Blog

All blog posts should be added under this category

Using Internet of Things (IoT) Powered Solutions for Data Collection and Cleaner Air

Leave a Comment / Blog, IoT / By / / , ,
Photo by CHUTTERSNAP on Unsplash

We all know about the benefits of clean air for our health, lifestyles, and the planet. With emissions increasing globally, improving air monitoring capabilities is becoming even more important for environmental agencies. A part of these improvements lies in having access to data and information about air quality, as it is ultimately these insights that become useful when enacting regulations.

The Air Quality Index (AQI) is the standard for measuring air quality. It includes information about pollutants such as carbon monoxide, sulfur dioxide, nitrogen dioxide, aerosols, and ground level ozone. Air quality sensors measure the quantities of these pollutants present in a particular microclimate.

An IoT powered framework comprises multiple sensors, devices, and communication modems connected to a network. Measuring air quality can be time consuming and costly, however. And sometimes, there may be questions about how best to use the data collected. An IoT powered framework makes this process easier, provides you with a series of options that best fit your budget, and helps you reduce the manual work required. In this blog, we’ll explain how devices function in an air quality measurement system, how an IoT solution works typically, uses of the data collected, and the benefits of an IoT powered data collection system.

The data collection framework: Device capabilities

The sensors, devices, and communication modems of such a system will collect data (i.e. air pollutant quantities). You can select from a range of equipment based on your budget – from low cost, lower precision to expensive, high precision ones. Each type of device will have different capabilities:

  • Security measures – The market contains different communication modes and protocols with varying security measures, so it is important for you to understand these measures in advance.
  • Data collection methods – Some devices collect and transfer data in real time, while others perform these functions in batches. 
  • Computing functions – Some devices function as “dumb” data collectors and others can detect anomalies, sanitize, and perform automatic calibrations.
  • Power sources – Devices deployed indoors in remote locations can use power directly from an electricity grid. There are also devices that use power from solar panels to charge batteries.

The role of an IoT solution

The IoT solution will retrieve the data that your sensors, devices, and communication modems collect. Apart from data retrieval capabilities, the IoT solution will also oversee these functions:

  • Supporting different wire and application level protocols
  • Identifying degrading, rogue, or malfunctioning equipment
  • Collecting, storing, sanitizing, and enriching sensor readings, plus detecting anomalies
  • Integrating with similar weather-associated APIs and validate the data
  • Facilitating data sharing using industry standard managed API patterns
  • Calculating the AQI value and air quality category

How can I use the data collected?

We have discovered that the above question is quite a common one. The answer is that there are many applications and integrations that you can explore to create user-friendly data consumption/visibility models and even new revenue streams.

  • Develop different types of data consumption applications for different audiences. Configure the data so that it is visible on dashboards, embedded widgets, or mobile apps for user convenience.
  • Share data with different audiences – Environmental, aviation or military authorities, educational institutions, research bodies, the general public, etc. If you decide to share data in this way, you can also think about a monetization model.

Benefits of an IoT powered data collection system to determine air quality

A robust data collection system, the possession of a rich set of data, and the above mentioned application options are some of the obvious benefits. Some other ways you can benefit from an IoT powered data collection system are:

  • Cost control – As we mentioned earlier, devices have varying costs and precision levels. You can decide what types of devices that you want to use based on your budget and overall objectives for collecting the data.
  • 24/7 data availability – This is especially important to provide up-to-date AQI information to the public and other organizations; and issue alerts when required. The data will also form the cornerstone of planning air safety regulations.
  • Accessibility – You can use these devices in all environments, in urban and rural areas. It provides you with a mechanism to monitor the air quality in the more remote areas with no personnel being physically present in these areas too.

Once you have an understanding of the devices required for creating a data collection framework, your next step is to work with an IoT solutions provider and select the right technology platform. We built the Entgra IoT Platform with connectivity in mind – it provides you with the application building blocks to integrate all your devices under one platform. The platform addresses key technology needs for a data collection framework, such as extensive integration, data processing, extensible architecture, and data sharing via APIs. Find out how we can help you.

Configuring Asgardeo as an External IDP With Entgra MDM Using OIDC

Leave a Comment / Blog, IoT, MDM / By / / , , ,
Photo by Dan Nelson on Unsplash

Entgra MDM is a unified platform for developing, managing, and integrating Unified Endpoints (UEM), Enterprise Internet of Things (IoT), and Enterprise Mobility Management (EMM).

Asgardeo is an IDaaS developed by WSO2. It is a developer-friendly platform for managing user identities and accessing management seamlessly. This blog will explain the configurations that you need to do on Asgardeo and Entgra MDM. 

What is an external IDP?

