Versions Compared

Version Old Version 6 New Version Current
Changes made by

Gary Leicht

Gary Leicht

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Use the following enrollment process to silently install the BloxOne the Infoblox Mobile Endpoint app on iOS and Android devices that use MaaS 360.

Step 1: Download the Mobile Device Management (MDM) Config File from the

...

Infoblox Services Platform

An app-config file is required to update an app’s configuration in MDM. To download the file, do the following:

  1. Log in to csp.infoblox.com.into the Infoblox Portal.  
  2. Go to Manage Configure > Security > Endpoints > Endpoint Groups.
  3. Click Download MDM Configuration, and select iOS Config File or Android Config File, depending on the device. 

 
ImageThe Download MDM Configuration drop-down options for handling endpoint configurations within a network. The configuration options include: Android Config File, iOS Config File, and Chrome Config File. 

To assign an endpoint to a specific endpoint group, click  next to the name of the endpoint group and select Download MDM Configuration > Android or iOS Config File:



ImageThe download MDM configuration options when applying a configuration option to an existing endpoint group. The configuration options include:Android Config File, iOS Config File, and Chrome Config File.


4. Save the downloaded config file to a directory where it can be located easily.

The app config contains the following parameters: 

  • joinToken:

     The

    The value in the XML file.

  • groupName:  In In the Cloud Services Infoblox Portal, the name of the group to which the endpoint is to will be moved. If the name is not present in the Cloud Services the Infoblox Portal, then add it will be added to the the All BloxOne Endpoints group before installing the app-config fileInfoblox Endpoints group.
  • userId:  The The unique name that identifies the a mobile device. The configured name is displayed in the Cloud Services the Infoblox Portal, on the Manage Endpoints page (Configure > Security > Endpoints).
  • allowServiceControl: By default, this value will be True. To disallow and hide service control, use the toggle switch to change this value to False.  
  • extensionType (only for iOS): By default, this value is “vpn”, we can also set to “dnsproxy” to intercept the DNS traffic using DNS Proxy Provider.


Warning
titleWarning

The proxy mode was never tested and may not work. 


Step 2: Register a Mobile Endpoint for Use with IBM MaaS 360

Log in to the IBM MaaS 360 console, and follow the steps for registering a device. For information on enrolling and using MDM devices with IBM MaaS 360, refer to the following guides:

  • For MDM iOS devices, click here.    
  • For MDM Android devices, click here

Step 3: Install the

...

Infoblox App on the Workspace One Server

Installation on an iOS Device

To install the BloxOne Infoblox app on an iOS device, do the following: 

...



Image:  The IBM MaaS 360 platform displays the "App Catalog" section. 
 

4. Search for  BloxOne EPfor Infoblox Endpoint, and click Add to add it to your configuration.



Image: Adding an "iTunes App Store App" in IBM MaaS 360.

5. Once the BloxOne the Infoblox Endpoint app appears in the list of apps, select the devices and users to which it will be distributed.  

Installation on an Android Device

To install the BloxOne the Infoblox app on an Android device, do the following:

...

4. On the Add Google Play App screen, search for BloxOne EP Infoblox Endpoint and click Add
5. Locate the BloxOne the Infoblox Android app from among the apps listed. 
6. To add the BloxOne the Infoblox EP app to your devices and users, click Select Approve Add. After the BloxOne the Infoblox Android app appears on the list of apps, click Distribute:



Image: Adding the BloxOne the Infoblox Endpoint configuration from the Google Play store.

7. Click Select Approve Add, and select BloxOne EP Infoblox EP from the list of apps.
8. Click Distribute to distribute and install the configuration on specific users' Android devices.  

Step 4: Add the App-Config File for

...

the Infoblox iOS App

To add an app config for a BloxOne Infoblox iOS device, do the following:

...


ImageThe IBM MaaS 360 platform displays the "App Catalog" section where the BloxOne the Infoblox iOS app is added. 


3. Add the configuration name, and select the iOS app from the app catalog:

...

5. Select Manual Configuration, and add the config file previously downloaded from the Cloud Services the Infoblox Portal.

6. The app config with the editable groupName and userId attribute fields should appear.

Note
titleNote

BloxOne Endpoint Infoblox Endpoint version iOS 2.0.7 and above uses joinToken instead of customerId for authorization, for existing devices with older version of the app the update to latest version is automatic, for fresh installation on new devices the joinToken should be updated in the configuration settings.

...



Image: Publishing the configuration. 

After a few minutes, BloxOne Endpoint will  Infoblox Endpoint will be automatically installed on the client devices. 

Step 5: Perform a Silent Authorization of DNS Proxy Permissions for

...

the Infoblox iOS App

  1. Log in to the IBM MaaS 360 console.
  2. Go to Security > Policy Management > Policies.
  3. Select an iOS policy to be pushed to iOS devices.
  4. Go to iOS Policy > Supervised Settings > DNS Proxy, and click Edit:

...

9. Go to DevicesInventory, and select the device from the list.
10. Click MoreRequest data refresh
11. BloxOne  Infoblox Endpoint will be automatically installed on the client devices. The installation process might take several minutes:.



Image: Clicking Request Data Refresh will automatically install BloxOne install Infoblox Endpoint on all devices. 

13. Open the BloxOne the Infoblox Endpoint app on your device; on Android devices, find the app in the Work Profile.  If prompted, accept the DNS Proxy acknowledgement. After a moment, the app will be in a protected state.



 Image: The Infoblox Endpoint app displaying its protected status on an iOS device. 

Step 6: Add an App Config for

...

the Infoblox Android app

To add an app config for a BloxOne Infoblox iOS device, do the following: 

...

4. Click Next to continue to the Configuration screen.
5. Add the config file previously downloaded from the Cloud Services the Infoblox Portal.
6. The app config with the editable groupName and userId attribute fields should appear.

Note
titleNote

BloxOne Endpoint Infoblox Endpoint Android version 1.0.9 and below require the customerId attribute value in the app configuration.

BloxOne Endpoint Infoblox Endpoint Android version 1.0.10 and above use joinToken instead of customerId for authorization. For fresh installations on new devices the joinToken should be updated in the app configuration settings.

Note: The customerId attribute will be removed from app in future versions. You may need to maintain both customerId and joinToken in your app configuration until such time all devices are update to 1.0.10 or above.

...

7. Click Next
8. On the Android-config screen, click Publish to complete the installation and distribution process.
9. BloxOne EndpointInfoblox Endpoint will be automatically installed on the client devices. The installation process might take several minutes to complete. 
10. Open the BloxOne the Infoblox Endpoint app on your device; on Android devices, find the app in the Work Profile. If prompted, accept the VPN acknowledgement. After a moment, the app will assume a protected state.

...