As an IT admin you often manage multiple employee requirements across different geographies. One VPN configuration typically doesn’t work for every employee. So how do you ensure that different geographies get the VPN configuration they need? And how do you block end users from using social accounts on public apps while delivering a seamless, out of the box user experience?
You can achieve all these objectives by using IBM MaaS360.
Once apps are added to the MaaS360 console, IT admin’s have an option to setup app configuration. MaaS360 automatically pulls configurations from the app config community as well as providing an option to upload configurations in an XML format. Even key value configurations are supported for an app.
MaaS360 auto generates UI that IT admins can quickly edit, review changes and publish app configurations. Admin’s can also set a default config for a given app for enrollment that allows seamless app setup on devices (this feature is optional).
App configurations can be published at the device and group level. MaaS360 constantly reviews device security and automatically executes predefined actions set by admins on these devices. Enterprise administrators can define stricter policies on high risk devices to avoid any data leaks from devices. If a given device falls under one or more groups, the highest precedence configurations will flow down to the device/users.
Getting started with IBM MaaS360 App configurations deployment
You can follow the steps given in setup your first app configurations here
IBM MaaS360 with IBM Verify
If your apps are integrated with IBM Verify, you can also perform SSO on device for a seamless sign-in experience and revoke/control app access, should a security threat be reported from the device. More details can be found here
IT Admins:
Enterprise IT administrators now have a wide range of options to manage apps on multiple devices.
App config vs App wrapping: If your device is managed and app developers support security , then you can use app config. If the device is not managed, then you should use app wrapping to control app security and access.
Zero Day support for all config: Once app developers support new config’s, these configs can be deployed to end users - depending on an organizations risk appetite.
Enterprise App Developers:
This will encourage corporate app developers to give more control for admin’s to manage security settings & access control on apps by developing Enterprise ready apps. This also avoids developing different apps with config changes for enterprises.
The ability to create multiple app config’s is helping make life simpler for Enterprise IT organizations. By allowing admins to set required configs for a given employee groups, organizations gain greater app level security & access control.
Enterprise Users:
Once devices gets enrolled in IBM MaaS360, apps are auto configured with all account information and security policies which provides secure access and content sharing.
We hope you find this information useful. To get started with your first app configuration, you can access the documentation here.