MindLink Mobile - Airwatch MDM for iOS

1. Setting Up

Add New

Figure 73 – Where to begin deployment

The above screenshot indicates where to begin deployment of MLM for AirWatch, start by heading over to the AirWatch console. You will want to start by clicking 'Add'

Add app

Figure 74 – Adding the application

Once you have clicked 'Add' you will be presented by the window as shown in the screenshot above, here you will want to choose the platform of deployment. In this case you will want to choose Apple iOS

Search app store

Figure 75 – Sourcing the MindLink for AirWatch app

To continue the deployment of the MindLink for Airwatch app you will want to select 'Search App Store'. From here you will want to enter 'MindLink for AirWatch'. Upon successfully doing this, you will be brought to the screenshot presented in Figure 140

App info

Figure 76 – Pointing towards the application

The above is the screen you will be greeted with once you have pointed towards the application pathway by name. From here you will be able to configure information about the app, assignment groups and specifics regarding deployment.

Apps & books

Figure 77 – Assigning the app

To assign the app to the devices you will want to navigate towards the 'Apps and Books' section of the AW console

Add assignment

Figure 78 – Deploying the app

Here is where you will want to choose the assignment groups that will have the app 'pushed' down to the associated devices in the assignment groups. You will then get a preview of all the devices that will be affected by the assignment. This is a chance for you to review the deployment of MindLink for AirWatch.

To successfully administer the MindLink for AirWatch application you will need to create a MindLink related SDK. The following will walk you through the steps required to do this

Airwatch header

Figure 79 – Airwatch Console Header

You will want to start by navigating to the console header

Add New

Figure 80 – Adding a new profile

Following figure 80 you will want to click 'Add' this will present the drop down as presented in the screenshot above. From here choose the 'Profile' option.

Add profile

Figure 81 – Choosing platform

Once you have chosen to create a profile you will have a selection of platforms to choose from - for this guide we will be using Apple iOS

General

Figure 82 – Configuring SDK Profile

As shown above from here you will be able to configure how the MindLink for AirWatch app is controlled. For example, you will be able to specify whether or not you want to enforce Data Loss Prevention policies which will then be reflected on the MindLink for AirWatch app. This should be created to reflect your company's administrative infrastructure.

3 Enabling the App Tunnel at the SDK profile level

VPN

Figure 83 – Configuring the integrated tunnel

During creation of the Mindlink for AirWatch SDK there is an option to configure an integrated tunnel provided by AirWatch. Assuming this is applicable to your organisation, the following will run through how this can be leveraged by the MindLink for AirWatch app.

Proxy

Figure 84 – Enabling the AW integrated tunnel

In order to enable the AW integrated tunnel and thus have it applied to MLM for AW, you will want to navigate to the MindLink SDK that was created. From here, you will want to navigate down to the 'Proxy' tab. Simply tick 'Enable App Tunnel'. Once this has been done (by clicking 'Save'), the MindLink for AirWatch app will be leveraging the AirWatch integrated tunnel.

4 Creating the per-app VPN profile

List view

Figure 85 – Setting up the app specific VPN profile

To set up an app specific VPN you will want to click on the 'Devices' tab, once this has been opened you will want to view the 'Profiles' section. As shown in the screenshot above you will want to click 'Add' in order to setup the VPN

VPN 2

Figure 86 – VPN configuration

Once you have successfully started the process to setup the profile you will be greeted with the screen as shown in the above screenshot. From here you will want to configure the VPN specific settings as per your administrative infrastructure.

VPN 3

Figure 87 – Turning the per-app VPN on or off

Once you have created the VPN profile in order to turn it on or off (depending on your administrative preferences) you will want to go to the profile and then to the 'VPN' section whereby you will want to tick the Per-App VPN rules so that by default MLM for AW will use the Per-App VPN as its means of connection

5 Applying the per-app VPN profile

Apply VPN

Figure 88 – Where to apply the per-app VPN

To apply the per-app VPN to the app you will want to navigate to the apps and books section of the AirWatch console. From here you will want to select the MindLink app that you added earlier (section 5.5.) To do this use the radio button to select the MindLink for AirWatch app that you would have selected during the deployment stage.

Assign

Figure 89 – Where to apply the per-app VPN -2

To assign the application you will want to navigate to the top of the apps & books section whereby you will find the 'Assign' button, this is what you will want to press in order to begin the application of the per-app VPN

Update assignment

Figure 90 – Choosing an assignment group

From here you will want to select the assignment groups that you wish the VPN to be applied to - this will of course depend on the administrative infrastructure present amongst your organisation. From here you will want to click 'Add Assignment'

Add assignment

Figure 91 – Adding an assignment

Once you have clicked on 'Add Assignment' you will be brought to the screen above. From here you will notice the 'Advanced' tab - this is where you will need to apply the app specific VPN profile that you created.

Select assignnent

Figure 92 – Choosing the drop down

The following is done by selecting from a drop down. Assuming that you have configured your app specific VPN correctly this will 'Push' the assignment down to the groups that were selected beforehand

Assign device

Figure 93 – Devices affected by assignment

Once you have selected the per-app VPN you will be brought to a screen similar to the one above whereupon you will be greeted with the list of devices affected by the assignment. This will be dependent on the assignment group you selected during the beginning of this process. However, this is a chance for you to review the potential changes that will be made.

6 Managing Data Loss Prevention Policies

Restrictions

Figure 94 – Devices affected by assignment

To manage data loss prevention policies on the MindLink for AirWatch app you will want to start by enabling the ability to do so on the AirWatch console

This can be seen in the above screenshot whereby under 'Restrictions' you need to tick 'Enable Data Loss Prevention'

Data Loss

Figure 95 – Devices affected by assignment

Once you have enabled data loss prevention, a number of options will be available to you. For example, enabling copy and paste on the AirWatch console will enable users to copy and paste on the MindLink for AirWatch app. And thus conversely the expected behaviour if this is disabled, is that the user will not be able to copy and paste i.e. from outside of the MindLink for Airwatch app to within the MindLink for Airwatch app

Ensure that any changes to be made are reflective of your company's administrative infrastructure

7 Pre-configuring the username and server details

Apply VPN

Figure 96 – Beginning the assignment

To start you will want to begin by selecting the MindLink for AirWatch app under 'apps & books', you will want to select the app version that you added earlier. To do this you will want to select the app via radio button

Assign

Figure 97 – Beginning the assignment

To assign the application you will want to navigate to the top of the apps & books section whereby you will find the 'Assign' button, this is what you will want to press in order to begin the application of the per-app VPN.

Update assignment

Figure 98 – Beginning the assignment -2

To assign the application you will want to navigate to the top of the apps & books section whereby you will find the 'Assign' button, this is what you will want to press in order to begin the application of the per-app VPN.

Update assignment

Figure 99 – Choosing the assignment group

To setup the pre-configured URL and log on name, you will want to correctly choose the assignment group you wish this policy to be 'pushed' to. Any users in this assignment group from here onwards will have a preconfigured server URL to point towards and if chosen, a pre configured username on the MindLink for AirWatch app

Application Configuration

Figure 100 – Pre configuring the server and log on values

Here you are able to pre-configure the server details for the Mindlink for AirWatch app - the values for this will depend on setup but here for example it is 'mlmServerUrl' and 'mlmLogOnName'

MLM Login Page

Figure 101 – Device side

The above indicates the successful 'push' of the pre-configured values to the MindLink for AirWatch app