About AirWatch by VMware
Overview
Android (5.0 and later) has allowed MDM (Mobile Device Management) solutions to pass dictionaries directly in the applications, that can be downloaded through MDM. This functionality is supported by AirWatch. The dictionary reference contains settings that can be defined via MDM. The MDM enrollment setup skips all the prompts and user intervention for installation and activation of the Druva Mobile App. This ensures that each user undergoes the same set of steps when enrolling their Android devices. For example, the dictionary contains configuration information about the server address, email address of the user, mass deployment token that is required for authenticating the user, and security information like allow or restrict copy, allow or restrict opening the files in different apps.
Airwatch uses Android for work. Android for work enables IT to create a work profile that contains apps that users use only for business cases and it helps to keep personal and business data private.
Many applications require users to enter URL, port, email address, and various configurations as part of a one time setup of an application. These manual configurations can impact the adoption and success of an organization’s mobile app initiatives, increase the burden on a help desk fielding calls from users, and adds the burden of maintaining documentation that needs to be updated frequently as new updates to the application are made available.
By leveraging native APIs, these configurations can be set remotely by the Enterprise Media Manager (EMM) Server to simplify the setup process for end users, and alleviate the help desk and documentation burden caused by manual setup. An app developer can define a set of configuration keys it accepts from an EMM Server, and an organization administrator sets the keys and values in the EMM provider’s management console that will be pushed into the app.
Apps commonly implement the following types of configurations:
- Backend service configuration: URL, port, use SSL, group/tenant code
- User configuration: username, email, domain
As a user, all you have to do is enroll the Android device, and install the Druva Mobile App from AirWatch. In quick and easy steps, you can install and monitor the Druva Mobile App on all Android user devices in your organization. This allows you to have complete visibility of all Android devices in your organization on which the Druva Mobile App is installed.
Note: Druva Mobile App installed through AirWatch using Android for work does not support backup and restore functionalities.
Workflow when the Druva Mobile App is launched for the first time
| Step no. | What happens |
|---|---|
| 1. |
Administrator generates the mass deployment token from the inSync Management Console. The mass deployment token allows you to distribute and silently activate the Druva Mobile App on multiple Android devices. For generating the mass deployment token, see the following topics:
|
| 2. |
Administrator executes the following tasks, and provides the information to AirWatch Server:
|
| 3. |
AirWatch Server syncs the mass deployment token, IP address, user's email ID, and configuration policies with the Druva Mobile App. |
| 4. |
inSync user launches the Druva Mobile App on the Android device. |
| 5. | Druva Mobile App uses mass deployment token, Server IP, and user's email ID provided by AirWatch Server to authenticate with inSync Server. |
| 6. |
inSync Server sends device token to Druva Mobile App. |
| 7. | The device token is saved securely in the Android device and is used for subsequent authentication. |
Workflow when the Druva Mobile App is already authenticated
| Step no. | What happens |
|---|---|
| 1. | AirWatch Server syncs the mass deployment token, IP address, user's email ID, and configuration policies with the Druva Mobile App. |
| 2. | inSync user launches the Druva Mobile App on the mobile device. The Druva Mobile App functions per the configuration and security policies that are configured at the AirWatch Server. |
Workflow when the Druva Mobile App is unauthorized
| Step no. | What happens |
|---|---|
| 1. |
From the AirWatch console, the AirWatch administrator will disable or delete the user at the AirWatch Server. |
| 2. |
When the user is deleted from AirWatch, then the Druva Mobile App that is on the user's device will be unauthorized. Additionally, the AirWatch Server will automatically delete the Druva Mobile App from the user's Android device. |
Backup and restore workflow for Druva Mobile App
This topic provides complete backup and restore workflow.
Druva recommends the users to keep the Druva Mobile App running in the background to experience a seamless backup and restore.
| Task no. | Task |
|---|---|
| 1 | Druva Mobile App sends the device token, user's email ID, and device ID to the Druva Server for authentication |
| 2. | Upon successful authentication, a token is sent by Druva Server to the Druva Mobile App. |
| 3. | Druva Mobile App sends this token to the Druva storage node for authorization. |
| 4. | Upon successful authorization, the storage node acknowledges the request. |
| 5. | Backup and restore tasks can be carried out. |