Key features for iOS devices and Android devices
| Feature | Description |
|---|---|
|
Advanced management |
The Universal Device Service console allows you to fully manage iOS devices and Android devices, Universal Device Service components, administrator accounts, and device controls. |
|
Help desk management |
BlackBerry Management Studio allows you to perform basic management tasks for iOS devices and Android devices, manage licenses, and view reports of your system. |
|
Manage work information separately on a device |
Secure Work Space for iOS and Android is a containerization, app wrapping, and secure connectivity option. It ensures that personal and work information and apps are kept separate on devices by creating a personal space and a work space and providing full management of the work space. You can choose whether you want control of the work space and personal space, or control of the work space only. |
|
Manage work apps and work space apps |
On all managed devices, work apps are apps that your organization makes available for its users. You can specify whether apps are required on devices, and you can view whether a work app is installed on a device. On work space-enabled devices, work space apps are work apps that the work space secures with additional protections. Work space apps are secured and separated from personal apps and data, and include an integrated email, calendar, and contacts app, an enterprise-level secure browser, and secure document viewing and editing. A work space app can also be an internal app that you secure and send to a work space-enabled device. |
|
Consolidate ports for device traffic |
Secure connectivity increases network security for work space-enabled devices by sending all device traffic from BlackBerry Enterprise Service 10 through the outbound-initiated ports 3101 and 443. This feature allows you to avoid opening a direct connection from within your organization's firewall to the Internet for device management and third-party applications such as the messaging server, certification authority, and other web servers or content servers. |
|
Enforce your organization's requirements for devices |
You can create a compliance profile to help enforce your organization's requirements for devices. You can send a notification to users to ask them to meet your organization's requirements or you can limit users' access to your organization's resources and applications, delete work data, or delete all data from the device. You can create a compliance profile for the following conditions:
|
|
Certificate-based authentication |
You can send certificates to devices using certificate profiles or SCEP profiles. These profiles help restrict access to Microsoft ActiveSync, Wi-Fi connections, or VPN connections to devices that use certificate-based authentication. This feature also helps you control Microsoft ActiveSync, Wi-Fi connections, or VPN connections on devices because the Universal Device Service is designed to automatically remove profiles and certificates when a device violates one of the predefined compliance conditions (for example, compliance conditions for jailbroken devices or rooted devices). Certificate-based authentication does not require a proxy server between the device and your organization's messaging server. |