Using BlackBerry Secure Connect Plus for connections to work resources
BlackBerry Secure Connect Plusfor connections to work resources
BlackBerry Secure Connect Plusis a
BlackBerry UEMcomponent that provides a secure IP tunnel between apps and your organization's network:
- ForAndroid EnterpriseandBlackBerry 10devices, all work apps use the secure tunnel.
- ForSamsung Knox Workspacedevices andSamsung Knoxdevices withAndroid Enterpriseactivations, you can allow all work space apps to use the tunnel or specify apps using per-app VPN.
- ForiOSdevices, you can allow all apps to use the tunnel or specify apps using per-app VPN.
The secure IP tunnel gives users access to work resources behind your organization’s firewall while ensuring the security of data using standard protocols and end-to-end encryption.
BlackBerry Secure Connect Plusis not available in your region, you must manually disable it for
Androiddevices in the Enterprise connectivity profile.
BlackBerry Secure Connect Plusand a supported device establish a secure IP tunnel when it is the best available option for connecting to the organization’s network. If a device is assigned a
Wi-Fiprofile or VPN profile, and the device can access the work
Wi-Finetwork or VPN, the device uses those methods to connect to the network. If those options are not available (for example, if the user is not in range of the work
BlackBerry Secure Connect Plusand the device establish a secure IP tunnel.
iOSdevices, if you configure per-app VPN for
BlackBerry Secure Connect Plus, the configured apps always use a secure tunnel connection through
BlackBerry Secure Connect Plus, even if the app can connect to the work
Wi-Finetwork or the VPN specified in a VPN profile.
Supported devices communicate with
BlackBerry UEMto establish the secure tunnel through the
BlackBerry Infrastructure. One tunnel is established for each device. The tunnel supports standard IPv4 protocols (TCP and UDP) and the IP traffic that is sent between devices and
BlackBerry UEMis encrypted end-to-end using AES256. As long as the tunnel is open, apps can access network resources. When the tunnel is no longer required (for example, the user is in range of the work
Wi-Finetwork), it is terminated.
For more information about how
BlackBerry Secure Connect Plustransfers data to and from devices, see the on-premises Architecture content or the Cloud Architecture content.