Sophos Mobile app groups interface guide. Product version: 7.1

Similar documents
Sophos Mobile. app groups interface guide. Product Version: 8.5

Sophos Mobile Control Network Access Control interface guide. Product version: 7

Sophos Mobile. Network Access Control interface guide. Product Version: 8.1

Sophos Mobile user help. Product version: 7.1

Sophos SafeGuard File Encryption for Mac Quick startup guide. Product version: 7

Sophos Mobile. startup guide. Product Version: 8.5

Sophos Mobile. startup guide. Product Version: 8.1

Sophos Mobile Control startup guide. Product version: 7

Sophos Mobile. user help. product version: 8.6

Sophos Mobile in Central

Sophos Enterprise Console

Sophos Enterprise Console

Sophos for Virtual Environments. configuration guide -- Sophos Central edition

Sophos Mobile in Central

Sophos Mobile. server deployment guide. Product Version: 8.1

Sophos Mobile Control Super administrator guide. Product version: 3.5

Sophos Deployment Packager

Sophos Anti-Virus for NetApp Storage Systems

Sophos Mobile. server deployment guide. product version: 8.6

Sophos Mobile Control Network Access Control interface guide

Sophos Central Partner ConnectWise Integration. guide

Sophos Mobile. server deployment guide. product version: 9

Sophos Mobile Control User guide for Windows Mobile

Sophos Central Enterprise

Sophos Mobile Control Technical guide

Sophos Central Enterprise. Help

Nasuni Data API Nasuni Corporation Boston, MA

Sophos for Virtual Environments. startup guide -- Sophos Central edition

Nasuni Data API Nasuni Corporation Boston, MA

Sophos Mobile Control Installation prerequisites form

Black Box DCX3000 / DCX1000 Using the API

AEM Mobile: Setting up Google as an Identity Provider

1 About this document System environment Communication between devices and push servers Technical support...

EMPOWER2018 Quick Base + Workato Workjam

Composer Help. Web Request Common Block

ovirt SSO Specification

Sophos Firewall Configuring SSL VPN for Remote Access

Canonical Identity Provider Documentation

E POSTBUSINESS API Login-API Reference. Version 1.1

Administering Jive Mobile Apps for ios and Android

Sophos for Virtual Environments. startup guide -- Enterprise Console edition

Sophos Mobile Control installation prerequisites form. Product version: 7

Sophos for Virtual Environments Startup guide -- Enterprise Console edition. Product version: 1.1

RSA Archer GRC Application Guide

Highwinds CDN Content Protection Products. August 2009

Sophos Mobile Control Installation guide

Using OAuth 2.0 to Access ionbiz APIs

LUCITY REST API INTRODUCTION AND CORE CONCEPTS

Authorization and Authentication

ForeScout Extended Module for Web API

Integration Guide. LoginTC

Healthcare Database Connector

HappyFox API Technical Reference

etrac ATOM Android App Setup Guide

Novell Identity Manager

Forescout. Open Integration Module: Web API. Configuration Guide. Version 1.4

Queens Library API Requirements Document For e-content Partners

Technosoft HR Recruitment Workflow Developers Manual

BaasBox. Open Source Backend as a Service. Otto Hylli

How to Configure Guest Access with the Ticketing System

Qualys Cloud Platform (VM, PC) v8.x Release Notes

Oracle Responsys. REST API Developer s Guide. REST API v1.3 for Responsys 18A E February 2018

Alloy Navigator API USER S GUIDE. Integration with External Systems. Product Version: 7.0 Document Revision: 1.0 Date: November 30, 2015

DEVELOPER GUIDE PIPELINE PILOT INTEGRATION COLLECTION 2016

Sophos Mobile. super administrator guide. Product Version: 8

3.1 Getting Software and Certificates

Ekran System v.6.0 Privileged User Accounts and Sessions (PASM)

ForeScout CounterACT. Configuration Guide. Version 4.1

SafeGuard Easy Demo guide. Product version: 6.1

Sophos Central Device Encryption. Administrator Guide

Salesforce Mobile App Security Guide

Entrust GetAccess 7.0 Technical Integration Brief for IBM WebSphere Portal 5.0

ReportPlus Embedded Web SDK Guide

KACE GO Mobile App 5.0. Getting Started Guide

Healthcare Database Connector

Entrust PartnerLink Login Instructions

ArcGIS Server and Portal for ArcGIS An Introduction to Security

BlackBerry Developer Summit. A02: Rapid Development Leveraging BEMS Services and the AppKinetics Framework

