Mobile device requirements for using derived credentials

To use a derived credential on a mobile device:

  • The device must be an iOS or Android device.

  • The device must be registered to Ivanti EPMM.

  • The device must have the Mobile@Work app installed.

  • An Android device must have the Secure Apps Manager app installed.

  • The app that uses the derived credential must be an AppConnect app.

  • The device must have an app that obtains derived credentials from a derived credential provider. This app is known as a derived credential app. The required app depends on the derived credential provider and device platform.

The following table shows the derived credential providers that Ivanti EPMM supports on iOS and Android, and the required derived credential app.

Table 3.   Derived credential app required for each provider and device platform

Derived credential provider

Device platform

Derived credential app

Entrust

iOS

PIV-D Manager app for iOS

Entrust

Android

PIV-D Manager app for Android

DISA Purebred

iOS

PIV-D Manager app for iOS

Intercede

Android

Provided by Intercede

Other

iOS

A third-party derived credential app for iOS created specifically for the derived credential provider. This app is built with the AppConnect for iOS SDK using Ivanti-provided APIs.