Using Devices. Chapter 3



Similar documents
AVG Business SSO Partner Getting Started Guide

Sophos Mobile Control user help. Product version: 6.1

GO!Enterprise MDM Device Application User Guide Installation and Configuration for ios with TouchDown

Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication. Mobile App Activation

AirWatch for Android Devices

GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android

GO!Enterprise MDM Device Application User Guide Installation and Configuration for Android with TouchDown

SysAid MDM User Guide for Android

Sophos Mobile Control User guide for Android. Product version: 4

Sophos Mobile Control User guide for Android

Sophos Mobile Control User guide for Apple ios. Product version: 4

Managing policies. Chapter 7

Mobile Device Management: Deployment

GO!Enterprise MDM Device Application User Guide Installation and Configuration for ios Devices

Mobility Manager 9.5. Users Guide

Mobile Iron User Guide

Sophos Mobile Control User guide for Apple ios

Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication

Senior Systems Cloud Services

AirWatch for ios Devices

Single Sign-On Portal User Reference (Okta Cloud SSO)

Cloud Services MDM. ios User Guide

Quick Start Guide. Version R9. English

Two Factor Authentication (TFA; 2FA) is a security process in which two methods of authentication are used to verify who you are.

ios How to Back Up from icloud

Flexible Identity Federation

SAP NetWeaver Fiori. For more information, see "Creating and enabling a trusted provider for Centrify" on page

Building a BYOD Program Using the Casper Suite. Technical Paper Casper Suite v9.4 or Later 17 September 2014

Android App User Guide

Mobile Device Management Version 8. Last updated:

Copyright 2013, 3CX Ltd.

District 211 Technology. ipad Setup Instructions

Google 2 factor authentication User Guide

BlackBerry Universal Device Service. Demo Access. AUTHOR: System4u

NotifyMDM Device Application User Guide Installation and Configuration for Windows Mobile 6 Devices

Avira Free Android Security (version 1.2) HowTo

Kaseya 2. User Guide. Version 1.0

UP L18 Enhanced MDM and Updated Protection Hands-On Lab

Booth Gmail Configuration

Product Manual. Mobile Device Managment Version 8.1. Last Updated: 06/07/15

Health Science Center AirWatch Installation and Enrollment Instructions For Apple ios 8 Devices

QuickStart Guide for Mobile Device Management

Configuring. SugarCRM. Chapter 121

VPN: Virtual Private Network Setup Instructions

How can I protect against the loss of my ID if my device is lost or stolen?

Brainloop Secure Dataroom Version QR Code Scanner Apps for ios Version 1.1 and for Android

This guide provides information on...

Configuring identity platform settings

User Guide. BES12 Self-Service

Business Mobile Banking

Kaseya 2. User Guide. Version 7.0. English

TechNote. Contents. Introduction. System Requirements. SRA Two-factor Authentication with Quest Defender. Secure Remote Access.

QuickStart Guide for Mobile Device Management. Version 8.6

Contents First Time Setup... 2 Setting up the Legal Vault Client (KiteDrive)... 3 Setting up the KiteDrive Outlook Plugin Using the Legal Vault

Instructions for Configuring Your Browser Settings and Online Security FAQ s. ios8 Settings for iphone and ipad app

Configure AirWatch for Your Mobile Device

Managing users. Account sources. Chapter 2

Initial Setup of Microsoft Outlook 2011 with IMAP for OS X Lion

Department of Public Health S A N F R A N C I S C O

ManageEngine Desktop Central. Mobile Device Management User Guide

EBMS Secure . February 11, 2016 Instructions. Version 2

SP-initiated SSO for Smartsheet is automatically enabled when the SAML feature is activated.

