MDM

How to Manage Your Device Fleet in the Age of IIoT

Blog, IoT, MDM / By / / ,

Main drivers of an IIoT ecosystem, device management strategies, and getting started. 

Lenny Kuhne on Unsplash

Industrial Internet of Things (IIoT) today

The internet has grown to remarkable eminence, progressing a long way from its humble beginnings as a coke vending machine1 following basic instructions. Today, the semantic web engages with us interactively and processes information for us intelligently.

The Internet of Things (IoT) encompasses a connected system of devices and sensors with the ability to gather, process, and exchange data over a network (not necessarily the internet), thereby enabling remote monitoring, evaluation, and administration of such devices. In a broader sense, this is about the integration of people, processes, and technology with devices, harnessing the best of each and making our lives easier.

With the advent of Industry 4.0, we are thrust forward with the Industrial Internet of Things (IIoT). It is a common misconception to think of IIoT as an extension of IoT. In reality, however, it is just a subcategory of IoT that expands into industrial applications of IoT. IIoT has evolved from Distributed Control Systems (DCS), where autonomous controllers were distributed throughout a system with localized control. Today, it is directed towards automation and improving the operational efficiencies of large industrial processes. It also includes consumer-facing applications such as wearable devices, smart home technologies, and self-driving cars.

In essence, both IoT and IIoT consist of a system of connected devices, machines, sensors, and infrastructure that transmits data via a network with the ability to remotely administer devices and processes.

IIoT is the decisive factor that empowers the Fourth Industrial Revolution, smartly dubbed Industry 4.0. Enabled by powerful emerging technologies such as Machine Learning (ML), Artificial Intelligence (AI), advanced robotics, big data, edge computing, and other innovative breakthroughs, IIoT is becoming an inescapable big player in our lives.

IIoT technologies empowering Industry 4.0

Having leapfrogged from steam engines2 to supercomputers by the Third Industrial Revolution, Industry 4.0 explores closer integration of digital technologies with the physical world in various industries to enhance efficiency, productivity, and innovation. 

Energy conserving smart cities with optimally controlled traffic, smart factories with digital twins maneuvering laborious tasks, and collaborative robots (Cobots) working alongside human operators are only some items on the IIoT promise shelf. Insights derived from wide data sources and analytics, predictive maintenance capabilities, and progressive automation are other transformative changes brought about by leveraging the power of connected devices and data analytics, leading to heightened competitiveness and sustainable growth in industries.

The technologies enabling and empowering IIoT vary from cybersecurity, cloud computing, edge computing, machine-to-machine communication, 3D printing, extended reality (XR), advanced robotics, big data, radio frequency identification (RFID) technology, cognitive computing, and a multitude of other such advancements in different fields.

Among them, some are more potent drivers that distinctively characterize an IIoT ecosystem. These include:

  • Cyber-Physical Systems (CPS): As the term implies, these systems are composed of digital systems integrated into the physical processes of an industry. Cyber-physical systems play a pivotal role in Industry 4.0 by connecting the physical and digital realms to enable more accurate decision-making, automation, optimization, and enhanced collaboration between humans, machines, and processes. They are a fundamental component of the smart, interconnected ecosystems that characterize Industry 4.0.

  • Cloud computing: A novel concept of getting the required computing services for a specified period of time over the internet instead of provisioning local hardware and infrastructure. Cloud computing covers a wide range of services, including storage, processing power, networking, and software. It offers various service models, such as Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS), catering to different levels of control and management. The elasticity of cloud computing, i.e., the ability to scale up or down as per changing workloads, ensures improved performance and efficient use of resources. Because cloud computing is a measured and on-demand service, it ensures cost-effective resource consumption and commercial viability.

  • Edge computing: This is a decentralized computing paradigm that brings computation and data storage closer to the location where they are needed instead of remotely accessing them via cloud servers. Data processing occurs at or near the “edge” of the network, typically closer to the source of data generation, which could be sensors, devices, machines, or users. Edge computing delivers reduced latency, real-time responsiveness, enhanced security, and improved bandwidth efficiency. It’s a critical technology for applications that require rapid processing and decision-making, especially in IIoT applications and Industry 4.0.
  • Big data: Comprises the massive volume of structured and unstructured data generated from various sources at a high velocity. This data is often too complex and large to be effectively processed and analyzed using traditional database management tools and methods. Big data encompasses a wide range of data types: text, images, videos, sensor readings, social media interactions, and more.
  • AI and ML: These technologies are critical requirements to transform raw data into insights that drive operational performance in industrial processes. They facilitate real-time data and updates, enhance operations, and enable predictive capabilities.
    AI and ML algorithms expedite data analysis and pattern recognition by processing large volumes of IIoT-generated data that help with predictive maintenance, anomaly detection, and real-time decision-making. Cognitive computing enables IIoT systems to understand and respond to natural language queries and instructions, thereby simplifying user interaction with complex industrial systems.

IIoT device management strategies

With Industrial IoT, we are talking about many different types of devices connected and integrated into a single digital ecosystem that seamlessly operate with each other and run multiple business processes efficiently. It is therefore imperative to have an effective device management strategy for your enterprise to ensure the security, robustness, and efficiency of your system. As an ever-increasing number of industrial devices become connected and integrated into the digital ecosystem, effective management and administration become a tedious task demanding much attention, time, and resources. Not so, however, if you have done your homework beforehand.