In a nutshell, an external identity provider is a service that manages and stores user identities. It provides authentication and authorization services to other applications and services. Although Entgra MDM has an in-built identity server that can leverage all identity and access management (IAM) related services, it also provides flexibility to developers as they can connect with external IDPs.

Configuring Asgardeo

First, create an Asgardeo account and the rest is easy. Use the following link to sign up.

Creating an organization

The concept of organization is something similar to the term tenant of WSO2 Identity Server. Create an organization by clicking on the dropdown menu on the top-left corner of the page.

This will prompt a simple form where we have to enter the name of the organization we are trying to create. (Note: this will allow only simple alphabetic characters and does not support other numerical, special characters or capital letters.)

For the purposes of this blog, I’ve created an organization named “devorganization”. Once the organization is set, create a new  OIDC application.

Creating a new OIDC application

Click “Develop” on the top menu of the Asgardeo console and it will take you to the following page.

Then click on the “New Application” button and choose “Standard-based application”.

Give a name to the application and make sure to choose OIDC as the protocol. Check “Management application” if the application needs to access any management APIs of the organization. Finally, click on “Register” to create the application.

Inside the application settings, go to protocols and update the grant types as follows:

Add https://localhost:9443/commonauth as the Authorized redirect URL. This is the URL to which the Asgardeo will redirect after completing authentication.

Creating new custom user-attributes

When using external IDPs, although the users will be stored inside the external IDP, they might have to be provisioned inside Entgra MDM using just-in-time provisioning (JIT). Map attributes such as username, role, etc. with the local attributes. To create a new attribute, click “Manage” on the top menu and then navigate to the attributes section.

Click on “Attributes” and then proceed to “New attributes” to add a new attribute. Create a couple of attributes for username and role, namely the “asgardeo-username” and “asgardeo-role”.

After creating the attributes, it will redirect you to the configuration page of the attribute. Under this configuration, check the two configurations below and click on the update button to save the configurations.

These two configuration will enable the display of these attributes in the user profile and make them mandatory.

Configuring the scopes

Configure the scopes to map the above attributes against “openid” scope, so that these attributes will pass during JIT provisioning. Under the “Manage” section, click on “Scopes”.

Click the edit icon of the “Open ID” scope and then click the “New Attribute” button inside it to add an attribute to this scope.

Check the “Asgardeo Username” and “Asgardeo Role” attributes and click on the “Save” button

Go to the created application and edit the user attributes as follows and click “Update” to save these changes:

Creating a new user account

You must then create a new user account to test the Asgardeo authentication flow. Under the “Manager” section, click on the “Users” section to view the user management page. Click on the “Add User” button to create a new user.

Create a new user by filling out the following fields along with a temporary password.

After creating the user account, go to the user’s profile and update the attributes that were created earlier and click on the “Update” button to save the changes.

Changing the subject claim of Asgardeo to username

By default, the User ID is set as the subject claim in Asgardeo. Entgra MDM will be looking for a username under the subject claim of the ID token. Therefore, we might have to update the subject claim of Asgardeo using their management APIs. Invoke the following APIs using the CURLs provided in the given order to change the subject claim.

Generate an access token using the client credentials of the application.

curl --location --request POST 'https://api.asgardeo.io/t/<organization_name>/oauth2/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'grant_type=client_credentials' \
--data-urlencode 'client_id=<client_id>' \
--data-urlencode 'client_secret=<client_secret>' \
--data-urlencode 'scope=internal_application_mgt_view internal_application_mgt_update'

Search for all the applications under the organization and find the application-ID of the application you have created.

curl --location --request GET 'https://api.asgardeo.io/t/<organization_name>/api/server/v1/applications' \
--header 'Authorization: Bearer <access_token>'

Retrieve the application details using the above application-ID.

curl --location --request GET 'https://api.asgardeo.io/t/<organization_name>/api/server/v1/applications/<application_id>' \
--header 'Authorization: Bearer <access_token>'

Patch the application by changing the sub-claim to asgardeo_username. Change the values of the claim mappings and requested claims, based on the response received in step 3.

