Transcription
AT&T Unified Endpoint ManagementMobileIron Core from AT&TUnlock the benefits ofmobility to work faster,better, and smarterPotential benefits Mac OS, Windows 10, iOS, andAndroid management available Multi-OS Security Effective data security andcompliance Secure the mobile applifecycle while preservinguser experience Help Desk and IT reportingand efficiencyFeatures Secure enterprise gatewayThe MobileIron Core fromAT&T solution providesorganizations with theplatform required tomore effectively securemobile apps, content,and devices.Users benefit from nearseamless access to thebusiness processes andcontent on mobile devices oftheir choice, while providing ITthe ability to more effectivelysecure corporate data onboth corporate and personallyowned mobile devices. Byproviding a modern UnifiedEndpoint Management (UEM)solution that supports bothbusiness productivity andIT security requirements,MobileIron Core enablestoday’s enterprises to becomemobile first.The MobileIron Core fromAT&T bundles are specificallydesigned to support the 3main phases of the mobilefirst journey: 1) Device andEmail Security, 2) Mobile Appand Content Enablement, Secure applications and appspecific VPNs Single sign on Enterprise app store Workflow integration Visibility and reporting End-user and self-service viaBYOD portal Access provides conditionalaccess to services from mobileapps and browsers MobileIron Threat Defenseprovides a view into maliciousthreats using one app on iOSand Android devicesPRODUCT BRIEF
AT&T Unified Endpoint ManagementMobileIron Core from AT&Tand 3) Business and IT Transformation. Eachbundle provides essential capabilities requiredto successfully deploy each phase of themobile first journey. With the MobileIron Corefrom AT&T platform, organizations have thefoundation they need to build a mobile securityprogram that enables choice while addressingspecific mobile security requirements.business data stays within IT bounds so it can’tbe stored on unsecured devices or shared withunauthorized cloud services. With MobileIronAccess Authenticator, organizations benefitfrom a standards-based approach that can moreeffectively secure any cloud service, includingOffice 365, without requiring proprietaryintegrations.Core Silver bundleFor the best performance, Gold licenses areadvised for the best performance, Gold licensesare advised. MobileIron Access Authenticatoris only available in a per User – SubscriptionLicense. Additional installation and configurationservices may be required.The Silver bundle provides all the essentialcapabilities required to build the foundation ofa mobile first enterprise. The UEM Silver bundleincludes capabilities that allow for near seamlessdevice onboarding, configuration of securitysettings, app distribution, policy enforcement,and remediation.Core Gold bundleThe Gold bundle is designed for customers readyto take the next step of the mobile-first Journeyby providing highly secure apps and content onany mobile device.MobileIron Threat DefenseMobileIron Threat Defense guards your companyfrom data loss from mobile threat events. Withone app, detect and remediate known andzero-day attacks on the mobile device withoutdisruption to user productivity.Core Platinum bundleThe Platinum bundle is designed fororganizations that have a solid mobilefoundation and are ready to enter the advancedstages of the mobile-first Journey. The Platinumbundle provides additional capabilities includinghighly secure per-app VPN, Help Desk toolsfor remote viewing and control over end-userdevices, and integrations with specificthird-party products and services.MobileIron optional add-on featuresAccessMobileIron Access is a cloud security solutionthat provides conditional access to cloudservices from mobile apps and browsers. Unliketraditional security approaches, MobileIronAccess correlates user identity with uniqueinformation feeds such as device postureand app state. MobileIron helps ensure thatPRODUCT BRIEF
AT&T Unified Endpoint ManagementMobileIron Core from AT&TCore PortalSentryApps@WorkAppConnectEmail Kiosk Mode/ Apple Business ManagerSilverGoldPlatinum Bridge and Derived Connect integrations*MobileIron Access AuthenticatorAdd on SKU. Gold bundle recommended.MobileIron Threat and MobileIron ThreatDefense Add on SKU.License and pricing optionsDevice perpetual license 75 110 140User perpetual license 110 165 210Device maintenance - AT&T support 15 22 28 17.30 25.30 32.20 22 33 42 25.30 37.95 48.30Device subscription license 48 72 90User subscription license 72 108 138Device MRC license 4 6 7.50User MRC license 6 9 11.50Device maintenance - MobileIron supportUser maintenance - AT&T supportUser maintenance - MobileIron support*SerivceConnect integrations available with the Platinum bundle includes MobileIron developed software to integrate with specific thrid-party products and services. API-based integrationsdo not require the purchase of the Platinum bundle.Derived credentials with EntrustMobileIron has worked with Entrust to createa derived credential solution that will enableenterprise and government agencies to extendtheir existing security investments, such ascommon access cards (CAC), and personalidentity verification (PIV), to give mobile deviceshighly secure access to agency resourceswithout requiring employees to use additionalhardware like sleds or smart card readers.The solution is compliant with governmentregulations and security standards such asHomeland Security Presidential Directive-12(HSPD-12), Federal ICAM initiatives, FIPS 201 andNIST SP:800-157.Additional installation and configuration servicesmay be required.PRODUCT BRIEF