It is important to be aware of and proactively address the potential challenges of handling a collection of devices out at large. Some of the key factors to consider when managing fleets of disparate devices are displayed below.

Illustration: Device management strategy factors to consider when managing large device fleets

Securing your edge with Entgra solutions

Imagine having to herd a fleet of devices – hundreds and thousands of them at that – concurrently, efficiently, and flawlessly around the clock on multiple platforms, each with its own configuration settings and running on different operating systems? Quite the nightmare for a modern IT-admin shepherd if not for the convenience of effective device governance strategies at our disposal today. 

Endpoint devices encompass physical equipment connected to the digital ecosystem, exchanging with and sometimes processing information for the network. These include the commonly identified mobile devices, embedded devices, desktop computers, kiosks, virtual machines, servers, and wearables, as well as facilitating devices like routers, network gateways, firewalls, and load balancers.  Each of these comes with its own manufacturer and is often run on specific operating systems such as iOS, Android, or Windows. They gather, exchange, and sometimes process data which needs to be utilized securely and translated into intelligible information. This process is often handled by single-console device control and administration. Privacy regulations, device policies, and other factors that must guarantee the security of devices and data are also integral components of the process.

What the shepherd needs today, then, is a crook that can enroll, administer, and manage the whole of the device fleet with zero-touch (literally) agility and enable ceaseless, robust operation of the process with minimal intervention.

Entgra UEM for centralized device management and unified endpoint management (UEM) has extensive enterprise-wide customizable UEM features offering granular, simplified experiences and robust identity management capabilities. With its ability to trigger operations simultaneously in a device group, live feed, and Grafana-based dashboards, an IT administrator’s life is simplified manyfold.

The Entgra IoT Platform facilitates end-to-end IoT application development on one platform, giving you the ability to integrate all your devices and solutions. 

Device location tracking, enterprise wipe, device lock, and restriction policies are some of the security features Entgra offers as an accredited Google Enterprise EMM Partner for Android devices. 

Presently, our industry solutions cover factory floor monitoring, kiosk management, and utility meter connectivity. We provide customized IoT solutions catered to your specific factory floor device monitoring and control requirements and scalable kiosk management propositions befitting long-term growth. 

Entgra solutions combined would just be the shepherd’s crook that your enterprise needs to flourish unrestrained. 

Get onboard with our Try-It-Now product packages or contact us for further information on how we can help you. 

References

1. The first device on the Internet of Things – the first ARPANET-connected appliance – was a modified Coca-Cola vending machine at Carnegie Mellon University in 1982, marking the beginning of a network of smart devices. The machine was able to report its inventory and whether newly loaded drinks were cold.

2. Each Industrial Revolution has been marked by distinctive economic, social, and cultural changes. The First Industrial Revolution saw the transition from hand production methods to machines through the use of steam and water power.

Entgra UEM 5.3: Improving Your Search Functionality, Hierarchical Grouping for Better Device Organization, UI Changes, and More Updates

Blog, MDM / By / / , ,

Unified Endpoint Management (UEM) with Entgra UEM is all about making your device management super smooth, your admin tasks hassle-free, and your app management easier. 

Entgra UEM 5.3, the latest version of Entgra UEM, is now ready for exploration. 

This release introduces several dynamic updates that focus on enhancing search capabilities and streamlining group management. Furthermore, you will discover additional improvements on personalized access control and the visual experience.

Enhanced search functionality

The improved search functionality feature makes it easier to find and manage your devices, apps, and policies. You no longer have to dig through endless lists or struggle to locate a device, app, or policy. One quick search is all you need.

These are the details of how this feature will help you:

  • Simplified device discovery: Say goodbye to endless scrolling and manual searches for devices. Enter a part of the username in the search bar on the device listing page and relevant devices linked to that user will appear. 
  • Seamless app search: The enhanced search functionality extends beyond just devices. Whether it’s part of the app name or the app’s status in the store or publisher portal, finding the apps you need is effortless. No more guessing which category an app falls into.
  • Instant policy retrieval: Looking for policies, too, is now much easier.  Simply input the policy’s name you’re after on the policy listing page and watch the results narrow down instantly.

Introducing hierarchical grouping

A more organized device grouping experience is now yours. The product enables you to adopt a hierarchical, structured approach to group and subgroup formation. 

This is how this feature will benefit you:

  • Improved device organization: Admins can efficiently organize devices, mirroring the organization’s hierarchy with hierarchical grouping. This simplifies the process of locating and managing specific devices within the larger context of the organization.
  • Efficiency in management: By grouping devices in a hierarchical manner, admins can now apply policies and deploy apps at different hierarchy levels, streamlining management. Consistent updates are ensured across devices.
  • Heightened security: Hierarchical grouping lets you gain precise control over device permissions. You can assign specific policies or restrictions to groups and subgroups, safeguarding sensitive data.
  • Faster troubleshooting: Troubleshooting becomes organized. Identify patterns within groups for efficient issue resolution, improving device performance.

Email notifications for SIM removal

We all know that staying informed about any changes to your devices is crucial. Entgra UEM 5.3 introduces email notifications for SIM card removal to ensure that you’re always in the loop. 

You can be at ease knowing you’ll be instantly notified when a SIM card is removed from an enrolled device.