curl --location --request PATCH https://api.asgardeo.io/t/<organization_name>/api/server/v1/applications/<application_id>' \
--header 'Authorization: Bearer <access_token>' \
--header 'Content-Type: application/json' \
--data-raw '{
   "claimConfiguration": {
       "dialect": "LOCAL",
       "claimMappings": [
           {
               "applicationClaim": "http://wso2.org/claims/asgardeo_username",
               "localClaim": {
                   "uri": "http://wso2.org/claims/asgardeo_username"
               }
           },
           {
               "applicationClaim": "http://wso2.org/claims/asgardeo_role",
               "localClaim": {
                   "uri": "http://wso2.org/claims/asgardeo_role"
               }
           }
       ],
       "requestedClaims": [
           {
               "claim": {
                   "uri": "http://wso2.org/claims/asgardeo_username"
               },
               "mandatory": true
           },
           {
               "claim": {
                   "uri": "http://wso2.org/claims/asgardeo_username"
               },
               "mandatory": true
           }
       ],
       "subject": {
           "claim": {
               "uri": "http://wso2.org/claims/asgardeo_username"
           },
           "includeUserDomain": false,
           "includeTenantDomain": false,
           "useMappedLocalSubject": false
       }
   }
}'

Configuring Entgra MDM

So far we have completed the Asgardeo configuration successfully. Now let’s move on to configuration of Entgra MDM.

Creating a new user role

To explore various features of Entgra’s web applications, a user might need certain permissions. You have to create a new role for that and assign a few permissions. Inside the carbon console, click on “Add” under the “Users and Roles” section and then click on “Add New Role”. Let’s create a role called “test-role” and then click “Next” to add permissions.

You can now see a permission tree with a list of permissions. Click on the “device-mgt” permission and it will choose the child permissions automatically.

Adding a new Identity Provider

Log into the carbon console of Entgra MDM via https://localhost:9443/carbon and click on “Add” under the Identity Provider sections on the left vertical menu. You will see the following page and can configure the basic configuration as shown below:

Configure the “Claim Configuration” as shown below. Here we are mapping the Asgardeo Role attribute with our internal role claim.

Configure the “Role Configuration” as shown below. We are trying to map the “Asgardeo Role” attribute value against an internal role named “Internal/devicemgt-user” that is already configured inside the product.

Configure the” Federated Authenticators” as shown below. Replace the client-id and client-secret with your Asgardeo application’s credentials.

The endpoints are as follows:

Authorization Endpoint URL: https://api.asgardeo.io/t/devorganization/oauth2/authorize
Token Endpoint URL: https://api.asgardeo.io/t/devorganization/oauth2/token
Callback URL: https://localhost:9443/commonauth
Userinfo Endpoint URL: https://api.asgardeo.io/t/devorganization/oauth2/userinfo
Logout Endpoint URL: https://api.asgardeo.io/t/devorganization/oidc/logout
Additional Query Parameters: scope=openid

Configure the Just-in-Time provisioning to “Silent provisioning”.

Configuring Service Provider

Entgra MDM comes with multiple web applications. Each of these web applications will have a service provider created inside the carbon console. To view the service providers, navigate to the Service Providers page. For this tutorial purpose, let’s try to configure Entgra’s Endpoint Management application with Asgardeo. Edit the Endpoint Management application’s service provider from the Service Providers page. If you cant see the service provider, try to log in to the endpoint management application at least once through the following URL:  https://localhost:9443/endpoint-mgt.

Under the service provider, change the Authentication type to “Federated Authentication” and chose “Asgardeo” as the identity provider.

Voila! Now, we have successfully configured an Entgra MDM application, to SSO with Asgardeo IDaaS. Now you can log in to the https://localhost:9443/endpoint-mgt application using Asgardeo.

I hope that you found this blog useful. If you have any questions, do reach out to us here.

How a Mobile Device Management (MDM) Solution Works in the Healthcare Industry

Leave a Comment / Blog, MDM / By / / , ,
Image credits: RODNAE Productions from Pexels

More Devices Mean More Challenges

The healthcare industry is one of the best examples where a multitude of devices are used daily by a large number of people, ranging from healthcare professionals to patients and visitors. Over the years the sheer number of devices used in the healthcare industry has grown and the Internet of Things (IoT) healthcare market is estimated to grow to USD 260.75 billion by 2027.

Increasingly, mobile computing devices such as phones, tablets, and portable computers  are used to streamline certain administrative operations such as channelling/ appointment scheduling, report storage, set up self-service kiosks, and displaying information on doctors’ availability.

Devices used in this industry broadly fall within two categories – devices that are solely used for medical purposes and hospital operations, and devices used for patient entertainment purposes during their hospital stay (i.e. tablets with a range of apps that patients can use). 

These devices, particularly those used for medical purposes and hospital operations, collect, store, and transmit sensitive personal data about individual health conditions and past medical records. Any data leak, whether accidental or in some cases deliberate, is costly both in monetary terms and reputational damage to the hospital or medical clinic. Moreover, the fact that many hospitals and medical clinics have BYOD policies adds a further level of complexity.

All these developments present a number of challenges to IT teams in this industry. For one, data security is of paramount importance. Secondly, these teams are responsible for device maintenance and oftentimes, this is a manual and time consuming task involving devices placed in many locations where a team member is required to be physically present. Thirdly, devices require frequent security and application updates, and monitoring. Finally, devices have to be replaced when they no longer function properly.

