cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Afaria - Device Management

Former Member

on ‎02-20-2013 8:08 AM

0 Kudos

Hi Shival,

What are the minimum requirements are needed to make Device Management to be enabled?

  • Enrollment Server
  • Package Server
  • Self-service Portal (must of option)
  • Internet access to Afaria server
  • APNS (Must of Optional)

This kind of information will help us to better utilization of Afaria server.

We have installed Afaria server and Relay Server behind the firewall, means we need to use corporate VPN to connect to Relay Server/Afaria Server. In this scenario, what are the functionality of Afaria server can be used for Device Management.

Currently, the enrollment fails some times and how to trace the enrollment log?

Regards,

Thivagar K

Singapore

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

shival_tailor
Participant
‎02-20-2013 4:42 PM
0 Kudos

Hi Thivagar,

What are the minimum requirements are needed to make Device Management to be enabled?
  • Enrollment Server
  • Package Server
  • Self-service Portal (must of option)
  • Internet access to Afaria server
  • APNS (Must of Optional)

Minimum requirements can be found in the Release Notes, System Requirements, and Installation Guide. Please refer the following links for latest documents:

System requirements:

http://frontline.sybase.com/support/fileDownload.aspx?ID=2481

Release Notes:

http://frontline.sybase.com/support/fileDownload.aspx?ID=2480

Admin reference:

http://frontline.sybase.com/support/fileDownload.aspx?ID=2485

Installation guide:

http://frontline.sybase.com/support/fileDownload.aspx?ID=2484

Apart from the above, check the following for additional Afaria references and How-To guides:

http://scn.sap.com/docs/DOC-29313

Enrollment Server and Package Server requirements vary depending on if you are setting it up on a separate server or installing it on the same server as Afaria server. The requiremens are well-defined in the official documentation.

Self Service Portal can be installed on same server as Afaria server host and, typically, it can also be installed on a separate host. Self Service Portal will need a URL directing component in DMZ, e.g. TMG server can be used for this purpose, that would forward the incoming requests securely to SSP server.

Internet access to Afaria server is required only for URL shortening services, either or both of TinyURL and Goo.gl, depending on which one you are planning to use. The idea is for Afaria server to be able to reach to these services to generate enrollment codes. Other than that Afaria server doesn't need to be connected to internet.

APNS is an iOS specific requirements. If you are planning on enrolling iOS devices, then you need to fulfill APNS specific requirements, such as ports and APNS related certificates.

  

We have installed Afaria server and Relay Server behind the firewall, means we need to use corporate VPN to connect to Relay Server/Afaria Server. In this scenario, what are the functionality of Afaria server can be used for Device Management.
Currently, the enrollment fails some times and how to trace the enrollment log?

Relay Server needs to be in your DMZ and Afaria server in your corporate network behind firewall. Since you are using Relay Server, you don't need to use VPN to connect to Afaria server.

For Afaria server functionalities, please refer the Admin Reference guide.

For enrollment logs, I would do the following as a first step:

1) Setup an iPhone Config Utility (http://support.apple.com/kb/dl1466) and analyze the device logs;

2) Check IIS logs of Relay Server;

3) Check Relay Server logs;

4) Check the status of Relay Server and RSOE services; and

5) Check RSOE logs

You could check the KB articles from http://frontline.sybase.com/support/knowledgebase.aspx as next steps.

Best Regards,

Shival

Show replies
Show replies
Former Member
‎03-05-2013 5:10 PM
0 Kudos

Hi Shival,

I installed Afaria Server, Afaria API Service and Administrator but I'm having problems with enrollement. I read in some documents that I needed to install an Enrollement Server, How do I do that? Where do I get it? Do I need to install a Relay Server too?

Is there a manual as to how I should configure this? In the documents I've read it explains how enrollment works but it never explains how the Enrollment server connects with everything.

Thanks in advance,

Lucía Cianelli.

former_member686053
Active Participant
‎03-14-2013 11:34 AM
0 Kudos

You should Install Enrollment Server to achieve enrollment. Please run Setup and click  "Additional Installations and resources" then click "Install Enrollment Server" option next screen.

Install enrollment server according to Instalaltion guide.

After Installation enrollment server, you should configure Enrollment Code section and Enrollment Server components on server side. You can see how can you those things by reading Instalaltion and Admin ref. guide.

At the end, you have to configure Relay Server. If u want to enroll devices on real worls not only LAN. This has another instalallation guide as well.

here is detailed Relay Server setup guide. Is is for SUP but ican guaranteee that it is same like Afaria:

http://infocenter.sybase.com/help/index.jsp?topic=/com.sybase.infocenter.dc01205.0155/doc/html/aba12...http://infocenter.sybase.com/help/index.jsp?topic=/com.sybase.infocenter.dc01205.0155/doc/html/aba12...

Here is the process of enrollment.

Have a good work!

former_member615675
Explorer
‎04-20-2013 11:26 AM
0 Kudos

Hi Lucia,

i have enrolled my android device without using RS. RS is an optional component into afaria enviroment.

seems every things works fine, if you want we could share our experience.

Former Member
‎05-08-2013 11:34 AM
0 Kudos

Hi Loris,

Can you please tell me how did you do that?

I am using 1on1 NAT. And I have all components installed on the same physical machine.

I am troubling myself with it for a few days now, and I am tight with schedule.

Thanks a lot,

                   Sveta

former_member686053
Active Participant
‎05-08-2013 1:01 PM
0 Kudos

U have another machine on DMZ for relay server.

So many document about intalling Relay Server.

former_member615675
Explorer
‎05-08-2013 1:03 PM
0 Kudos

Hi Svetomir,

sorry but i'm not understand what kind of problems you occured in Afaria, is your issue regards iOS or Android? if it is on enroll Android device, i could offer my experiences otherwise, unfortunatly, no.

Could you explain what kind of trouble you have?

Former Member
‎05-08-2013 1:13 PM
0 Kudos

This message was moderated.

Former Member
‎05-08-2013 1:14 PM
0 Kudos

Hi Loris,

I have Afaria Server, admin, enrollment and package server all at one physical machine - Windows Server 2008 R2. And I have 1 on 1 NAT for that machine.

Now, when I enroll my android device from the LAN it works ok. But the problem occures when I try to enroll android client from the internet - it just fails.

Thank you for your help,

                                  Sveta

Former Member
‎05-09-2013 12:55 PM
0 Kudos

One thing to add, Relay Server is not an option...

Former Member
‎06-13-2013 4:32 PM
0 Kudos

Hello Loris,

Sorry for the delay in the answer but I've been having lots and lots of problems with relay server and sup and couldn't focus on Afaria until now.

I want to use afaria to limit the applications that can be installed, locate the devices and lock them but until now I can only see the device from Afaria Administrator and approve it, but from the device it still asks for user and password to connect.

Can you help me with some links or an example from your experience? Do you know if for what I want to do it's enough with Afaria Server, Afaria API and Administrator and Enrollment server installed?

Thanks for your help,

Lucia

shival_tailor
Participant
‎06-13-2013 5:55 PM
0 Kudos

Hi Lucia,

Did you selected to turn the Windows authentication on when you installed your enrollment server?

Regards,

Shival

Former Member
‎06-13-2013 7:18 PM
0 Kudos

Yes, I believe I did. Checking the installation guide I have the option is checked.

shival_tailor
Participant
‎06-13-2013 7:30 PM
0 Kudos

That's the reason it asks for user name/password from the device.

now I can only see the device from Afaria Administrator and approve it, but from the device it still asks for user and password to connect.
Ask a Question