This feature is important because:

  • Strengthened security: These notifications let you detect suspicious activity or security breaches promptly. Proactively secure your devices from unauthorized access.
  • Real-time monitoring: No more manual device checks for SIM card changes. Automated emails keep you informed without constant intervention, saving time.
  • Swift action: Immediate notifications enable quick response to unauthorized SIM card removals. This proactive approach minimizes the potential impact of any security incidents and maintains the integrity of your device fleet.

Specifying app visibility based on user roles

Admins now have the ability to precisely dictate which user roles can access specific apps during publishing. This ensures a user-centric app experience, restricting sensitive or specialized applications to authorized personnel only. With this feature, you can fine-tune your app distribution processes to deliver apps to the right users at the right time

These are the advantages of controlling app access based on user roles:

  • Fortified security: Limiting app visibility ensures that confidential resources are only accessible to authorized individuals, reducing unauthorized usage.
  • Streamlined workflow: Role-specific apps optimize workflows, boosting employee productivity by providing tools aligned with their roles for their specific job functions.
  • Customization and agility: App access tailored to roles aligns with unique organizational needs and structures, enhancing flexibility and adaptability.

UI improvements

Iconic app recognition

Identifying apps can be tough if icons are generic or mismatched when encountering diverse apps on multiple devices. Entgra UEM 5.3 changes this by attaching fitting icons to apps, enabling instant recognition.

Key highlights of this feature are:

  • Instant recognition: No more confusion over apps with vague or mismatched icons. Each app now features its own fitting icon so that you can find it easily.
  • Aesthetics and usability: This feature redefines navigation and usability, improving the overall appearance and thereby your UX.
View device groups

Users can now effortlessly spot the groups assigned to a device with a single device view. Presented in a user-friendly interface, this feature offers a straightforward, coherent understanding of your device fleet for better organization and management.

Thank you for taking the time to read about the exciting features of Entgra UEM 5.3. To learn more about each feature’s functionality, read the product documentation.

Ready to dive in deep? Experience Entgra UEM—just give it a go via our Try-It-Now feature.

As always, we encourage you to contact us if you have any comments or suggestions. 

App Management Made Easier: Using Entgra UEM For App Lifecycle Management

Blog, MDM, Tech / By / / , , , ,
Photo by Onur Binay on Unsplash

We all know Unified Endpoint Management (UEM) solutions provide comprehensive end-to-end Mobile Application Management (MAM) capabilities for businesses. You can effortlessly manage and monitor apps on multiple mobile devices from one central place.

Application Lifecycle Management (ALM) is one of the core features of UEM when it comes to mobile app management. At Entgra, we understand the challenges of managing app lifecycles and have developed a cutting-edge solution that takes the complexity out of the process, making things easier and user-friendly for you.

Entgra UEM provides ALM capabilities. In this blog, we will explore these capabilities in detail to highlight how they simplify app lifecycle management stages and enhance the overall management experience.

Before you begin: What is ALM?

ALM is the process of managing the entire lifecycle of applications deployed on your endpoints. 

It enables you to manage the lifecycle of an app from its inception to retirement. You can ensure they are installed correctly, monitor their performance, and update them without causing any inconvenience to your end users. Your team members can collaborate at each stage of the app lifecycle, facilitating real-time updates.

Entgra’s approach to ALM 

The ALM feature in Entgra UEM is comparable to having a personal assistant for your apps. You can manage your applications from start to finish within a centralized platform. It covers everything from creating and deploying apps to updating and retiring them.

Let us take a brief look at the entire ALM process.

The basic process of ALM

Admins can create their apps via the Entgra app publisher.  Once you create an app, it automatically comes with its lifecycle. From this point onwards, you are able to oversee and manage each stage of the app’s lifecycle.

Now let’s delve further into each stage. 

  • Created – Suppose that you want to create a specific corporate app exclusively for your employees. Once you create this app, it belongs to the first stage of the app’s lifecycle. Now you have full control over each stage of the app’s lifecycle.
  • In-Review – This stage is entirely for accurate and secure app publishing. You can review your app thoroughly and determine whether the app is suitable for publishing in the app store. In this review process, you can add the app to a “Rejected” stage if it detects any fault in the app or if it is not in compliance with company policies.
  • Approve – After reviewing the app with the necessary parties, you can approve it for publishing.
  • Publish – Publish the app in the corporate app store. The app will only be visible in the app store after it completes this process. There is an additional perk. Even after publishing your app, you can change its status.
  • Block – You can block an app for a certain period of time either to publish or deprecate at a future date.
  • Deprecated – These are the outdated apps that no longer suit your app store. In both cases, the app will be hidden from your app store automatically to prevent installations.
  • Retired – Eventually, you can retire your apps. You can terminate the app’s process at this stage since this is the final stage of an app’s life cycle.

Fast-tracking app publishing

The latest version of Entgra UEM has made app publishing even faster and more convenient. 

You can save and publish an app in a single step. This eliminates the need to follow all the lifecycle stages manually. This is particularly useful in scenarios where it is not necessary for a user to complete all the lifecycle stages.  

Within the app creation step, admins can decide whether they want to publish the app or not at the same time. If you want to publish the app, it will be published in the app store immediately without any review.  This denotes that you can directly transfer the app from the “Created” stage to the “Published” stage of its lifecycle. 

Enhanced ALM process in Entgra UEM

This ALM feature helps to prevent UEM admins from making mistakes when managing any kind of app by providing clear, concise directions. As fantastic as this feature is, it is only available to users with appropriate permissions. You can control who has access to this feature as required to prevent any misuse. 