MDM Solutions Have the Capabilities To Empower IT Teams

This is where a Mobile Device Management (MDM) solution helps. Recently a large hospital chain that we worked with decided to use a MDM solution to securely manage all of the devices used across multiple hospital locations throughout the country. This hospital chain required the following:

  • Centrally managed system – for tablets, phones, and public signage units used for channeling, bookings, and other operational functions.
  • Automated updates –  presently, security, OS, and app updates are performed manually.
  • Enhanced security – anyone who has access to a device gains access to all the system level settings. Since a majority of these devices are located within public areas, it was impractical to limit physical access.
  • Onboarding and authorization for devices – management software was not used for device onboarding and devices are connected to the hospital network for internal access.
  • Prevention of malpractices – eliminate instances where sensitive data is compromised on purpose by any employees and the separation of access for work-related use from personal use where employees use their personal devices.

After working with several vendors in the past, the hospital chain has identified their pain points and the ways through which data leaks can occur. Through Entgra MDM, we have been able to provide the following capabilities to address the hospital chain’s concerns:

  • Centralized device management

One of the greatest benefits of centralized device management is that IT teams can manage an unlimited number of devices that use varying operating systems (i.e. Android, iOS, Windows, Linux, etc.) using one technology platform.

  • Data security, access controls, and onboarding

A single technology platform also helps with device and data security. IT teams can use the MDM solution to enable authentication (MultiFactor Authentication or Single Sign On). This way, only authorized employees can gain access to devices for work related purposes only. This is particularly helpful when BYOD policies are in place.

  • Device lock-in

Device misuse and loss are common concerns in the healthcare industry. In the event that a device is lost or stolen, or of an attempted unauthorized access, IT teams can remotely lock the devices to prevent any data leaks.

  • Remote maintenance and monitoring

Device maintenance and monitoring are time consuming tasks, requiring many resources from the IT team. Using a MDM solution eliminates this need, as the IT team can now perform these tasks remotely, from any location and need not be physically present at the device locations.

  • Security, OS, and app updates

A MDM solution enables frequent security and app updates are installed in devices in real time.

Image credits: Anna Shvets from Pexels

Benefits for the Long Term

Once the MDM solution is in place, this hospital chain can look forward to several benefits:

  • Fewer resources to maintain devices – as they are now protected. At minimum, only one person is needed per hospital to manage these devices.
  • Improved security – results in minimizing scenarios of data leaks, especially those associated with deliberate intent.
  • Efficient and effective device monitoring – saving time in the process too. It no longer matters if hundreds of devices are in use at any one time.
  • Reduction in costs associated with device maintenance – as large teams are no longer required and resources can be better allocated in the long run.

We are well-placed to help anyone in the healthcare industry who is looking to adopt a MDM solution. Get in touch with us here to learn more.

Post-Pandemic Business Revival: Where Are We Headed?

3 Comments / Blog, IoT, MDM, Pandemic, Tech / By / / , , ,
Photo by Alec Favale on Unsplash

The effects of the COVID-19 pandemic continue to loom over us. With hopes of opening countries and returning to normalcy, we take one step forward, only to fall back two, with tightened masks. It surely will be a while before life as we once knew it can be restored.

Thrust with incertitude at all levels from economic subsistence, vocational hardship, healthcare exigencies, and the unpredictability of life in general, our core existential strategy for the last two years has primarily been inclined towards that of basic survival centered around us as individuals, our close-knit families and communities, and the associated temporal assets. The pandemic epiphany has brought about drastic changes in our lifestyles, calling us to revise our priorities with a new reality check in life. 

For business enterprises, this is bad news and has been so for the past two years. 

The Trending Story In Numbers

As with every historical industrial revolution, the effects of the pandemic will shape the economic trends for the future. Unsurprisingly, there will be an evident increase in remote working. A recent Gartner poll found that 48% of employees will likely work remotely at least part of the time after COVID-19 compared to 30% before the pandemic. Similarly, the McKinsey Global Institute estimates that more than 20% of the global workforce could work the majority of its time away from the office – and equally importantly, be just as effective. A consequent HR trend analysis by them indicates that 32% of organizations are replacing full time employees with contingent workers as a cost-saving measure. Prepped up for this, in a recent Gartner poll, 90% of HR leaders said employees would be allowed to work remotely even once COVID-19 vaccines are widely available.

As indicated by these statistics, we have embraced what worked well from the pandemic and are progressing forward retaining the lessons learned. There’s no going back now. Digitally enabled productivity gains have accelerated the Fourth Industrial Revolution powered by technology and defined by operational models that survived above the pandemic predicaments. 

