Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with...

11
Delivering a Secure BYOD Solution with XenMobile MDM and Cisco ISE Bhumik Patel Solutions Architect, Citrix Systems May 21 st 2013

Transcript of Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with...

Page 1: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

Delivering a Secure BYOD

Solution with XenMobile MDM

and Cisco ISE

Bhumik Patel – Solutions Architect, Citrix Systems

May 21st 2013

Page 2: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

App Management

Device Management

Data Management

Device Management

Data Management

Secure Mail

Productivity and Collaboration

Ap

p M

an

ag

em

ent

Business Apps

Complete Enterprise Mobility Management

Page 3: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

Any app, any device, anywhere

Mobile Value-on-Investment

Mobile Device

Management

Sandboxed

Mail and Web

Mobile

App Security

Mobile

Data Control

Mobile

Network Control

SSO & Identity

Management

Desktop & App

Virtualization

Social & Web

Collaboration

Today: The Industry’s Most Comprehensive,

“Best of Suite” Mobile Portfolio

Page 4: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

© 2013 Citrix | Confidential – Do Not Distribute MDM Edition

“My users are bringing in all types of devices…I need to set PIN codes, WiFi, etc..”

“Want to give device choice…but what do I do if devices are lost or stolen?”

“…need to manage personal and corporate devices alongside each other”

“…issuing shared tablets to shift workers in

hospital/retail stores/restaurants/dist

centers…”

Secure and manage my devices

1

Page 5: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

© 2013 Citrix | Confidential – Do Not Distribute

Enterprise-grade MDM: • Manage & configure corporate and BYO

devices

• Detect jailbreak, blacklist/whitelist apps

• Full/selective device wipe

Easy to setup:

• Fully wizard-driven

Extensible:

• Enterprise integration (e.g.: LDAP and PKI)

• Integration with Network Policy Engines

MDM Edition

Secure and manage my devices

1

Page 6: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

© 2013 Citrix | Confidential – Do Not Distribute

BYOD Smart Solution Built on Unified Access Foundation

Workspace Management

Secure Mobility

Policy Management

Core Infrastructure

Workspace Productivity Apps

Unified Access One Network, One Policy, One Management

BYOD Smart Solution

Cis

co V

alid

ate

d D

esi

gn S

cop

e

Other Smart Solutions (ex. VXI)

AnyConnect

ISE

Prime Mgmt

Firewall

Wireless Switching

MDM

Jabber Webex

Page 7: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

© 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 7

Policy Profiling

VLAN 10 VLAN 20

Personal

Employee

Corporate

Wireless LAN Controller

Corporate Resources

Restricted Internet Only

USER LOCATION

TIME Access Method

DHCP

RADIUS SNMP

NETFLOW

Corporate Issued Device 1. User Authentication and Authorization 2. Profiling to identify device 3. Policy decision 4. Policy enforce to “VLAN 10” on same SSID 5. Full access granted 6. Full device visibility

PERSONAL Device 1. User Authentication and Authorization 2. Profiling to identify device 3. Policy decision 4. Policy enforce to “VLAN 10 or 20” on same SSID 5. Full or Restricted access granted 6. Full device visibility

HTTP

DNS DEVICE

Centralized Policy Engine

Unified Access Management

Single SSID

ISE

Policy

Page 8: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

© 2013 Citrix | Confidential – Do Not Distribute

XenMobile MDM with Cisco ISE

Mgt Interface

ISE Mgr

Push AnyConnect Certificate

ISE checks device Registration with MDM

ISE

Device tries to access network

MDM returns registration

status

1

2

3

MDM returns device status

ISE checks device status

4

5

XenMobile MDM

Page 9: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

© 2013 Citrix | Confidential – Do Not Distribute

NETWORK CONTROL (ISE)

FULL MOBILITY MANAGEMENT

(MDM) Enterprise Software

Distribution

Management

(Backup, Remote Wipe, etc.)

Classification/

Profiling

Secure Network Access

(Wireless, Wired, VPN)

Mobile + PC Policy Compliance Detection

(Jailbreak, Pin Lock, etc.)

Secure Data

Containers

User/IT Co-Managed Device Device and Network-Based IT Control

User Managed Device Network-Based IT Control

Cert +

Supplicant

Provisioning

Registration

Cert +

Supplicant

Provisioning

Registration

Inventory

Management Context-Aware

Access Control

(Role, Location, etc.)

Compliance Enforcement

Cisco ISE + XenMobile MDM = Mobility Control

Page 10: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

© 2013 Citrix | Confidential – Do Not Distribute

Key Takeaways

• Leverage joint BYOD solutions from Cisco and Citrix to enable your enterprise mobility

needs.

• Solution Details

ᵒ XenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM

7.1 versions.

ᵒ Next Cisco BYOD CVD will provide tested implementation details on the joint solution.

• More information

ᵒ SYN6309: Best Practices for deploying end-to-end enterprise mobility management

• Thursday @9:00 AM

Page 11: Delivering a Secure BYOD Solution with XenMobile MDM and ... · ᵒXenMobile MDM integration with Cisco ISE is supported with Cisco ISE 1.2 and XenMobile MDM 7.1 versions. ᵒNext

Work better. Live better.


November, 2013 XenMobile 8.6 MDM Edition Mobile Device Management Adolfo Montoya, Karen Sciberras, George Ang and Andrew Sandford Lead Support Readiness.

November, 2013 XenMobile 8.6 MDM Edition Mobile Device Management Adolfo Montoya, Karen Sciberras, George Ang and Andrew Sandford Lead Support Readiness.