An Overview of Samsung KNOX Active Directory and Group Policy Features

Remote Access End User Reference Guide for SHC Portal Access

Novell Filr 1.0.x Mobile App Quick Start

SysAid MDM User Guide for ios

Accessing Derbyshire County Council s Outlook Web Access (OWA) Service. Smart Phone App version

User Guide. Time Warner Cable Business Class Cloud Solutions Control Panel. Hosted Microsoft Exchange 2007 Hosted Microsoft SharePoint 2007

Technology Services Group Procedures. IH Anywhere guide. 0 P a g e

Connected Data. Connected Data requirements for SSO

Mobile and Text Customer Experience Online Banking Training Guide. i 2015 ChoiceOne Bank

Configuring. SuccessFactors. Chapter 67

Deltek Touch Time & Expense for GovCon. User Guide for Triumph

MDM User Guide June 2012

Installation Instructions

Administration Guide BES12. Version 12.3

Samsung KNOX User Guide KNOX for Consumers Edition

Introduction to the AirWatch Workspace

Sophos Mobile Control User guide for Apple ios. Product version: 2 Document date: December 2011

Exchange ActiveSync (EAS)

How To Use Senior Systems Cloud Services

Student BYOD - Olathe Public Schools

Mobile Device Management Fleet manager s guide. Philippe CAJET Admin Guide MDM R1.6_2013 August 1 st _V 1

ReadyNAS Remote. User Manual. June East Plumeria Drive San Jose, CA USA

GO!Enterprise MDM Device Application User Guide Installation and Configuration for BlackBerry

How to wipe personal data and from a lost or stolen mobile device

Egnyte App for Android Quick Start Guide

Mobile Online Banking

TLC 3 Student Mobile Device Configuration Specifications

Connect for iphone. Aug, 2012 Ver 5.3b AWest. 1 P age

MCBDirect Corporate Logging on using a Soft Token

DUO SECURITY CISCO VPN USER GUIDE 1/27/2016

Multi-Factor Authentication for first time users

Centrify Cloud Management Suite

ipad Set Up Guide: Staff! 1 of! 20

Frequently Asked Questions: Cisco Jabber 9.x for Android

REDCap project creation is not possible in the Mobile App

Mobile App Frequently Asked Questions

Managing users. Account sources. Chapter 1

About the Canon Mobile Scanning MEAP Application

Transcription:

Chapter 3 Using Devices es The Devices page lists all the devices you have enrolled in the Centrify identity platform and lets you send commands to the devices. Device related tasks that you can perform on the Centrify user portal are: "Adding a device" on page 3-27 "Viewing your device information" on page 3-31 "Using the primary device" on page 3-33 "Sending commands to devices" on page 3-34 The Devices page is blank until you enroll a device. Not all companies use the identity platform for device enrollment. Contact your IT department to determine whether or not you should enroll your mobile devices. 26

Adding a device Adding a device You add a device by installing the Centrify application on the device and then use this application to enroll the device in the identity platform. After you enroll the device, it is listed on the user portal Devices page and remains enrolled until you or your IT administrator unenrolls it. Keep the following in mind: You may have a limit on the number and types of devices you can add. Your IT administrator can set a policy that, for example, limits you to adding 2 devices only and does not allow you to add an ios device. Contact your IT administrator for the details. If you enroll multiple devices, the first device is designated as the primary device. Designating the primary device is important when you use the Mobile Authenticator for multifactor authentication. See "Using multi factor authentication" on page 1-3 for the details on Mobile Authenticator and multifactor authentication. See "Using the primary device" on page 3-33 for the details on the primary device. If you are enrolling an ios device that was assigned to the Apple Device Enrollment Program, go to "Using Apple device enrollment" on page 3-30 to install the Centrify application. Installing the Centrify application The easiest way to install the Centrify application to you device is to click Add Devices on the Devices page and then select a method. You can install the Centrify application using the following methods: Send a SMS text message to the device. The text message contains a link you tap to proceed see "Using a text message" on page 3-28. Send an email to the device. The email message contains a link you tap to proceed see "Using an email message" on page 3-28. Use the camera on your device and a QR code reader application see "Using the QR code" on page 3-29 for the details. The Google Play and App Store links are provided if you want to review the application description in the catalog before installing it on the device. You can also use them to download the application. You must have an Google Play or Apple App Store account to use these options. Notes If you have a Samsung KNOX device that has the Universal MDM Client (UMC), you use a different procedure to install the Centrify application and enroll the device see "Enrolling a Samsung KNOX device with the Universal MDM Client" on page 6-48. Chapter 3 Using Devices 27

