gtri zenprise mdm workshop
Post on 19-Oct-2014
962 views
DESCRIPTION
GTRI BYOD /MDM workshopsTRANSCRIPT
1© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved.
Zenprise / GTRI Lunch n LearnProtecting Mobile Enterprises Everywhere
2© 2012 Zenprise, Inc. All rights reserved.
Zenprise – Background
Gartner Critical Capabilities
Source: Gartner July 2011, Overall Score for Each Vendor’s Product Based on the Non-Weighted Score for Each Critical Capacity
Funding Well-funded Silicon Valley VC-backed company. $30,000,000 round announced 10/18/2011
Investors Greylock Partners, Bay Partners, Mayfield, Ignition Capital, Rembrandt, Shasta Ventures
Customer 700+
Founded 2003
Exec Team Seasoned enterprise software team with experience taking private companies public
Patent Portfolio
8 patents accepted5 patents currently under review
3© 2012 Zenprise, Inc. All rights reserved.
App ExplosionDevice Proliferation
$Mobile Business
Optimization
Sources: Asymco and Aberdeen
Mobility Rapidly Coming of Age
2010“Gotta Have It!”
Devices Eclipse PCs
How do we manage all these devices?
2011“That’s Cool!”
60 Apps Per iOS Device
How do we protect our data and network?
2012“That’s Productive”
Best-in-Class Companies 3x as Likely to
Have Mobility Strategy
How can we transform our business?
4© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 4
ZENPRISE MOBILEMANAGER™Software Solution
Industry’s Leading Secure Mobile Device Management Solution
ZENCLOUD™Cloud-based Offering
Private, Public, Hybrid
100% Uptime SLA
WORLD CLASS SERVICES AND SUPPORT
QuickStart, Mobile Policy Implementation, Cert. Server Implementation, and Custom Consulting
CompleteManagement Solution
for All Devices
iPhone, iPad, Android, Windows Mobile,
Blackberry, Symbian
Zenprise Offerings
5© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 5
Zenprise Solution Focus
Simple for User & Administrator
• Easy Enrollment• Policy Creation & Deployment• Remote Support Capabilities• Set it and Forget it
Enterprise Integration & Readiness
• Real-time AD integration• No changes to existing environment
(email, vpn, SharePoint etc…)• No appliance in mail path to create
issues with Exchange• Scalability & Auto HA• Modular architecture
Security Readiness
• Always on compliance• Limited ports required• Database behind firewall• IL vs. CL Policies• Secure container integrated with
SharePoint• App Security• SIEM Integration• No black box appliance in DMZ
Support & Services
•24x7x365 Worldwide Support•Presence on 5 continents•10 Languages•Packaged service offerings•Flexible Training
Mobile Business Optimization
• Focused on application and data protection
• Maintain user experience• Leverage general purpose for special
purpose
6© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 6
Simple Enrollment for User
EnterAD Credentials
2
Install Certs.and Profile
43
T’s & C’sBeginEnrollment
1
Push Policies/AppsDownload Apps
5
7© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 7
- ActiveSync- AD/LDAP- BES- VPN- Authentication - PKI/Certs.- WiFi- SharePoint- SIEM - Q1, Arcsight, RSA, Splunk etc..- SDK & API’s- HPOV, Remedy, Tivoli, SCCM, syslog
etc…
Enterprise Integration
Verify
Connect
Secure
Manage
8© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 8
• Policy Management Real time integration with A/D Create one policy, push to many groups
• Configuration & Change Management Role Based Access Configure device OTA
• Compliance Management Unmanaged devices blocked from A/S Audit trails
• Asset Management Inventory: Statistics on hardware, software,
OS Ownership: IL vs. CL Utilization: Roaming etc…
IT Operations
• Application Management Inventory: Hardware, software, O/S Distribution: App push/wipe, enterprise app
store, external stores Security: blacklist/whitelist, context aware
policies Expense: VPP Integration
• Support Management User self service Remote support / service desk Integration with 3rd party ops mgt ( HPOV,
Tivoli, Remedy, etc…) Notifications
Configure
Provision
Secure
Support
Monitor
Retire
9© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 9
• Security & Risk Management Secure Mail Gateway ( SMG) Policy enforcement Remote wipe/selective wipe/
lock/password/authentication Lock & manage profiles and block user
actions Secure container/ secure collaboration Application tunnels Enforce encryption Lock device features
Security, Risk & Governance
• Content Management Encryption Control: Expire, Wipe, Block etc… Collaboration Transparent Integration/ Use
• Governance Audit Logs T’s & C’s Location Services
10© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 10
Enterprise Grade Architecture – On-Premise Flexible, Scalable, Resilient
ActiveSync Mail flowDevice Management
ActiveSync front-end serverFront End, ISA, TMG, CAS
Corporate Network
DMZ
Exchange – 2003 / 2007 / 2010 Mailbox server(s)
Active Directory DC(s)
Zenprise SMG Filter
Zenprise Administration Console
Zenprise Server(s)
Microsoft SQL
3 ports inbound80, 443, 8443
Real-time AD integration – No Split Brain
Cache
External DB Support No sensitive data in
the DMZActive / Active NLB support
scale-out
Secure Mobile Gateway - ISAPI FilterEnrollment and Device blocking
11© 2012 Zenprise, Inc. All rights reserved.
ZenCloud OverviewBest in Class Hosting
Zenprise Data Center Locations ZenCloud
• SAS70 Type II audits every 6 months
• Physical Security• 2 factor authentication required for access• Professional staff patrolling grounds• Cameras & intrusion detection systems used
• Power: fully redundant UPS systems used
• 100% SLA guarantee with penalties
• Flexible, Scalable and Resilient
• Dedicated server, network, service and db instances (replicated for availability + offline copies)
• IPSec VPN connection (AD, SharePoint, …)
• Hybrid Cloud options (on prem.)
x xx
x
x
12© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 12
Enterprise Grade Architecture – ZenCloudFlexible, Scalable, Resilient
Active Directory DC(s)
ActiveSync Mail flowDevice Management
Corporate Network
DMZ
ActiveSync front-end serverFront End, ISA, TMG CAS
Exchange – 2003 / 2007 / 2010 Mailbox server(s)
Secure Mobile Gateway - ISAPI FilterEnrollment and Device blocking
100% SLA Separate Host, Network and DB
instances
Real-time AD integration – No Split Brain
Cache
Zenprise Administration console
Zenprise SMG Filter
ZenCloud
For LDAP integration, and Zenprise secure tunneling
ZenCloud VPN connector
VPN Concentrator
13© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 13
World-Class Services, Support, and Training
Global, 24x7x365 Supportall time zones, key local languages
Top Professionals
Avg. 10 years’ experienceAvg. BS in CS, EE, MIS
Demonstrated Commitment Clear, published SLAs Robust service offerings Comprehensive, flexible training Support options: web, phone, social media 5x growth in support org in past year
14© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved.
15© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 15
Mobile Device Lifecycle Management
16© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 16
LANDMZINTERNET
LDAP
Enterprise-Grade (On Premise) Secure, Available, Scalable
Database
Three ports inbound: 80, 443,
8443
HA / active-active, load-balanced, scale-out
Real-time
LDAP integ-ration
External DB
support (no data in DMZ)
17© 2012 Zenprise, Inc. All rights reserved.© 2012 Zenprise, Inc. All rights reserved. 17
Enterprise-Grade (Cloud)Secure, Available, Data Reliable, and Scalable
Customer 1
AdministrativeConsole
Load-balancing with HA proxy
INTERNET
SECURE CLOUD
Customer 2
Customer 3
Separate DB instance for each customer (no
data co-mingled)LDAP PKI App
Servers
CORPORATE Secure corporate
access
Highly-available, scalable, redundant