Authentication using Trusted Front-End

You can configure the Standalone Sentry to be deployed behind a proxy, for example, an Apache or an F5 server. This allows for SSL termination to occur in front of Standalone Sentry even when using certificate-based authentication.

By terminating SSL in the DMZ, Standalone Sentry enables an added layer of security, as well as accommodates the DMZ firewall policies.Leveraging this configuration requires:

•

Setting up an Apache or F5 proxy to front-end the Standalone Sentry.

•

Additional minor changes to references to hostname in some profiles.

Contact MobileIron Professional Services or a MobileIron certified partner to set up this deployment.