Setting up Apps@Work for iOS and macOS
iOS device users cannot use Apps@Work by default. You must first set up Apps@Work for iOS by completing the following tasks:
- Set authentication options.
See Setting authentication options for Apps@Work for iOS devices. - Optionally, customize the icon for Apps@Work.
See Apps@Work branding - Optionally, enable users to rate Apps@Work apps.
See Enabling device users to rate and review apps in Apps@Work - Send the Apps@Work web clip to iOS devices.
- See Sending the Apps@Work web clip to iOS and macOS devices.
If you do not complete this step, then iOS devices will not have access to Apps@Work.
Note The Following:
- Because the Apps@Work web clip is deployed like any other configuration, there might be a considerable lag between device registration and the appearance of the web clip.
- As a web clip, Apps@Work is impacted by web content filters, available in supervised devices. Make sure your web content filters do not block access to MobileIron Core. If Core access is blocked, Apps@Work cannot work. For more information, see “Web content filter settings” in the MobileIron Core Device Management Guide.
Setting authentication options for Apps@Work for iOS devices
By default, both certificate-based authentication and HTTP basic authentication are enabled.
Note The Following:
- If neither authentication option is selected, then iOS devices will not have access to Apps@Work.
- When both options are selected, certificate authentication is used. If it fails, HTTP basic authentication is used.
- If only certificate authentication is selected, certificate authentication is used. If it fails, iOS devices will not have access to Apps@Work.
- This setting applies to both the Apps@Work iOS web clip and the Apps@Work container app for iOS.
- The option to use certificate authentication also impacts Android devices, as described in Apps@Work in Mobile@Work for Android.
Before you begin
Change the Apps@Work Port setting in the System Manager if all of the following are true:
- You are using certificate-based authentication for Apps@Work for iOS.
- You have enabled mutual authentication for devices at Settings > System Settings > Security > Certificate Authentication.
- You are using the iOS Apps@Work web clip.
To change the Apps@Work Port setting, see "Port Settings" in the MobileIron Core System Manager Guide.
Procedure
- In the Admin Portal, go to Apps > Apps@Work Settings.
- Under iOS App Storefront Authentication, select one or both of the following:
- Certificate Authentication
- HTTP Basic Authentication (iOS only)
- Clear the authentication options you do not intend to support.
- Click Save.
- “Enabling mutual authentication for Apple and Android devices” in MobileIron Core Device Management Guide for iOS and macOS Devices
- "Port Settings" in the MobileIron Core System Manager Guide.
- Apps@Work in Mobile@Work for Android
Enabling device users to rate and review apps in Apps@Work
You can optionally allow users to rate and review the apps you push to Apps@Work.
Procedure
- In the Admin Portal, go to Apps > Apps@Work Settings.
- Under App Storefront Reviews and Ratings, select Enable Ratings and Reviews for iOS, macOS and Android.
- Click Save.
Malware prevention: App reputation
Sending the Apps@Work web clip to iOS and macOS devices
MobileIron Core sends the Apps@Work web clip to iOS and macOS devices only after you assign the iOS and macOS labels to the web clip, respectively.
| NOTE: | On macOS devices, the Apps@Work web clip is only supported on the Safari web browser. |
Procedure
- In the Admin Portal, go to Policies & Configs > Configurations.
- Select the WEBCLIP configuration type called System - iOS Enterprise AppStore.
- Go to Actions > Apply to Label.
- Select the iOS or the macOS label, or both.
- Click Apply.
Core automatically applies the iOS and macOS labels to the System - iOS Enterprise AppStore SCEP setting, enabling Apps@Work to authenticate with Core.