Adding a device An ios device must have ios version 6 or later and an Android device must have Android 2.3.4 or later. If you are enrolling an OS X-based computer, you do not install the Centrify application. Go to "To enroll an OS X device:" on page 8-90 for the procedure. Using a text message You can send a text message to the device to download the Centrify application to your device and then install it from the Downloads the folder. To initiate device enrollment using a text message: 1 Open the user portal, click Devices, and Add Devices. This opens the Add Devices pop up window. 2 In the Send SMS area, confirm the phone number then click Send. The text message is sent. 3 On the device, open the text message. 4 Tap the link in the message. 5 Authorize application download. On an Android device, tap OK to allow download of the file. This downloads the application file to your Downloads folder. On an ios device, tap Open to open the application page in the Apple App Store and tap Install. This downloads and installs the application on your home screen. Skip the next step and go to Enrolling an ios device on page 74 to complete enrollment. 6 Android devices only: Open the Downloads folder on the device and tap the Centrify application file just downloaded. This initiates application installation. Go to "Enrolling an Android device" on page 6-47 to complete enrollment. Using an email message You can send an email to the device to download the Centrify application to your device and then install it from the Downloads folder. To initiate device enrollment using an email message: 1 Open the user portal, click Devices, and Add Devices. This opens the Add Devices pop up window. User portal user s guide 28

Adding a device 2 In the Send email to devices area, confirm the email address then click Send. The email is sent. 3 On the device, open the email application. 4 Tap the message. 5 Authorize application download. On an Android device, tap OK to allow download of the file. This downloads the application file to your Downloads folder. On an ios device, tap Open to open the application page in the Apple App Store and tap Install. This downloads and installs the application on your home screen. Skip the next step and go to Enrolling an ios device on page 74 to complete enrollment. 6 Android devices only: Open the Downloads folder on the device and tap the Centrify application file just downloaded. This initiates application installation. Go to "Enrolling an Android device" on page 6-47 to complete enrollment. Using the QR code You must have a QR code reader application to download the Centrify application using the QR code. Many devices come equipped with a QR code reader application. If your device does not have one by default, there are many free apps you can install from Google Play or the Apple Apps Store. To install the Centrify application by using the QR code: 1 Open the user portal, click the Devices page, and click Add Devices. 2 On the device, use the camera to scan the QR code. 3 Authorize application download. On an Android device, tap Go to Website and then tap OK to allow download of the file. This downloads the application file to your Downloads folder. On an ios device, tap Install. This downloads and installs the application on your home screen. Skip the next step and go to "Enrolling an ios device" on page 7-76 to complete the enrollment phase. 4 Android devices only: Open the Downloads folder on the device and tap the Centrify application file just downloaded. This initiates application installation. Go to "Enrolling an Android device" on page 6-47 to complete enrollment. Chapter 3 Using Devices 29

Adding a device Using Apple device enrollment The Apple Device Enrollment Program is a service provided by Apple. It is designed to help businesses and education institutions easily deploy and manage ipads, iphones, and Macs. It provides a fast, streamlined way to deploy company owned ipad and iphone devices and Mac computers that your IT department purchased directly from Apple. If you have a device assigned to the Apple Device Enrollment Program (DEP) enrolling the device is a two-part process: First, you enroll the device in the Apple DEP program. Second, you use the Centrify application to enroll the device in the Centrify identity platform. The first procedure depends upon how your IT department configured the device. However, it does have the following basic steps: 1 Set up the device communications. The device will need to connect to the Apple server. Your IT department will provide the information you need. 2 Enter your login user name and password. This may be the user name and password you use to log in to your network or another set of credentials. Your IT department will provide these to you too. 3 Perform the initial configuration tasks. These vary depending upon your organization s security policies and can include prompts, for example, to setup a passcode, enable or disable location tracking, or set up Siri. After you have completed the initial configuration tasks, the Centrify application and the Company Apps applications are automatically installed on your home screen. To perform the second enrollment piece enrolling the device in the Centrify identity platform see "Enrolling an ios device and using the Centrify application" on page 7-75. User portal user s guide 30

