Mobile Device Management (MDM) Workflow (Access Manager)

Introduction to Mobile Device Management (MDM) in Akku IAM

Mobile Device Management (MDM) is a feature within Akku IAM's Access Manager that provides administrators with control over which mobile devices are permitted to access Akku and its connected Single Sign-On (SSO) applications. By assigning MDM policies to specific users, groups, or the entire organization, the admin ensures that only authorized and managed devices can interact with corporate applications through the Akku mobile app.

This selective control enhances security by preventing unauthorized or unmanaged mobile devices from accessing sensitive enterprise resources. MDM also supports an approval workflow to handle cases where an assigned user attempts to register from a new device.

How It Works

1. MDM Assignment: Admin enables MDM within Access Manager and assigns it to specific users, groups, or the entire organization.

2. Device Registration: Upon installing and logging in to the Akku mobile app, device details (such as OS, device ID, model) are captured and sent to the system.

3. Access Enforcement:

   • Assigned users can access Akku and SSO apps.

   • Unassigned users may use the app, but their access is limited and push notification MFA is disabled.

4. Multi-device Handling:

   • For assigned users, a second device triggers an approval request.

   • Admin approval replaces the current device with the new one.

   • If rejected, access on the second device is denied.

5. Unassigned User Behavior:

   • No approval is triggered.

   • Second device registration simply replaces the first device.