byod/mdm seminar @ rockbottom
TRANSCRIPT
![Page 1: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/1.jpg)
BYOD/MDM Workshop Luncheon Sponsored by Ciscoand Zenprise Rev2
BYOD/MDM Workshop Luncheon @ RockBottom Denver
Hosted by Greg HanchinGlobal Technology Resources, Inc. / Trusted Security Advisor
©2012 Global Technology Resources, Inc., All Rights Reserved.Contents herin contain confidential information not to be copiedSeptember 19, 2012
![Page 2: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/2.jpg)
© 2012 GTRI2
Agenda
Welcome Mobility Cisco ISE / BYOD ZenPrise / MDM Questions Breakout
![Page 3: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/3.jpg)
© 2012 GTRI3
Who is GTRI?
•$200M Systems Integrator•14 years old•214 People•Profitable•Scratch built•Denver - HQ•$15 Million a Year in Professional Services•$70M in Commercial / $130M in Federal
Profitable Relationships
Customers
Employees
Projects
![Page 4: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/4.jpg)
© 2012 GTRI4
GTRI InfoSec Quilt
![Page 5: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/5.jpg)
© 2012 GTRI5
Recent GTRI Security Projects
![Page 6: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/6.jpg)
© 2012 GTRI6
![Page 7: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/7.jpg)
© 2012 GTRI7
iPad Sales – Just iPads
![Page 8: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/8.jpg)
© 2012 GTRI8
Mobility
Monty Petrich SA - Wireless
GTRI
![Page 9: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/9.jpg)
© 2012 GTRI9
Simple Secure Scalable
ANY USER
ANYWHERE
ANY DEVICE
ANYTIME
Mobility Changes Everything
![Page 10: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/10.jpg)
© 2012 GTRI10
Where is Wireless Going
Future Technologies 802.11ac 802.11ad
Wi-Fi Offload and DAS What the carriers are doing 802.11u
AnyConnect How to prepare customers
BYOD and Dynamic VLANs
![Page 11: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/11.jpg)
© 2012 GTRI11
![Page 12: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/12.jpg)
© 2012 GTRI12
![Page 13: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/13.jpg)
© 2012 GTRI13
![Page 14: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/14.jpg)
© 2012 GTRI14
Bring Your Own Device
Micah MontgomerySE-Information Security
GTRI
![Page 15: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/15.jpg)
© 2012 GTRI15
MDM vs BYOD/NACMDM BYOD /NAC
Managing Device on 3g/ 4g
Manage Files
Manage APPS / Email
JailBreak Control
Remote Wipe
Device Encryption
GEO Fencing
Device Recovery- LoJack
Managing device WLAN/ Wired Access
Role Based Access Control (RBAC) Concept of Device Stacking on
Corp Identity Posture / Profile / Quarantine Hoteling DLP – Lite on critical Files Authentication/Authorization/
Accounting -AAA
![Page 16: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/16.jpg)
© 2012 GTRI16
Bridging the GAP
![Page 17: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/17.jpg)
© 2012 GTRI17
Sample ISE Deployment
![Page 18: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/18.jpg)
© 2012 GTRI18
The User to Device Ratio Has Changed
![Page 19: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/19.jpg)
© 2012 GTRI19
Identity Services Engine
ACS
NAC Profiler
NAC Guest
NAC Manager
NAC Server
Identity Services Engine
• Centralized Policy
• RADIUS Server
• Posture Assessment
• Guest Access Services
• Device Profiling
• Monitoring
• Troubleshooting
• Reporting
![Page 20: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/20.jpg)
© 2012 GTRI20
BYOD Deployment Scenario's
Figure 5 BYOD Adoption Scenarios
![Page 21: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/21.jpg)
© 2012 GTRI21
ISE Node Types
![Page 22: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/22.jpg)
© 2012 GTRI22
ISE Platforms
![Page 23: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/23.jpg)
© 2012 GTRI23
Gradual Deployment
Monitor Mode
• Authentication Without Access Control
Low Impact Mode
• Minimal Impact to Network and Users
High Security Mode
• Logical Isolation of User Groups / Device Types
![Page 24: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/24.jpg)
© 2012 GTRI24
What Device?
![Page 25: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/25.jpg)
© 2012 GTRI25
ISE Profiler: 3 Steps
![Page 26: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/26.jpg)
© 2012 GTRI26
Guest Self Service
![Page 27: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/27.jpg)
© 2012 GTRI27
Guest User Experience
![Page 28: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/28.jpg)
© 2012 GTRI28
Certificate Location by DeviceDevice Certificate Storage Location Access Method iPhone/iPad Standard certificate store Settings > General > Profile
Android Encrypted certificate store Invisible to end users. Note Certificates can be removed using Settings > Location & Security > Clear Storage.
Windows Standard certificate store Launch mmc.exe from /cmd prompt, or view in certificate snap-in.
Mac Standard certificate store Application > Utilities > Keychain Access
![Page 29: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/29.jpg)
© 2012 GTRI29
What about Accounting?
Provides additional information about the session
Marks end of a session (Removes endpoint from licensing count)
Provides IP address Profile IOS probe
![Page 30: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/30.jpg)
© 2012 GTRI30
MDM vs BYOD/NACMDM BYOD /NAC
Managing Device on 3g/ 4g
Manage Files
Manage APPS / Email
JailBreak Control
Remote Wipe
Device Encryption
GEO Fencing
Device Recovery- LoJack
Managing device WLAN/ Wired Access
Role Based Access Control (RBAC) Concept of Device Stacking on
Corp Identity Posture / Profile / Quarantine Hoteling DLP – Lite on critical Files Authentication/Authorization/
Accounting -AAA
![Page 31: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/31.jpg)
© 2012 GTRI31
Mobile Device Management
David DeCesareSE – Denver Region
![Page 32: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/32.jpg)
© 2012 GTRI32
ZenPrise MDM Slides See - http://slidesha.re/N2lTWL
![Page 33: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/33.jpg)
© 2012 GTRI33
Questions?
![Page 34: BYOD/MDM Seminar @ ROCKBOTTOM](https://reader036.vdocument.in/reader036/viewer/2022062523/54276d658d7f7264408b5e6c/html5/thumbnails/34.jpg)
BYOD/MDM Workshop Luncheon
©2012 Global Technology Resources, Inc., All Rights Reserved.Contents herin contain confidential information not to be copiedJuly 26, 2012
Thank You!