Mobile Device Management
The following features are part of the Mobile Device Management service provided by Omerta.
Government-Grade Common Criteria Mode
Simplifies configuring devices into a compliant state for Common Criteria (national security) deployments. This mode streamlines the process of ensuring compliance with national security standards, allowing for seamless configuration of devices.
Separated Apps
or enterprises that need full control over a corporate-owned device while still enabling authorized third-party business apps, Omerta exclusively offers Separated Apps. This feature creates a sandboxed folder that isolates third-party apps, providing enhanced security and control for corporate devices.
App Isolation Groups (SEAMS)
Unlike classic app containers with a GUI, Omerta introduces App Isolation Groups, allowing for the management of "invisible" app isolation groups. These groups protect a set of apps from any other set, offering increased security and privacy. With the capability to create up to 300 groupings, organizations can tailor their app management to their specific needs.
Secure Certificate Enrollment Agents (SCEP, CMP, CMC_EST Protocols)
Omerta provides a free set of certificate enrollment agents that adhere to the latest security protocols. By leveraging these agents, there is no need to enroll certificates insecurely or implement custom protocols. This feature ensures secure certificate enrollment and simplifies the management of digital certificates.
Manageability:
Audit Log
Omerta's Audit Log provides comprehensive and detailed device audit logs, recording numerous extra types of events across various areas, including system security, authentication, app management, data protection, network connectivity, and peripheral control. These extensive logs satisfy government requirements for security audit trails, allowing for thorough monitoring and analysis.
Device Software Updates
Omerta E-FOTA, running on top of Infiniti, empowers IT administrators to deploy specific firmware versions that may not necessarily be the latest. These selective firmware updates provide a stable environment for business apps and services, enhancing compatibility and performance. Infiniti allows administrators to schedule firmware updates based on specific conditions, such as a particular time of the day, network availability (Wi-Fi or mobile data), or battery power status. These features help optimize productivity and ensure a successful upgrade process.
Remote Control
With Infiniti, Omerta enables IT administrators to remotely control devices, injecting finger, keyboard, and mouse events. This comprehensive remote control capability allows administrators to efficiently troubleshoot, configure settings, and provide support to end-users. Additionally, administrators can remotely view devices, gaining visibility into device status and ensuring seamless management.
Peripheral Framework
Omerta Knox SDK extends management capabilities beyond mobile devices to include peripherals like barcode readers connected to or integrated with devices. This peripheral framework enables partners and developers to easily automate the setup, monitoring, diagnostics, and control of different peripheral models, enhancing efficiency and integration across a wide range of devices and accessories.
Granular Roaming Controls
IT administrators can exercise granular control over which mission-critical apps are allowed to use data during mobile roaming. This capability becomes particularly significant in situations where mobile data usage incurs high call, text, and data rates. Omerta's Advanced Enterprise (AE) allows administrators to disable mobile data, preventing unnecessary charges, while still allowing other mobile data usage. Moreover, Infiniti Premium enables separate roaming controls for each Access Point Name (APN), providing additional flexibility and control in managing roaming costs and data usage.
Admin Device Lock
Omerta allows IT administrators to remotely lock a device in such a way that a user cannot unlock it at all. This feature provides an added layer of security in situations where device security is of utmost importance. Furthermore, Omerta enables administrators to control the personal space and work profile separately, allowing for customized access and management based on specific user requirements.
Data Sharing Policy
Omerta's Infiniti provides data synchronization for key elements such as Contacts, Calendar, and Notifications. This synchronization ensures that important information remains consistent across devices and platforms. Additionally, Infiniti offers a unified Calendar that incorporates both personal and work events, promoting efficiency and productivity in managing schedules and tasks.
Firewall Management
Omerta offers an industry-exclusive ability to set on-device firewall rules, enhancing network security and control. Administrators can define specific firewall rules to regulate network traffic and prevent unauthorized access. Furthermore, Infiniti provides notifications to IT administrators when employees attempt to visit blocked domains, ensuring transparency and proactive security measures.
Granular Device Policies
Omerta's Mobile Device Management solution supports granular device policies to meet compliance requirements and deployment needs. These policies include SMS/MMS disclaimers, RCS/SMS/MMS logging, call restrictions, read and write restrictions on SD cards, granular Bluetooth profile restrictions, and management of DeX deployment settings. These flexible policies provide administrators with the necessary tools to enforce compliance and tailor device behavior to organizational standards.
Advanced Workspace Configuration
Omerta's Advanced Workspace Configuration enables strict policy enforcement for technologies such as Bluetooth, SD Card, USB, and others within the work profile. This configuration ensures that sensitive work data and resources remain protected while allowing full use of these technologies outside the work profile, offering a balance between security and user convenience.
Unlock Using Active Directory Credentials
Omerta eliminates the need for employees to remember separate credentials for Windows laptops and mobile devices. With this feature, device users can conveniently use their existing Active Directory credentials to unlock their mobile devices, simplifying authentication and promoting a seamless user experience.
Split Billing (Dual APNs)
Omerta offers Split Billing, allowing enterprises to pay solely for the data usage of their approved business apps. This feature enables clear separation between personal and business data usage, ensuring accurate billing and cost allocation. Employees are responsible for fees associated with personal data usage, further enhancing transparency and cost management.
Network Analytics
Omerta's Network Analytics feature enables IT administrators to deploy network threat detection solutions without granting these tools complete access to all network traffic. This capability provides valuable insights into network activity, detecting potential threats and anomalies without compromising the privacy of other network traffic. Network Analytics contributes to robust network security and efficient threat detection.
VPN
VPN Granularity
Per-App, Per-Container, or Whole Device: Omerta's Infiniti provides the most granular VPN controls available in the market. Administrators can configure VPN settings on a per-app, per-container, or whole device basis, allowing for precise control over VPN usage and ensuring secure connectivity as per organizational requirements.
Non-Bypassable VPN
Omerta's Infiniti features strict controls that prevent any traffic from bypassing a configured VPN, even in exceptional cases. These controls remain in place even during edge cases such as device reboots, VPN client crashes, direct access to the physical interface by an app, or reinstallation of an app using a VPN. The non-bypassable VPN capability strengthens security by enforcing secure connectivity consistently.
On-Demand VPN
Omerta's Infiniti introduces On-Demand VPN activation, allowing the VPN to activate only when a target app is launched. This feature optimizes service fees by ensuring that VPNs are only active when needed, providing cost savings and resource optimization for the organization.
HTTP Proxy over VPN
Infiniti supports a wide range of network protocols that can utilize HTTP Proxy, including authentication options, IPv4, and IPv6. This flexibility enables secure and efficient data transmission through VPN connections, enhancing network connectivity and compatibility.
VPN Chaining
Omerta's Infiniti supports VPN Chaining, allowing the use of two VPN tunnels to double-encrypt traffic. This feature enhances anonymity, strengthens security, and prevents a single security vulnerability in a VPN layer from compromising network