BlackBerry UEM

 architecture and data flows

BlackBerry UEM

 is a unified endpoint management solution that provides comprehensive multiplatform device, application, and content management with integrated security and connectivity.

The 

BlackBerry Infrastructure

 is a global private data network distributed across multiple regions that enables and secures data in transit between thousands of organizations and millions of users around the world. It is designed to efficiently manage the transport of data between BlackBerry services and end-user devices.

For organizations using 

BlackBerry UEM

, the 

BlackBerry Infrastructure

 registers user information for device activation, validates licensing information for 

BlackBerry UEM

, and provides a trusted path between the organization and every user based on strong, cryptographic, mutual authentication. Because of the end-to-end encryption that protects data transmitted between the device and 

BlackBerry UEM

,  

BlackBerry UEM

 maintains a constant connection to the 

BlackBerry Infrastructure

. This ensures that organizations require only a single outbound connection to a trusted IP address to send data to users. All the data that travels between the 

BlackBerry Infrastructure

 and 

BlackBerry UEM

 is authenticated and encrypted to provide a secure communication channel into your organization for devices outside the firewall.

The 

BlackBerry Dynamics

 NOC is a network operations center that provides secure communications between 

BlackBerry Dynamics

 apps on devices and 

BlackBerry UEM

 and the 

BlackBerry Enterprise Mobility Server

.

BlackBerry UEM

 supports, 

iOS

, 

macOS

, 

Android

, 

Windows 10

, and 

BlackBerry 10

 devices.

BlackBerry UEM

 sends notifications to devices to contact 

BlackBerry UEM

 for updates and to report information for your organization’s device inventory. These notifications are sent to the 

BlackBerry Infrastructure

, where they are sent to the devices using the appropriate notification service:

By default, 

BlackBerry UEM

 makes a direct connection to the 

BlackBerry Infrastructure

 over ports 3101 and 443, and you do not need to install more routing components. However, if your organization's security policy requires that internal systems cannot make connections directly to the Internet, you can use the 

BlackBerry Router

 or a proxy server.

The 

BlackBerry Router

 acts as a proxy server for connections over the 

BlackBerry Infrastructure

 between 

BlackBerry UEM

 and all devices. The 

BlackBerry Router

 can support SOCKs v5 with no authentication.

If your organization already has a TCP proxy server installed or requires one to meet networking requirements, you can use a TCP proxy server instead of the 

BlackBerry Router

. The TCP proxy server can support SOCKs v5 with no authentication.

The 

BlackBerry UEM Core

 and 

BlackBerry Proxy

 support using an HTTP proxy server to connect to the 

BlackBerry Dynamics

 NOC.

Additional content servers and application servers in your organization's environment, including the company directory, mail server, certificate authorities, and so on.

BlackBerry UEM

 works with additional 

BlackBerry

 enterprise products such as: 

BlackBerry Enterprise Identity

, and 

BlackBerry 2FA

 to allow you to extend UEM capabilities in your organization.

The 

BlackBerry Enterprise Mobility Server

 provides several services used to send work data to and from 

BlackBerry Dynamics

 apps.