Manualshelf

Enterprise Deployment Manual

ManualsBrandsApple ManualsOtheriphone
11121314151617181920
Table Of Contents
Chapter 1 Deploying iPhone and iPod touch 19
 If you want to configure URL-specific proxy settings, place a PAC file on a web server
that’s accessible with the basic VPN settings, and ensure that its served with a MIME
type of application/x-ns-proxy-autoconfig. Alternatively, configure your DNS or DHCP
to provide the location of a WPAD file on a server that is similarly accessible.
IMAP Email
If you don’t use Microsoft Exchange, you can still implement a secure, standards-based
email solution using any email server that supports IMAP and is configured to require
user authentication and SSL. For example, you can access Lotus Notes/Domino or
Novell GroupWise email using this technique. The mail servers can be located within
a DMZ subnetwork, behind a corporate firewall, or both.
With SSL, iPhone OS supports 128-bit encryption and X.509 certificates issued by the
major certificate authorities. It also supports strong authentication methods including
industry-standard MD5 Challenge-Response and NTLMv2.
IMAP Network Setup Guidelines
 For additional security protection, install a digital certificate on the server from
a trusted certificate authority (CA). Installing a certificate from a CA is an important
step in ensuring that your proxy server is a trusted entity within your corporate
infrastructure. See “Credentials Settings” on page 38 for information about installing
certificates on iPhone.
 To let iPhone OS devices retrieve email from your server, open port 993 in the firewall
and make sure that the proxy server is set to IMAP over SSL.
 To let devices send email, port 587, 465, or 25 must be open. Port 587 is used first,
and is the best choice.
LDAP Directories
iPhone OS lets you access standards-based LDAP directory servers and provide
a global address directory or other information similar to the Global Address List in
Microsoft Exchange.
When an LDAP account is configured on the device, the device searches for the
attribute namingContexts at the servers root level to identify the default search base.
The search scope is set to subtree by default.
CalDAV Calendars
CalDAV support in iPhone OS provides global calendars and scheduling for
organizations that don’t use Microsoft Exchange. iPhone OS works with calendar
servers that support the CalDAV standard.