I had a client that was looking for an “active sync monitoring/reporting/blocking tool for BYOD email access in an Exchange environment” so I researched the following solutions:
Apple Mobile Device Management
As the massive growth of iOS devices continues to rise, more IT decision makers are implementing innovative Mobile Device Management (MDM) solutions to efficiently manage large-scale iOS deployments while improving user productivity across the board.
The MDM framework built into iOS gives MDM solutions the ability to wirelessly interact with iOS devices that are managed by organizations. Third-party vendors use this framework to build MDM servers that communicate seamlessly with iOS devices.
MDM gives IT departments the ability to securely enroll devices in an enterprise environment, configure and update settings, monitor compliance with corporate policies, and remotely wipe or lock managed devices. Using an MDM server gives organizations a simple way to get users up and running with access to company services regardless of who owns the device.
McAfee Enterprise Mobility Management
“McAfee Enterprise Mobility Management (McAfee EMM) enables businesses to empower their work force with mobile productivity in a secure, simplified, streamlined way.”
This service blocks, “Unauthorized, unsecured, and modified devices like jailbroken iPhones, and meet audit and reporting demands with enterprise-class reporting.”
Free MaaS360 ActiveSync Admin Tool
“Gain Visibility of Mobile Devices within Your Exchange ActiveSync Environment.” In the era of Bring Your Own Device (BYOD), more users than ever are connecting to Exchange through ActiveSync without ITs knowledge. With the MaaS360 ActiveSync Admin Tool from Fiberlink, you can easily view all of the devices connecting to your Exchange servers through ActiveSync and remove old device associations with ease.
The MaaS360 ActiveSync Admin Tool lets you:
- Quickly identify the number ActiveSync device associations
- Export mailbox and device information for reporting and maintenance
- Remove orphaned ActiveSync devices in bulk
- Best of all, no PowerShell knowledge is required.
Air Watch Mobile Email Management
“Prevent access for blacklisted devices and operating systems with device” says Air Watch, “Block access for un-enrolled, non-compliant or compromised devices”
“Through Secure Gateway, companies can secure and manage their corporate email infrastructure by defining the business logic for connectivity. IT can allow or block both selected mobile users and approved devices and classes as well as create rule sets that require users to access mail using only approved Webmail clients and services.”
According to Air Watch you can, “Block unmanaged devices…Discover existing unmanaged devices…Block client, user, device model or OS…Exchange 2003/2007”
Air Watch is the largest provider of enterprise mobility management in the world. They specialize in Mobile Security, Mobile Device Management, and BYOD. They are used by companies like United Airlines, Lowe’s, Delta, US Army Corps of Engineers, NHS, and Skanska. This might be a good place to start looking.
Exchange Server 2010 Mobile Device Management
Microsoft Exchange Server 2010 Service Pack 1 (SP1) and Microsoft Exchange ActiveSync offer many different features for both users and administrators. As an administrator, you can create allow lists, block lists, and quarantine lists specifying which mobile devices are allowed to access your Exchange mailboxes. A quarantine list lets you allow only a user’s assigned device to connect to the Exchange server.