Connect BlackBerry UEM to Cisco ISE
BlackBerry UEM
to Cisco ISE
If you do not have a
Cisco Identity Services
Engine
(ISE) administrator account, send these instructions to a Cisco ISE
administrator, along with the required information about BlackBerry UEM
and the BlackBerry UEM
administrator account.
The following steps are based on .
Cisco ISE
version 1.4. For the latest Cisco ISE
documentation, visit Cisco ISE Configuration Guides to read the Cisco Identity Services
Engine
Administrator Guide- Log in to theCisco ISEmanagement console.
- On the menu bar, clickAdministration > Network Resources > External MDM.
- ClickAdd.
- In theNamefield, type a friendly name for the connection.
- In theHostname or IP addressfield, type the FQDN or IP address of theBlackBerry UEMdomain.
- In thePortfield, type18084.If port 18084 was not available whenBlackBerry UEMwas installed, the setup application selected another available port for this purpose. To verify the correct port value, in theBlackBerry UEM Corelog file (CORE), search for(^/ciscoise/.*)and record the port number that is listed just before this text.
- In theUser Namefield, type the username for theBlackBerry UEMadministrator account.
- In thePasswordfield, type the password for theBlackBerry UEMadministrator account.
- In thePolling Intervalfield, specify how often, in minutes, you wantCisco ISEto pollBlackBerry UEMfor device data. It is a best practice to use the default value of 240 minutes.If you set this value to 60 minutes or less, you might notice a significant performance impact on your organization’s environment. If you set this value to 0,Cisco ISEdoes not pollBlackBerry UEM.
- Click theEnablecheck box.
- ClickTest Connectionto verify thatCisco ISEcan connect toBlackBerry UEM.
- ClickSubmit.
After the connection is established, you can view the dictionary attributes for
BlackBerry UEM
in Policy > Policy Elements > Dictionaries > System > MDM > Dictionary Attributes
. Log entries for Cisco ISE
polling are written to the BlackBerry UEM Core
(CORE) log file.Perform the following configuration tasks in the (see Set Up MDM Servers With Cisco ISE).
Cisco ISE
management console. For the latest instructions, visit Cisco ISE Configuration Guides to read the Cisco Identity Services
Engine
Administrator Guide- Configure an authorization profile that will redirect devices that are not activated onBlackBerry UEM. For more information, see Redirecting devices that are not activated on BlackBerry UEM.
- Configure authorization policy rules that determine howCisco ISEhandles devices that are not activated onBlackBerry UEMor compliant withBlackBerry UEM. InPolicy > Policy Sets, create a policy. For an example policy, see Example: Authorization policy rules for BlackBerry UEM.