At Entgra, we always strive to offer our customers the best possible UEM experience. Do browse through our blogs and documentation to learn all about our products and feature updates.  We even have an Entgra UEM evaluation option available for new and trial users.
If you have any questions, we’re here to help. Feel free to reach out to us for assistance through the Entgra support portal.

Streamlining Device Management With Entgra UEM: Trigger Operations Simultaneously Across Your Device Fleet

Blog, MDM, Tech / By / / , , ,
Photo by Daniel Romero on Unsplash

Did you know Entgra UEM has a feature that enables you to trigger operations simultaneously in device groups?  Thanks to this feature, you can execute multiple commands across a group of devices all at once with a simple click.

We will discuss how this feature saves you time and resources, making device management more efficient.

Say goodbye to manual device-by-device actions

As an IT administrator, you no longer have to perform repetitive tasks on individual devices manually. You can now centralize device management with Entgra UEM. 

Our UEM feature gives you the ability to group devices together based on various criteria such as their operating system (OS), enrollment mode, location, or any other specific need. This flexible grouping mechanism allows for a more tailored approach to device management.

Once your devices are organized into groups, you can effortlessly trigger desired operations and apply them simultaneously to all devices within the group. There is no necessity to perform tedious, repetitive tasks on individual devices; instead, you can experience the efficiency of executing commands across multiple devices in one go. 

Unlocking hidden perks

  • Enhanced security and compliance

With this feature, you can take immediate action across a specific group of devices. Whether you are locking devices, changing lock codes, clearing passwords, or performing enterprise wipes, you can swiftly mitigate security risks and address policy violations, keeping your organization protected. If you have a large device fleet, this will be especially helpful.

  • Efficient deployment of updates and applications

Deploying applications or pushing updates to a large number of devices can be a tedious task. Entgra UEM simplifies this process by enabling you to upgrade the firmware across device groups simultaneously. This ensures seamless application availability and software updates, boosting productivity and reducing manual effort.

  • Remote troubleshooting and support

Imagine an IT support team responsible for troubleshooting and resolving issues across a diverse device fleet. You can now support personnel remotely to trigger actions such as reboot, file transfer, or device information retrieval across a group of devices simultaneously. This streamlines the support process, reduces downtime, and improves end-user satisfaction.

  • Bulk actions for device configuration

Trigger operations such as ringing devices, sending messages, applying configurations on apps, or muting devices in bulk, ensuring uniformity and ease of management. This capability enhances operational efficiency and reduces configuration errors.

Check out this short video to learn more about how effortlessly this feature works:

Entgra UEM empowers your organization’s productivity by offering you extensive Mobile Device Management (MDM) features.

Visit our product documentation to learn more. We invite you to experience the capabilities of the latest product version, Entgra UEM 5.2, with our Try-It-Now feature.
If you have any questions or require assistance, please do not hesitate to contact us via our Entgra support portal.

Unlocking the Power of Personalization With Entgra UEM 5.2’s Per-Tenant Theming Feature

Leave a Comment / Blog, MDM, Tech / By / / , , ,

Photo by Tirza van Dijk on Unsplash

The recently released Entgra UEM 5.2 gives you an exciting new feature – per-tenant theming.

With per-tenant theming, Unified Endpoint Management (UEM) administrators now have the power to elevate customization and branding within their tenant environments. This feature enables you to personalize UEM platforms and define unique visual themes and brand identities for different sub-organizations or client groups. 

In this blog, we’ll explore how Entgra UEM 5.2 will help you to strengthen your brand presence with per-tenant theming.

Understanding per-tenant theming and its importance

Per-tenant theming is a must-have feature for multitenant UEM environments where multiple organizations or teams use the same console. It helps to create a more intuitive experience for each tenant. Whether you’re in a multitenant environment or simply want to reinforce your organization’s branding, per-tenant theming can help you achieve what you want. 

Each tenant or client can customize the user interface (UI) by incorporating branding elements and creating an interface that reflects their unique identity and style. This means that each tenant can have a unique interface and user experience, while still being managed from a single console.

Without per-tenant theming, tenants may have difficulty differentiating their workspace from that of other tenants, resulting in confusion and decreased productivity. Entgra UEM 5.2 helps you to ensure that each tenant’s needs are met by providing each tenant with their own unique theme, ultimately leading to increased satisfaction and productivity.

If you’re looking to create a better user experience for your tenants, per-tenant theming is the way to go.

How it works

Per-tenant theming works by enabling you to create different themes for each tenant of the UEM solution. You can easily customize the UEM console with unique logos, favicons, app titles, etc., giving each tenant a distinct look and feel that represents your organization’s brand identity. Additionally, you can customize the branding of your tenants based on sub-organizations, teams, or any other categories you prefer to use. 

Let’s say you have a multinational corporation (ABC Tech) with several workspaces in different regions and each region must be reflected in the UEM console. With per-tenant theming, you can customize the console according to each region. This means the UEM console can then display the appropriate theme for each region based on their login credentials. This saves time and resources for you and provides a better user experience for your employees in each region. Employees will instantly connect with the platform, resulting in increased engagement, productivity, and overall satisfaction.

https://youtu.be/XsxNFJp2aos

Other benefits of per-tenant theming

Apart from creating better user experiences, per-tenant theming offers you other benefits.

