Hi, This is just to elaborate more on the policy flow integration. Policies comes with 3 aspects as per the previous EMM design.
1) Enforcement. 2) Monitoring. 3) Compliance. When it comes to enforcing this usually happens at the enrollment time or upon changing an existing policy where we have to enforce the policies again to devices. Once the device is successfully enrolled we will be pushing the policies to devices. For that in the success events of enrollment in platforms, we will be fetching the effective policy. This effective policy is managed by policy management components. This is coupled to the platform based on the JSON generated at the UI. From UI we can have a generic endpoint to publish policy payloads in a array based JSON (obviously with the operation payload and operation code). At runtime platforms will iterate operations which are available through operation APIs or push them at once as one policy operation to the device. Ideally this will be saved as a policy operation in the operation core since it needs an execution. Hence form plugin point of view its matter of fetching the effective policy and putting it back into the operation tables and initiating the operation flow. For monitoring there needs to be a configurable time entry to trigger and check the monitoring (for each tenant). Every X interval time this will execute a task and execute the monitoring. For this a callback listener is needed for platforms to do monitoring since the way each platforms deal with monitoring is different. For Android this could be push to agent and get the results back in. For iOS it will be checking for the policy profile in device whether its installed or not or else set of profiles which has been installed from a policy operations. For compliance it will need to define actions which will need to trigger upon policy violations. This is yet to be decided. Please add if something is missing here. Regards, Dilshan -- Dilshan Edirisuriya Senior Software Engineer - WSO2 Mob: + 94 777878905 http://wso2.com/ https://www.linkedin.com/profile/view?id=50486426
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
