Presentation is loading. Please wait.

Presentation is loading. Please wait.

MaaS360 e-Learning Portal

Published byJasmine Page Modified over 6 years ago

Similar presentations

Presentation on theme: "MaaS360 e-Learning Portal"— Presentation transcript:

1 MaaS360 e-Learning Portal
MaaS360 Cloud Extender - Basics MaaS360 e-Learning Portal

2 Agenda Cloud Extender Overview Architecture Installation Requirements
Cloud Extender Modules Integration, Features, Requirements & Actions MaaS360 Portal Workflows Troubleshooting Basics

3 Cloud Extender Overview
Extends MaaS360 Management to On-Premise Infrastructure Installed in your network Modular Architecture: Agent Core : On Cloud Extender Install Modules : Downloaded & Activated after Core Installation Integrates with Mail Servers Mail Servers : Exchange / Lotus / BES Auto Discover devices connecting to mail infrastructures Total Device Visibility Device Action Support – Block / Remote Wipe Policy Management & Auto-Quarantine (Exchange Only)

4 Cloud Extender Overview
Integrates with Corporate Directories Microsoft Active Directory / LDAP Authentication – for enrolling devices Authentication – portal login User attribute collection – Group, OU information Replicate Corporate Directory User Groups for Devices Integrates with Corporate Certificate Services Microsoft NDES / Symantec Hosted PKI Automated User Certificate Delivery to end devices , Wi-Fi or VPN end user authentication Supports Certificate Revocation & Auto renewal

5 Cloud Extender Architecture
Customer Network MaaS360 Cloud Internet XMPP over SSL Cloud Extender MaaS360 Servers AD Lotus Traveler ...... IT Administrator Communication via XMPP over SSL Online & Configuration Status Tracking in MaaS360 Statistics & Communication timestamps from each of the integrated services 5

6 Basic Installation Requirements
Installed on-premise: Microsoft Windows Server – Physical or Virtual works 2008 R2, dual processor, 2G memory recommended Will also run on Win 7 machine or MS Server 2003 Runs as a Service Account: Local Administrator Rights on the server Access to Internet: Fiberlink Servers : *.fiberlink.com, *.maas360.com Installation: Downloaded from MaaS360 portal: Product Downloads link on Home Page Requires License Key for installation: Send License Key link on Home Page

7 Cloud Extender - Modules

8 Module: Exchange ActiveSync
Version Requirements: On Premise Mail Servers: Exchange 2007 / 2010 Hosted Mail Servers: BPOS-D / Office365 *BPOS-Shared not supported Features: Auto Discovery of devices & policies Device Visibility & Action Support Auto Quarantine (AQ) Prevents new devices from directly connecting to Exchange Provides alerting to admins on new devices Approval / Block Workflow for devices Auto Approve enrolled devices Policy Management UI to Configure & Publish Exchange Policies on MaaS360.

9 Module: Exchange ActiveSync
General Requirements Exchange 2007: Exchange Management Tools: Uses Local Powershell Snap-ins Needs to match the Exchange Server Version exactly Exchange 2010 / BPOS-D / Office365: Remote Powershell Powershell version 2.0 $host.Version on Powershell to confirm version Service Account Requirements: 2007 : Exchange Organization Administrator/Domain User 2010 : Organization Management/Domain User Office365 : Global Administrator

10 Module: Exchange ActiveSync
Exchange Supported Actions The following actions are available directly from Device View Approve Block Change ActiveSync Policy [Device to Policy Assignment] Wipe Device Remove Device from Exchange Server

11 Module : Lotus Notes Traveler
Version Requirements: 8.5.2 Domino and Traveler environment & higher 8.5.2 introduces Android Support Features: Auto Discovery of Traveler Devices Device Action Support – Remote Wipe / Block No AQ or Policy Management General Requirements Lotus Notes Client (single-user) installed Configured with the ADMIN notes.id and then exited Needs to be exited for us to access the API’s A Domino account and credentials with sufficient rights to perform Domino/Traveler Admin functions. Least access level of Server Remote Admin Manager w/ delete access to Traveler.nsf. .NET Framework 3.5 or higher

