Versions Compared

Old Version 13

changes.mady.by.user Hope Aguonye

Saved on

compared with

New Version Current

changes.mady.by.user Hope Aguonye

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This user manual has been developed to guide the NIMC admin to set up their devices on the Enrolment Mobile Device Management System (EMDMS). The guide will be broken into 2 sections.

  1. Onboarding devices on the EMDMS.

  2. Managing devices on the EMDMS.

ONBOARDING DEVICES ON THE EMDMS

\uD83D\uDCD8 Instructions

To onboard devices on the EMDMS portal, follow these steps;

  1. Login to the EMDMS admin portal on https://nimc-emdms.seamfix.com/smartmdm/ with these test credentials.

    1. Username - haguonye@seamfix.com

    2. Password - Aa123456@

...

Fig1: Enter valid Login credentials to access the portal

...

  1. The QR Code method

  2. The apk file download method.

The QR Code Method

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#57D9A3

The QR code method only applies to either new devices or devices that have just been factory reset. This is because the user needs to scan the code with the inbuilt Android app QR scanner and this inbuilt scanner is only triggered during a new device set up.

...

  1. For a new new device,

    1. Turn on the device

    2. On the Get started page (the page where you’d be required to set up your language preference & email), don’t click on “start” rather tap on the page about 6 times consequitively to launch the QR scanner

  2. For a device already in use,

    1. Factory reset the device

    2. On the Get started page (the page where you’d be required to set up your language preference & email), don’t click on “start” rather tap on the page about 6 times consecutively to launch the QR scanner

...

  • On the apps menu on the app, the user will be able to view the apps on the device including those installed & those pending installation

...

MANAGING DEVICES ON THE EMDMS

The EMDMS Dashboard -

This module shows basic analytics of all the activities happening within the ecosystem. This is a dynamic module so the analytics displayed on this page is configurable. To access the dashboard, follow these steps;

...

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#57D9A3

From The dashboard displays an audit trail of activities including the following;

  • Admins that added an app

  • Admins that mapped a policy

  • Admins that triggered a password reset etc.

The EMDMS Device Locator -

The EMDMS device locator shows the distribution of devices across the different locations on a map view. To access the module;

...

Fig. 21: Showing device location across their various locations on a map.

EMDMS Users -

The EMDMS user module enables the admin to create users on the EMDMS portal and assign them roles. There are basically two roles on the EMDMS portal. The Admin role & the agent role. Only the admin users can access the EMDMS portal and perform device management functions. The agent users on the other hand only have access to their assigned devices.

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#57D9A3

Only admin users can be created on the EMDMS portal. Agent users-device assignment on CBS applies to the users

EMDMS Policies -

policies contain a set of restrictions that the IT admin can apply to devices to enforce compliance. To access policies,

...

Fig. 22: Showing the list of available policies on the portal

Geofencing -

Geofences are the locations listed for a device(s) at the point of activation. These locations are not created on the EMDMS portal. Once a device is successfully onboarded on the EMDMS, the location assigned to that device will be displayed on the EMDMS “Geofences” policy. To access the listed geofences, follow these steps

...

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#57D9A3

Reasons why Enforcing Geofence may not work

  1. The above policies are not applied to the device(s)

  2. The device is unable to send location details

Geofence Blacklist -

This feature enables the admin to be able to blacklist an entire geofence. To achieve this follow these steps;

...

Fig. 24b: Device locked due to blacklisted geofence

Geofence Waiver

Geofence waiver can be used when an admin decides that despite the initial geofence assigned to a device, they want the user to be able to use the device in a new location which is not the user’s original geofence for a while. To apply the waiver policy, follow these steps;

...

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#57D9A3

Upon successfully apply the geofence waiver to a device, the device shall become accessible to the user for the period of the geofence. as soon as the time elapses, the device will become locked again except;

  1. The user returns back to their initial geofence or

  2. Their geofence is whitelisted

  3. The “enforce geofence” policy is removed from the device. (in this case, whether the user is within or out of their geofence, the geofenec restrictions will not apply to them)

Applications Management

The applications management module enables the admin to be able to manage applications usage & transfer within the NIMC ecosystem. amongst other things, you’d be able to

  • Blacklist an unauthorized app

  • Uninstall an unauthorized app

  • Add a new app version and push the upgrade via OTA (Over-the-air) app upgrade

  • Monitor the app usage including - total data consumed, screentime spent on an app.

Add a new app

To add a new app, follow these steps;

...

Fig. 29. Add details of the new app

Add a new app version

This can be used to update an app version. To add a new version, follow the steps below;

...

Fig. 31: Fill out the form to add a new app version

Where an app has more than one version, it will be listed on the app versions page. see fig.32 below

...

Fig. 32: List of all available app versions

App rollout via OTA

To roll out a new app version to the field, follow these steps;

  1. Select the app name on the Apps bank page (fig. 28)

  2. Click on actions (fig.30) and select edit app details

  3. From the available app versions, select the app version to roll out (see fig.33)

...

Fig. 33: Roll out the new version by selecting “map to devices”

4. select a list of devices or a device group to map the app to

...

Fig. 34: select the devices to map the app version to

Blacklist an unauthorized app

To backlist an unauthorized app follow these steps;

  1. Select the app name on the Apps bank page (fig. 28)

  2. Click on actions (fig.30) and select the “blacklist app” option

  3. select the device(s) or the group of devices that the app should be blacklisted on see fig.35

...

Fig. 35: select the devices to blacklist the app on

Device Monitoring

The EMDMS portal provides the capability for the admin to manage the heartbeat details on the device. Find below the details of the hearbeat page.

...

Fig 36: device heartbeat page

...

Fig. 37: device heartbeat page

Panel
panelIconIdatlassian-note
panelIcon:note:
bgColor#57D9A3

From the tabs listed in fig. 38 below the admin is able to navigate to view more details about the device.

...

P.S:

  1. By default, Android devices are set to use the same password for work & personal profiles

    1. Users have the opportunity to set a new password in the work profile. This will override the password set in the personal profile.

  2. If the password set for the personal profile does not meet the minimum password requirement set by the admin for the work profile, the user will not be able to access the work profile

  3. Users cannot use screen lock or pattern. They must use a password.

  4. The EMDMS app needs to finish downloading before the user can navigate away from the page that shows apps mapped by the admin

  5. The user will be notified that the work profile setup is in progress.