Cellular machine administration is a cloud-based safety answer that helps IT directors management units remotely and securely. MDM software program is greatest suited to firms with giant deployments of cellular units, similar to BYOD applications.
SEE: BYOD Approval Form (TechRepublic Premium)
MDMs have developed quickly over the previous few years, with new options evolving frequently. At this time’s MDM choices are extra mature than ever and supply a number of distinctive options that make them stand out from their rivals.
On this article, we’ll take a look at six MDM options value trying out. We’ll additionally focus on what makes these merchandise so compelling and why it’s best to think about using one to your firm’s cellular machine administration wants.
What’s an MDM?
Cellular System Administration is a expertise that enables IT directors to handle the configuration and administration of cellular units operating on the company community. You should use it to configure and safe company units, or to deploy apps and companies. The MDM additionally permits IT directors to customise insurance policies for every machine and implement them on customers.
MDM provides IT directors granular management over their workers’ cellular units, whether or not they’re at work or on the street. The MDM answer manages each side of a consumer’s machine, together with safety settings, purposes, insurance policies and way more. It will also be used to offer centralized administration of bodily servers and desktops.
MDM is a typical time period for 2 totally different applied sciences:
- Software program purposes that assist IT departments handle and safe cellular units. You may as well use them to offer centralized administration of bodily servers and desktops.
- A sort of software program that gives distant management and administration capabilities over a corporation’s fleet of cellular units, similar to smartphones, tablets, wearable units and different related units.
Who makes use of MDM?
An MDM answer deployment works greatest for organizations with giant numbers of cellular staff who want entry to firm sources from a number of places all through the world. Many firms use MDMs to handle worker knowledge and productiveness instruments similar to electronic mail, social media and instant-messaging instruments. Some companies additionally use MDM options to handle corporate-owned units similar to laptops or tablets in order that workers can work from wherever on the planet with out worrying about shedding entry to essential enterprise data.
MDM options needs to be utilized by safety groups, cellular operators and IT directors chargeable for the safety of their group’s knowledge. The MDM permits these groups to safe all their workers’ cellular units with a single answer.
Finest MDM options: Our prime 6 picks
There are a number of MDM options obtainable, however not all of them are appropriate for each enterprise or group. Listed here are six that we predict are value trying out.
Citrix Endpoint Administration (previously XenMobile)
This is among the hottest choices, as a result of it’s a full answer that features administration instruments and security measures. It helps Android, iOS units, Mac and Home windows PCs.
The Citrix answer gives a complete administration console that permits you to configure insurance policies to your workers, handle cellular machine entry to company knowledge and monitor the well being of your units. It provides options like distant wipe, distant lock, distant wipe from the net, app administration (together with app permissions) and Android utility management (AAC).
With this answer, you possibly can monitor misplaced or stolen units utilizing GPS monitoring expertise. You may as well arrange a neighborhood agent on every machine that can notify you when there’s a problem.
ManageEngine Cellular System Supervisor Plus
ManageEngine Cellular System Supervisor Plus is an enterprise-grade cellular machine administration answer that helps you handle all of your units from a single dashboard. It helps Home windows, Mac, Android and iOS units over WiFi or mobile networks.
The app additionally permits for straightforward deployment of apps without having for extra information on the machine straight from the installer. It consists of instruments similar to System Management and Lively Listing integration, which can assist IT professionals monitor workers’ units from wherever on the planet utilizing any machine related to the Web.
Jamf Professional is a full-featured MDM answer that features machine administration, utility management, encryption and extra. It really works with iPhone, Android and Home windows units. It provides a complete answer that offers you full management of your cellular units.
It gives an end-to-end answer to handle all features of a tool, together with configuration, safety and purposes. It’s straightforward to put in, configure and handle, which suggests you can begin utilizing it instantly.
Jamf Professional provides a variety of options for each small and enormous organizations. The platform permits directors to handle customers on firm units, together with iOS, Android units, Home windows desktops or laptops. The platform additionally gives distant wipe performance. This enables directors to remotely wipe all knowledge from worker units with out logging into their company community.
One other nice function of Jamf Professional is its skill to handle a number of units by means of its multi-user assist. This function makes it straightforward for directors to assign totally different permissions in order that totally different teams of customers can use them inside a corporation.
The platform additionally provides intensive reporting capabilities in order that directors can see precisely how a lot cash they’re saving by means of their utilization of cellular units inside their group. Jamf Professional is appropriate for each enterprise and shopper environments and can be utilized to implement insurance policies throughout a whole group. This MDM answer works for smaller companies that don’t want all the options supplied by Citrix or ManageEngine options.
Soti MobiControl is an enterprise-class MDM software program that permits you to handle a number of units concurrently from one console interface. The software program comes with a unified answer that permits you to monitor all of your units in a single place and handle them by means of one consumer interface. Soti MobiControl gives full cellular administration options like app set up, configuration administration, safety administration and coverage enforcement for company customers on their smartphones or tablets.
You possibly can deploy Soti’s MDM as a hybrid system with Android Enterprise, which is a mature platform that gives enterprise-level safety and compliance controls for Android units. The corporate additionally provides an enterprise-ready app administration answer referred to as MDM Server Console, which gives distant entry to managed units from an internet browser or cellular machine.