SECURE HUB INSTALLATION IPHONE INSTRUCTIONSinfotech.professionalpt.com/.../10/ProPT-XenMobile...SECURE HUB INSTALLATION IPHONE INSTRUCTIONS 1. Install the Citrix Secure Hub MDM app

SECURE HUB INSTALLATION IPHONE INSTRUCTIONSinfotech.professionalpt.com/.../10/ProPT-XenMobile...SECURE HUB INSTALLATION IPHONE INSTRUCTIONS 1. Install the Citrix Secure Hub MDM app

SIU’s Secure App (XenMobile) Migration for Android

SIU’s Secure App (XenMobile) Migration for Android

Maxis Mobile Device Management (MDM) New User Guide for ......download the XenMobile agent known as Worx Home on the other SMS you have received. Once agent has been successfully installed,

Maxis Mobile Device Management (MDM) New User Guide for ......download the XenMobile agent known as Worx Home on the other SMS you have received. Once agent has been successfully installed,

Reference Architecture for Mobile Device and App Management · Directory XenMobile MDM simplifies device administration across the enterprise. XenMobile MDM provides the ability to

Reference Architecture for Mobile Device and App Management · Directory XenMobile MDM simplifies device administration across the enterprise. XenMobile MDM provides the ability to

XenMobile 10 - docs.citrix.com · XenMobile 10.8 XenMobile Public API for REST Services (for on-premises installations) Last Updated: December 28, 2017

XenMobile 10 - docs.citrix.com · XenMobile 10.8 XenMobile Public API for REST Services (for on-premises installations) Last Updated: December 28, 2017

Posture / MDM Enhancements - Cisco · BYOD / Certificate Enhancements and the New Portal Agenda ! Posture / MDM Enhancements ! ... • Flow-based user experience ... ISE Cube PSN-1

Posture / MDM Enhancements - Cisco · BYOD / Certificate Enhancements and the New Portal Agenda ! Posture / MDM Enhancements ! ... • Flow-based user experience ... ISE Cube PSN-1

Fundamentals of XenMobile 10 Enterprisedocs.citrixvirtualclassroom.com/events/SYN2015/SYN-612.pdf · Fundamentals of A XenMobile E ... AD.training.lab 192.168.10.11 Windows Server

Fundamentals of XenMobile 10 Enterprisedocs.citrixvirtualclassroom.com/events/SYN2015/SYN-612.pdf · Fundamentals of A XenMobile E ... AD.training.lab 192.168.10.11 Windows Server

Contents XenMobile... · the latest 9.8 sp1 can integrate with CITRIX XENMOBILE and IBM MAAS360 • CITRIX XENMOBILE is a Mobile Device Management (MDM) software for manage devices,

Contents XenMobile... · the latest 9.8 sp1 can integrate with CITRIX XENMOBILE and IBM MAAS360 • CITRIX XENMOBILE is a Mobile Device Management (MDM) software for manage devices,

ForeScout CounterACT Integration with Citrix XenMobile MDM ... · factors obtained from XenMobile MDM, including the type of device, operating system, ownership (corporate vs. BYOD),

ForeScout CounterACT Integration with Citrix XenMobile MDM ... · factors obtained from XenMobile MDM, including the type of device, operating system, ownership (corporate vs. BYOD),

Securing and Managing Offce 365 with XenMobile

Securing and Managing Offce 365 with XenMobile

Monitoring the Citrix XenMobile MDM · Monitoring the XenMobile MDM Server 3 Monitoring the XenMobile MDM Server XenMobile MDM (also known as the XenMobile Device Manager (XDM)) is

Monitoring the Citrix XenMobile MDM · Monitoring the XenMobile MDM Server 3 Monitoring the XenMobile MDM Server XenMobile MDM (also known as the XenMobile Device Manager (XDM)) is

XenMobile Server - Citrix · 1 XenMobile Server Third Party Notices XenMobile Server 10.8 may include third party software components licensed under the following terms. This list

XenMobile Server - Citrix · 1 XenMobile Server Third Party Notices XenMobile Server 10.8 may include third party software components licensed under the following terms. This list

Citrix XenMobile Mobile Application Management Advantages · PDF fileCitrix XenMobile Mobile Application Management Advantages. White Paper ... (EMM) has shifted from managing the

Citrix XenMobile Mobile Application Management Advantages · PDF fileCitrix XenMobile Mobile Application Management Advantages. White Paper ... (EMM) has shifted from managing the

Citrix XenMobile Technical Whitepaper

Citrix XenMobile Technical Whitepaper

Fronting XenMobile MDM with NetScaler

Fronting XenMobile MDM with NetScaler

Adding XenMobile Users to XenDesktop Environment Design Guide · Adding XenMobile Users to an Existing XenDesktop Environment Understanding the Impact. ... XenDesktop environment

Adding XenMobile Users to XenDesktop Environment Design Guide · Adding XenMobile Users to an Existing XenDesktop Environment Understanding the Impact. ... XenDesktop environment

XenMobile Security - Insight · XenMobile Security 5 XenMobile server XenMobile server is the central hub for XenMobile and enables both mobile device management (MDM) and mobile

XenMobile Security - Insight · XenMobile Security 5 XenMobile server XenMobile server is the central hub for XenMobile and enables both mobile device management (MDM) and mobile

PARAD ISE DATACOM - Home - New Era Systemsnewerasystems.net/manuals/paradise/man-mdm-p300.pdf · DATACOM PARAD ISE Installation & Operating Handbook for P300 Series Satellite Modems

PARAD ISE DATACOM - Home - New Era Systemsnewerasystems.net/manuals/paradise/man-mdm-p300.pdf · DATACOM PARAD ISE Installation & Operating Handbook for P300 Series Satellite Modems

Specifications XenDesktop and XenMobile Reference Architecture ...

Specifications XenDesktop and XenMobile Reference Architecture ...