Online Help

SafeNet Trusted Access for MobileIron BYOD

Overview

Configuring SafeNet Trusted Access for MobileIron BYOD is a three-step process:

1.MobileIron BYOD setup

2.SafeNet Trusted Access setup

3.Verify Authentication

MobileIron BYOD Setup

As a prerequisite, download the Identity Provider certificate from the SafeNet Trusted Access Console by clicking the Download X.509 Certificate button. You will need this certificate in one of the steps mentioned below.

1. Log in to MobileIron BYOD Portal as an administrator using the following URL: https://<your domain name>.byodportal.com/admin.

Example: https://example.byodportal.com/admin

2.In the MobileIron BYOD Portal, click SAML Settings / SSO.

3.In the SAML Settings / SSO window, perform the following steps:

a.In the Enable SAML SSO field, select the On option.

b.In the SSO iDP URL field, enter the SingleSignOnService URL provided on the SafeNet Trusted Access Console.

c.Open the identity provider (IdP) certificate you downloaded earlier from SafeNet Trusted Access Console in the Notepad and copy the entire text of the certificate.

d.In the x.509 Certificate field, paste the entire text of the identity provider (IdP) certificate.

e.In the Logout URL field, enter the SingleSignOnService URL provided on the SafeNet Trusted Access Console.

f.Click the Save Your Changes button to save the configuration.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in MobileIron BYOD, the second step is to activate the MobileIron BYOD application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the MobileIron BYOD application you added earlier is currently inactive by default. To configure and activate this application, click the application (for example, MobileIron BYOD) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.In the Consumer URL field, enter the Consumer URL of MobileIron BYOD portal you got earlier from MobileIron BYOD SAML Settings/SSO, as mentioned in step 3.

b. Under User Login ID Mapping, in the NAME ID field, select the required Email address.

3.Click Save Configuration to save the details and activate the MobileIron BYOD application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

In this solution, you can register your mobile device using the BYOD portal. After successful registration, the Mobile@Work application is pushed onto registered device according to the policy defined by the administrator on MobileIron Core for iOS devices.

Perform the following steps to register the mobile device on the MobileIron BYOD portal:

1. Open the following user device registration URL in the mobile device: https://<your domain name>.byodportal.com/reg

Example: https://example.byodportal.com/reg.

2.This redirects you to the SafeNet Trusted Access login window.

3.In the SafeNet Trusted Access login window, enter your SafeNet Trusted Access user name (for example, alice) and click Login.

4.In the Password field, enter the Token Passcode and click Login.

5.After successful authentication, tap the registration link to register the device.

6.Select My Device.

7.Select I Agree to the Terms.

8.Tap Let's Register.

9.In the Profile Service screen, tap Install to enter the device into the encrypted profile service of the identity service.

10.Enter the mobile device passcode (if configured).

11.Proceed with installation steps until you tap Done. The success message "The device is now registered with the Identity Service MobileIron server" is displayed.

12.The configured policy for the mobile devices on the identity service server is ready to push the application onto the device. Tap Install to install the MobileIron application.

13.When the MobileIron application is installed on device, the MobileIron application icon is displayed. Tap the MobileIron application icon to open the application. If the application opens for the first time, it will verify the device and user associated with it.

14.Tap Allow.
This establishes a connection with the MobileIron Core server.

Using STA User Portal

Perform the following steps to register the mobile device on the MobileIron BYOD portal:

1.Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the MobileIron BYOD application icon.

2.Repeat the above steps (step 2 to step 14).

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.