google, innovation

enterprise features of android p

only a few days ahead of google i/o – google’s annual developer conference – may 8-10 – were they will present android p, gmail, android wear 3.0, vr with daydream, google home and maybe more

here are the main feature to be provided to the enterprise – rock solid progression of android enterprise – modifications from other os’s found as well – some cool admin gadgets

work profile user interface

  • Switch apps across profiles

  • Programmatically turn work profiles on or off

lock down any app to a device

  • whitelist and control certain system ui features

support multiple users on dedicated devices

  • multiple users can share a single device, dedicated for a specific purpose, managed via emm

clear package data and remove accounts

new user restrictions and increased control over settings

  • Configure APNs

  • Configure time and timezone

  • Enforce user restrictions on important settings

  • Metered data

migrate dpc

  • handover a device between different emm verdor

postpone over-the-air (ota) updates

  • also possible at ios device since ios 11.3

restrict sharing into a work profile

hardware-secured keys and machine certificates

  • enerated keys never leave the secure hardware and can be used from the android keychain

password blacklist

streamlined qr-code enrollment

androidenterprise2

  • wifi profile supported like with ncf enrollment

@google

google, technology

android tips & tricks everyone should know

  • android developer – customize your device like a pro, go to settings > about phone and tap the build number 7 times – successful enabled, e.g. select developer options from the main Settings and scroll down to enable force activities to be resizable or speed up your device by slowing down or turning off animation scale

developer_options

  • split-screen – android support to open 2 apps at the same time, press and hold the recent apps button, with developer feature enabeld above almost every app work in split-screen mode, move slider up/down to fit your needs
  • chrome bar bottom – easy the use with url and search bar at bottom, right at your fingertips tips – open the url chrome://flags in chrome and enable chrome home
  • quick last app switch – quick double tab the recent apps button
  • picture in picture – overlay an app above another since android oreo, more flexible than split-screen, in full screen mode simply tab the home button, search in settings picture-in-picture to list supported apps – youtube offers pip just with it’s red abo
  • lockscreen message – when device is lost and locked, an honestly finder is able to inform about your contact data, you’ll find the info at the lockscreen
  • screen pinning – quick and easy setup a kiosk mode, just enable screen pinning in settings, tab pin at recent apps button, disable by touch and hold back key

    This slideshow requires JavaScript.

  • fake gps – to hide or fake the position of your device, select a mock location app in developer settings and try like this

google, innovation

gmail predict reply to mails

gmail prepares to add nudges that suggests mails to reply to, adding more functionallity also like amp [related post] to add more intelligence

amp1

nudges in general…

proposes positive reinforcement and indirect suggestions to try to achieve non-forced compliance to influence the motives, incentives and decision making

@wikipedia

it is all about to stay productive, either to show mail just from your contacts, sort newsletter or intelligent reply – currently available email apps are unibox, microsoft’s outlook and google’s inbox

update: google presented new features about confidential mode with 2 factor authentication, smart reply and new g suite security features @digitaltrends

google, innovation, technology

amp – accelerated mobile pages

accelerated mobile pages is an open-source standard for any publisher to load pages quickly on mobile devices, supported browser currently are

amp2

amp3google added the ability to the amp header that makes it possible to open or copy the non-amp link, also load a webpage as non-amp with this noamp app

some web developers have expressed concern that google is getting too much say in how the web operates.

@firstpost

the intelligence spreading further with gmail integration, other mail provider can adopt amp as well – a price tag is always up to date, no matter when you open the mail or enter feedback without opening the browser

update: development of a new accelerated Mobile pages (amp) component enabling publishers to acquire user consent is underway and accepting comments.

google, innovation

android go

android go – fit for low-end devices –  comprised of three parts: the operating system, google apps and play store apps reduce memory consumption, less storage required for android os, smaller go-version of basic apps, save mobile data

go2.pnga few year ago google already launched android one to capture “the next billion”, also caused by exploding growth of smartphones sales in india

announced back in december, devices now arrive at mwc as nokia 1, android oreo go installed and about 85$, spec here

sailfish os is already a light operating system, release in version 3, designed to run on devices with less than 1 gb of ram, they now got a huge competitor with google’s android go

google signaled:

let’s go beyond for the next billion

apple, general, google, innovation

preconfigure outlook

with it’s current release of microsoft outlook app for ios and android it is possible to preconfigure via enterprise mobility suite @microsoft

following values are suppoted for android, a step further for android enterprise to get rid of the “almost”

configure_outlook2

for ios refer to apple’s managed app configuration and it’s key value pairs

within windows10 there are some possiblities to preconfigure an email profile in outlook, even via emm

other mircosoft office apps don’t support these functionality – graph api is the approach, any vendor can integrate with intune to use it as middleware to manage office apps – a powerful api with the intelligence in microsoft’s hands

microsoft_graph.png

 

 

general, google, technology

android (almost) enterprise

…launched in 2015, renamed in 2017 from android for work and now it’s time for enterprises to adopt android’s modern device management

androidenterprise2.pngapproach of google to manage devices, regardless of any vendor, to better integrate android in enterprise

device admin api’s started deprecating some features, emm system unable to reset device passcode for android 7.0 devices, google will deprecate further in android “p” release in 2018 and stop working with major release of android in 2019

not yet – tested a lot of android’s feature to get a markable footprint in enterprise, realized use cases to bring value for customers but unfortunately android enterprise can’t replace device admin, that’s why…

enrollment – apple’s devices can centralized ordered, prepared and assigned to an emm system via dep (device enrollment program) – google’s pendant zero touch enrollment is currently just available for android 8.1 and pixel devices – samsung got it’s own knox mobile enrollment (kme) which depends on the installed knox version and is for sure just available for samsung devices – a fully managed samsung device via android device owner needs at least knox version 2.8, otherwise you need to prepare all devices locally via qrcode or nfc

certificate authentication is a basic requirement for a secure enterprise deployment, with am emm you’re able to enroll client certificates and distribute via android enterprise to mobile devices – but with current emm tools it’s further possible to achieve a seamless authentication with kerberos constrained delegation, the continuous synchronisation is provided even a user change his password

vpn started a full device tunnel for windows notebooks, beginning with ios is was possible to configure dynamic vpn based on domain rules, even vpn connection can secure a single app, with android enterprise it is possible to setup the vpn just for work content – was missing? a simple “on demand” could stop draining battery life from “always on” vpn or prohibit mistakes if forgot to “manually” enable it

reliability – inconsistent experience noticed – depending of build version, huawei ignore that device passcode is already set – lenovo yoga missing android enterprise enrollment capability – when sending a (private) picture via (secure) mail, login to work container, attachment lost in mail – honor device completly ignore passcode policy for work container – convert phone number to link in gmail is just working sometimes @theverge 

use cases could realized with android enterprise, e.g. silent app and unattended certificate installation is possible for non-samsung devices could , comparing to device admin, but there’s space for improvement…

androidenterprise.png