AT&T Unified Endpoint ManagementMobileIron Core from AT&TEnterprise Support configurationand training – 3,500 (required withSilver licenses)AT&T will provide implementation servicesconnected with the purchase of the SilverMobileIron Software Licenses. The deployment willbe conducted remotely in a hosted environmentwith the integration supported by on-premisesMobileIron Connector to Active Directory in theclient’s data center and one Sentry.Enterprise Support configurationand training – 7,500 (required withGold & Platinum licenses)Platinum MobileIron Software Licenses. Thedeployment will be conducted remotely ina hosted environment with the integrationsupported by on-premises MobileIron Connectorto Active Directory in the client’s data center andtwo Sentries.Installation of one additional MobileIronSentry – 995 (optional)If you require the installation of an additionalMobileIron Sentry, AT&T will install it on a serverthat you provide and integrate it with MobileIronCore. Customer will provision, set up, andconfigure any load-balancing equipment orsoftware required to front-end the MobileIronSentry software.AT&T will provide implementation servicesconnected with the purchase of the Gold orFeature add-on optionsTopics include:Access user subscription 48 User managementAccess user - MRC license 4 Device registrationand retirementMobileIron Threat Defense device subscription 60MobileIRon Threat Defense user subscription 90MobileIron Threat Defense device subscription 96MobileIron Threat Defense 144 Overview of Corearchitecture and features Policy managementand security Device configurationmanagement Application management Device troubleshooting Reports and logs*SerivceConnect integrations available with the Platinum bundle include MobileIron developed software to integrate with specific third-party products and services. API-based integrationsdo not require the purchase of the Platinum bundle.PRODUCT BRIEF
AT&T Unified Endpoint ManagementMobileIron Core from AT&TMobileIron administratortraining – 1,500 (optional)For additional training for system administrators,AT&T will coordinate a web conference for upto 10 people. This half-day training will be amixture of slide presentation, lecture, anddemonstration regarding the MobileIronvirtual smartphone platform.High Availability – 6,000 (optional)Customers who wish to create a redundantMobileIron Core from AT&T, can utilize the HighAvailability professional service: Review of the customer’s existing trafficmanagement and monitoring system required toredirect network traffic to the redundant Core Installation of a redundant VSP on thecustomer-provided platform and one optionalsentry (an existing in-service Core is required) Installation and testing of the synchronization scriptbetween Core. Note: Customer is responsible forproviding a server/VM/appliance for the installationof the second Core and to provide a trafficmanagement and monitoring system to redirectnetwork traffic to the redundant CoreAuthority integration configuration and settings: Create one certificate template representing thecustomer’s desired type of identity certificate Define one-device policy profile for ExchangeActiveSync auto-configuration using an EMM-issuedidentity certificate Define one-device policy profile for VPN clientauto-configuration using anidentity certificate Define one-device policy profile for preferredWiFi network auto-configuration using anidentity certificate Configure the service accounts in ActiveDirectory(User or Computer object) for Kerberosauthentication delegation and create serviceprincipal names (SPNs) if necessary Configure the email proxy service to requestKerberos delegated credentials on behalf of deviceusers for mailbox accessAT&T will assist with the testing of each deviceprofile on a single supported device.*Advanced Authentication usingCertificates and KerberosDelegation – 1,750 (optional)To use Certificate Authentication, the customer’sEMM server will need to be configured to issuecertificates. Certificate authentication providesenterprises the ability to establish identity whileeliminating the need for end users to enterusernames and passwords on their mobile devicesto access corporate resources, such as ExchangeActiveSync, VPN, and Corporate Wi-Fi.Service scopeAT&T will implement and configure the integrationsettings to enable the MobileIron Core applianceto issue certificates to mobile devices from asupported interface to the customer’s CertificateAuthority. AT&T will complete the CertificatePRODUCT BRIEF
AT&T Unified Endpoint ManagementMobileIron Core from AT&TImportant Information:General: MobileIron Core as described in this product brief (the “Solution”)is available only to eligible customers with a qualified AT&T agreement(“Qualified Agreement”). The Solution is subject to (a) the terms andconditions found at gistrationPage.html (“Additional Product Terms”); (b) the QualifiedAgreement; and (c) applicable Sales Information. For government customers,any Additional Product Terms not allowable under applicable law will not apply,and the Qualified Agreement will control in the event of any material conflictbetween the Qualified Agreement and the Additional Product Terms. Anyservice discounts, equipment discounts, and/or other discounts set forth inthe Qualified Agreement do not apply to the Solution. The Solution may not beavailable for purchase in all sales channels or in all areas. Additional hardware,software, service and/or network connection may be required to accessthe Solution. Availability, security, speed, timeliness, accuracy and reliabilityof service are not guaranteed by AT&T. Additional fees, charges, taxes andrestrictions may apply.Requirements: The Solution is available for use with multiple networkservice providers. Both Corporate Responsibility Users (“CRUs”) and IndividualResponsibility Users (“IRUs”) are eligible to participate in the Solution.Activation on an eligible AT&T data plan on a compatible device is required forend users subscribed to an AT&T wireless service. With respect to use of theSolution with devices subscribed to non-AT&T wireless providers, Customeris responsible for ensuring that its applicable end users and the Solutioncomplies with all applicable terms of service of such other wireless carrier(s).All associated voice, messaging and data