Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsAndroidBYOD Policies and Solutions
View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
Sparky787

69 posts

Master Geek
+1 received by user: 2


  #944106 2-Dec-2013 13:43
Send private message

nathan: if all you need to provide is corporate email/contacts/calendar is Exchange ActiveSync enough?

or are you trying to stop people doing stuff with their email once its on the device

or trying to stop malware running on Android from interacting with their email or?


Both. Because these are personal devices as well, we have to be sure how to do that.

ActiveSync is not enough because if we open it for these devices, it requires encryption on the device.
The only way to enforce encryption, is to use a MDM solution.

Also, we needed to have a standardised app for email (not native client), so we use MDM client to push that out. 




Sparky 



nathan
5695 posts

Uber Geek
+1 received by user: 1630
Inactive user


  #944206 2-Dec-2013 16:10
Send private message

I guess I'm still a little confused about what it is that you're asking, what it is you want help with

EAS can enforce encryption

But you rely on the device not lying back to Exchange (at some point somewhere you need to trust something)

Which standardised app for email did you mean? Touchdown?

I believe Touchdown can actually encrypt just itself and its email, and require a PIN when you go into just that app, rather than enforcing encryption and PIN at the device level

Sparky787

69 posts

Master Geek
+1 received by user: 2


  #944210 2-Dec-2013 16:18
Send private message

You are correct about touchdown - However our Security Team was not happy that ONLY email is encrypted with Touchdown - not Contacts and Calendars as well.

Are you sure forced Encryption is possible on ActiveSync? I was not aware this was possible?




Sparky 



nathan
5695 posts

Uber Geek
+1 received by user: 1630
Inactive user


  #944219 2-Dec-2013 16:37
Send private message

EAS can enforce encryption before it allows a connection

Android supports this, but I don't believe it got this until 3.0
http://developer.android.com/about/versions/android-3.0-highlights.html#enterprise

Maybe your devices are 2.x?

My 4.x devices (Nexus 7, Nexus 7 2013 and Nexus 5) are synching against Office365 with encryption turned on fine

Sparky787

69 posts

Master Geek
+1 received by user: 2


  #944239 2-Dec-2013 16:41
Send private message

The devices we have tested with to date are 4.x at least. We will need to set a minimum version for policy sake so we are not dealing with ancient technology.

I will look further into this - as testing is driving us mental.




Sparky 

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright