Architecture: BlackBerry UEM for dark sites
BlackBerry UEMfor dark sites
BlackBerry UEM Core
BlackBerry UEM Coreis the central component of the
BlackBerry UEMarchitecture. It consists of several subcomponents that are responsible for:
BlackBerry UEMdatabase is a relational database that contains user account information and configuration information that
BlackBerry UEMuses to manage devices.
BlackBerry Gatekeeping Service
BlackBerry Gatekeeping Servicesends commands to
Exchange ActiveSyncto add devices to an allowed list when devices are activated on
BlackBerry UEM. Unmanaged devices that try to connect to an organization's mail server can be reviewed, verified, and blocked or allowed by an administrator using the
BlackBerry UEMmanagement console.
Management console and
The management console and
UEM Self-Serviceprovide a browser-based user interface for administrator and user access to
You use the management console to manage system settings, users, devices, and apps.
Users can use
UEM Self-Serviceto set an activation password and send commands to devices, such as set password, lock device, and delete device data.
Mail, content, or application servers
Your internal network includes various services that devices and
BlackBerry UEMcan communicate with.
If you are activating
Samsung Knoxdevices using
Android Enterpriseactivation types, you require a server that contains the
BlackBerry UEM Client.apk file and a PAC file that prevents devices from attempting to connect to
Google Playduring activation.
SamsungKLM license server
If you are managing
Samsung Knoxdevices, an on-premises
Samsung KnoxLicense Management server is installed with
BlackBerry UEMfor dark sites so that
BlackBerry UEMdoesn't have to connect to the web-based
Samsung KnoxLicense Management System to get license information.
Samsung Knoxdevices communicate with the KLM server using your work
BlackBerry UEMmust send notifications to devices through an APNs server. When devices receive a notification from APNs, they contact
BlackBerry UEMfor updates.
For information about securing connections to APNs or possible alternatives to using the public APNs, contact your