Adding the Authenticator app to MobileIron Core
Adding the Authenticator app to MobileIron Core makes the app available to distribute to managed devices.
| • | Adding the Authenticator app for iOS to MobileIron Core |
| • | Adding Authenticator for Android AppConnect to MobileIron Core |
| • | Adding Authenticator for Android enterprise to MobileIron Core |
Adding the Authenticator app for iOS to MobileIron Core
Device users can download Authenticator for iOS directly from the Apple App Store. You can also distribute the app as a recommended app through Apps@Work.
Procedure
- In MobileIron Core, go to Apps > App Catalog.
- From the Quick Import drop-down list, select iOS.
- Enter MobileIron Authenticator in the Application Name text box.
- Click Search.
- Select the app from the list that is displayed.
- For MobileIron Authenticator, click Import.
-
Click OK on the pop-up message, and close the Quick Import dialog.
MobileIron Authenticator is now listed in the App Catalog. Information included in the app, such as the name, is automatically configured. All other settings, such as the App Category and whether the app is a free app, are set to default settings.TIP: To view and edit the settings for the app, click on the app name in the App Catalog. - Apply the Tunnel VPN configuration to the app:
- Click on the app name in the App Catalog to edit the app settings.
- In the Per App VPN Settings, apply the Tunnel VPN setting to the app.
- Click Save.
- Select the app to and apply to a label:
- Click Actions > Apply to Label.
- Select the label that represents the iOS devices for which you want the selected app to be displayed.
- Click Apply
Next steps
Create a managed app setting for the Authenticator app. See Creating a managed app setting for the Authenticator app for iOS.
For more information about adding iOS apps to MobileIron Core for distribution, see the MobileIron Core Apps@Work Guide.
Creating a managed app setting for the Authenticator app for iOS
Create a managed app configuration for the Authenticator app to provide additional configurations for the device.
Before you begin
| • | Make a note of the bundle ID for Authenticator. The bundle ID is com.mobileiron.efa.distribution.mica |
| • | Create a plist file with the following content: |
<?xml version="1.0" ?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDsPropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>ACC_URL</key>
<string>https://ACC_URL_HERE</string>
</dict>
</plist>
Replace https://ACC_URL_HERE with one of the following:
| - | If your Access URL is access-na1.mobileiron.com, replace with |
https://access.access-na1.mobileiron.com
OR
| - | If your Access URL is access-eu1.mobileiron.com, replace with |
https://access.access-eu1.mobileiron.com
Procedure
| 1. | In the MobileIron Core Admin Portal, go to Policies & Configs > Configurations. |
| 2. | Click Add New > iOS And macOS > Managed App Config. |
| 3. | Enter the requested information. |
| 4. | Click Save. |
| 5. | Apply to the configuration to the same label to which you applied the Authenticator app. |
For more information about creating a managed app configuration in MobileIron Core, see the "Managed App Config settings that use plists" section in the MobileIron Core Device Management Guide for iOS.
Adding Authenticator for Android AppConnect to MobileIron Core
Upload the MobileIron Authenticator app to MobileIron Core as an in-house app and configure the app to make it available to Android devices.
Before you begin
| • | Ensure that Secure Apps Manager is also installed on MobileIron Core. For the supported Secure Apps Manager (SAM) version for Authenticator, see the MobileIron Access Release Notes. |
| • | Download the MobileIron Authenticator for Android AppConnect from the MobileIron software download site at https://support.mobileiron.com/support/CDL.html. |
| • | This section provides basic information about how to add and configure the Authenticator app for Android AppConnect. For information about AppConnect apps, see the MobileIron Core AppConnect and AppTunnel Guide. |
Procedure
| 1. | In the MobileIron Core Admin Portal, go to Apps > App Catalog > Add+ > In-House. (Prior to MobileIron Core 8.0 go to Apps > App Distribution Library, and select Add App). |
| 2. | Add the apps just as you would any in-house app. |
| 3. | Add Secure Apps Manager (SAM) if you have not already uploaded it to support other secure apps. |
| 4. | After adding the apps, apply the apps to appropriate labels so that they are available to the required devices. |
Next steps
Edit the AppConnect app configuration for Authenticator. See Configuring an AppConnect app configuration for Email+ in MobileIron Core.
| • | For information on adding in-house apps for Android, see “Working with Apps for Android devices” in the MobileIron Core Apps@Work Guide. |
Configuring an AppConnect app configuration for Email+ in MobileIron Core
When you add Authenticator for Android AppConnect, an AppConnect app configuration is automatically created for Authenticator. Edit the automatically-created AppConnect app configuration to add app specific configurations.
| WARNING: | Make sure only one AppConnect app configuration for Authenticator is applied to each device. |
Procedure
| 1. | In the MobileIron Core Admin Portal, go to Policy & Configs > Configurations. |
| 2. | Select the automatically-created AppConnect app configuration for Authenticator for Android, and click Edit. |
| 3. | Select Enable MobileIron Access. |
| 4. | In App-specific Configurations, add the following key-value pairs: |
Key: ACC_URL
Value: https://access.YourAccessCluster.mobileiron.com.
YourAccessCluster is either access-na1 or access-eu1.
Example: https://access.access-na1.mobileiron.com
| 5. | Click Save. |
The automatically-created app configuration has the same labels you applied to the app. You do not need to apply the automatically-created app configuration to a label.
Adding Authenticator for Android enterprise to MobileIron Core
Upload the MobileIron Authenticator app to MobileIron Cloud from the Google Play Store and configure the app to make it available to Android enterprise devices.
Before you begin
Ensure that your MobileIron Unified Endpoint Management (UEM) platform is set up for Android enterprise. Your MobileIron UEM is either MobileIron Cloud or MobileIron Core.
| - | MobileIron Core: See the MobileIron Core Device Management Guide for Android for Work. |
| - | MobileIron Cloud: See the MobileIron Cloud online help documentation. |
Procedure
| 1. | In MobileIron Core, go to Apps >App Catalog > +Add. |
| 2. | Select Google Play from the drop-down menu next to the search box. |
| 3. | In the search box, enter MobileIron Authenticator. |
| 4. | Click MobileIron Authenticator to select the app. |
| 5. | Click Next and then Next . |
| 6. | Choose a distribution option for the app and click Next. |
| 7. | Update the settings in App Configurations as follows: |
| a. | In Install on device, enable Install on Device. |
This is the recommended setup. Install on Device silently installs the app on the devices in the selected distribution option.
| b. | In Promotion, update the promotion settings as needed. |
| c. | For Managed Configurations for Android, click +. |
Enter a name for the configuration.
In the Managed Configurations section:
For ACC_URL, enter https://access.YourAccessCluster.mobileiron.com.
YourAccessCluster is either access-na1 or access-eu1.
Example: https://access.access-na1.mobileiron.com
| 8. | Click Done. |
| 9. | If necessary, update the Tunnel VPN configuration for Android to tunnel authentication traffic from MobileIron Authenticator to MobileIron Access. |
The Tunnel VPN configuration for Android is listed in MobileIron Cloud in Configurations.
| • | See the MobileIron Core Apps@Work Guide for more information about adding Android enterprise apps to the MobileIron Core app catalog. |