  • Stronger brand identity

Your brand is everything. Per-tenant theming empowers you to showcase it. Incorporate your company logo, add titles, and design the UEM platform to match your unique identity. With this level of customization, every endpoint interaction becomes an opportunity to reinforce your brand, build trust, and leave a lasting impression on your employees and clients.

  • User-friendly customizations

Implementing per-tenant theming within a multitenant UEM environment is a breeze. With just a few clicks, tenants can upload their brand assets, change logos, and make design modifications without needing extensive technical expertise. It’s a user-friendly process that puts the power of customization in the hands of organizations of all sizes.

  • Consistency

By maintaining consistency in per-tenant theming, organizations can create a unified and cohesive experience for their users. With a consistent look and feel across different tenants, you can create a sense of unity that reflects your organization’s values.

  • Flexibility for sub-organizations and teams

Multitenant UEM environments often consist of sub-organizations and teams with diverse needs. Per-tenant theming caters to this diversity by customizing the UEM experience for each entity. It’s all about giving your sub-organizations and teams the flexibility to create an interface that aligns with their specific requirements.

If you’re ready to take your UEM experience to the next level, consider exploring the per-tenant theming feature in Entgra UEM 5.2 and see how it can benefit you!

To learn more about the latest Entgra features, visit our product documentation. And do not forget to try out the product with our Try It Now feature to experience the latest features and updates.

We are always happy to answer any questions you may have. Reach out to us here.

A Simpler Device Enrollment Experience for Entgra Cloud Users With Entgra UEM 5.2

Leave a Comment / Blog, MDM / By / / , , ,
Photo by Pixabay on Pexels

We are pleased to announce the release of Entgra UEM 5.2, giving you a more streamlined, hassle-free device onboarding experience – especially if you are a new or trial Entgra Cloud user who is onboarding your first device.

At Entgra, we are always listening to our customers and striving to improve our products. We found that some users encountered challenges during the device enrollment process when analyzing feedback. Furthermore, we wanted to shorten our support response times. 

The result is Entgra UEM 5.2. You can now enjoy a guided enrollment experience, eliminating any confusion along the way. And if you still need help or guidance, our support team is just a live chat message away, ready to answer your questions as quickly as possible. In addition, you can expand your brand identity and experience a more scalable device location tracking facility with the latest version of our product. 

In this blog, we will explain how these exciting new features and improvements will enhance your device onboarding experience.

What you need to know about Entgra UEM 5.2

Whether you are a new user or an existing customer, we designed Entgra UEM 5.2 to ensure that your experience with our platform is smoother and more efficient than ever before. Here’s a detailed compilation of the feature enhancements in this version:

  • Self-guided enrollment

This provides a wizard-based, simple, and clear direction for the best mode of enrollment suited to your requirements. You can complete the enrollment process easily and without any assistance from our end. This feature eliminates the guesswork for users who are unsure about which enrollment mode to choose – a major concern for many of our customers. 

  • Guided UI tour

Navigate Entgra UEM easily and discover all available features/functionality quickly. This feature is particularly useful for new users who may be unfamiliar with the product or for those who want to explore new features you may not have used before. By providing a guided tour, we can ensure you have a seamless onboarding experience and gain the most from Entgra UEM. 

  • Live chat 

You now have instant access to our support team so that we can address your queries/concerns as early as possible. This feature ensures that customers receive prompt and efficient support when they need it. This is particularly helpful for evaluation users who may have questions or need assistance during their trial period.

  • Disable unwanted apps 

Disable unwanted apps from your device launcher without having to block list them. This feature helps to keep your device launcher clean and organized, making it easier to find and access the apps you need. This can help to improve productivity and save time in the long run too.

  • Agent labeling 

Label your device agent as required by simply sending a notification to the device. This is helpful for customers who have many devices and need to keep track of them efficiently. Yet another time consuming task is eliminated as you now have a more convenient way to label your device agent and there is no need to enter the label for each device manually.

  • Per tenant theming

Personalize the Entgra UEM to match your brand identity. You can easily customize the appearance of your Entgra UEM platform, giving each tenant a distinct look and feel that represents your organization’s brand theme. Customize branding assets such as logos, favicons, app titles, etc. to create a seamless and unified experience for your tenants.

  • Device tracking enhancements

Leverage the benefits of Traccar with its latest enhancements. You have complete visibility and control over your devices in a more scalable way. Track them in real-time on a map and monitor their movements. The new improvements also enable you to obtain your devices’ historical activities, adding an extra layer of security to Entgra UEM and providing valuable insights into your device fleet.

Learn more

We are committed to delivering the best possible experience for our customers and hope you find this latest release valuable and user-friendly. 

To learn more about Entgra UEM 5.2, visit our product documentation. And do not forget to try out the product with our Try It Now feature to experience the latest UEM features.

We are always happy to answer any questions you may have. Reach out to us here.

The Digital Pedagogy Learning Curve: Education 4.0, MDM, and Opportunities

Leave a Comment / Education, MDM, Tech / By / / , , ,
Photo by Dom Fou on Unsplash

We have come a long way since the times when education was a privilege for the chosen elite, attainable by virtue of class, religion or gender. And a long time from when sacred scriptures had to be memorized by a trusted few to transfer knowledge from one generation to the next. 

The ancient Greeks had laws in place to ensure that formal education was primarily for males and for non-slaves. In early Mesopotamia, only the royal offspring and sons of the rich or the professionals had the entitlement to be schooled, i.e., access to reading and writing. The Chinese resorted to rote memorization for teaching over 40,000 characters in their language.