Aruba Central APIs. Adolfo Bolivar April 2018

Intel Unite Solution Version 4.0

External HTTPS Trigger AXIS Camera Station 5.06 and above

Integrate HEAT Software with Bomgar Remote Support

VMware Identity Manager Administration

Mobile Android Configuration Guide

API Reference Manual

One Identity Starling Two-Factor Desktop Login 1.0. Administration Guide

HEAT Software Integration with Remote Support

ClickToCall SkypeTest Documentation

User Authentication APIs

ExtraHop 7.3 ExtraHop Trace REST API Guide

TELIA OPERATOR SERVICE PLATFORM

PowerExchange for Facebook: How to Configure Open Authentication using the OAuth Utility

OAuth and OpenID Connect (IN PLAIN ENGLISH)

RESTful API SecurAccess RESTful API Guide

Sophos Mobile super administrator guide. Product version: 7.1

Sophos Enterprise Console

Network Policy Controller UAM/RADIUS Guide

Centrify for Dropbox Deployment Guide

Grandstream Networks, Inc. Captive Portal Authentication via Twitter

Datto Disaster Tracking

Transcription:

Sophos Mobile app groups interface guide Product version: 7.1

Contents 1 About this guide...3 2 App reputation support...4 3 The app groups web service interface...5 4 API description...7 4.1 Log in...7 4.2 Log out...9 4.3 Create app group...10 4.4 Get app groups...13 4.5 Get app group by ID...15 4.6 Update app group...18 5 Technical support...21 6 Legal notices...22 2

app groups interface guide 1 About this guide This guide explains how to manage app groups using the RESTful web service interface of Sophos Mobile. Typically, this is used by third-party app reputation vendors to integrate app reputation information into Sophos Mobile. Document conventions The following convention is used in this guide: Unless otherwise noted, the term Windows Mobile refers to Windows Phone 8.1 and the Windows 10 operating system editions Mobile and Mobile Enterprise. 3

Sophos Mobile 2 App reputation support In Sophos Mobile you can define list of apps, called app groups, for app reputation purposes. For example: Apps that users are allowed to install on their devices (allowed apps). Apps that users are not allowed to install on their devices (forbidden apps). When you define allowed apps, all other apps not included in the app group are forbidden. When you define forbidden apps, all other apps not included in the app group are allowed. App groups contain apps for a specific platform - Android, ios or Windows Mobile. To cover apps from more than one platform, you need to create separate app groups. Note: App groups in themselves do not include any app reputation classification. They merely are a collection of apps. The app reputation classification is established within Sophos Mobile by using an app group for a certain purpose, that is, to define allowed or forbidden apps. 4

app groups interface guide 3 The app groups web service interface Sophos Mobile offers a RESTful web service to manage app groups. This interface can be used by third-party app reputation vendors to integrate app reputation information into Sophos Mobile. For security reasons, the web service only supports HTTPS access. Communication is encrypted with the same SSL certificate that is used for the Sophos Mobile console and Self Service Portal. Tip: In Sophos Mobile there is special administrator role App Group Administrator that has sufficient rights to create, update and read app groups. Basically, the management of app groups through the web service interface includes the following workflow: 1. Perform a POST /rs/login request, sending the credentials (that is, customer name, login name, password) of a Sophos Mobile administrator account. The service returns a session authentication token that is required to access the web service resources. 2. Perform the required requests. To create an app group, use POST /rs/androidappgroup POST /rs/iosappgroup POST /rs/windowsphoneappgroup To retrieve a list of defined app groups, use GET /rs/androidappgroup GET /rs/iosappgroup GET /rs/windowphoneappgroup To retrieve the properties of a certain app group (including the properties of the contained apps), use GET /rs/androidappgroup/:id GET /rs/iosappgroup/:id GET /rs/windowsphoneappgroup/:id where :id is the internal identifier of the app group. To update the properties of an existing app group (for example, to add or remove apps or to change the app group name), use PUT /rs/androidappgroup/:id PUT /rs/iosappgroup/:id PUT /rs/windowsphoneappgroup/:id where :id is the internal identifier of the app group. 5

Sophos Mobile 3. When you are finished, perform a POST /rs/logout request to log out from Sophos Mobile. For details of the web service API, see API description (page 7). Note: The session authentication token expires after 60 seconds of inactivity. 6

app groups interface guide 4 API description 4.1 Log in Log in to the Sophos Mobile server. The /rs/login resource returns a session authentication token that is required to access the other web service resources. This token expires after 60 seconds of inactivity. URL https://<smc_server_address>/rs/login Method POST Request header Value Content-Type application/x-www-form-urlencoded Request body Form data, containing these properties: customer A customer name. user An administrator log-in name for that customer. password The administrator password. Response body JSON object with the following structure: 7

