cloud-managed mobility - safeplus live berlin 2016/brkewn-2002.pdfcloud-managed mobility with meraki...
TRANSCRIPT
Cloud-Managed Mobility with Meraki Wireless and
MDMGeorge Bentinck – Solutions Architect
@meraki_se
Meraki overview
MR WLAN technology
Live interactive WLAN demonstration
Business value of WLAN analaytics
SM EMM technology & Sentry
Live interactive EMM & MDM demonstration
Wrap-up with Q&A
Agenda
3
Meraki Overview
4
Meraki philosophy & growth into Cloud Managed IT
Leader in cloud-managed
networkingAmong Cisco’s fastest-growing portfolios
Over 75,000 unique customers
Over 1 million Meraki network devices online
5
Agile development in a creative culture
6
Cloud Managed IT
End-to-end Meraki solutionDevice Management
Wireless
Local area networking
WAN & Security
Dashboard for all technologies
Expand with ease
Simplify - not simple
Full stack - not just WLAN
7
All-in-one solution
Centralized management and control infrastructure
Seamless new feature and security updates
Support and lifetime warranty included (1 year on outdoor APs)
Hardware License
+
1:1 ratio of hardware to license
1 year, 3 year, 5 year, 7 year,
and 10 year options
All licenses co-terminate
8
Cloud Architecture with out-of-band control plane
IntuitiveSimple browser based dashboard
Cloud hosted centralized management platform
SecureNo user traffic passes through cloud
Fully HIPAA / PCI compliant (level 1 certified)
Automatic firmware and security updates (user-scheduled)
ScalableManage thousands of devices with no bottlenecks
Remotely provision sites in minutes
ReliableHighly available cloud with multiple datacenters
Network functions even if connection to cloud is interrupted9
EU Cloud
EU privacy laws limit the transfer of
private data out of the EU
Cisco Meraki EU Cloud features local
datacenters: Frankfurt, Munich, Dublin
Management info, user traffic analytics,
and location data never leave the EU
EU Compliant contracts with Data
Processing Agreement + Model Clauses
meraki.cisco.com/trust#privacy 10
Cisco Enterprise and Cloud-Managed
Network-As-A-ServiceNetwork-As-A-Platform
Cisco Cloud Managed
Networking
• Easy to deploy and manage over the web
• Out-of-the-box optimized feature set
• Ongoing managed upgrades and
enhancements
• Optimized for lean IT, with limited
requirement for 3rd Party integration
Cisco Enterprise Networking
• Flexible deployment and configuration options
• Highly customizable and advanced feature
set
• Advanced professional services, extended
support
• Extensive integration capabilities
11
MR WLAN
12
Architecture
• Controller less
• Distributed
• Mode
• NAT
• Bridge
• Tunnel
• Hybrid
• Remote
13
Wireless feature velocity
January
2015
14
State of the art RF testing environment
15
Dedicated 3rd radio for improved RF visibility
Radio dedicated to scanning and protecting RF environment
- Detects and mitigates interference, vulnerabilities, and attacks on all channels
- 3rd radio enables full-time scanning with full-performance client access on 2.4 GHz and 5 GHz radios while using WIDS/WIPS
Deeply-integrated with cloud-based software solutions:
Air Marshal (WIDS/WIPS), Auto RF (channel planning and interference
avoidance)
No added cost or complexity
- Typical deployments: radio operates in background (zero-config)
- Power users: rich tools available for security and RF management
- No added cost: no extra hardware, software, or licenses
16
802.11ac Wave 2
3x3 antenna with 3 spatial streams
Support for MU-MIMO
Dedicated third radio
Air Marshal, Auto RF, CMX
Fourth Bluetooth LE radio
Enabling Beacon engagement & BLE scanning
PoE+ 802.3at power for full operation
Sleek industrial design of MR32/34
Introducing the MR42: 802.11ac Wave 2
Launching and shipping Feb 9th
$1099 MSRP
17
Outdoor
APs
3 Stream Triple-Radio
802.11ac
MR18
2 Stream Triple-Radio
802.11a/b/g/n
MR66
Dual-Radio
802.11a/b/g/n
MR34
Meraki AP Lineup – Spring 2016
2 Stream Triple-Radio
802.11ac
Bluetooth LE
MR32
2 Stream Triple-Radio
802.11ac
Bluetooth LE
MR72
Indoor
APs
MR62
Single-Radio
802.11b/g/n
3 Stream Triple-Radio
802.11ac Wave 2
Bluetooth LE
MR42
18
External AntennasOmni Directional SectorSemi-Directional Patch
ANT-20 ANT-25 ANT-21/23
19
Live Demo
20
Richard GilesDirector of Architecture & Solution Delivery
Ladbrokes PLC
21
22
PoC Window Conversion Rate
23
Bluetooth and Beacons
Bluetooth Low Energy (BLE) is
designed for very low power
applications
Beacons use BLE to transmit data
Beacons identify themselves using
unique codes that can trigger
functionality in applications
24
Beacons and Location Awareness as a Platform
Beacon transmits
Mobile device hears
beacon
App is passed beacon
App uses API to query
relevance of beacon
Platform returns
relevance to the app
Relevant app
functionality triggered
Beacons no relevance on their own
Unlike WiFi, beacon technology has
limited use without a customer app
Platforms that provide beacon
relevance through an API lookup.