In the light of such absurdities, today we are in a position to pat our own backs gleefully for being able to read ridiculous ancient teaching practices leisurely. We are also able to grasp the fact of our learning habits, too, having leapfrogged tremendously from etching on wax tablets and oral recitals to browsing content in our devices conveniently today. 

Given the enormity of the knowledge we have amassed and hoarded in numerous tricky technical formats in the present day, what is required of the sentient being now is the aptitude with which to retrieve and apply just the right resources for the problem at hand. The finesse of crafting the best with what we’ve got. The learner’s armor today, in that sense, is very much personalized to the individual, in how and what works best for each individual. 

Education 4.0

The evolution of digital pedagogy has been rapid and unprecedented. And definitely expedited by the pandemic.

We have now entered an era of innovation-driven, immersive learning experiences aided by digitized tools and techniques for effective knowledge retention and application. Today’s students are digital natives in every sense of the word – they are exposed to digital technologies at a very young age and understand how to use them, often in a very sophisticated manner.

In an ideal flipped classroom that we are headed to, the students embark upon actual problem-solving during the class hours, while reading up on theory and learning lessons have been moved out of the scope of the classroom. Students can watch lectures online, download relevant notes, and discuss/explore their ideas through online forums or discussion groups. This type of blended learning strategies reinforces active student engagement and knowledge application within the classroom.

Progression of education from 1.0 to 4.0:

Education 1.0 > Education 2.0 > Education 3.0 > Education 4.0

In that sense, Education 4.0 is a jump-start from its version 1.0, naturally called for, and vastly aided by the technological advancements of its counterpart, the fourth industrial revolution. Industry 4.0 has thrust us with smart technology, Artificial Intelligence (AI), big data, Virtual Reality (VR), Augmented Reality (AR), and robotics. 

We must now shift our focus to empowering the next generation of learners, harnessing the culled knowledge with advanced technology for betterment – ideally in accordance with our Sustainable Development Goals for education [SDG 4]

Are we there yet?

Education 4.0 involves the use of tablets, laptops, smartphones, and various other devices as supportive tools for learning. Aimed at instilling the 4Cs the century calls for, our students are now being trained to think critically, make the most of their creativity, and communicate and collaborate effectively with their peers.  With the students having a big say in the how of it today, learning has become a highly personalized experience to be indulged in from anywhere, at any time. 

Such a transformation calls for an equally elaborate and sophisticated response from  educational institutions.  These institutions must be prepared to address challenges that arise with infrastructure, services, and facilities for students and teachers alike.

Visionary institutes like the Avinya Academy already have programs designed for empowering the next generation student that extend beyond the required skill sets – these students are equipped with the knowledge to be proficient in life and career fundamentals the future calls for.

Riding on the waves of the latest trends in tutelage, academies must incorporate and leverage progressive technology to provide the fitting educational foundation for these self-paced learners so that they can become the global digital citizens of tomorrow. 

Device strategies for educational institutions

Cyber-physical learning curricula comprise course work requiring interactive, immersive learning experiences using varied e-learning tools and techniques. Possessing one’s own device is only the starting point here for the exciting escapade that awaits the learner. As such, academic institutions are better positioned to identify the exact student requirements and address the demand justifiably without calling for unwarranted problems. 

Most academic institutions today provide students with centrally administered mobile devices. A strategic plan for effective device management customized to the institute’s guidelines can help manage entire fleets of devices effortlessly.

Entgra’s comprehensive Mobile Device Management (MDM) solutions present purpose-built plans for educational institutions. With its centralized device and unified endpoint management capabilities, the solution enables multiple integration options with third-party platforms.

Reliable Identity and Access Management (IAM) features are imperative for an impregnable, secure Learning Management System (LMS). With our MDM suite’s controlled access permissions, Single Sign On (SSO) and authentication policies, IT administrators can securely onboard large numbers of devices and users swiftly. With a strong foothold on securing privacy and sensitive data, Engtra MDM enables remote locking/wipe-off when subject to security breaches. 

These are some of the features we support presently:

For comprehensive device strategy solutions customized to suit your academy, do reach out to us at https://entgra.io/contact-us/, and we shall be happy to help you gear up. 

Additional reading resources

Configuring Asgardeo as an External IDP With Entgra MDM Using OIDC

Leave a Comment / Blog, IoT, MDM / By / / , , ,
Photo by Dan Nelson on Unsplash

Entgra MDM is a unified platform for developing, managing, and integrating Unified Endpoints (UEM), Enterprise Internet of Things (IoT), and Enterprise Mobility Management (EMM).

Asgardeo is an IDaaS developed by WSO2. It is a developer-friendly platform for managing user identities and accessing management seamlessly. This blog will explain the configurations that you need to do on Asgardeo and Entgra MDM. 

What is an external IDP?

In a nutshell, an external identity provider is a service that manages and stores user identities. It provides authentication and authorization services to other applications and services. Although Entgra MDM has an in-built identity server that can leverage all identity and access management (IAM) related services, it also provides flexibility to developers as they can connect with external IDPs.

Configuring Asgardeo

First, create an Asgardeo account and the rest is easy. Use the following link to sign up.

Creating an organization

The concept of organization is something similar to the term tenant of WSO2 Identity Server. Create an organization by clicking on the dropdown menu on the top-left corner of the page.

