/
Enrollment of Mobile Device Management App using MobileIron for iOS Devices
Document toolboxDocument toolbox

Enrollment of Mobile Device Management App using MobileIron for iOS Devices

Owned by Gary Leicht
Last updated: Oct 29, 2024

Step 1: Uploading the Configuration File in MobileIron for Configuring the VPN

An app-config file is required to update the app configuration in MDM. To download the file, do the following:

  1. In the MobileIron Admin Portal, go to Configurations.
  2. Click +add to begin the configuration set-up process.


    Image: The "Configurations" screen in the Mobile Admin Portal.

  3. From the options on the mid pane, click Custom.


    Image: A detail from the "Add Configuration" screen displaying the location of the Custom option.

  4. Provide a name for the profile, Select iOS and upload your .mobileconfig file. Click here to download the mobileconfig file.


    Image: Selecting an iOS in the  "Create Custom Configuration" tab. 

  5. Click Next to proceed with the configuration process. 
  6. In the Distribute section, configure the distribution settings, Click Done when you have completed the distribution configuration set-up process,



    Image: Configuring the distribution settings in the Distribute section of the "Configuration" tab. 

  7. Next, proceed with registering the Infoblox iOS and deploying it to devices.


Step 2: Download the MDM Config File from the Infoblox Services Portal

An app-config file is required to update the app configuration in MDM. To download the file, do the following:


  1. Log into the Infoblox Platform.  
  2. Go to Configure > Security > Endpoints > Endpoint Groups.
  3. Click Download MDM Configuration, and select iOS Config File.


Image: The Download MDM Configuration drop-down options for handling endpoint configurations within a network. The configuration options include: Android Config File, iOS Config File, and Chrome Config File. 

To assign an endpoint to a specific endpoint group, click  next to the name of the endpoint group and select Download MDM Configuration > iOS Config File.



ImageThe download MDM configuration options when applying a configuration option to an existing endpoint group. The configuration options include: Android Config File, iOS Config File, and Chrome Config File.

4. Save the downloaded config file to a directory where it can be located easily.

The app config contains the following parameters:

  • joinToken: The value in the XML file.

  • groupName: In the Infoblox Portal, the name of the group to which the endpoint will be moved. If the name is not present in the Infoblox Portal, it will be added to the All Infoblox Endpoints group.
  • userId: The unique name that identifies a mobile device. The configured name is displayed in the Infoblox Portal, on the Endpoints page (ConfigureSecurity > Endpoints ).
  • allowServiceControl: By default, this value will be True. To disallow and hide service control, use the toggle switch to change this value to False
  • extensionType (only for iOS): By default, this value is “vpn”, we can also set to “dnsproxy” to intercept the DNS traffic using DNS Proxy Provider.

Warning

The proxy mode was never tested and may not work. 

Step 3: Register a Mobile Endpoint with the MobileIron MDM Server

To register mobile endpoint to the MobileIron MDM server, do the following:

  1. Install the MobileIron Go app from the  Apple App store.
  2. Log in to the MobileIron Go app with the credentials provided by your administrator.
  3. Follow the instructions to register your device with the MobileIron server.

Step 4: Add the Infoblox App in the MobileIron Server

To add the Infoblox app in MobileIron Server, do the following: 

  1. Install the app on an iOS device. 
  2. Go to Apps > App Catalog, and click +Add.
  3. Choose the app for an iOS device.
  4. Search on Infoblox, select the app, and click Next.
  5. Go to Distribute and select the available options.
  6. Click Next and proceed with the uploading and adding of the app config file.

Step 5: Upload and Add the App Config File

To upload and add the configuration file, do the following: 

  1. Select Apple Managed App Configuration from the menu:  



Image:  The location of Apple Management App Configuration in the "App Configuration" tab. 

2. Use the downloaded config file to import or manually enter the app config:



Image: Importing the Infoblox Endpoint application configuration file in the "Configuration Setup" screen.. 

3. Click Next > Done. After a few minutes, the endpoint will be automatically installed on the client devices

4. Open the Infoblox Endpoint app shown for the work profile on the Apple device. After a few seconds, the app will be in a protected state:



Image: The Infoblox Endpoint app displaying its protected status.