25
Digital Brand and Enhancing Social Media Integration
Retail experiences are often a social one.
Younger audiences and future customers are more enthusiastic about sharing their thoughts, experiences, and location.
Integration with platforms such as Facebook can allow for automatic brand interaction.
26
Systems Manager
27
Multi platform MDM & EMM solution from Cisco
OS X, iOS, Windows, Windows Mobile, Android, & Chrome OS
Over 10 million devices managed globally
More than 8 million active in the last 30 days
Extensive features suitable for all deployments
Cloud architecture for rapid feature development
Simple low cost purchasing model
Strategic partnership with Apple
Meraki Systems Manager
Android for Work integration
Personal / Work Profiles
App containerization
Restrictions and settings
OS X controls with 35 new system preferences
OS X disk encryption with FileVault
iOS dynamic wall paper management
Windows 10 MDM API integration
Automatic configuration of Windows 10 Wi-Fi
Windows 10 remote certificate provisioning
February 2016 update
29
SM functionality is applied to devices and users using tags
Tags can be static (grey) or automatic (green)
Automatic tags are assigned dynamically based on
Location
Time
User or Owner
Device Type
Security Posture
Tags are important
Unique to Systems Manager deployed on Meraki networks
All Meraki products are connected to the cloud and are natively integrated
Systems Manager allows the network to make better decisions without
administrator intervention
Sentry
Simple
Automatic
Security that
is Context
Aware
Sentry Policies
• Network policy enforcement based on posture
Sentry Enrollment
• Integrated self service MDM onboarding
Sentry Wi-Fi Security
• EAP-TLS WLAN authentication made easy
Sentry VPN Security
• Auto provision mobile client VPN
Sentry Wi-Fi Settings
• Auto configure WLAN settings for mobile devices
Sentry VPN Settings
• Auto configure VPN settings for mobile devices
Sentry components
Collection of features ideal for education
Functionality includes:
Teacher management interface
Classroom controls
Silent & dynamic app installs
Automated class material delivery
Shared use devices
Network integration
Primary platform focus is iOS
Teacher’s Assistant - Supporting the digital classroom
Benjamin MoellerManager of Information Technology
Navigator Schools
34
35
Live Demo
36
@BRtheOutlaw
https://twitter.com/BRtheOutlaw/status/617831045325389824 37
Lee SandsKing Edwards VI College
38
No cost if under a hundred devices
All features included
Setup in less than 15 minutes
Enroll multiple platforms
meraki.cisco.com/sm
Try Systems Manager
39
Mobility is more than Wi-Fi
Access Points
(MR)Security Appliances
(MX)
Ethernet Switches
(MS)
Integrated cloud management for all products
Device Management
(SM)
40
More Meraki at CiscoLive!
• Cloud-Managed Security for Distributed Networks with Cisco Meraki MX
Wednesday, Feb 17 | 11:30AM, Presented by Joe Aronow, BRKSEC-2055
• WiFi meets Beacons meets MDM with Cisco Meraki
Thursday, Feb 18 | 2:30PM, Presented by Simon Tompson , BRKEWN-2066
• Building Scalable, Flexible Enterprise Architectures with Cisco Meraki
Friday, Feb 19 | 9:00AM, Presented by Simon Tompson , BRKEWN-2101
• Meraki Design Options and Guidelines
Wednesday, Feb 17 | 1:15-2:15PM, Presented by Joe Aronow, PSOEWN-1006
41
Call to Action
Use #ciscomeraki in a social media post and show us at our booth in the WoS to
get Meraki socks.
Visit our website & blog
meraki.cisco.com/blog
42
Socks are located here!
43
Call to Action
• Visit the World of Solutions for
• Cisco Campus
• Walk in Labs
• Technical Solution Clinics
• Meet the Engineer
• Lunch and Learn Topics
• DevNet zone related sessions
Complete Your Online Session Evaluation
• Please complete your online sessionevaluations after each session.Complete 4 session evaluations& the Overall Conference Evaluation(available from Thursday)to receive your Cisco Live T-shirt.
• All surveys can be completed viathe Cisco Live Mobile App or theCommunication Stations
45
Questions?
46