This will prompt a simple form where we have to enter the name of the organization we are trying to create. (Note: this will allow only simple alphabetic characters and does not support other numerical, special characters or capital letters.)

For the purposes of this blog, I’ve created an organization named “devorganization”. Once the organization is set, create a new  OIDC application.

Creating a new OIDC application

Click “Develop” on the top menu of the Asgardeo console and it will take you to the following page.

Then click on the “New Application” button and choose “Standard-based application”.

Give a name to the application and make sure to choose OIDC as the protocol. Check “Management application” if the application needs to access any management APIs of the organization. Finally, click on “Register” to create the application.

Inside the application settings, go to protocols and update the grant types as follows:

Add https://localhost:9443/commonauth as the Authorized redirect URL. This is the URL to which the Asgardeo will redirect after completing authentication.

Creating new custom user-attributes

When using external IDPs, although the users will be stored inside the external IDP, they might have to be provisioned inside Entgra MDM using just-in-time provisioning (JIT). Map attributes such as username, role, etc. with the local attributes. To create a new attribute, click “Manage” on the top menu and then navigate to the attributes section.

Click on “Attributes” and then proceed to “New attributes” to add a new attribute. Create a couple of attributes for username and role, namely the “asgardeo-username” and “asgardeo-role”.

After creating the attributes, it will redirect you to the configuration page of the attribute. Under this configuration, check the two configurations below and click on the update button to save the configurations.

These two configuration will enable the display of these attributes in the user profile and make them mandatory.

Configuring the scopes

Configure the scopes to map the above attributes against “openid” scope, so that these attributes will pass during JIT provisioning. Under the “Manage” section, click on “Scopes”.

Click the edit icon of the “Open ID” scope and then click the “New Attribute” button inside it to add an attribute to this scope.

Check the “Asgardeo Username” and “Asgardeo Role” attributes and click on the “Save” button

Go to the created application and edit the user attributes as follows and click “Update” to save these changes:

Creating a new user account

You must then create a new user account to test the Asgardeo authentication flow. Under the “Manager” section, click on the “Users” section to view the user management page. Click on the “Add User” button to create a new user.

Create a new user by filling out the following fields along with a temporary password.

After creating the user account, go to the user’s profile and update the attributes that were created earlier and click on the “Update” button to save the changes.

Changing the subject claim of Asgardeo to username

By default, the User ID is set as the subject claim in Asgardeo. Entgra MDM will be looking for a username under the subject claim of the ID token. Therefore, we might have to update the subject claim of Asgardeo using their management APIs. Invoke the following APIs using the CURLs provided in the given order to change the subject claim.

Generate an access token using the client credentials of the application.

curl --location --request POST 'https://api.asgardeo.io/t/<organization_name>/oauth2/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'grant_type=client_credentials' \
--data-urlencode 'client_id=<client_id>' \
--data-urlencode 'client_secret=<client_secret>' \
--data-urlencode 'scope=internal_application_mgt_view internal_application_mgt_update'

Search for all the applications under the organization and find the application-ID of the application you have created.

curl --location --request GET 'https://api.asgardeo.io/t/<organization_name>/api/server/v1/applications' \
--header 'Authorization: Bearer <access_token>'

Retrieve the application details using the above application-ID.

curl --location --request GET 'https://api.asgardeo.io/t/<organization_name>/api/server/v1/applications/<application_id>' \
--header 'Authorization: Bearer <access_token>'

Patch the application by changing the sub-claim to asgardeo_username. Change the values of the claim mappings and requested claims, based on the response received in step 3.

curl --location --request PATCH https://api.asgardeo.io/t/<organization_name>/api/server/v1/applications/<application_id>' \
--header 'Authorization: Bearer <access_token>' \
--header 'Content-Type: application/json' \
--data-raw '{
   "claimConfiguration": {
       "dialect": "LOCAL",
       "claimMappings": [
           {
               "applicationClaim": "http://wso2.org/claims/asgardeo_username",
               "localClaim": {
                   "uri": "http://wso2.org/claims/asgardeo_username"
               }
           },
           {
               "applicationClaim": "http://wso2.org/claims/asgardeo_role",
               "localClaim": {
                   "uri": "http://wso2.org/claims/asgardeo_role"
               }
           }
       ],
       "requestedClaims": [
           {
               "claim": {
                   "uri": "http://wso2.org/claims/asgardeo_username"
               },
               "mandatory": true
           },
           {
               "claim": {
                   "uri": "http://wso2.org/claims/asgardeo_username"
               },
               "mandatory": true
           }
       ],
       "subject": {
           "claim": {
               "uri": "http://wso2.org/claims/asgardeo_username"
           },
           "includeUserDomain": false,
           "includeTenantDomain": false,
           "useMappedLocalSubject": false
       }
   }
}'

Configuring Entgra MDM

So far we have completed the Asgardeo configuration successfully. Now let’s move on to configuration of Entgra MDM.

Creating a new user role

To explore various features of Entgra’s web applications, a user might need certain permissions. You have to create a new role for that and assign a few permissions. Inside the carbon console, click on “Add” under the “Users and Roles” section and then click on “Add New Role”. Let’s create a role called “test-role” and then click “Next” to add permissions.

You can now see a permission tree with a list of permissions. Click on the “device-mgt” permission and it will choose the child permissions automatically.

