Versions Compared

Version Old Version 4 New Version Current
Changes made by

Gary Leicht

Gary Leicht

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Use the following enrollment process to silently install the BloxOne the Infoblox Mobile Endpoint app on iOS and Android devices that use MaaS 360.

Step 1: Download the Mobile Device Management (MDM) Config File from the

...

Infoblox Services Platform

An app-config file is required to update an app’s configuration in MDM. To download the file, do the following:

  1. Log in to csp.infoblox.com.into the Infoblox Portal.  
  2. Go to Manage Configure > Security > Endpoints > Endpoint Groups.
  3. Click Download MDM Configuration, and select iOS Config File or Android Config File, depending on the device. 

Image 1

Image RemovedImage Added 
ImageThe Download MDM Configuration drop-down options for handling endpoint configurations within a network. The configuration options include: Android Config File, iOS Config File, and Chrome Config File. 

To assign an endpoint to a specific endpoint group, click  next to the name of the endpoint group and select Download MDM Configuration > Android or iOS Config File:Image 2
Image Removed


Image Added

ImageThe download MDM configuration options when applying a configuration option to an existing endpoint group. The configuration options include:Android Config File, iOS Config File, and Chrome Config File.


4. Save the downloaded config file to a directory where it can be located easily.

The app config contains the following parameters: 

  • joinToken:

     The

    The value in the XML file.

  • groupName:  In In the Cloud Services Infoblox Portal, the name of the group to which the endpoint is to will be moved. If the name is not present in the Cloud Services the Infoblox Portal, then add it will be added to the the All BloxOne Endpoints group before installing the app-config fileInfoblox Endpoints group.
  • userId:  The The unique name that identifies the a mobile device. The configured name is displayed in the Cloud Services the Infoblox Portal, on the Manage Endpoints page (Configure > Security > Endpoints).
  • allowServiceControl: By default, this value will be True. To disallow and hide service control, use the toggle switch to change this value to False.  
  • extensionType (only for iOS): By default, this value is “vpn”, we can also set to “dnsproxy” to intercept the DNS traffic using DNS Proxy Provider.


Warning
titleWarning

The proxy mode was never tested and may not work. 


Step 2: Register a Mobile Endpoint for Use with IBM MaaS 360

Log in to the IBM MaaS 360 console, and follow the steps for registering a device. For information on enrolling and using MDM devices with IBM MaaS 360, refer to the following guides:

  • For MDM iOS devices, click here.    
  • For MDM Android devices, click here

Step 3: Install the

...

Infoblox App on the Workspace One Server

Installation on an iOS Device

To install the BloxOne Infoblox app on an iOS device, do the following: 

  1. Log in to the IBM MaaS 360 console.
  2. Go to Apps > App Catalog.
  3. Click Add > iOS > iTunes App Store:


Image Added
Image 3
Image Removed:  The IBM MaaS 360 platform displays the "App Catalog" section. 
 

4. Search for  BloxOne EPfor Infoblox Endpoint, and click Add to add it to your configuration: 

Image 4
Image Removed

.


Image Added
Image: Adding an "iTunes App Store App" in IBM MaaS 360.

5. Once the BloxOne the Infoblox Endpoint app appears in the list of apps, select the devices and users to which it will be distributed.  

Installation on an Android Device

To install the BloxOne the Infoblox app on an Android device, do the following:

  1. Log in to the IBM MaaS 360 console.
  2. Go to Apps > App Catalog.
  3. Click Add > Android Google Play App: 


Image Added
Image 5
Image Removed: Adding the Android application to the IBM MaaS 360 catalogue. 

4. On the Add Google Play App screen, search for BloxOne EP Infoblox Endpoint and click Add
5. Locate the BloxOne the Infoblox Android app from among the apps listed. 
6. To add the BloxOne the Infoblox EP app to your devices and users, click Select Approve Add. After the BloxOne the Infoblox Android app appears on the list of apps, click Distribute:


Image 6
Image RemovedImage Added
Image: Adding the Infoblox Endpoint configuration from the Google Play store.

7. Click Select Approve Add, and select BloxOne EP Infoblox EP from the list of apps.
8. Click Distribute to distribute and install the configuration on specific users' Android devices.  

Step 4: Add the App-Config File for

...

the Infoblox iOS App

To add an app config for a BloxOne Infoblox iOS device, do the following:

  1. Go to Apps > App Configuration.
  2. Click Add Configuration:

Image 7

Image Removed

  1. .

