Mobile device management as a simplified online software service
First Claim
1. A method, performed by a first server computing device implementing a mobile device management device, the first server computing device behind a first firewall, for providing device management as a software as a service, comprising the steps of:
- communicating with a middle tier via a web services component to retrieve one or more policies from an entity, the entity managing a second server computing device that is behind a second firewall, wherein the first firewall and the second firewall are different firewalls, further wherein at least one of the received policies is indicated to pertain to a group of mobile computing devices;
upon receiving a communication from a mobile computing device belonging to the group of mobile computing devices, transmitting to the mobile computing device the received policy pertaining to the group of mobile computing devices, wherein the received policy specifies a condition for future communications between the mobile computing device and the second server computing device, further wherein the first server computing device has a digital certificate relating to the mobile device management service and the second server computing device does not have a digital certificate relating to the mobile device management service;
enforcing the received policy via a plugin component that communicates with the middle tier via the web services component, wherein the plugin component is installed in the second server computing device;
receiving one or more policies from a second entity, the second entity managing a third server that is behind a third firewall, wherein the first firewall, the second firewall, and the third firewall are different firewalls, further wherein at least one of the received policies is indicated to pertain to a second group of mobile computing devices, and the third server does not have a digital certificate relating to the mobile device management device; and
permitting or disallowing actions when the mobile device is within a specified geographical area.
0 Assignments
0 Petitions
Accused Products
Abstract
Technology is disclosed for implementing a mobile device management service. The technology includes a first computing device behind a first firewall, for providing device management as a software as a service that is configured to (a) receive one or more policies from an entity, the entity managing a second server computing device that is behind a second firewall, wherein the first firewall and the second firewall are different firewalls, further wherein at least one of the received policies is indicated to pertain to a group of mobile computing devices; and (b) upon receiving a communication from a mobile computing device belonging to the group of mobile computing devices, transmit to the mobile computing device the received policy pertaining to the group of mobile computing devices, wherein the received policy specifies a condition for future communications between the mobile computing device and the second server computing device.
7 Citations
16 Claims
-
1. A method, performed by a first server computing device implementing a mobile device management device, the first server computing device behind a first firewall, for providing device management as a software as a service, comprising the steps of:
-
communicating with a middle tier via a web services component to retrieve one or more policies from an entity, the entity managing a second server computing device that is behind a second firewall, wherein the first firewall and the second firewall are different firewalls, further wherein at least one of the received policies is indicated to pertain to a group of mobile computing devices; upon receiving a communication from a mobile computing device belonging to the group of mobile computing devices, transmitting to the mobile computing device the received policy pertaining to the group of mobile computing devices, wherein the received policy specifies a condition for future communications between the mobile computing device and the second server computing device, further wherein the first server computing device has a digital certificate relating to the mobile device management service and the second server computing device does not have a digital certificate relating to the mobile device management service; enforcing the received policy via a plugin component that communicates with the middle tier via the web services component, wherein the plugin component is installed in the second server computing device; receiving one or more policies from a second entity, the second entity managing a third server that is behind a third firewall, wherein the first firewall, the second firewall, and the third firewall are different firewalls, further wherein at least one of the received policies is indicated to pertain to a second group of mobile computing devices, and the third server does not have a digital certificate relating to the mobile device management device; and permitting or disallowing actions when the mobile device is within a specified geographical area. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A non-transitory computer-readable recording medium comprising:
-
instructions for communicating with a middle tier via a web services component to receive one or more policies from an entity, the entity managing a second server computing device that is behind a second firewall, wherein at least one of the received policies is indicated to pertain to a group of mobile computing devices; instructions for transmitting, upon receiving a communication from a mobile computing device belonging to the group of mobile computing devices, to the mobile computing device the received policy pertaining to the group of mobile computing devices, wherein the received policy specifies a condition for future communications between the mobile computing devices and the second server computing device, further wherein the second server computing device does not have a digital certificate relating to the mobile device management service; instructions for enforcing the received policy via a plugin component that communicates with the middle tier via the web services component, wherein the plugin component is installed in the second server computing device; instructions for receiving one or more policies from a second entity, the second entity managing a third server that is behind a third firewall, wherein the second firewall and the third firewall are different firewalls, further wherein at least one of the received policies is indicated to pertain to a second group of mobile computing devices, and the third server does not have a digital certificate relating to the mobile device management device; and instructions for permitting actions when the mobile computing device is located in an unrestricted area and disallowing actions when the mobile computing device is located in a restricted area. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A system comprising:
-
a group of mobile computing devices; a first server computing device implementing a mobile device management service for providing device management as a software as a service, the first server computing device behind a first firewall, wherein upon receiving an enrollment request from a mobile computing device belonging to the group of mobile computing devices, transmits a document to the mobile computing device to enforce at least one policy, further wherein the first server computing device has a digital certificate relating to the mobile device management service; the first server computer device communicating with a middle tier via a web services component to retrieve the policy from an entity, the entity managing a second server computing device that is behind a second firewall, wherein the first firewall and the second firewall are different firewalls, wherein the second server computing device transmits the document to the first server computing device, wherein second server computing device behind the second firewall exchanges information with the mobile computing device only if the mobile computing device complies with the policy, further wherein the second server computing device does not have a digital certificate relating to the mobile device management service; the second server computing device having a plugin component that communicates with the middle tier via the web services component to enforce the policy, wherein the policy specifies permitted or disallowed actions when the mobile computing device is located within a specified geographical area; and the first server computer device communicating with the middle tier via the web services component to retrieve the policy from a second entity, the second entity managing a third server computing device that is behind a third firewall, wherein the first firewall, the second firewall, and the third firewall are different firewalls, wherein the third server computing device transmits the document to the first server computing device, wherein third server computing device behind the third firewall exchanges information with the mobile computing device only if the mobile computing device complies with the policy, further wherein the third server computing device does not have a digital certificate relating to the mobile device management service. - View Dependent Claims (12, 13, 14, 15, 16)
-
Specification