MDM On-Premises Workflow

Architecture

ManageEngine Mobile Device Manager Plus MSP can be used to deploy configuration settings, security commands, and retrieve asset data over-the-air (OTA).

Fig : Mobile Device Manager Plus MSP- Architecture

All Communications from Mobile Device Manager Plus MSP to the managed mobile devices will be routed through intermediate services such as Apple Push Notification service(APNs) for Apple devices, Firebase Cloud Messaging (FCM) for Android devices, and Windows Push Notification Services (WNS) for Windows devices. A live TCP connection is maintained for the notification services. APNs, FCM, and WNS act intermediate services to wake up managed devices whenever an action is triggered to be performed from the MDM server. But WNS is used only for devices running Windows 8.1 and is not available for mobile devices running Windows 8.0. Managed mobile devices communicate with Mobile Device Manager Plus MSP to receive instructions and report the status and data back to the MDM server. For the above setup to work, the following should be done.

Assuming users' mobility, Mobile Device Manager Plus MSP Server should be reachable via public IP address (or FQDN). If you are installing Mobile Device Manager Plus MSP Server in the LAN, add an entry in your external router to direct the requests to your public IP address to the internal IP of the computer where Mobile Device Manager Plus MSP Server is installed. If all the devices managed are within the LAN, this requirement is not needed.

Refer the following to know about the list of Ports used and Domains accessed by MDM for enrolling and managing devices: Click here to know the steps to verify the reachability of the required domains.

Setting up and Enrolling mobile devices:

iOS devices

Android devices

Setting up Knox devices

Setting Up Windows devices

Copyright © 2019, ZOHO Corp. All Rights Reserved.
ManageEngine