Basic concepts

MDM (Movile Debice Management)

MDM is software that enables organizations to monitor and manage mobile devices regardless of the mobile operator or service provider chosen. Most MDM solutions enable you to remotely install apps on iOS devices, locate and track iOS devices, sync files across them, and report data remotely and centrally. These solutions are commonly found in companies that manage a large number of devices.

Managing iOS devices with an MDM solution

An iOS device can only be remotely managed with one MDM solution at a time. To manage an iOS device using an MDM solution, you must first enroll it into the solution. At the end of the enrollment process, a settings profile is sent from the MDM solution to the device, which the user must install on it.

CytomicMDM

Because the remote management options for an iOS device are very limited if the device is not enrolled into an MDM solution, Advanced EPDR seamlessly incorporates its own MDM solution into the management console. Additionally, because each iOS device can only be remotely managed with one MDM solution, it is very important that you make the right decision regarding which MDM solution will manage the organization’s devices when integrating them into Advanced EPDR.

If your iOS devices were already enrolled into a third-party MDM solution and you decide to enroll them into the Cytomic MDM solution, you will lose the centralized management capabilities provided by your MDM solution and will not be able to access any software you deployed through it. See Enrollment types supported by Advanced EPDR.

Enrollment types supported by Advanced EPDR

Based on the enrollment type, Advanced EPDR provides the administrator with different features from the management console.

Enrollment type Features available in the Advanced EPDR console

Installation on iOS devices enrolled into the Cytomic (recommended if you did not already use an MDM solution)

  • Hardware inventory

  • Software inventory

  • Web protection *

  • Web filtering *

  • Geolocation

  • Remote alarm

  • Wipe data

  • Lock

Installation on iOS devices enrolled into a third-party MDM solution (recommended if you already used an MDM solution)

  • Hardware inventory

  • Web protection *

  • Web filtering *

  • Geolocation

  • Remote alarm

Installation on iOS devices not enrolled into an MDM solution

  • Hardware inventory

  • Geolocation

  • Remote alarm

Enrollment types supported by Advanced EPDR

* To filter web traffic, the iOS device must be in supervised mode.

Requirements for integrating a device using the Cytomic MDM solution

To integrate an iOS device into the Advanced EPDR management console using the Cytomic MDM solution, you need:

  • An Apple user account (Apple ID): Required to generate and import certificates into the management console. You can use an existing account or create a new one.

  • A digital certificate issued by Apple: Required for the iOS devices you want to manage to be able to communicate securely with the Apple servers. Digital certificates are valid for one year, after which they expire. Register all of your company’s iOS devices with the same digital certificate.

For more information, see Managing the Apple ID and digital certificates.