MobileIron Threat Defense prerequisites

Before you set up MobileIron Threat Defense, complete the following prerequisites:

  1. Install MobileIron Core.

    See the "Core Installation" section in the On-Premise Installation Guide for information about how to install MobileIron Core.

  2. Purchase an MTD license from MobileIron or a licensed partner. Zimperium licenses, for example, are not valid.

  3. Complete the following prerequisites:

    See the MobileIron On-Premise Installation Guide for more information on required ports and firewall rules.

    • Port 443 in the firewall should be open
    • Allow access to the AppGateway URL
    • Allow access to the Voice network service (VNS) URL
    • Allow access to Apple Push Notification Service (APNS), and Firebase Cloud Messaging (FCM)
    • Obtain an MTD activation token
    • Have the fully-qualified domain name (FQDN) of the Core UEM server
    • Allow access to the App_Config_Spec_File repository URL
    • Allow incoming API calls and modify the ACL configuration for the specific source IPs
  4. Upload your Transport Layer Security (TLS) trust certificate to MobileIron Core (formerly called an MDM certificate). See the "Managing Certificates and Configuring Certificate Authorities" section of the MobileIron Core Device Management Guide.
  5. Obtain a Zimperium management console (zConsole) tenant. For both iOS and Andriod MTD implementations, contact your MobileIron representative to request your unique, encrypted MTD Activation token, or get it from the zConsole.

  6. Request and upload a MDM certificate for iOS, if you have not already done so. In addition, you need to enable iOS MDM support and confirm MDM for an iOS device. For information, see the "Managing Mobile Device Management (MDM) certificates for iOS and macOS" section of the Getting Started with MobileIron Core.

    NOTE: If you are using only mobile application management (MAM)-only iOS devices, skip the MDM-related sections. For more information, see “Managing apps on MAM-only devices” in the MobileIron Apps@Work Guide
  7. Update the device last check-in and policy update time in Core. See the"Managing device compliance checks" section in the MobileIron Core Device Management Guide.
  8. Continue to Enabling MobileIron Threat Defense for Mobile@Work devices.