Remote Working or the ability to Work From Anywhere (WFA) is clearly here to stay. So is the hybrid work model as has been discovered in a recent HR trend analysis by Gartner.

Accordingly, the most favorable operational model driving business transformations in the predictable future is that of the Hybrid Work model where employees interact with each other with a mix of distributed, co-located premises synchronously, and/or asynchronously.

Future of Hybrid Working – Gartner

Your employees are now empowered with the choice of how best productivity is accomplished – your job is to ensure they are sufficiently equipped to do so. 

Are We Ready? Fitting Device Strategy for Your Ecosystem

Managing a digital ecosystem of disparate devices on different platforms can be quite a challenge. Even more so are the conundrums involved with the smooth operation of digital systems whilst being caught unawares by the virus. It is therefore imperative that we make the most of what we have for continued existence of operations under the prevailing constraints.

In one of our recent undertakings, we set out to empower public field officers by helping them digitize their routine tasks. Whilst managing to effectively map the skill sets to devices and the appropriate technology during the project, we also analyzed and outlined how the government administrators in Sri Lanka can benefit from a centralized strategy to monitor and manage the devices deployed in the field. 

Ideally, a complete device strategy is woven around the business requirements of the enterprise, its device engagement criteria, product building, operational efficiency, scaling potential, and the extent of available technical support. Value creation from a long-term perspective and sustainability of device deployment with integration are vital aspects to be considered for a productive device strategy. 

With our varied Mobile Device Management (MDM) solutions and Internet of Things (IoT) technologies, Entgra can help you formulate the most fitting strategy for your enterprise. Our recommendations precede a comprehensive analysis of your device specifications, their functionality and configurations, defined ownership and administrative policies, pre-work device check, monitoring and their distribution,  complete with a pilot run on device deployment in the field.  As part of our assistance in managing your ecosystem, we will also help you with App development, identity and access management (IAM) and storage options. 

Resilience and Agility: The Way Forward

Resilience, in enterprise terms, is a measure of your ability to swiftly adapt to disruptions while maintaining continuous business operations and safeguarding your employees, assets, and overall brand equity. Resilient organizations are better able to respond and correct their course quickly with changes. 

Faced with the adversities introduced by the pandemic, enterprises that are actively taking measures to optimally tackle the changes are positioned with a competitive edge to be able to progressively move forward retaining most of their strength in vying to make the most of the situation. 

Building a more responsive organization in terms of infrastructure and operational flow to increase agility and flexibility with room for flexing is therefore of utmost importance. This in turn translates into facilitating seamless workflows and remote working environments against a backdrop of changing and evolving technology usage, both by organizations and individuals. 

Entgra offers you a single platform for device integration with comprehensive endpoint management capabilities where you are able to expose devices as APIs securely with identity federation for managing human and device identities. Enabling custom integrations with broad built-in capabilities, and for developing end-to-end applications, our secure, customizable platform can manage all types of devices and applications. Complete with device and endpoint data analytics for systematic decision making, our IoT platform together with our Enterprise Mobility Management (EMM) solutions will enable you to remain resilient, relevant, and flexible to respond to present and future changes.

Get in touch with us to learn more about how we can help you.

References

Geofencing Capabilities of Entgra MDM

Leave a Comment / Blog, MDM, Tech / By / /
Photo by abillion on Unsplash

We’re pleased to announce that Entgra MDM has yet another new feature – geofencing capabilities. Enterprise Mobility Management (EMM) admins can define required virtual perimeters for controlling access over specified boundaries and perform some operations to those which are inside of those boundaries. Geofencing is a very useful feature in governing access for user groups. It can be conveniently set up by drawing boundaries over areas on the map.

Let’s discuss how the geofencing capabilities work through an example. Imagine that the Ministry of Education wants to provide tablets or mobile devices for school children in rural areas for online learning during the pandemic. And they wish to provide all the learning materials to the devices and manage those device capabilities. Additionally, they want to ensure that these devices do not leave school premises. The Ministry can use geofencing capabilities to monitor the devices’ locations, manage capabilities, and perform certain actions.

The Functionality of Geofencing Capabilities

Before you create a geofence, you need to set up the Alerting Configurations under the Platform Configurations. You can provide an email address where you can receive alerts. According to your use case, you can define whether users cross or access boundaries.

After defining the configurations you will be able to create geofences in Entgra MDM. The following data should be provided to create a new geofence.

  • Geofence name: Provide a name for identifying the geofence
  • Description: Add more details about the geofence
  • Device group(s): Assign a group (or groups) that consists of the devices that need to belong to the geofence
  • Event configurations: Add the given alert configuration to the relevant field

Afterwards, you need to mark the boundary line on the map. By using a shape such as a polygon or a circle, mark the area that you want to define as the geofence and then click on the Create button. The geofence table lists all the geofences that you create.

Returning to our example, after creating a geofence by including the school boundaries, if one of the students tries to leave the school with a device, the head of the school receives an alert and he/she can track the device location. The head of the school can also view how many devices in the relevant geofence are active at any given time. In addition, it can check the location of the provided devices and the device count, preventing devices from being misplaced.

Not only that, the group (or groups) that created the geofence can apply the required educational materials at the same time, adding various restrictions to the devices and managing them.

Entgra MDM has extensive enterprise wide MDM features that you can customize for your business needs. Learn more about the product and how we can help here.

You can also get in touch with us via contact@entgra.io

Allow and Block Listed Apps With Entgra MDM

Leave a Comment / Blog, MDM, Tech / By / / , ,

Manage device applications by using our latest feature

Photo by Sergey Zolkin on Unsplash

Entgra MDM now enables you to allow and block listed apps with the latest feature. Enterprise Mobility Management (EMM) admins can manage device applications by using the blacklisting and whitelisting technique.

By way of an example, think of a school or an educational institute that provides tablets to their students for online learning. Admins need to restrict several apps from these devices (such as social media apps) in these scenarios. This means that these apps will be blacklisted whilst other apps, such as educational ones, would be installed in the devices sans interaction with the students.

The app blacklisting and whitelisting feature help you to meet these requirements. App whitelisting means that all applications, except the ones explicitly defined, are blocked. End users can only use apps that have been explicitly defined. App blacklisting occurs when defined applications cannot be installed on target devices. If the given black listed apps are already installed, they will be removed from devices.

The Entgra IoT Platform has an Application Restriction Settings policy with the capability to manage device applications for appropriate users. You can access this policy in the Android policy section on the Entgra IoT Platform. In this feature, you have the ability to select the appropriate app list type. Depending on the type selected, the functionality is as follows:

Allow List

After selecting the allow list you need to add these apps’ names and their package names. When the policy is applied to the device, only the listed app will be available and other apps will disappear.

Block List

Provide the names of the apps and package names that you want to add to the block list. When the policy is applied to the device, only the listed app will be removed and other apps will remain in the device.

In this way, you can change the number of apps on devices according to your preferences.

Let us return to the example. The head of the school or institution can add apps and their package names that he/she wants to block from the devices to the Block list. These listed apps will be removed from the devices while the required apps will remain. On the other hand, if he/she wants to add some educational or learning aid apps to the students’ devices, these can be installed through this policy.

Entgra MDM has extensive enterprise wide MDM features that you can customize for your business needs. Learn more about the product and how we can help here.

You can also get in touch with us via contact@entgra.io

Understanding Entgra’s Enterprise Mobility Management Capabilities (Part 2)

Leave a Comment / Blog, Tech / By / / ,

An introduction to our file transfer feature

Photo by Marvin Meyer on Unsplash

This blog is the second part of a series that deep dives into Entgra’s Enterprise Mobility Management (EMM) capabilities. Through this blog series, we aim to provide a better understanding of how Entgra’s technology can help you manage and secure your devices, improve the performance of your employees, and increase business profits through seamless device management.

Transfer Your Files and Perform Operations in Local Device Files

Imagine that you are managing a sales team. Your day to day activities involve sending sales reports or any other kind of find to your team members’ mobile phones or tablets. Or perhaps you need to edit files that you have already sent by renaming it or delete unnecessary files stored in a device. These actions can be performed easily when you are in the office.

Now imagine that your sales team is in the field and you want to transfer files to them, transfer files from their device to your server or perform an operation on the file in their device without disturbing them.

Fortunately, there’s a way to perform these actions.

Entgra IoT Server, with its EMM features, provides file transfer features to tackle similar kinds of scenarios. Admins can transfer files from an FTP server to a folder in the user’s device and vice versa using the file transfer feature. It is also possible to remotely access a device’s file system and perform file management tasks such as copy, rename, and delete files. 

Here’s a short video that illustrates how simple remote and access is:

Using Devices in the Field

Click on the “connect to device” option on each device to start a remote session when using your devices in the field. This will display the device’s files on the screen. Select the option that allows you to select a server, where you can view all preconfigured FTP servers. Then simply click one of the servers, the server files will be fetched and shown on the screen. You can select any file and perform file transfer from local device to the FTP server or vice versa. This also comes with an option to rename and delete the local files in the device also.