Viewing your device information Viewing your device information When you open the Devices tab, the screen lists all of the devices that you have enrolled in the Centrify identity platform, including devices that have been unenrolled. The listings indicate which device is the Primary and the status of each device. A device can have the following statuses: Enrolled: The device is enrolled and in communication with the identity platform. Unenrolled: The device was enrolled at one time but has since been unenrolled from the identity platform. Unreachable: The device has not communicated with the identity platform for a period of time. That period of time is set by your IT administrator. Enrolling: The device is in the process of enrolling with the identity platform. This is typically a short-term state. The map shows the location of all the devices you have at one time been enrolled. For unreachable devices, the map shows the last known location. Click on the device s arrow to center the focus on that device. The map device locations are only shown if your organization is using the Centrify identity platform for mobile device management and you have enabled device tracking on the device and in the Centrify user portal. By default, location tracking is enabled in the Centrify user portal. To configure location tracking, see "Disabling device location tracking" on page 1-6. In the Centrify application on ios devices, location tracking uses the significant-change location service which, unlike the GPS location tracking, is very battery friendly. It is not perpetually trying to determine the device location. Note that the Apple Location icon does not differentiate between the different types of location services. Similarly, the Centrify application for Android is configured for low power consumption. Open Location in the device Settings to see the battery use for the Centrify application. If the location does not seem correct, click the Find Now button to ensure that you have the most recent GPS location data. You may need to reload the browser page to display a location change. Using the device details pages Click a device to display device-specific information. The Overview page shows the last-updated location of the device and current battery and storage levels. You can scroll down for network and operating system details. Click the Actions button to send a command to the device see "Sending commands to devices" on page 3-34. Device-specific information include the following: Chapter 3 Using Devices 31

Viewing your device information Overview: Last-updated location, current batter and storage levels, and network and OS details. Details: The full details about the device, operating system, and carrier and network. Device Applications: Shows the applications that are targeted for this device, the application version, the installation type (automatic or optional), and the application statuses (Installed or Not Installed). You can export the information to CSV and Excel Device Location: A bigger map showing the device s current location. Device Activity: A log of the actions performed on the device. User portal user s guide 32

Using the primary device Using the primary device If you enroll multiple devices, the first one you enroll is designated as the primary device. If you unenroll the primary device, the second device you enrolled automatically becomes the primary. As long as you have a device enrolled, at least one of them is the primary. The primary device is the device you must use with the Mobile Authenticator for multifactor authentication (see "Using multi factor authentication" on page 1-3). When you choose Mobile Authenticator as the secondary form of authentication for access to the user portal, you use the Centrify application on the primary device to display the authentication code. Note You cannot use an OS X device as a primary device. To change the primary device: 1 Open the user portal and select Devices. 2 Right click the device listing in the left pane for the device you want designated as the primary. 3 Click Set As Primary Device. Alternatively, you can click the device listing, click Actions on the device details page, and click Set As Primary Device. Chapter 3 Using Devices 33

Sending commands to devices Sending commands to devices The Centrify identity platform provides self-service commands you can send to the device. Send commands by doing one of the following in the Centrify user portal: Right-click the device in the Devices screen. The Centrify user portal displays a drop-down list with the commands. Open the device details page and click the Actions button. The pop-up menu lists the commands available for this device. The available commands depend upon the following: Whether your organization is using the Centrify identity platform for mobile device management. The type of device you have enrolled. The device policies that your IT administrator has enabled for you. The following table lists all of the Centrify identity platform commands for all devices. If the command is not displayed in the pop up menu, it is not available for that device. Command Delete Update Policies Reset Password Purpose Remove the device listing. If you are using the Centrify identity platform for device management, this command is available only for unreachable and unenrolled devices. When the device is enrolled, this command is not displayed. Deleting a device does not remove the Centrify application or mobile applications that you installed using the Centrify application. If you try to open the Centrify application after deleting the device, it prompts you to enter your login credentials to enroll the device again. Update your device with the latest mobile device policies. Reset the passcode that opens the device. Use this command to create a new passcode if you have forgotten it. Notes: The use of this command is controlled by your IT administrator. This command may not be available to you. This command cannot be used to override a remote lock and is not available for OS X devices. User portal user s guide 34

