Symantec Endpoint Security

English

Configuring mobile device management

You can configure your mobile device management (MDM) provider to import devices as unmanaged devices. Once the devices appear as unmanaged devices, you can enroll the devices with push enrollment.
To discover unmanaged devices and deploy to them without the use of mobile device management, see:
To configure mobile device management
Secure Connection
 is a capability in
Symantec Endpoint Security
 that provides Rogue Wireless Protection, Network Integrity and Smart VPN for Windows 10, Windows 10 in S Mode and Windows on ARM devices.
To configure Workspace ONE for API access
  1. In Workspace ONE, go to
    Groups & Settings > All Settings > System > Advanced > API > REST API
    .
  2. Press
    Add
    , and then do the following:
    • Enter a name for the service.
    • Select
      Admin
       for the account type.
    • Copy the API Key, which is required later to configure mobile device management in the cloud console.
  3. In Workspace ONE, go to
    Accounts > Administrators > List View
    .
  4. Add a new administrator or select an existing administrator, select the tab
    API
    , and then configure the account as follows:
    • For
      Authentication
      , select
      Certificates
      .
    • Create and enter a certificate password.
      This password is required later to configure mobile device management in the cloud console.
    • Press
      Export Client Certificate
      .
      This certificate is required later to configure mobile device management in the cloud console.
  5. Press
    Save
    .
To configure mobile device management in the cloud console
  1. In the cloud console, go to
    Settings > Device Management
    .
  2. Under
    MDM Configuration
    , use the toggle to enable
    Mobile Device Management (MDM)
    .
    If you disable
    Mobile Device Management (MDM)
    , the MDM provider settings that you configured in the cloud console are deleted.
  3. Select your MDM provider from the drop-down list.
  4. Enter the following provider settings:
    • API URL
      This URL is associated with your VMware tenant.
    • API key
      This API Key is the one that you previously copied.
    • Client certificate
      This client certificate is the one that you previously saved.
    • Certificate password
      This certificate password is the one that you previously created.
  5. Press
    Validate
     to validate the settings, and then press
    Register
    .
  6. Configure mobile device synchronization settings:
    • Enable Scheduled Synchronization
      Enable this option to synchronize devices from the MDM provider on a regular schedule.
    • Sync Now
      Click
      Sync Now
       to start device synchronization immediately.
  7. In Workspace ONE, go to
    Apps & Books
    .
  8. Select
    Native
    .
  9. In the main window, select
    Public
    .
  10. Select
    Add Application
    , and provide the following values:
    • Platform: Windows Desktop
    • Source: Import from BSP
  11. Select
    Next
    .
  12. In the display of applications to import, verify that
    Secure Connection
     appears on the list.
  13. Select
    Finish
    .
You can then go to
Devices > Unmanaged Devices
 to enroll the devices with push enrollment.