The first blog of this series gives you a quick introduction to our remote screen sharing and control features. You can read the blog here. You can learn more about our IoT, EMM, and Mobile Device Management (MDM) technology here. We’re always happy to hear from you, so drop us an email on contact@entgra.io to start a conversation with us.

Digitalizing Day-to-Day Tasks of Public Field Officers

Leave a Comment / Blog, Tech / By / / , , ,

How Sri Lanka’s government administrators can digitalize vital citizen data collection functions

Sri Lanka has a multitude of government agencies with varying levels of processes involved. At present, numerous public field officers employed by these agencies perform many tasks – such as citizen data collection – manually using paper forms. They include village officers (or Grama Sevakas), public health inspectors (PHIs), community midwives, environmental police officers, municipal council employees, and field officers from the Department of Agrarian Development and the Department of Census and Statistics to name a few. They then visit the relevant area government offices to sync their work – again performed manually.

In a bid to digitalize key government functions, some agencies have begun distributing public field officers with mobile devices that contain a set of apps to eliminate these manual tasks and ensure that data is available in a centralized system in a timely manner. 

While this is a welcome move, this endeavor does not address key functionalities. These include:

  • A centralized strategy to monitor and manage devices deployed in the field.
  • An ecosystem to provide remote app updates or new apps. Public field officers are required to manually download and install apps. 
  • Strategy to provide operating system (OS)/ security updates and mandatory app updates such as virus guards.
  • Remote troubleshooting of device, app, and OS related issues that would eliminate time consuming and costly field visits by IT support teams.
  • Tools to enforce data usage restrictions, misuse of devices or data/ device theft.
  • System level architecture to provide centralized identity, device management, integration or APIs.

The lack of these functionalities would pose several challenges that will impede the long term success of a large scale project such as this. This blog provides a step-by-step guide on how government agencies can implement a device strategy that addresses these functionalities and simplifies data collection whilst saving costs in the long term.

Device Strategy and Ecosystem: A Step-by-Step Guide

The device strategy and ecosystem must address each of the following considerations before devices are used in the field.

Device functionality

Takes into account issues such as device robustness, how they would work in the field seamlessly, battery life of each device, and device weight.

Device specifications

Operating system used by devices (i.e. OS or Android), scanning requirements, whether or not devices are able to connect to printers, and the warranty period of devices.

Device ownership and user policies

Privacy and user guidelines are central to a project such as this. The device strategy must address who exactly will be given access to use devices in the field, guidelines for doing so, and the policy adopted for usage outside of official duties.

Identity and access management and storage

Security and identity management (IAM) are often the cornerstones of a sound device management strategy. A successful IAM system consists of single sign-on (SSO), self sign up, password set ups, and password resets. This system must decide on whether OTPs for sign up will be sent via SMS or email for secure signing in and the official verification/approval process.

Device configuration

Test devices, check runtime usage, and ensure that onboarding configurations are functioning as intended and device apps work in offline mode.

App development

Apps must incorporate user behavior, use the mobile device management (MDM) app store, sandbox environment in place, and kick start beta testing.

Device distribution and education

Once all of the above are in place, the relevant government agencies must prepare lists of device recipients, map serial number ID with employee IDs, decide on a complete support structure (i.e. who will provide 1st and 2nd level support), prepare instruction manuals to educate users, and organize device delivery to the field force. This is also the ideal time to formulate the device roll out plan and scale the device system with the expected support load.

Run a pilot and deploy devices to the field

This is the ideal moment to define the defect reporting process and the warranty claim process.

Pre-work device check and monitoring

Finally, before devices are in full use, assess the level of support needed, how alerts/escalations are reported, and app functionality.

Data Analysis and Visualization to Aid Policy Makers

A project such as this will require particular attention paid to methods of data storage and visualization to facilitate analysis by policy makers. The device strategy requires a central data storage mechanism – by ‘data’ we refer to both citizen data and device functionality data. Data visualization will be enabled in the form of dashboards to aid government employees and policy makers.

By implementing a device strategy with these considerations in mind, government agencies are better able to lower costs through greater control over device usage, plan for the long term, and start digitalizing services for the benefit of citizens, policy makers, and public field officers alike.

Entgra provides has worked with many public agencies and private sector organizations to implement robust device strategies. Learn more here.

