You can connect Aurora Endpoint Security to BlackBerry UEM or Microsoft Intune so that Aurora Endpoint Security can verify whether iOS and Android devices are managed. Aurora Endpoint Security can also verify whether Windows devices are Intune managed.

After you establish the connection to UEM, you configure the iOS and Android devices, users, and groups that the integration applies to. For UEM, make sure users are activated with a supported activation type and manage the distribution of the Aurora Protect Mobile app using the user and group management features available in the UEM management console.

Note that all BlackBerry UEM managed devices that you want to use this feature must have the Aurora Protect Mobile app deployed from the BlackBerry UEM instance.

For Intune integration, when you connect Aurora Endpoint Security to Intune, you create app configuration policies that define the device types and Intune user groups that the integration applies to. Note that all Intune managed devices that you want to use this feature must be included in an app configuration policy in the Endpoint Defense console through Assests > User Groups.

In the Endpoint Defense console, you create and assign the Gateway Service policy that allows Gateway to run only if the device is managed by BlackBerry UEM or Intune. When the user tries to access a network destination on an MDM-managed device, if the destination is allowed the network traffic is sent through the secure tunnel.

To connect Aurora Endpoint Security to BlackBerry UEM, do these actions.

To connect Aurora Endpoint Security to Intune, do these actions: