Encrypting device logs with your own certificate

You can define a log encryption configuration that enables device users to send encrypted logs to an administrator's email address from their devices. The configuration includes a certificate for encrypting logs and an email address to which encrypted logs are to be sent. Devices sync with MobileIron Core and receive the configuration after you assign the configuration to the relevant labels.

This feature requires:

• Mobile@Work 10.0.0.0 for Android through the most recently released version as supported by MobileIron
• Secure Apps Manager 8.3.0.0 through the most recently released version as supported by MobileIron
• On the security policy, device log encryption must be on.

Related topics 

Device log encryption on Android devices

Before you begin 

Upload a certificate to Core, as described in Certificates settings.

Procedure

1. In the Admin Portal, select Policies & Configs> Configurations.
2. Click Add New and select LogEncryption. The New Log Encryption Setting dialog box opens.

3. Fill in the following:

   Field	Description
   Name	Enter a name for the configuration.
   Email Address	Enter an email address to which encrypted logs may be sent. The To: field of the email is automatically filled with this address. If you do not enter an email address here, the device user fills in the To: field.
   Certificate	From the drop-down list, select a certificate you have already uploaded to Core.

4. Click Save.
5. On the Configurations page, select the configuration you just defined.
6. Click Actions > Apply to Label, and select the label to which you want to apply the log encryption configuration.