|
|
Enrolling devices is the first step in managing mobile devices. In order to enroll devices, every user should be configured with user authentication level. There are three types of authentication, which are described as follows:
An one time password will be generated and sent to the user, along with the enrollment invitation. User should use the OTP to enroll their mobile device. The email invitation is valid only for 7 days and can be used only once. If the Administrator sends an enrollment request with an OTP, that can be used only once. OTP cannot be used for enrolling more than one device.
Active Directory/Azure password is used to authenticate the user while enrolling the device. Active Directory/Azure user name and password are used only for enrollment purpose, which means any changes made to the Active Directory/Azure password does not have impact on managing the mobile devices. Administrators should use this type of authentication, if they wanted to enable Self Enrollment. Users will use the domain credentials while using Self Enrollment process.
This is considered to be the most secure mode of enrolling the mobile devices. Administrators can use this mode to ensure that users use their domain credentials and the OTP which has been sent along with the enrollment invitation. This mode cannot be used for Self Enrollment, even if authentication type is enabled as "Two Factor Authentication", users will have to use their Active Directory/Azure credentials while enrolling Windows devices. Two factor authentication is not supported for devices running Windows operating system.
The above mentioned authentication types are used only while enrolling the devices. Any changes made the authentication type will have an impact on the devices which will be enrolled henceforth and it does not affect on the enrolled devices. Follow the steps mentioned below to configure the authentication that should be performed while enrolling the device;
On the web console, click Enrollment
Under Enroll click Authentication
Choose the type of Authentication
Click Save
You have successfully configured the authentication level for the device.
| See Also: | Enroll iOS Devices, Enroll Android Devices, Enroll KNOX Devices, Enroll Windows Devices, Self Enrollment,Customize ME MDM App |
|
|