Mobile Admin security with an iOS or Android wireless device

There are two types of security available for Mobile Admin: Authentication and Encryption.

Authentication requires a Microsoft Windows user name and password, device password (optional), and RSA SecurID authentication (optional).

Encryption requires HyperText Transport Protocol - Secured (HTTPS) (optional) and Virtual Private Network (VPN) encryption (optional).

Windows authentication

Administrative access to servers is fully integrated with the Windows security settings for your network. If you are configured to have administrative access to specific servers or services in your network, you will only have administrative access to those servers and services in Mobile Admin. You must always provide your Windows network login name and password to log into Mobile Admin. The Mobile Admin Server can be configured to require a network login every time you open the Mobile Admin Client, or after a time-out interval that you specify.

Device password authentication

Most wireless devices and phones provide optional device-level authentication. When the device password feature is enabled, you must enter a password before you can use the device and Mobile Admin.

RSA SecurID authentication

Mobile Admin is approved as an RSA-Certified application. This option requires you to log in using your SecurID token and your secret PIN before using Mobile Admin. For more information about using RSA SecurID Authentication, see the RSA website.

HTTPS encryption

Mobile Admin allows you to use HTTPS encryption for all data sent between the Mobile Admin Server and Mobile Admin Client.

If you are not using a VPN, it is strongly recommended that you configure Mobile Admin to use HTTPS.

VPN encryption

You can use Mobile Admin by first connecting to your network through a VPN, which encrypts and secures your network data. It is strongly recommended that you use a VPN if you are not connecting through BlackBerry Enterprise Server.