Adding a new Identity Provider

Log into the carbon console of Entgra MDM via https://localhost:9443/carbon and click on “Add” under the Identity Provider sections on the left vertical menu. You will see the following page and can configure the basic configuration as shown below:

Configure the “Claim Configuration” as shown below. Here we are mapping the Asgardeo Role attribute with our internal role claim.

Configure the “Role Configuration” as shown below. We are trying to map the “Asgardeo Role” attribute value against an internal role named “Internal/devicemgt-user” that is already configured inside the product.

Configure the” Federated Authenticators” as shown below. Replace the client-id and client-secret with your Asgardeo application’s credentials.

The endpoints are as follows:

Authorization Endpoint URL: https://api.asgardeo.io/t/devorganization/oauth2/authorize
Token Endpoint URL: https://api.asgardeo.io/t/devorganization/oauth2/token
Callback URL: https://localhost:9443/commonauth
Userinfo Endpoint URL: https://api.asgardeo.io/t/devorganization/oauth2/userinfo
Logout Endpoint URL: https://api.asgardeo.io/t/devorganization/oidc/logout
Additional Query Parameters: scope=openid

Configure the Just-in-Time provisioning to “Silent provisioning”.

Configuring Service Provider

Entgra MDM comes with multiple web applications. Each of these web applications will have a service provider created inside the carbon console. To view the service providers, navigate to the Service Providers page. For this tutorial purpose, let’s try to configure Entgra’s Endpoint Management application with Asgardeo. Edit the Endpoint Management application’s service provider from the Service Providers page. If you cant see the service provider, try to log in to the endpoint management application at least once through the following URL:  https://localhost:9443/endpoint-mgt.

Under the service provider, change the Authentication type to “Federated Authentication” and chose “Asgardeo” as the identity provider.

Voila! Now, we have successfully configured an Entgra MDM application, to SSO with Asgardeo IDaaS. Now you can log in to the https://localhost:9443/endpoint-mgt application using Asgardeo.

I hope that you found this blog useful. If you have any questions, do reach out to us here.

Mobile Device Management for the Education Industry: Addressing the Challenges Introduced by Hybrid Learning

1 Comment / Education, MDM / By /
Photo by Thought Catalog on Unsplash

Hybrid Learning: The New Reality

The COVID-19 pandemic has altered learning modes and these seismic changes will be here with us for the foreseeable future. Schools, universities, and other educational institutions adopted online learning and now, hybrid learning is a growing trend. The effectiveness of online learning is obviously determined by access to devices and learning facilities; it has foregrounded regional disparities and the existing digital divide globally. Yet in spite of these issues, a recent report by the World Bank states that hybrid learning is a permanent fixture of our world. 

Even before the onset of the pandemic, digital pedagogy was on the rise – particularly in universities, where many students access their learning material online. University students either use the university’s devices or their own devices using the university’s internet connection. With the onset of hybrid learning, increasing numbers of educational institutions will deploy devices that will require secure managing and monitoring at scale for successful online learning.

How, then, can educational institutions implement online learning systems that address pressing challenges such as device access and internet connectivity to deliver learning material that aligns with educational goals? By adopting a mobile device management (MDM) strategy.

Mobile Device Management and Hybrid Learning

The students of today are digital natives and they require immersive learning environments. A well-thought out MDM strategy will thus ensure that students and teachers are able to make the best use of digital technologies whilst protecting sensitive information and devices.

Primarily, MDM enables IT teams in educational institutions to manage a range of devices that operate on varying operating systems through one centralized platform. Centralized device management provides many benefits. These include:

  • Manage an unlimited number of devices and scale with minimal interruption to operations to add more devices over time as needed.
  • Customized dashboards featuring data on device usage, technical faults/malpractices, reports, and analytics. This is particularly useful when IT administrators want to ensure that staff and students are using the devices for the intended purposes only, in accordance with the educational institution’s IT policies.
  • Remote monitoring of devices to understand how university devices are used and when replacements are needed. Geolocation features to track devices in case of loss, theft or misplacement. 
  • MDM products provide identity and access management (IAM) features. IT teams can implement single sign on (SSO) and authentication policies to onboard users easily and devices. Moreover, strong identity management capabilities are the cornerstone of securing personal information and sensitive data.
  • Purchase required apps from an app store; block distracting or harmful apps on university owned devices.
  • Administrators can ensure that all devices accessing networking resources are continuously up-to-date with the latest versions of the software (i.e. security patches, virus guards, operating systems, etc.)
  • For younger students, administrators can restrict network access over short periods of time on devices to prevent over exposure to apps or websites that may have a negative impact on these students.

Improved Access to Learning Material and Content Delivery

Once a comprehensive MDM strategy is deployed, educational institutions and teachers can focus on delivering engaging learning material to students. MDM is especially useful for facilitating remote learning. Students who do not have reliable access to WiFi connections can use mobile hotspots on devices. IT admins can ensure that devices are used as hotspots and for educational purposes only. Moreover, multiple users can use the same device as personal data is secured. This is particularly helpful if students are sharing their devices with other family members. Whilst a MDM strategy cannot solve the digital divide entirely, it can help improve access to online learning material where devices are available.

A Checklist For Selecting a MDM Solution

When looking for a MDM solution provider for your educational institution, these are the top features and capabilities that IT admins must consider:

  • Unified Endpoint Management (UEM)/ centralized device management
  • Identity management
  • Integration options with third party platforms
  • Data analytics and dashboards

If you’re getting started with a MDM strategy at your educational institution, do let us know. We’re happy to help you with your requirements.