/
Enrollment for Mobile App using IBM MaaS 360
Document toolboxDocument toolbox

Enrollment for Mobile App using IBM MaaS 360

Owned by Gary Leicht
Last updated: Feb 11, 2025
7 min read

This guide provides step-by-step instructions for silently installing Infoblox Mobile Endpoint on iOS and Android devices using IBM MaaS 360. The process includes downloading configuration files, registering devices, installing the Infoblox app, and configuring silent DNS proxy authorization.

 

Important Notes

  • Proxy Mode Warning: The proxy mode feature has not been tested and may not function correctly.

  • Authorization Changes:

    • Infoblox Endpoint iOS version 2.0.7 and above uses joinToken instead of customerId for authorization.

    • Infoblox Endpoint Android version 1.0.10 and above replaces customerId with joinToken for authorization.

    • The customerId attribute will be removed in future app versions. Until all devices are updated to version 1.0.10 or later, you may need to maintain both customerId and joinToken in the app configuration.

Step 1: Download the MDM Configuration File from the Infoblox Portal

An app-config file is required to update the app’s configuration in MDM. To download the file:

  1. Log into the Infoblox Portal.

  2. Navigate to Configure > Security > Endpoints > Endpoint Groups.

  3. Click Download MDM Configuration, then select iOS Config File or Android Config File, depending on the device.

     

    Image: The Download MDM Configuration drop-down options for handling endpoint configurations within a network. The configuration options include Android Config File, iOS Config File, and Chrome Config File.

     

  4. To assign an endpoint to a specific endpoint group:

    • Click the three horizontal bars icon next to the endpoint group name.

    • Select Download MDM Configuration > Android Config File or iOS Config File.

     

    Image: The download MDM configuration options when applying a configuration option to an existing endpoint group. The configuration options include Android Config File, iOS Config File, and Chrome Config File.

     

  5. Save the downloaded configuration file to an easily accessible directory.

App Config File Parameters

The downloaded MDM configuration file contains the following parameters:

  • joinToken – The value in the XML file, required for authentication.

  • groupName – The Infoblox Portal group to which the endpoint will be assigned. If the group does not exist, the endpoint will be added to All Infoblox Endpoints.

  • userId – A unique name that identifies a mobile device, displayed in Infoblox Portal > Configure > Security > Endpoints.

  • allowServiceControl – By default, this value is True. To disable and hide service control, toggle this value to False.

  • extensionType (iOS only) – Defaults to "vpn", but can be set to "dnsproxy" to intercept DNS traffic via the DNS Proxy Provider.

Step 2: Register a Mobile Endpoint for Use with IBM MaaS 360

To register an endpoint device, follow the IBM MaaS 360 enrollment process:

  1. Log into the IBM MaaS 360 console.

  2. Follow the steps to register a device.

  3. For detailed enrollment instructions, refer to:

Step 3: Install the Infoblox App Using IBM MaaS 360

Installation on an iOS Device

  1. Log into the IBM MaaS 360 console.

  2. Navigate to Apps > App Catalog.

  3. Click Add > iOS > iTunes App Store.

     

    Image:  The IBM MaaS 360 platform displays the App Catalog section. 
     

  4. Search for Infoblox Endpoint, and click Add to include it in the app configuration.

    Image: Adding an iTunes App Store App in IBM MaaS 360.

     

  5. Select the devices and users to which the app will be distributed.

Installation on an Android Device

  1. Log into the IBM MaaS 360 console.

  2. Navigate to Apps > App Catalog.

  3. Click Add > Android > Google Play App.

     

    Adding the Android application to the IBM MaaS 360 catalogue.
    Image: Adding the Android application to the IBM MaaS 360 catalogue. 

     

  4. On the Add Google Play App screen, search for Infoblox Endpoint, and click Add.

  5. Select Infoblox Android app from the list.

  6. Click Select > Approve > Add to include the app in the catalog.

  7. Click Distribute to assign the app to specific users.

     

    Image: Adding the Infoblox Endpoint configuration from the Google Play store.

     

Step 4: Add the App Configuration for the Infoblox iOS App

To add an app configuration for iOS devices:

  1. Navigate to Apps > App Configuration.

  2. Click Add Configuration.

     

    Image: The IBM MaaS 360 platform displays the App Catalog section where the Infoblox iOS app is added. 

     

  3. Enter a configuration name, then select the iOS app from the app catalog.

    Adding the iOS configuration
    Image: Adding the iOS configuration. 

  4. Click Next to proceed to the Configuration screen.

  5. Select Manual Configuration, then upload the previously downloaded config file from the Infoblox Portal.

  6. The app configuration fields for groupName and userId will be displayed.

  7. Click Next to continue to the iOS Distribution screen.

    Adding groupName ansd userID manually to the configuration.
    Image: Adding groupName ansd userID manually to the configuration.



  8. Click Publish to publish and distribute the configuration.

    Publishing the configuration.
    Image: Publishing the configuration.

     

After a few minutes, Infoblox Endpoint will be automatically installed on the client devices. 

Step 5: Perform Silent Authorization of DNS Proxy Permissions (iOS Only)

  1. Log into the IBM MaaS 360 console.

  2. Navigate to Security > Policy Management > Policies.

  3. Select an iOS policy to apply.

  4. Navigate to iOS Policy > Supervised Settings > DNS Proxy, and click Edit.

     

    Image: Editing the Policies tab. 

     

  5. In the Edit panel, enter the following values:

    • App Bundle ID: com.infoblox.atc.b1dnsproxy

    • Provider Bundle ID: com.infoblox.atc.b1dnsproxy.dnsproxy

    Image: Adding the App Bundle id and Provider Bundle id to the configuration. 

     

  6. Click Confirm Publish to finalize the configuration.

    Publishing the configuration.
    Image: Publishing the configuration.

  7. Navigate to Devices > Inventory, select a device, and click More > Request Data Refresh.

  8. Infoblox Endpoint will be automatically installed on the client devices.

     

    Image: Clicking Request Data Refresh will automatically install Infoblox Endpoint on all devices. 

  9. Open the Infoblox Endpoint app on an iOS device. The app will display its protected state.

    The Infoblox Endpoint app displaying its protected status on an iOS device.
     Image: The Infoblox Endpoint app displaying its protected status on an iOS device.


Step 6: Add the App Configuration for the Infoblox Android App

To add an app configuration for Android devices:

  1. Navigate to Apps > App Configuration.

  2. Click Add Configuration.

     

    Image: Adding the Android app configuration to IBM MaaS 360. 


    Image: Adding the Android app configuration in IBM MaaS 360.

  3. Enter a configuration name, then select the Android app from the app catalog.

    Image: Adding the name of the configuration to the Android configuration. 

  4. Click Next to proceed to the Configuration screen.

  5. Upload the previously downloaded config file from the Infoblox Portal.

  6. The app configuration fields for groupName and userId will be displayed.

    Image: Adding the groupName and userId to the Android configuration.

  7. Click Next > Publish to finalize the configuration.

  8. Infoblox Endpoint will be automatically installed on the client devices.

  9. Open the Infoblox Endpoint app on an Android device. If prompted, accept the VPN acknowledgement. The app will display its protected state.

     

    The Infoblox Endpoint app displaying its protected status on an Android device.
    Image: The Infoblox Endpoint app displaying its protected status on an Android device.



Related content