Sending commands to devices Command Lock Screen Purpose Lock the mobile device screen so a user cannot access it (for example, if you fear another person has your phone). Remote lock is identical to locking it manually on the device. You unlock the device by entering the passcode. For OS X users only The Lock Screen command only works when the current OS X version has a recovery partition. When you issue the Lock Screen command to an OS X device, a pop up window is displayed by Centrify application prompting you to enter a 6-digit PIN code, and the computer is rebooted. Create a code that is all numbers, no alphabetic or special characters can be used. After the reboot, you are prompted on the computer to enter the PIN. This unlocks the computer. Wipe Device Remove all user data and restore the device to its shipping default state. Note: The use of this command is controlled by your IT administrator. This command may not be available to you. For OS X users only The Wipe Device command only works when the current OS X version has a recovery partition. When you issue the Wipe Device command to an OS X device, a pop up window is displayed by Centrify application prompting you to enter a 6-digit PIN code, and the computer is rebooted. Create a code that is all numbers, no alphabetic or special characters can be used. After the reboot, you are prompted on the computer to enter the PIN. This unlocks the computer, performs another reboot, and displays the OS install screen. Unenroll Device Remove all mobile device policies from the device and change the state to Unenrolled. To use the Centrify identity platform again, you must re-enroll the device. Note: The use of this command is controlled by your IT administrator. This command may not be available to you. Lock Client App Reset Client App PIN Disable SSO Enable SSO Locks the Centrify application on the device. This command is only available on ios and Android devices. Resets the passcode for the Centrify application on the device. This command is useful when you forget your passcode. This command is only available on ios and Android devices. Disable single sign-on (SSO) for web applications listed in the Centrify application and, on KNOX Workspace devices, in Centrify for KNOX and the mobile applications that use the Samsung KNOX SSO service. You would use this command, for example, if your device is lost or stolen to prevent someone else from logging in to your applications. After this command is sent, an error message is displayed on the device to indicate that single sign-on is not available. The user cannot log in to any application that requires authentication until single sign-on is enabled again. Enable single sign-on (SSO) for the web applications listed in the Centrify application and, for KNOX Workspace devices, mobile applications that use the Samsung KNOX SSO service. By default, SSO is turned on. You would only need to use this command if you had previously used the Disable SSO to turn off single sign-on. Chapter 3 Using Devices 35

Sending commands to devices Samsung KNOX device commands The following commands are only displayed if you are using a Samsung KNOX device and the licenses are valid. Command Purpose All Samsumg KNOX devices Force Password change Device Lockout Power off Device Reboot Device Reset Call Counts Reset Data Usage Count Force a device password change. The first prompt requires you to enter your current password before creating a replacement. If you do not know your password, use the Reset Passcode command instead. Lock down the device. This command lets you define a passcode that must be entered to unlock the device. In addition, the command lets you specify a lockout message that is displayed on the device. Turn off the device. Force the device to reboot. Reset the call counts. Samsung KNOX Workspace devices only Remove container Lock Container Unlock Container Re-authenticate SSO Reset Container Password Reset the count of cellular data network bytes received and sent. Delete the container. Note: All applications in the container are uninstalled and all data in the container are erased. Lock the container. The container cannot be opened after receiving the Disable Container command until the device receives a Enable Container command. Unlock the container. A container locked with the Disable Container command cannot be opened until the device receives the Enable Container command. Prompt you to enter your credentials the next time you open a mobile application that uses the Samsung KNOX container s single sign-on feature (not all mobile applications installed in the container use this feature). Prompt you to create a new password for the container. User portal user s guide 36

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information