Related Links

EMM Overview (.pdf)

EMM Platform (.pdf)

White Papers

Device OS

iPhone OS

Web OS

Windows Mobile

Android

Symbian

Trust Digital EMM manages the entire lifecycle of the iPhone with tools and facilities to secure email access, create and provision device policies, distribute device certificates, monitor device status, and ensure user and corporate compliance, including the prevention of ‘jailbroken’ iPhones from connecting to the enterprise infrastructure.

Trust Digital EMM implements the recommendations of the Apple iPhone OS Enterprise Deployment Guide, simplifying OTA enrollment and device configuration. Our Platform provides IT with a platform to enroll, configure and verify iPhones for business use.

The following steps are used by the Trust Digital EMM platform to integrate user iPhones with corporate IT services:

1. User Authentication – the Trust Digital platform authenticates user credential, presented by the EMM Agent or Self-Service Portal via an LDAP interface to the corporate directory service.
2. Certificate Enrollment – the Trust Digital EMM profile services issues a configuration profile with a challenge password, requiring the iPhone to return the challenge password in a response signed by an Apple issued certificate. In turn, Trust Digital EMM provides a second configuration profile that contains a challenge password for the Trust Digital EMM Certificate Authority (CA), the URL of the CA and key generation specifications. The iPhone, using the associated challenge password, requests a device certificate from the CA.
3. Device Configuration – the iPhone requests a configuration profile from the EMM Profile Service using the device certificate to sign the request. The EMM Profile Service responds with a signed and encrypted configuration profile that securely delivers policies, configurations and credentials to the iPhone.
4. Policy Provisioning - additional ActiveSync policies are set via the Trust Digital EAS Proxy.
5. Compliance Enforcement – the Trust Digital Bonded Policy Compliance feature ensures that once provisioned, configuration profiles and ActiveSync policies remain persistent on the iPhone.

This seamless approach blends multiple iPhone management conventions into a single platform, enabling large-scale, secure and flexible deployments of the iPhone in the enterprise.