Controlling Use of Mobile Applications
You can regulate requests from mobile applications by only allowing requests from certain versions of an application and from certain device types. By doing so, you ensure that all users are using the latest versions of mobile applications and taking advantage of the latest security and functional updates.
To control mobile application use, first you define a list of device types and a list of mobile applications you want to regulate. Then, you select from these values when you set up a mobile application filter in an Enterprise Gateway rule. The mobile application must provide the device type, application name, and application version in the request header in the following header fields:
Mobile-Device-Type
Mobile-Application-Name
Mobile-Application-Version
Note: If a request includes a device type or application name that is not configured in an Enterprise Gateway rule, Enterprise Gateway Server will allow the request. Likewise, if a request specifies a version in an invalid format, the server will allow the request. A request violates a rule only when the request matches the condition specified in the filter.
To control mobile applications
1. Open Integration Server Administrator on the Integration Server acting as the Enterprise Gateway Server.
2. In the Navigation panel, select Security > Enterprise Gateway Rules.
3. In the Navigation panel on the Enterprise Gateway Rules screen, select Mobile Application Protection Options.
4. Click Edit Device Types and enter the names of mobile devices, one per line, that you want to restrict. After you have entered the device types, click Save Changes.
5. Click Edit Mobile Applications and enter the names of mobile applications, one per line, that you want to restrict. After you have entered the device types, click Save Changes.
6. Click Return to Enterprise Gateway Rules.
7. On the Enterprise Gateway Rules screen, either select Create Rule to create a new rule or select an existing rule from the list.
8. On the Create Rule screen or the Edit Rule screen, scroll down to the Mobile Application Protection Filter portion of the screen.
9. Select a device type, a mobile application name, a condition, and an application version.
Specify the version in this format:
major-version.[minor-version.[sub-minor-version.[patch]]]
For example, to disallow requests from old versions (pre-3.0) of the BigApp mobile application sent from the XYZ mobile device, specify the following:
Field | Value |
Device Type | XYZ |
Mobile Application | BigApp |
Condition | < |
Mobile Application Version | 3.0 |
To allow requests from all 3.0 versions (3, 3.0, 3.0.0, 3.0.0.0) of the BigApp mobile application sent from the XYZ mobile device, specify the following:
Field | Value |
Device Type | XYZ |
Mobile Application | BigApp |
Condition | = |
Mobile Application Version | 3.0 |
10. To add another condition, click Add and repeat the previous step.
11. Click Save Changes.