A 7-Step Device Strategy To Succeed With IoT Technology and Create Flexible Organizations

2 Comments / Blog, Tech / By / / , ,

A device strategy must take into consideration business planning, product building, operational efficiency, scaling, tech support, value creation, and sustainability to thrive

Photo by Benjamin Smith on Unsplash

With the ongoing pandemic creating many upheavals, organizations are increasingly grappling with a monumental challenge – creating seamless workflows and remote working environments whilst staying resilient, relevant, and flexible to respond to present and future changes. These changes are also taking place against a backdrop of evolving technology usage, both by organizations and individuals. Industry analyst Gartner identified Internet of Behavior (IoB) as one of the strategic technology trends for 2021. Explained simply, IoB is a data-driven approach to guide behavior. Data is gathered from many different sources and IoB will increasingly shape interactions between people and organizations. Using data from multiple sources and devices to gain insights into business operational processes and productivity is of course not a new phenomena. Organizations across industries have been moving towards deploying connected devices and Internet of Things (IoT) enabled business environments for quite some time.

Successful use of IoT technology requires a device strategy, regardless of the type of organization. When I use the term “devices,” I refer to both mobile devices and IoT enabled devices. A device strategy must take into consideration 7 important factors to thrive: business planning, product building, operational efficiency, scaling, tech support, value creation, and sustainability.

Business Planning

Organizations that require a device strategy fall into 4 broad categories – device manufacturers, application developers, system integrators, and device users. Each of them have different needs and priorities when formulating a device strategy. As a starting point, ask yourself some crucial questions about your organization – which of the above 4 categories you belong to and what your organization envisions for itself.

Here is an overview of the different technology requirements for these organization types:

  • Device manufacturers – to develop devices and basic software (such as an API) to showcase device capabilities
  • Application developers – need to build IoT applications on top of their existing hardware
  • Systems integrators – to integrate several IoT applications and create value in a particular industry
  • Device users – provide devices to their employees to be used for specific purposes

Product Building

All of these organizations must then identify the specific market requirements, target customers, and the expected types of device engagement. These are the things to keep in mind for a product building strategy.

A generic guideline is as follows:

  • Device manufacturers consider where and how the devices are to be used, taking into considerations issues such as device robustness, protocol use (existing or new protocols), chipset usage (existing or new chipsets), device security, and power consumption.
  • Application developers are mainly concerned with the types of devices that will be used, the type of software platform to use, application distribution, and how the application logic compares with power consumption.
  • Systems integrators’ main concerns are with integration – which platform to use, the need of new platforms, security, protocols, analytics, dashboards, and how they can expose APIs with external parties.
  • Device users need to understand if they’re using the right type of device, whether or not these devices are user friendly, data security and storage, and device ownership (who owns the devices – the organization, device manufacturer, or the employee).

Operational Efficiency

Once you build your IoT applications and deploy your devices, then it’s time to think about operational efficiency. Your key concerns at this stage would broadly consist of detecting device failure notifications, identifying device anomalies early so as to minimize operational disruptions, pushing software updates to all your devices in your ecosystems, and how you can reset your devices in the case of a security breach.

Scaling

Any organization must first have a thorough understanding of their IoT deployment so that they can formulate and implement a scaling strategy. A starting point for this exercise would be to first identify which architecture layer within your IoT deployment needs scaling and how this can be done, recognize usage and failure patterns, consider questions around device throttling, and finally, if your organizations will use server or edge computing capabilities.

Support

When we talk about technology support, the biggest issue is what actions an organization will have to take when a remotely installed device fails. Using backup devices is an option (although this is often not the most cost-effective choice).

Value Creation

Devices and their deployment are expensive. Long term value creation must therefore be a cornerstone of your device strategy. Measure the impact of device integration and understand what steps your organization can take to prevent your devices from becoming less valuable over time, how your organization can gain a competitive advantage through your devices, what type of data can be generated from your devices for business insights, and how you can diversify your business offerings and processes.

Sustainability

A discussion about value creation naturally leads to questions about sustainability. Sustainability focuses on 3 areas – technology, data security, and legal challenges.

On the technology front, devices and platforms used today may not be valid in several months’ time. As such, organizations must address any vendor lock in issues with your devices, whether or not your platform can be scaled with other devices and applications, and any license fees and data ownership concerns that you will encounter.

When considering data security, any breach impacts consumer trust in your organization which in turn affects sustainability. Pay particular attention to how your data is stored, whether or not you use a managed cloud service, who will be given access to the data, whether or not a data filtering mechanism exists within your organization, and how your mobile apps were developed. 

Finally, on the legal challenges front, many regions have introduced data privacy and security laws, for example, GDPR in the EU, CCPA in California, USA, and CDR in Australia. With these regulations, there’s a chain of liability, many different and complex data ownership scenarios, and automated contracts. Any questions on a sustainable device strategy must look into the intricacies of these regulations and even in the absence of formal regulations, pay heed to privacy concerns of individuals and device users.

Learn more about our Mobile Device Management (MDM) and IoT technology. Our customers span the Android device manufacturing, original design manufacturing, government, education, pharmaceutical, healthcare, insurance, and service industries.