Components of Mobile Security System Parent topic

The following table provides the descriptions of the Mobile Security components.

Components of Mobile Security System

Component Description Required or Optional
Management Server
The Management Server enables you to manage Mobile Device Agents from the administration web console. Once mobile devices are enrolled to the server, you can configure Mobile Device Agent policies and perform updates.
Required
Communication Server
The Communication Server handles communications between the Management Server and Mobile Device Agents.
Trend Micro Mobile Security provides two types of Communication Server:
  • Local Communication Server (LCS)—this is a Communication Server deployed locally in your network.
  • Cloud Communication Server (CCS)—this is a Communication Server deployed in the cloud and you will not need to install this server. Trend Micro manages the Cloud Communication Server and you only need to connect to it from the Management Server.
Required
Exchange Connector
Trend Micro Mobile Security uses Exchange Connector to communicate with the Microsoft Exchange server, detects all the mobile devices that use Exchange ActiveSync service, and displays them on Mobile Security web console.
The Microsoft Exchange server Integration with Mobile Security enables the administrators to monitor the mobile devices that access the Microsoft Exchange server. Once the feature is enabled and configured, Mobile Security administrators can perform Remote Wipe and block the access to the Microsoft Exchange server for such mobile devices.
The integration of Microsoft Exchange server with Mobile Security also enables the administrators to control the user access to cooperate data (such as, emails, calendar, contacts, and so on).
Optional
Mobile Device Agent (MDA)
The Mobile Device Agent is installed on the managed Android and iOS mobile devices. The agent communicates with the Mobile Security Communication Server and executes the commands and policy settings on the mobile device.
Required
Microsoft SQL Server
The Microsoft SQL Server hosts the databases for Mobile Security Management Server.
Required
Active Directory
The Mobile Security Management Server imports users and groups from the Active Directory.
Optional
Certificate Authority
The Certificate Authority manages security credentials and public and private keys for secure communication.
Optional
SCEP
The Simple Certificate Enrollment Protocol (SCEP) is a communication protocol that provides a networked front end to a private certificate authority.
In some environments, it is important to make sure that corporate settings and policies are protected from prying eyes. To provide this protection, iOS allows you to encrypt profiles so that they can be read only by a single device. An encrypted profile is just like a normal configuration profile except that the configuration profile payload is encrypted with the public key associated with the device’s X.509 identity.
The SCEP works with the Certificate Authority to issue certificates in large enterprises. It handles the issuing and revocation of digital certificates. The SCEP and Certificate Authority can be installed on the same server.
Optional
APNs Certificate
(Full Version deployment mode, and Security Scan deployment mode with unlisted MDM vendor only.)
The Mobile Security Communication Server communicates through the Apple Push Notification Service (APNs) to iOS devices.
Required, if you want to manage iOS mobile devices
SSL certificate
(Full Version deployment mode, and Security Scan deployment mode with unlisted MDM vendor only.)
Trend Micro Mobile Security requires an SSL server certificate issued from a recognized Public Certificate Authority for the secure communication between mobile devices and Communication Server using HTTPS.
Required, if you want to manage Windows Phone or iOS mobile devices
SMTP Server
Connect SMTP server to make sure administrators can get reports from Mobile Security Management Server, and send invitations to users.
Optional