12 Module : Lotus Notes Traveler
Traveler Supported Actions The following actions are available directly from Device View Block Wipe Device Wipe internally blocks the device Default Domino functionality. Remove Device from Traveler

13 Module: BlackBerry Enterprise Server
Version Requirements: BES 5.0 or higher Features: Auto Discovery of devices Support for enrollment of new Blackberry devices Policy Assignment & Action Support General Requirements Blackberry Administrator APIs installed on the server that hosts the Blackberry Administrative Console (BES 5.0 SP1 and above preinstalls these automatically). BAS Server name & Port Administrator Account: Supports both AD and BES Admin Minimum rights of Security Manager .NET Framework 3.5 or higher

14 Module: BlackBerry Enterprise Server
Enrollment workflow integration with MaaS360 allows Admins to provision new Blackberry devices Customer may also keep existing process, this is optional User gets with URL for enrollment and accesses that URL from Blackberry device User is prompted for either passcode or AD credentials and accepts EULA After authentication User record is imported to BES (if doesn't’t already exist) User record is assigned policy Random activation passcode is generated and sent to user User enters passcode and device registers to BES

15 Module: BlackBerry Enterprise Server
BlackBerry Supported Actions The following actions are available directly from Device View Refresh Device Information Send Message Reset Device Passcode Wipe Device Change BES Policy Remove Device from BES

16 Module: Active Directory
Active Directory Requirements Microsoft Active Directory LDAP – Oracle, Domino, Novell & Open LDAP Features: Authentication during Device Enrollment Authentication during Portal Login User authentication during Enterprise App installation End User Portal Authentication General Requirements Powershell 2.0 Service account Local Admin on Cloud Extender machine Domain User on Domain

17 Module: User Visibility
User Visibility Requirements Microsoft Active Directory LDAP – Oracle, Domino, Novell & Open LDAP Features: User attribute collection & availability in MaaS360 Group Information, OU data etc. MaaS360 Features: Grouping devices based on Corporate Directory Groups Dynamic Policies & Dynamic Compliance Rules Restrict device enrollment to specific groups Restrict admin access to portal belonging to specific groups General Requirements Powershell 2.0 Service account Local Admin on Cloud Extender machine Domain User on Domain

18 Module: Certificate Integration
Version Integration Microsoft Certificate Services 2003 & 2008R2 Symantec Managed PKI v8 Features: Requires creation of Certificate Templates on Cloud Extender Points to CA with authentication credentials Device certs for Wireless/ /VPN authentication iOS Only Support as of today General Requirements: MS: Integrates with Network Device Enrollment Service(NDES) 2008 R2: Installed via Server Manager 2003: Free Download here. Symantec Access to a Symantec MPKI environment An Registration Certificate to provide to the CE

19 Module: Certificate Integration
Microsoft NDES Integration Architecture Example:

20 MaaS360 Portal Workflows Manage >> Manage MaaS360 Cloud Extenders Configuration / Online Status Cloud Extender Data: Summary Activated Services, Modules Service Accounts, Server H/W Inventory Exchange, Traveler, BB, AD, LDAP or Cert Statistics & Communication Dates Actions Configure CE Settings Exchange Policies for AQ Refresh Data: from various modules Remove Devices: Cleans old records Upgrade / Uninstall CE Mark as Inactive

21 MaaS360 Portal Workflows Test Actions:
Tests authentication Tests reachability Refresh Device Data / Policy Data: 21

22 Troubleshooting Basics
Cloud Extender Requirements prior to Installation (90% of the troubles occur during install) Decide where the Cloud Extender should be installed Can be physical or virtual machine Check OS Requirements in “CloudExtenderInstallation.pdf” Communication Requirements between Cloud Extender and the MaaS360 Servers on port 80 and 443: /16 22

23 Troubleshooting Basics
Cloud Extender Requirements prior to Installation Documented in “Cloud Extender Requirements Cheat Sheet V3.doc” or a later doc Make sure customer got the required server versions running (Exchange 2007, 2010, Lotus Domino 8.5.2, etc.) Cloud Extender accounts for the servers need to have the correct rights settings (i.e. Organization Management Rights for Exchange 2010…) Specific SW components needs to be installed on the machine where cloud extender is running i.e. Exchange management tools or Power Shell Version 2 …. 23

