Getting started with Mobile Guardian is quick and easy, but requires some simple pre-planning to enable effective device management. This guide will help you prepare by addressing key questions, network prerequisites, and OS-specific requirements.
Key Questions
What operating systems are you onboarding?
- Please review the OS-specific sections below for detailed information.
Do you operate a Global Proxy?
- If so, configure this information in the BASELINE profile within your Mobile Guardian Dashboard. Ensure you add this information (and any required certificates) before onboarding your devices to allow them to communicate with your network.
Network Prerequisites
- Wireless Network: An 802.11 wireless network that is open or using a Pre-Shared Key (PSK).
- Open Ports for Registration: 80, 443.
- Apple Devices: TCP ports 5223, 2195, 2196, 443 (5223 and 443 for enrollment and control. The rest are for MDM servers). For more information on Apple devices, please click here.
- Android and Chrome Devices: Outbound TCP connections on ports 5228-5230.
- SSL-Inspecting Proxies: Schools utilizing SSL-inspecting proxies will need to add a temporary network without SSL interception to configure tablets.
- Bandwidth: Ensure consistent connectivity and sufficient bandwidth for the initial deployment of apps.
OS-Specific Areas
iOS
Are you enrolled in DEP (Device Enrollment Program)?
- If enrolled, set up DEP to point to Mobile Guardian.
- If not enrolled, access to Apple Configurator 2, (a Mac is required to run it) is needed.
Do you have a VPP (Volume Purchase Program) account?
- If so, log into your account here and download the token.
- If not, ensure you have the details of the Apple ID used to purchase apps.
Onboarding More Than 10 Devices
- Use the Apple Push Notification Service. Ensure you have a school-controlled Apple ID for this purpose.
Android
For managing Android devices, consider the following requirements:
- Google Account: To download the Mobile Guardian Manage Application from the Play Store.
- Wireless Network: An 802.11 wireless network that is open or using a Pre-Shared Key (PSK) and compatible with your tablets/phones.
-
Domain Access:
- ntp.org
- glpals.com
- akamai.net
- google.com
- googleapis.com
- ggpht.com
- googleusercontent.com
- google-analytics.com
- gstatic.com
- android.com
- gvt1.com
- googlevideo.com
#Note: Specific applications may have additional requirements.
Chromebooks
For managing Chromebooks, consider the following requirements:
- Google Apps for Education: For your domain.
- Unique Google Apps for Education Account: For each tablet.
- Wireless Network: An 802.11 wireless network that is open or using a Pre-Shared Key (PSK) and compatible with your tablets.
-
Domain Access:
- ntp.org
- glpals.com
- akamai.net
- google.com
- googleapis.com
- ggpht.com
- googleusercontent.com
- google-analytics.com
- gstatic.com
- android.com
- gvt1.com
- googlevideo.com
Google Provisioning API: Enabled in the Google Admin console. For more information, see Administrative APIs in the Google Apps Administration Help Center.
Please let us know if you found this helpful!
Thanks for reading! 🙂