usage will be subject to the applicablerates and terms of such other wireless carrier(s). Refer to applicable wirelesscarrier(s) for such rates, terms and conditions. A compatible device is required.The Solution software requires a MobileIron operating environment server or,where available, the purchase of a MobileIron appliance from AT&T. Customeris responsible for the configuration of the appropriate Domain Name System(DNS) prior to AT&T installation activities. Core integration with enterprisepublic key infrastructure is not included. The Core is accessed via a Web portaland requires a PC with Internet connection. Improper or incomplete softwareconfiguration and/or downloads performed by Customer may result in serviceinterruptions and/or device failures. Optional hardware appliances (servers) areavailable only to US customers at an additional charge of 7,000 or 20,000 each.Use of the solution outside the U.S.: Customer agrees to comply with theadditional terms, conditions and restrictions located at MobileIron CoreService Guide that apply to downloading and use of the Solution outside theUnited States. AT&T reserves the right to make changes to these terms andconditions and restrictions from time to time.Professional services: Upon completion of Professional Services, Customermust either sign the acceptance document AT&T presents or provide withinfive business days of the service completion date written notice to AT&Tidentifying any non-conforming Professional Services. If Customer fails toprovide such notice, Customer is deemed to have accepted the ProfessionalServices. Customer acknowledges that AT&T and Customer are independentcontractors. Customer will in a timely manner allow AT&T access as reasonablyrequired for the Professional Services to property and equipment thatCustomer controls. Customer will ensure that the location(s) to which access isprovided offer(s) a safe working environment, free of hazardous materials andreasonably suitable for the Professional Services. The Professional Servicesprovided shall be performed Monday through Friday, 9:00 a.m. to 5:00 p.m.,local time. The mandatory software installation and configuration is estimatedto take two days and must be completed within 45 days of order placement.If Customer’s acts or omissions cause delay of installation and configurationbeyond 45 days of order placement, AT&T will invoice Customer for theinstallation and configuration charges after the 45th day. If the professionalservices provided in connection with the Core are more complex than thosedescribed in this product brief, then a separate statement of work describingthe activity and related terms and pricing will be executed. If impediments,complications or Customer-requested changes in scope arise (Changes), theschedule, Core and fees could be impacted. In the event any Change(s) affectthe Core or fees, the parties will modify Customer’s order (or statement ofwork, if applicable) accordingly by executing a change order.AT&T reserves the right to (i) modify or discontinue the Solution in whole orin part and/or (ii) terminate the Solution at any time without cause. AT&Treserves the right to conduct work at a remote location or use, in AT&T’s solediscretion, employees, contractors or suppliers located outside the UnitedStates to perform work in connection with or in support of the Solution.Data privacy: Customer Personal Data may be transferred to or accessibleby (i) AT&T personnel around the world; (ii) third parties who act on AT&T’sor AT&T’s supplier’s behalf as subcontractors; and (iii) third parties (such ascourts, law enforcement or regulatory authorities) where required by law.Customer will only provide or make Customer Personal Data accessible whenCustomer has the legal authority to do so and for which it has obtained thenecessary consents from its end users, and will camouflage or securely encryptCustomer Personal Data in a manner compatible with the Core. As used herein,the term Customer Personal Data includes, without limitation, name, phonenumber, email address, wireless location information or any other informationthat identifies or could reasonably be used to identify customer or its endusers. Customer is responsible for providing end users with clear noticeof AT&T’s and Customer’s collection and use of Customer Personal Dataobtained via the Solution and for obtaining end user consent to that collectionand use. Customer may satisfy its notification requirements as to AT&T byadvising end users in writing that AT&T and its suppliers may collect and useCustomer Personal Data by providing for end user review the relevant links tothe Product Brief or other sales information that describes the Solution and toAT&T’s Privacy Policy at http://www.att.com/gen/privacy-policy?pid 2506.*Diagnosis and remediation of failed test cases to verify that a certificate of the correct type is issued by the Certificate Authority and installed within the devicecertificate store. The customer is responsible for any diagnosis or remediation of authentication or authorization failures within the authentication, authorizationand accounting (AAA) infrastructure.For more information contact an AT&T Representative or visit www.att.com/emm.Share this withyour peers 2018 AT&T Intellectual Property. All rights reserved. AT&T, Globe logo and other marks are trademarks and service marks of AT&T Intellectual Property and/or AT&Taffiliated companies. All other marks contained herein are the property of their respective owners. The information contained herein is not an offer, commitment,representation or warranty by AT&T and is subject to change. 13854-102518PRODUCT BRIEF
MobileIron Access Authenticator MobileIron Threat and MobileIron Threat Defense License and pricing options Device perpetual license 75 110 140 User perpetual license 110 165 210 Device maintenance - AT&T support 15 22 28 Device maintenance - MobileIron support 17.30 25.30 32.20 User maintenance - AT&T support 22 33 42