It really works with Home windows, Android and iOS units and is on the market as a cloud-based answer or as a neighborhood package deal in your community. Soti is straightforward to arrange and use, however it has some drawbacks. For instance, it requires some technical information to configure correctly. Additionally, in case you have multiple worker who must entry their firm’s knowledge from their machine, this may be tough as a result of they’ll want totally different insurance policies and profiles.
The excellent news is that Soti provides a free trial, so you possibly can strive it out earlier than buying it. In case you determine that it doesn’t meet your wants, you possibly can cancel at any time with none penalties or charges.
Microsoft has been a pioneer in cellular machine administration for a few years. Microsoft Intune gives an entire end-to-end answer for managing Home windows smartphones and tablets — together with deploying apps, configuring settings, offering compliance reporting, and monitoring exercise throughout all purposes in your machine — at scale throughout a number of organizations.
It’s also one of many best-known MDM options with a variety of integrations and assist for each on-premises and cloud deployments. Intune provides an entire package deal of companies that features an MDM product, a cellular utility administration answer, enterprise mobility administration (EMM), utility provisioning, an IT admin console and extra.
It provides pre-configured machine photographs which you could customise to satisfy your group’s wants. The service works with iOS, Android and Home windows units. It additionally helps Android Put on, Apple Watch and Microsoft Workplace 365 native integration for Enterprise.
Hexnode MDM is one other cloud-based MDM answer from Hexnode Software program that enables IT directors to create insurance policies for his or her workers’ cellular units. With this answer, IT directors can management which apps are allowed on units and arrange machine settings similar to display cut-off dates or whether or not a consumer could make calls from a particular machine.
Hexnode MDM is an enterprise-grade cellular administration answer that may handle a number of Android units in giant organizations. It’s an open-source challenge that goals to broaden the capabilities of Android Enterprise by offering assist for different working techniques similar to Linux and Home windows Server. This implies you should utilize it to handle any kind of machine, no matter whether or not it runs Android or not. Hexnode MDM additionally helps a number of purposes like WhatsApp, Telegram and extra.
It additionally helps totally different distributors and a number of variations of Android without delay. The app gives varied security measures like push notifications, distant wipes and extra.
Cellular security measures you want
Not all MDM options are alike. Whereas they share some widespread options, each comes with distinctive options and advantages that make it the most effective answer to your group. That will help you select the most effective MDM answer to your group, we’ve created a listing of options to search for when selecting an MDM.
Information encryption protects your knowledge by encrypting it earlier than sending it by means of the community or storing it on the machine. Solely you possibly can decrypt your knowledge if you need to entry it. Information encryption is on the market in safe Wi-Fi, mobile networks and encrypted inner storage like microSD playing cards and USB drives.
The primary distinction within the cellular security measures between totally different MDM options is whether or not or not they provide encryption companies. In case your group doesn’t require encryption, then it’s not value paying for the premium options of a premium answer. Nonetheless, in the event you want encryption, then an MDM that provides encryption is crucial.
One other important function that differentiates between MDMs is app administration. You possibly can handle some apps individually from their underlying working system. Different apps require full entry to each the OS and their inner elements — similar to databases — so it’s important to know what might be obtainable to handle with every MDM.
In-app buy safety
You should use this function to limit in-app utilization purchases in your machine. It provides you management over what purposes you should utilize for in-app purchases and for a way lengthy. Some apps might even require that customers enter their password earlier than making an in-app buy.
If you wipe an Android machine, all its knowledge is misplaced and reset to manufacturing unit settings, together with all put in purposes, information, bookmarks and the working system itself. You should use this function to wipe a tool remotely if wanted or in case you have forgotten your passcode or sample lock in your cellphone.
This function permits you to give sure apps entry to sure options, in order that they don’t turn into intrusive whereas they’re in use. For instance, if you’d like a specific app to entry your location if you’re utilizing it, you will have to allow it.
This function permits folks with entry to a tool (similar to workers) to lock down particular apps, so solely those that know their passwords can use them. If somebody desires entry to an app however doesn’t know the password, he gained’t acquire entry to the app.
System provisioning is a brand new function in Android 9 Pie that permits you to shortly and simply arrange safety units utilizing an app. It’s a good way to lock down the machine, together with wiping its contents and activating the passcode. System provisioning permits you to create an account tied to a tool in order that solely the consumer can entry it. You may as well use machine provisioning to create a brand new cellphone quantity for every of your units.
You must obtain and set up all updates to safe your cellphone from vulnerabilities. You are able to do this utilizing automated updates or manually. You may as well activate the auto-update function.
To make sure that your apps are up-to-date and safe, it’s best to allow the app deployment function in your cellphone. It should mean you can set up new variations of apps with out shedding knowledge or settings. It additionally gives a central location the place all put in purposes are saved.
Centralized logging permits customers to log occasions, similar to authentication failures, in a centralized place as an alternative of getting all of them written into particular person log information. It makes it simpler for IT professionals and technical assist workers to troubleshoot points involving misplaced or stolen units.
Directors can use this function to get detailed details about the units they handle by means of experiences that embrace machine standing, safety logs and configuration particulars.