Sophos Mobile Type username Administrator log-in name. authtoken Session authentication token. logindate Integer Log-in timestamp in epoch milliseconds. rights Array of strings List of rights that are granted to the administrator. The administrator must have the following rights to be able to manage app groups: APP_GROUPS_BROWSE APP_GROUPS_CREATE APP_GROUPS_SHOW APP_GROUPS_UPDATE HTTP response status Status code 200 OK Administrator was successfully logged in. 401 Unauthorized Administrator is not authorized to access the resource. Example request POST /rs/login HTTP/1.1 Host: smc.example.com Content-Type: application/x-www-form-urlencoded customer=mycustomer&user=myadminname&password=mypassword Example response } "username": "myadminname", "authtoken": "da81d6d2-3c02-4f18-8115-f4188d84e851", "logindate": 1452258438634, "rights": [ <array of granted rights> ] 8

app groups interface guide 4.2 Log out Log out from the Sophos Mobile server. URL https://<smc_server_address>/rs/logout Method POST Request header Value X-SMCRS-Auth-Session Session authentication token from the login response. Request body empty Response body empty HTTP response status Status code 200 OK Administrator was successfully logged out. 401 Unauthorized Administrator is not authorized or the authentication token has expired. Example request POST /rs/logout HTTP/1.1 Host: smc.example.com X-SMCRS-Auth-Session: da81d6d2-3c02-4f18-8115-f4188d84e851 9

Sophos Mobile 4.3 Create app group Create an app group object. URL https://<smc_server_address>/rs/androidappgroup https://<smc_server_address>/rs/iosappgroup https://<smc_server_address>/rs/windowsphoneappgroup Method POST Request header Value X-SMCRS-Auth-Session The session authentication token from the login response. Content-Type application/json Request body JSON object with the following structure: Type name External name of the app group. App groups for the same platform (Android, ios, Windows Mobile) must have unique names. But it is for example possible to create an Android app group with the same name as an ios app group. applist Array of app objects See the following table. App objects have the following structure: 10

app groups interface guide Type name An arbitrary name that is used to identify the app. identifier For Android apps, this is the package name. For ios apps, this is the bundle ID. For Windows Mobile apps, this is the GUID. fileurl (optional) The URL of the app in Google Play, in the App Store, or in the Windows Store. Response body JSON object with the properties of the app group that was created: Type appgroupid Number ID of the app group. name External name of the app group. editable Boolean If false, app group cannot be updated. updatedate Integer Update timestamp in epoch milliseconds. insertdate Integer Insertion timestamp in epoch milliseconds. updatedby Name of the user that updated the app group. insertedby Name of the user that created the app group. applist Array of app objects Same structure as for request. HTTP response status Status code 204 OK App group was successfully created. 401 Unauthorized User is not authorized or the authentication token has expired. 11

Sophos Mobile Status code 403 Forbidden User does not have sufficient rights. 409 Conflict Another app group for the same platform (Android, ios, Windows Mobile) with the specified name already exists. Example request POST /rs/androidappgroup HTTP/1.1 Host: smc.example.com X-SMCRS-Auth-Session: da81d6d2-3c02-4f18-8115-f4188d84e851 Content-Type: application/json "name": "mynewappgroup", "applist": [ "name": "Sophos Mobile Security", "identifier": "com.sophos.smsec", "fileurl": "https://play.google.com/store/apps/details?id=com.sophos.smsec" } ] } Example response "appgroupid": 10042, "name": "mynewappgroup", "editable": true, "updatedate": null, "insertdate": 1467116868245, "updatedby": null, "insertedby": "myadminname", "applist": [ "name": "Sophos Mobile Security", "identifier": "com.sophos.smsec", "fileurl": "https://play.google.com/store/apps/details?id=com.sophos.smsec" } ] } 12

app groups interface guide 4.4 Get app groups Get a list of all app group objects. URL https://<smc_server_address>/rs/androidappgroup https://<smc_server_address>/rs/iosappgroup https://<smc_server_address>/rs/windowsphoneappgroup Method GET Request header Value X-SMCRS-Auth-Session The session authentication token from the login response. Response body JSON object with the list of Android app groups: Type appgroupid Number ID of the app group. name External name of the app group. editable Boolean If false, app group cannot be updated. HTTP response status Status code 200 OK Request was successfully processed. 13

