/
Enrollment of Mobile Device Management App Using Cisco Meraki
Document toolboxDocument toolbox

Enrollment of Mobile Device Management App Using Cisco Meraki

Owned by Gary Leicht
Last updated: Jan 29, 2025
6 min read

This guide outlines the steps to install and configure Infoblox Mobile Endpoint (EP) for iOS and Android devices using Cisco Meraki. Follow the steps below to ensure seamless deployment and provisioning of the Mobile Endpoint application.

Important Notes

  • Authorization Changes:

    • Infoblox Endpoint iOS version 2.0.7 and above and Android version 1.0.10 and above use joinToken instead of customerId for authorization.

    • Infoblox Endpoint Android version 1.0.9 and below requires the customerId attribute value in the app configuration.

    • Older app versions will automatically update to the latest version, while new installations require updating the joinToken in the app configuration.

    • For existing devices with older version of the app, the update to latest version is automatic. For fresh installations on new devices, the joinToken should be updated in the app configuration settings.

    • Maintain both customerId and joinToken during the transition period until all devices are updated to 1.0.10 or above.

Step 1: Download the MDM Config File from the Infoblox Portal

An app-config file is required to update an app’s configuration in the MDM system. To download the file:

  1. Log into the Infoblox Portal.

  2. Navigate to Configure > Security > Endpoints > Endpoint Groups.

  3. Click Download MDM Configuration, then select either:

    • iOS Config File

    • Android Config File

     

    Image: The Download MDM Configuration drop-down options for handling endpoint configurations within a network. The configuration options include Android Config File, iOS Config File, and Chrome Config File.

     

  4. To assign an endpoint to a specific endpoint group:

    • Click the three horizontal bars icon next to the endpoint group name.

    • Select Download MDM Configuration > Android Config File or iOS Config File.

    Image: The download MDM configuration options when applying a configuration option to an existing endpoint group. The configuration options include Android Config File, iOS Config File, and Chrome.

  5. Save the downloaded configuration file to an easily accessible directory.

    • In MDM, an app config can be added manually or by uploading an XML file.

App Config File Parameters

The downloaded app-config file contains the following parameters:

  • joinToken – The value in the XML file.

  • groupName – The Infoblox Portal group to which the endpoint will be assigned. If the group does not exist, the endpoint will be added to All Infoblox Endpoints.

  • userId – A unique name that identifies a mobile device, displayed in Infoblox Portal > Configure > Security > Endpoints.

  • allowServiceControl – By default, this value is True. To disable and hide service control, toggle this value to False.

  • extensionType (iOS only) – Defaults to "vpn", but can be set to "dnsproxy" to intercept DNS traffic using the DNS Proxy Provider.

Warning: The proxy mode has not been tested and may not function correctly.

Step 2: Register a Mobile Endpoint with Cisco Meraki

For iOS Devices

  1. Install the Meraki Systems Manager app from the Apple App Store.

  2. Copy the network ID from the System Manager Portal.

  3. Open Meraki Systems Manager, then enter the network ID.

  4. Follow the on-screen instructions to register the device.

  5. Review the Cisco Meraki Documentation for iOS.

For Android Devices

  1. Install the Meraki Systems Manager app from the Google Play Store.

  2. Copy the enrollment code from the System Manager Portal.

  3. Open Meraki Systems Manager, then enter the enrollment code.

  4. Follow the on-screen instructions to register the device.

  5. Review the Cisco Meraki Documentation for Android.

Step 3: Add the Infoblox App in the Cisco Meraki Server

  1. Navigate to System Manager > Manage > Apps > Add App.

  2. Choose the Google Play Store or the Apple App Store.

  3. Search for BloxOne EP in the Add new iOS/Android app section.

  4. Select the app.

5. Select the Device Target, then click Save.
6. Confirm that the app is listed under Apps List.

Step 4: Upload and Add the App Config File

  1. Navigate to System Manager > Manage > Settings.

  2. Click + Add Profile.

  3. Enter a profile name, then click + Add Settings.

  4. In Add new settings payload.

  5. Click Managed App Config.

     

     

For Android Devices

  1. Select the app and click the + button to display the app-config details.

  2. Using the app-config file downloaded from the Infoblox Portal, enter the required values.

  3. Click Save.


    The The app config will look similar to the following.



  4. The assignment will be pushed to the device. If it is not installed:

    • Navigate to System Manager > Apps > BloxOne EP.

    • Scroll down until the status is displayed.

    • Select the device, then click Push.

 

After a few minutes, the endpoint will be automatically installed on the client devices.  

  1. Open the EP app shown for the work profile on the Android device, and accept the VPN acknowledgement. After a few seconds, the app will be in a protected state.

     

For iOS Devices

  1. Using the app-config file downloaded from the Infoblox Portal, enter each key-value pair by clicking the + button.

  2. Click Save.



    The app config will look similar to the following.

  3. The assignment will be pushed to the device. If it is not installed:

    • Navigate to System Manager > Apps > BloxOne EP.

    • Scroll down until the status is displayed.

    • Select the device, then click Push.


After a few minutes, the endpoint will be automatically installed on the client devices.

  1. Open the Infoblox Endpoint app on the iOS device, and accept the VPN acknowledgement. After a few seconds, the app will be in a protected state.