Click here to load reader

VMware AirWatch Mobile Device Management Guide

  • View
    278

  • Download
    16

Embed Size (px)

Text of VMware AirWatch Mobile Device Management Guide

  • VMware AirWatch Mobile DeviceManagement GuideManaging your organization's mobile devices

    AirWatch v8.3

    Have documentation feedback?Email [email protected] Note that if you require assistance from AirWatchSupport you should contact [email protected] VMware, Inc. All rights reserved. This product is protected by copyright and intellectual property laws in the United States and other countries as well as byinternational treaties. VMware products are covered by one ormore patents listed at http://www.vmware.com/go/patents.

    VMware is a registered trademark or trademark of VMware, Inc. in the United States and other jurisdictions. All othermarks and names mentioned hereinmay be trademarks of theirrespective companies.

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

    1

    mailto:[email protected]?subject=Doc Feedback:mailto:[email protected]

  • Revision TableThe following table displays revisions to this guide since the release of AirWatch v8.3.

    Date Reason

    February 2016 Initial upload.

    2

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • Table of ContentsChapter 1: Overview 8

    What's New 9Introduction toMobile Device Management (MDM) 10Before You Begin 10Supported Browsers 10Supported Devices 11

    Chapter 2: Getting Started with AirWatch 12

    Overview 13Logging into the AirWatch Admin Console 13SettingYour Security PIN 13Using the GettingStartedWizard 14The AirWatch Admin Console at a Glance 15Using the Global Search 17ViewingNotifications 18Using the Mobile Console 18

    Chapter 3: Environment Setup 19

    Overview 20Generating an APNs Certificate 20Creating a Privacy Notification 20Configuring Privacy Settings 21Privacy Best Practices 23SettingUp Autodiscovery 25Configuring Terms of Use 26Configuring Console Branding 28Configuring RestrictedActions 29Integratingwith Other Enterprise Systems 31

    Chapter 4: Organization Groups 33

    Overview 34CreatingOrganization Groups 35

    3

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • CreatingOrganization Group Types 37Comparing OrganizationGroups Using Settings Comparison 38

    Chapter 5: User and Admin Accounts 40

    Overview 41ChoosingUser Authentication Types 41Creating Basic User Accounts 47CreatingDirectory-Based User Accounts 50ManagingUser Accounts 53Using the Bulk Import Feature 55Creating an AdminAccount 57Managing Admin Accounts 58

    Chapter 6: Role-Based Access 59

    Overview 60Default and Custom Roles 60Creating andManaging User Roles 62Creating andManaging Administrator Roles 63Comparing AdminRoles 66AddedResources 68

    Chapter 7: User Groups 69

    Overview 70Adding User GroupsWithout Directory Integration (Custom) 70Adding Directory-BasedUser Groups 70EditingUser Groups Permissions 72Accessing User Details 72ManagingUser Groups 73Device Assignments 75

    Chapter 8: Smart Groups 78

    Overview 79Creating a Smart Group 79Assigning a Smart Group 80

    4

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • Managing Smart Groups 82

    Chapter 9: Assignment Groups 85

    Overview 86UsingAssignment Groups 86

    Chapter 10: Shared Devices 88

    Overview 89System Capabilities 89Supported Platforms 89Organizing Shared Devices 90ProvisioningDevices for Multi-User Device Staging 91Using Shared Devices 91

    Chapter 11: Device Enrollment 92

    Overview 93Required Information 93The Enrollment Process 93Additional Enrollment Workflows 94PerformingDevice Staging 94Registering Devices 96Configuring Enrollment Options 100Customizing EnrollmentMessages 102Blacklistingand Whitelisting Device Registration 103Configuring Enrollment Restrictions 104

    Chapter 12: Device Profiles 106

    Overview 107Configuring General Profile Settings 107ManagingDevice Profiles 109EditingDevice Profiles 113View Device Assignment 114Compliance Profiles 115Geofences 115

    5

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • Time Schedules 117

    Chapter 13: Compliance 119

    Compliance Overview 120NavigatingCompliance Policies List View 121Compliance Policies by Platform 123Adding a Compliance Policy 125

    Chapter 14: Tags 130

    Overview 131Creating a New Tag 131Adding Tags 132Managing Tags 133Filtering Devices by Tag 133Tags and Smart Groups 134

    Chapter 15: Managing Devices 135

    Overview 136Using the Device Dashboard 136Using the Device List View 137UsingDevice Details 141UsingDevice Actions 144Using the Enrollment Status Page 150Using Lifecycle Notifications 152UsingWipe Protection 153UsingAirWatch Hub 155

    Chapter 16: Certificate Management 160

    Overview 161ManagingDigital Certificates 161Certificate Integration Resources 161

    Chapter 17: Custom Attributes 163

    Overview 164

    6

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • Creating Custom Attributes 164Assigning OrganizationGroups UsingCustom Attributes 165

    Chapter 18: Self-Service Portal 166

    Overview 167Accessing the Self Service Portal on Devices 167Using the MyDevices Page of the SSP 167PerformingActions in the SSP 171Self-Service Portal ActionsMatrix 174Customizing the Self Service Portal (SSP) 175

    Finding Additional Documentation 176

    7

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • Chapter 1:Overview

    What's New 9

    Introduction toMobile Device Management (MDM) 10

    Before You Begin 10

    Supported Browsers 10

    Supported Devices 11

    8

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • What's NewTheMobile DeviceManagementGuide has been updated with the latest features and functionality from themost recentrelease of AirWatch, AirWatch v8.3. The list below includes these new features and the sections and pages on which theyappear.

    l Device Assignments (previously Network Range Assignments) has been enhanced with an ability to assign devices toan organization group based on custom attributes. See Device Assignments on page 75.

    l Assigning a Smart Group is now easier due to the addition of a Groups link on the Assign page. See Assigning a SmartGroup on page 80.

    l Determining which Assignment Groups are actionable by admins has been made clearer in Managing Smart Groupson page 82.

    l If no device hardware identifiers are included during the addition of a device, such as UDID, IMEI, and Serial Number,AirWatch will now attempt to match the device registration record to the enrollment automatically. You can also optout of sending the device user an email upon a successful device registration. See Registering Devices on page 96.

    l You are now able to select a contiguous block of devices, even across multiple pages, by shift-clicking in the DeviceList View, similar to how it works in theWindows and Mac desktop environments. See Using the Device List View onpage 137.

    l When you select a Revoke Token or Reset Token action for one or more devices in the Enrollment Status page, youcan now choose to disable the Notify Users field which prevents the default email notification from being sent. SeeUsing the Enrollment Status Page on page 150.

    l The Event Log now captures server thread information when multi-threading is enabled at the server level. See UsingReports &Analytics on page 158.

    l A new section containing information about certificatemanagement including a list of external resources withinstructions on integrating your specific certificate authority with AirWatch. See CertificateManagement on page160.

    l Custom Attributes, including how to create them and use them to assign devices to organization groups, has beenadded to theMDMGuide. See Custom Attributes on page 163.

    Chapter 1: Overview

    9

    VMware AirWatchMobile DeviceManagementGuide | v.2016.02 | February 2016

    Copyright2016 VMware, Inc. All rights reserved. Proprietary & Confidential.

  • Introduction to Mobile Device Management (MDM)Mobile devices are valuable enterprise tools. They allow employees to have immediate access to your company's internalcontent and resources. However, the diversity ofmobile platforms, operating systems and versions can makemanaginga set of devices difficult. Mobile DeviceManagement (MDM) solves this problem by enabling you to configure, secure,monitor, and manage all types ofmobile devices in the enterprise. MDM allows you to:

    l Manage large-scale deployments ofmobile devices from a single console.

    l Enroll devices in your enterprise environment quickly and easily.

    l Configure and update device settings over the air.

    l Enforce security and compliance policies.

    l Securemobile access to corporate resources.

    l Remotely lock and wipemanaged devices.

    You can tailor your MDM environment to gain immediate access to device locations, current users, and content. You canalso automate your MDM deployment to enforce security and compliance settings with rules an

Search related