk App group name should match the App Group added to th eairwatch console. 6. Select the Active checkbox. The Active checkbox enables the connection between AirWatch and the MTP management console. 7. If you are not deploying the FireEye Mobile Security app on each mobile device, select the Periodic Sync checkbox. 8. Click Test to test your configuration. 2015 FireEye, Inc. 7

What To Do Next MTP AirWatch Integration Guide What To Do Next After reviewing this document, see the FireEye Mobile Threat Protection documentation for further information about keeping your enterprise safe from mobile threats. For technical support, contact FireEye in the following ways: Email us at support@fireeye.com Call us at 1.877.FIREEYE (USA); +44.203.106.4828 (UK); 1.408.321.6300 (Outside the USA) Visit the FireEye Customer Support Portal (login required): https://csportal.fireeye.com/ 8 2015 FireEye, Inc.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information