Relay Server, SUP, Afaria and personal devices
Assuming that we have the following architecture:
Relay Server installed in the DMZ;
SUP and Afaria installed on the internal network.
The connection to the SUP, through the relay server, was validated by the container hybrid (HWC) installed on a mobile device with android.
A DNS was assigned to the public IP. Therefore, when configuring the HWC, we used a valid address (RS) to connect to the SUP. The connection worked normally.
From this moment came a question:
Assuming that a user has two mobile devices: A personal and other corporate use.
How can we ensure that it will not launch settings (Relay Server / SUP) on your personal device? Is possible to control through the mac address of the device? Someone has was faced with this question.
I'm currently evaluating the Common Security Infrastructure component (CSI - security framework SMP) in search of answers.