Image Added
ImageThe IBM MaaS 360 platform displays the "App Catalog" section where the Infoblox iOS app is added. 


3. Add the configuration name, and select the iOS app from the app catalog:


Image Added
Image 8: Adding the iOS configuration. 
Image Removed 

4. Click Next to continue to the Configuration screen.

5. Select Manual Configuration, and add the config file previously downloaded from the Cloud Services the Infoblox Portal.

6. The app config with the editable groupName and userId attribute fields should appear.

Note
titleNote

BloxOne Endpoint Infoblox Endpoint version iOS 2.0.7 and above uses joinToken instead of customerId for authorization, for existing devices with older version of the app the update to latest version is automatic, for fresh installation on new devices the joinToken should be updated in the configuration settings.

...


Image Added 
Image: Adding groupName ansd userID manually to the configuration. 

7. Click Next to continue to the iOS Distribution screen.

8. Click Publish to publish and distribute the configuration:.


Image Added
Image 10
Image Removed: Publishing the configuration. 

After a few minutes, BloxOne Endpoint will  Infoblox Endpoint will be automatically installed on the client devices. 

Step 5: Perform a Silent Authorization of DNS Proxy Permissions for

...

the Infoblox iOS App

  1. Log in to the IBM MaaS 360 console.
  2. Go to Security > Policy Management > Policies.
  3. Select an iOS policy to be pushed to iOS devices.
  4. Go to iOS Policy > Supervised Settings > DNS Proxy, and click Edit:


Image Added 
Image 11
Image Removed: Editing the Policies tab. 

5. Select an  iOS policy to be pushed to iOS devices.
6. Go to iOS PolicySupervised SettingsDNS Proxy, and click Edit
7. In the Edit panel, do the following:

...

For Provider Bundle id, select com.infoblox.atc.b1dnsproxy.dnsproxy:

Image 12
Image Removed
Image Added
Image: Adding the App Bundle id and Provider Bundle id to the configuration. 

8. At the end of the configuration process, click Confirm Publish:.


Image Added
Image 13
Image Removed
: Publishing the configuration.

9. Go to DevicesInventory, and select the device from the list.
10. Click MoreRequest data refresh
11. BloxOne  Infoblox Endpoint will be automatically installed on the client devices. The installation process might take several minutes: 

Image 14
Image Removed

.


Image Added
Image: Clicking Request Data Refresh will automatically install Infoblox Endpoint on all devices. 

13. Open the BloxOne the Infoblox Endpoint app on your device; on Android devices, find the app in the Work Profile.  If prompted, accept the DNS Proxy acknowledgement. After a moment, the app will be in a protected state:.


Image 15

 Image: The Infoblox Endpoint app displaying its protected status on an iOS device. 

Step 6: Add an App Config for

...

the Infoblox Android app

To add an app config for a BloxOne Infoblox iOS device, do the following: 

  1. Go to Apps > App Configuration.
  2. Click Add Configuration:

...

  1. .


Image Added
Image: Adding the Android app configuration to IBM MaaS 360.  

3. Add the configuration name, and select the Android app from the app catalog:Image 17
Image Removed.


Image Added
Image: Adding the name of the configuration to the Android configuration. 

4. Click Next to continue to the Configuration screen.
5. Add the config file previously downloaded from the Cloud Services the Infoblox Portal.
6. The app config with the editable groupName and userId attribute fields should appear.

Note
titleNote

BloxOne Endpoint Infoblox Endpoint Android version 1.0.9 and below require the customerId attribute value in the app configuration.

BloxOne Endpoint Infoblox Endpoint Android version 1.0.10 and above use joinToken instead of customerId for authorization. For fresh installations on new devices the joinToken should be updated in the app configuration settings.

Note: The customerId attribute will be removed from app in future versions. You may need to maintain both customerId and joinToken in your app configuration until such time all devices are update to 1.0.10 or above.


Image 18
Image RemovedImage Added
Image: Adding the groupName and userId to the Android configuration.
 

7. Click Next
8. On the Android-config screen, click Publish to complete the installation and distribution process.
9. BloxOne EndpointInfoblox Endpoint will be automatically installed on the client devices. The installation process might take several minutes to complete. 
10. Open the BloxOne the Infoblox Endpoint app on your device; on Android devices, find the app in the Work Profile. If prompted, accept the VPN acknowledgement. After a moment, the app will assume a protected state:Image 19
Image Removed.


Image Added
Image: The Infoblox Endpoint app displaying its protected status on an Android device.