MobileIron

1 Introduction

MobileIron Sentry is a key component of the MobileIron Platform. Sentry is an in-line gateway which manages, encrypts, and secures traffic between a mobile device and back-end enterprise systems.

MobileIron Sentry interacts with a company’s ActiveSync server, such as a Microsoft Exchange Server. The ActiveSync server allows employees to access email, contacts, calendar, tasks, and notes from their mobile devices. MobileIron Sentry, with input from the Virtual Smartphone Platform (VSP), protects the ActiveSync server from unauthorized access. MobileIron VSP provides end-to-end security and management for apps, documents, and devices. IT can now establish a virtual perimeter to secure business data without compromising the privacy of data, even on employee-owned smartphones and tablets.

A KEMP LoadMaster can be used to load balance the MobileIron workload.

1.1 Document Purpose

This document is intended to provide guidance on how to deploy MobileIron with a KEMP LoadMaster. The KEMP Support Team is available to provide solutions for scenarios not explicitly defined.

1.2 Intended Audience

This document is intended to be used by anyone deploying MobileIron with a KEMP LoadMaster.

2 MobileIron Templates

KEMP have developed templates containing our recommended settings for MobileIron. These templates can be installed on the LoadMaster and used when creating each of the Virtual Services. Using a template automatically populates the settings in the Virtual Services. This is quicker and easier than manually configuring each Virtual Service. If needed, changes can be made to any of the Virtual Service settings after using the template.

Released templates can be downloaded from the Templates section on the KEMP documentation page: http://kemptechnologies.com/documentation/.

If you create another Virtual Service using the same template, ensure to change the Service Name to a unique name.

For more information and steps on how to import and use templates, refer to the References.

For steps on how to manually add and configure each of the Virtual Services, refer to the Create MobileIron Virtual Services section.

MobileIron Templates.png

3 Create MobileIron Virtual Services

Refer to the two sections below for step-by-step instructions on how to create and configure the MobileIron Virtual Services.

3.1 Create a MobileIron Sentry Virtual Service

The following lists the steps involved and values required to set up a MobileIron Sentry Virtual Service:

1. In the main menu of the LoadMaster Web User Interface (WUI), go to Virtual Services > Add New.

Create a MobileIron Sentry.png

2. Enter a valid IP address in the Virtual Address text box.

3. Enter 443 in the Port text box.

4. Enter a recognizable Service Name, for example MobileIron Sentry.

5. Click Add this Virtual Service.

6. Configure the settings as recommended in the following table:

Section

Option

Value

Comment

Standard Options

Transparency

Disabled

 

 

Extra Ports

8443, 9090

Click Set Extra Ports.

 

Persistence Mode

Source IP Address

 

 

Timeout

1 Hour

Click Set Idle Timeout.

  Scheduling Method Weighted Response Time  
  Idle Connection Timeout 900 Click Set Idle Timeout.
Advanced Properties Add a Port 80 Redirector VS https://%h%s Click the Add HTTP Redirector button.

Real Servers

Real Server Check Parameter

URL

HTTPS Protocol

/mics

Click Set URL.

 

3.2 Create a MobileIron VSP Virtual Service

The following lists the steps and values required to set up a MobileIron VSP Virtual Service:

1. In the main menu of the LoadMaster Web User Interface (WUI), go to Virtual Services > Add New.

Create a MobileIron VSP Virtual.png

2. Enter a valid IP address in the Virtual Address text box.

3. Enter 443 in the Port text box.

4. Enter a recognizable Service Name, for example MobileIron VSP.

5. Click Add this Virtual Service.

6. Configure the settings as recommended in the following table:

Section

Option

Value

Comment

Standard Options

Transparency

Disabled

 

 

Extra Ports

8080, 8443, 9090, 9997

Click Set Extra Ports.

 

Persistence Mode

Source IP Address

 

 

Idle Connection Timeout

1 Hour

Click Set Idle Timeout.

  Scheduling Method Fixed Weighting  
  Idle Connection Timeout 1800 Click Set Idle Timeout.
Real Servers

Real Server Check Parameter

HTTPS Protocol Click the Add HTTP Redirector button.

 

URL

/mics

Click Set URL.

 

References

Unless otherwise specified, the following documents can be found at http://www.kemptechnologies.com/documentation.

Virtual Services and Templates, Feature Description

Last Updated Date

This document was last updated on 02 November 2017.

Was this article helpful?

0 out of 0 found this helpful

Comments