24 Troubleshooting Basics
Cloud Extender Requirements during Operation ..are the same as before installation Possible Issues Communication between Cloud Extender and MaaS360 is broken or not working properly  Cloud extender will be seen as offline in MaaS portal, Fiberlink OPS will see XMPP errors when trying to communicate whit the Cloud Extenders and will inform o2 helpdesk. Use refresh data action. Caused by Changes in the customers proxy setup New firewalls blocking traffic Routing issues to the internet DNS issues through the proxy server or direct New VLAN setup or changes to configuration Etc.. 24

25 Troubleshooting Basics
Possible Issues Communication between Cloud Extender and Servers is not working as needed  No direct indication in MaaS today (!) Use test actions to proof operation Caused by: Different Protocol issues: LDAP, Powershell, other proprietary protocols may be filtered Routing and Switching issues ACLs in routers/routing switches or new firewall rules Changed VLAN structure / issues in new VLAN configuration Etc… 25

26 Troubleshooting Basics
Possible Issues Admin Accounts are changed or deleted  No direct indication in MaaS today (!) Use test actions to proof operation Caused by: Changed rights of the admin accounts to perform required actions on the servers. Deleted admin account on a server 26

27 Troubleshooting Basics
Possible Issues Required SW was uninstalled  MaaS Portal shows configuration status unchecked Caused by: Deleted Exchange Mgnt. Tools Upgraded Exchange Server version but not Exchange Mgnt. Tools Uninstalled .Net version Changed / wrong configuration on the Cloud Extender (typo?) Etc.. 27

28 Thank You Questions 28

Download ppt "MaaS360 e-Learning Portal"

Similar presentations

automated single login access to Novell storage resources

automated single login access to Novell storage resources
Sophos Mobile Control. Tablets on the rise 2 Trends 3 75% of 157 polled companies encourage employee owned smart phones and tablets to access corporate.

Sophos Mobile Control. Tablets on the rise 2 Trends 3 75% of 157 polled companies encourage employee owned smart phones and tablets to access corporate.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
Exchange server 2003. Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.

Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.

4/17/2017 © 2014 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks and/or trademarks.
Sharepoint Portal Server Basics. Introduction Sharepoint server belongs to Microsoft family of servers Integrated suite of server capabilities Hosted.

Sharepoint Portal Server Basics. Introduction Sharepoint server belongs to Microsoft family of servers Integrated suite of server capabilities Hosted.
Managing Client Access

Managing Client Access
Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.

Module 4 Managing Client Access. Module Overview Configuring the Client Access Server Role Configuring Client Access Services for Outlook Clients Configuring.
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.

May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.
OM. Brad Gall Senior Consultant

OM. Brad Gall Senior Consultant
Securing Microsoft® Exchange Server 2010

Securing Microsoft® Exchange Server 2010
Module 2 Designing Microsoft® Exchange Server 2010 Integration with the Current Infrastructure.

Module 2 Designing Microsoft® Exchange Server 2010 Integration with the Current Infrastructure.
Module 7: Fundamentals of Administering Windows Server 2008.

Module 7: Fundamentals of Administering Windows Server 2008.
Zscaler New Interface and Reporting From Saturday 8 th June 2013.

Zscaler New Interface and Reporting From Saturday 8 th June 2013.
20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,

20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,
1 Thomas Lippert Senior Product Manager - Mobile What’s new in SMC 5.0.

1 Thomas Lippert Senior Product Manager - Mobile What’s new in SMC 5.0.
OFC290 Information Rights Management in Microsoft Office 2003 Lauren Antonoff Group Program Manager.

OFC290 Information Rights Management in Microsoft Office 2003 Lauren Antonoff Group Program Manager.
Module 4 Planning and Deploying Client Access Services in Microsoft® Exchange Server 2010 Presentation: 120 minutes Lab: 90 minutes After completing.

Module 4 Planning and Deploying Client Access Services in Microsoft® Exchange Server 2010 Presentation: 120 minutes Lab: 90 minutes After completing.
Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.

Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.

Similar presentations

Ads by Google