Sophos Mobile Status code 401 Unauthorized User is not authorized or the authentication token has expired. 403 Forbidden User does not have sufficient rights. Example request GET /rs/androidappgroup HTTP/1.1 Host: smc.example.com X-SMCRS-Auth-Session: da81d6d2-3c02-4f18-8115-f4188d84e851 Example response [ ] "appgroupid": 10030, "name": "myfirstappgroup", "editable": true }, "appgroupid": 10031, "name": "mysecondappgroup", "editable": false }, "appgroupid": 10042, "name": "mynewappgroup", "editable": true } 14

app groups interface guide 4.5 Get app group by ID Get the properties of an existing app group object. URL https://<smc_server_address>/rs/androidappgroup/:id https://<smc_server_address>/rs/iosappgroup/:id https://<smc_server_address>/rs/windowsphoneappgroup/:id Method GET URL parameter Parameter :id The internal identifier of the app group. This is the appgroupid attribute as returned by, for example GET /rs/androidappgroup. Request header Value X-SMCRS-Auth-Session The session authentication token from the login response. Response body JSON object with the properties of the specified app group: Type appgroupid Number ID of the app group. name External name of the app group. 15

Sophos Mobile Type editable Boolean If false, app group cannot be updated. updatedate Integer Update timestamp in epoch milliseconds. insertdate Integer Insertion timestamp in epoch milliseconds. updatedby Name of the user that updated the app group. insertedby Name of the user that created the app group. applist Array of app objects See the following table. App objects have the following structure: Type name An arbitrary name that is used to identify the app. identifier For Android apps, this is the package name. For ios apps, this is the bundle ID. For Windows Mobile apps, this is the GUID. fileurl (optional) If set, the URL of the app in Google Play, in the App Store, or in the Windows Store. HTTP response status Status code 200 OK Request was successfully processed. 401 Unauthorized User is not authorized or the authentication token has expired. 403 Forbidden User does not have sufficient rights. 404 Not Found App group with specified identifier does not exist. 16

app groups interface guide Example request GET /rs/androidappgroup/10042 HTTP/1.1 Host: smc.example.com X-SMCRS-Auth-Session: da81d6d2-3c02-4f18-8115-f4188d84e851 Example response "appgroupid": 10042, "name": "mynewappgroup", "editable": true, "updatedate": null, "insertdate": 1467116868245, "updatedby": null, "insertedby": "myadminname", "applist": [ "name": "Sophos Mobile Security", "identifier": "com.sophos.smsec", "fileurl": "https://play.google.com/store/apps/details?id=com.sophos.smsec" } ] } 17

Sophos Mobile 4.6 Update app group Update an existing app group object. URL https://<smc_server_address>/rs/androidappgroup/:id https://<smc_server_address>/rs/iosappgroup/:id https://<smc_server_address>/rs/windowsphoneappgroup/:id Method PUT Request header Value X-SMCRS-Auth-Session The session authentication token from the login response. Content-Type application/json Request body JSON object with the updated data of the app group: Type name External name of the app group. applist Array of app objects See the following table. App objects have the following structure: Type name An arbitrary name that is used to identify the app. identifier For Android apps, this is the package name. For ios apps, this is the bundle ID. 18

app groups interface guide Type For Windows Mobile apps, this is the GUID. fileurl (optional) The URL of the app in Google Play, in the App Store, or in the Windows Store. Response body empty HTTP response status Status code 204 No Content App group was successfully updated. 401 Unauthorized User is not authorized or the authentication token has expired. 403 Forbidden User does not have sufficient rights. 404 Not Found App group with specified identifier does not exist. 409 Conflict Another app group for the same platform (Android, ios, Windows Mobile) with the specified name already exists. Example request PUT /rs/androidappgroup/10042 HTTP/1.1 Host: smc.example.com X-SMCRS-Auth-Session: da81d6d2-3c02-4f18-8115-f4188d84e851 Content-Type: application/json "name": "myupdatedappgroup", "applist":[ "name": "Sophos Mobile Security", "identifier": "com.sophos.smsec", "fileurl": "https://play.google.com/store/apps/details?id=com.sophos.smsec" }, "name": "Sophos Mobile Control", 19

Sophos Mobile "identifier": "com.sophos.mobilecontrol.client.android", "fileurl": "https://play.google.com/store/apps/details?id=com.sophos.mobilecontrol.client.android" } ] } 20

app groups interface guide 5 Technical support You can find technical support for Sophos products in any of these ways: Visit the Sophos Community at community.sophos.com/ and search for other users who are experiencing the same problem. Visit the Sophos support knowledgebase at www.sophos.com/en-us/support.aspx. Download the product documentation at www.sophos.com/en-us/support/documentation.aspx. Open a ticket with our support team at https://secure2.sophos.com/support/contact-support/support-query.aspx. 21

Sophos Mobile 6 Legal notices Copyright 2015-2017 Sophos Limited. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner. Sophos is a registered trademark of Sophos Limited and Sophos Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners. Last update: 20170725 22

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback