Skip navigation
headerimage_matrix42-meets-f5_landingpage.jpg

cat_Page

Matrix42 Unified Endpoint Management Meets F5® Unified Access Management

Today's organizations have to deal with managing all kinds of mobile and hybrid devices, in addition to the management of physical devices - whether its corporate or BYOD. Alongside the benefits of allowing mobile and BYO devices to be used at work, companies need to be aware of risks regarding access and applications, including the storage of sensitive corporate information on mobile devices with unlimited access.

Matrix42 Unified Endpoint Management enables IT administrators to manage all kinds of different devices easily through one unified interface. The partnership between Matrix42 and F5, the unified access management strategy specialist, allows IT administrators to solve not only device management issues but also access and application management issues. These include for example:

  • Addressing both enterprise device management and application delivery needs
  • Simplifying the certificate authority integration process
  • Providing a secure email gateway with Exchange ActiveSync control
  • Achieving an application level VPN without requiring a proprietary proxy server
  • Ensuring protection against data leakage

The integration of Silverback by Matrix42 with F5® Access Policy Manager® brings together market leading unified endpoint management, and cutting edge identity-based, context-aware application delivery. This integration provides a highly secure and scalable architecture that addresses enterprise device management and application delivery needs. Silverback allows administrators to nominate a set of managed applications that configures BIG-IP APM® to automatically create an application level VPN when launched or browsed in Safari. By combining Access Policy Manager with Silverback’s innovative and market-changing security, device management and client certificate distribution platform, with BIG-IP Access Policy Manager businesses can now easily extend access policy enforcement from corporate networks to smartphones & tablets.

An increasing number of companies recognize that issuing service-based client authentication certificates is an effective way to strengthen device security. However, when it is done manually, it’s inefficient, labor intensive and a key management nightmare. Silverback’s enhanced certificate distribution framework automatically generates and issues these certificates, which can then be integrated into many BIG-IP services including Exchange ActiveSync, SharePoint, VPN access, Web App Access or a SAML iDP.

Silverback integrates with F5 BIG-IP APM to deliver a very secure, scalable Exchange ActiveSync solution with unprecedented service availability. Silverback’s integration into Microsoft’s Enterprise Certificate Authority allows companies to deploy individual client certificates to the entire unified fleet. The BIG-IP APM technology allows these devices to be authenticated and authorized, before delivering email. No corporate passwords are required on the devices! This combines with F5 BIG-IP Local Traffic Manager™ (LTM) and F5 BIG-IP DNS, (formerly F5 BIG-IP Global Traffic Manager™ (GTM™)) technologies to provide a fully scaled-out and robust architecture.

Silverback integrates with F5 BIG-IP APM so organizations can leverage their existing network access technologies without requiring a proprietary proxy server. Silverback’s per application VPN capability gives IT granular control over corporate network access. It ensures that data transmitted by nominated managed applications travels through a VPN, and that employee’s personal web browsing activity does not. Silverback supports all available F5 BIG-IP APM VPN types, including both Full and Split Tunnel VPNs.

Silverback’s enhanced “Open In” controls allow organizations to further protect their corporate data by controlling which apps and accounts can be used to open corporate documents and attachments. By managing which applications are available in the sharing panel, corporate administrators decide where corporate data can reside, as well as preventing personal documents from being opened in enterprise applications.

USE CASES

Application Level VPN

An administrator needs to set up controlled corporate network access for all employees. The administrator configures Silverback to deploy the F5 Edge Client®, with Per App VPN settings and a client certificates from your certificate authority.

With Matrix42 Unified Endpoint Management and F5 BIG-IP APM:

  • As the user opens their enterprise application, the Per App VPN fires up automatically, authenticates and connects the app to the corporate server
  • The user navigates to an intranet page whilst on the road, and it loads faster than it does in the office
  • An urgent email comes through with a link to a secure SharePoint document. When the link is clicked the document loads just like an attachment.
  • Employee privacy is ensured as personal applications and activities do not travel through the VPN tunnel

Secure Exchange ActiveSync

A business needs to deliver a very secure, scalable Exchange ActiveSync solution as a mission critical application. The administrator deploys Exchange settings with a client certificate using Silverback. The certificate authority is trusted by their F5 BIG-IP APM.

With Matrix42 Unified Endpoint Management and F5 BIG-IP APM:

  • The user opens their email application; mail arrives without having to enter their corporate credentials. No passwords are required.
  • The user changes their corporate password. There is no need to update their smartphone, and the phone keeps working without interruption.
  • A hacker tries a brute force attack on the user's Exchange Account by guessing the password. The hacker fails because he does not have a security certificate. The account is never locked out, and the user is completely unaware of the incident.
  • An administrator adds an extra Exchange CAS server to handle the growing number of users. She simply adds it to the F5 BIG-IP LTM pool, and it starts processing requests, without service interruption.  

´On-the-go´ application configuration

A new employee arrives at his desk and finds his new mobile phone in its unopened original packaging. After unpacking it, he switches it on and wants to use the company app.

With Matrix42 Unified Endpoint Management and F5 BIG-IP APM:

  • After turning the phone on, a text message from Silverback arrives containing a link.
  • The end user clicks the link and Silverback automatically puts the device under management, and enrolls all the preconfigured settings on the phone.
  • After a short time, the end user can already get started with his new device, without the necessity of it being touched by IT even once.

ABOUT

Matrix42 Unified Endpoint Management

Matrix42 Unified Endpoint Management, combines the simplicity of Matrix42’s EMM product (Silverback by Matrix42) with the reliability of Matrix42’s market-proven approach to Client Lifecycle Management. Ultimately, it helps organizations create a holistic workspace management environment that integrates device, ITSM and compliance management – the logical next step once Unified Endpoint Management has been achieved.

F5 provides solutions for an application world

F5 helps organizations seamlessly scale cloud, data center, and software defined networking (SDN) deployments to successfully deliver applications to anyone, anywhere, at any time. F5 solutions broaden the reach of IT through an open, extensible framework and a rich partner ecosystem. This approach lets customers pursue the infrastructure model that best fits their needs over time. The world’s largest businesses, service providers, government entities, and consumer brands rely on F5 to stay ahead of cloud, security, and mobility trends.

Silverback and BIG-IP have a long history of integration

Silverback has been an integral part of the F5 technology alliance partner ecosystem for some time. F5 BIG-IP and Silverback MDM have been successful partners since 2012, helping large corporations transform their workforces from being essentially deskbound, to being mobile only. Over the years, this partnership has developed in both scope and intensity. It took on a new dimension in 2014 when Matrix42 acquired Silverback and expanded its global presence.

Use existing F5 infrastructure by upgrading your license to include BIG-IP APM, and away you go. Silverback integrates with F5 BIG-IP APM so organizations can leverage their existing network access technologies without requiring a proprietary proxy server. Silverback’s per application VPN capability gives IT granular control over corporate network access. In particular, it ensures that data transmitted by nominated managed applications travels through a VPN and that other data, like an employee’s personal web browsing activity does not.

Top