With Sophos Synchronized Security, products share critical information via a unique Security Heartbeat. Sophos Wireless can use the Sophos Mobile compliance status of your Android and iOS devices to restrict network access.
Synchronized Security isn’t available for the following devices because they don’t send their MAC address to Sophos Mobile:
- Apple User Enrollment devices.
- Devices that use a network-specific MAC address, called “Private address” in iOS and “Randomized MAC” in Android.
Setting up Synchronized Security
To connect Sophos Mobile with Sophos Wireless, perform the following tasks:
In Sophos Central, register your Sophos APX Series access points.
In Sophos Wireless, configure network access restrictions based on a device’s health status.
In Sophos Mobile, turn on Synchronized Security. See Turn on Synchronized Security.
In your Sophos Mobile compliance policy, set the health status a device gets when it becomes non-compliant.
You can set a different health status for each rule. See Create compliance policy.
You can also set the health status for individual devices manually. See Set health status manually.
Assign the compliance policy to your devices. See Assign a compliance policy to device groups.
Synchronized Security with third-party EMM software
You can use Synchronized Security even if the device is enrolled with third-party Enterprise Mobility Management (EMM) software.
In the third-party EMM software, create a custom app configuration for Intercept X for Mobile that includes the device’s MAC address. This allows the Sophos APX Series access point to identify the device.