Hello, 

We have a scenario of a customer looking for a solution and I was thinking that Mobile Enterprise Gateway (MEG) might work.

They are not a current customer of Maas360 so will all be fresh.

They have some servers which they need to allow 3rd party access to, securely. The servers are behind a controlled firewall but all incoming is currently blocked.

With Mobile Enterprise Gateway, I assume it's installed/connected on the server side of things and then using Maas360, get devices enrolled in a work profile and then apps would be allowed to connect to resouces on the local network?

Any advise or suggestions would be appreciated.

Thanks

Hi Jack

Sounds good!  

The use case for Mobile Enterprise Gateway, as a sub-set of functionality of Cloud Extender, is to extend access to OnPremises systems into the cloud. 

These are the scenarios where the access you describe might be appropriate: 

• Customer has an OnPremise directory, either LDAP or Microsoft AD On Premise
• Content servers are stored on the customer's physical premises or data centre ("On Premise content servers")
• There is no access to the servers at present for mobile devices and so the customer wants to provide remote access in a secure way
• MaaS360 Cloud Extender (MEG) can be installed either on the customer's DMZ or internal network
• Once CE/MEG are installed, data traffic for the content servers can be run to the CE/MEG server (either on internal network or in DMZ)
• Finally, the licence bundle which the customer has for devices provides the ability to access remote content from MEG in the Secure Document Viewer or Editor (for Documents), Secure Browser (web content), or Workplace Apps (mobile apps which need to connect to internal app servers)

I have attached the MaaS360 licence bundles so that you can verify that corresponding to the last point, the customer would purchase the correct licence bundle which gives them access to the functionality they need (Documents, Browser, Workplace App Security). 

Finally - and just to be clear - the end-to-end data transfer from content server through MEG and to the device, is encrypted at 256-bits. The MaaS360 containerised apps (Browser/Document clients/Workplace apps) allow for consumption of this data, which has been transferred over a high level of encryption; and where once on the device the content is also encrypted when stored - independently of device encryption status - and controlled by the DLP (Data Leak Prevention) settings in the Workplace Persona policy, where you can prevent screenshot, copy/paste etc. 

I hope this is helpful. If you want to get a demo of the functionality and learn more please consult documentation below and if necessary contact your IBM Sales point of contact to get a Tech Sales professional to help you. 

------------------------------
Eamonn O'Mahony
Technical Client Success Manager
IBM Security
Dublin, Ireland
------------------------------