Apple Business Manager (ABM)
macOS Device Enrollment
Apple Business Manager - Device Enrollment
ABM Bulk App Deployment
Apple Business Manager - Apps Deployment
Apple Configurator
Adding iOS Devices to ABM using Apple Configurator
Adding iOS devices to ABM using Apple Configurator on a Mac Computer
Enabling Supervised Mode for iPhone and iPad
Bulk SMS
Cloud Console
Configuring Wallpaper on iOS Devices Using Cyber Device Manager
How to manage mobile devices and apps using Codeproof?
Mobile Alert Management
Cloud Console TWO Factor (2FA) Authentication
Device Lookup by Phone Number, IMEI, ICCID or Employee Name
iOS7 system properties are available
Content Filtering
iPhone, iPad and iPod Touch Parental Controls in Codeproof
Web Content filtering in iPhone, iPad and MacOS
Secure Browser and Web Content Filtering
Securing Chrome Browser and Web Filtering in Android
Email Management
How to configure Office365 email or Exchange EAS on Apple devices
Configure Office365 email accounts in mobile devices
Configuring Microsoft Exchange ActiveSync Email on Samsung Devices
Configuring Microsoft Exchange ActiveSync Email on LG devices
File Management
How To Articles
How to Configure Programmable Keys with Managed Configurations on Kyocera Devices
How to Transfer Data with the Samsung Smart Switch App?
How to enable native app Whitelisting in Android?
How to Disable the Edge Panel on Samsung Devices
How to turn off Google Play Protect on managed devices
How to block Android Overview Button?
How to remove passwords remotely from locked Android phones
Difference between Reset All Settings v/s Erase All Content And Settings?
How to block "Settings" changes in Android devices?
How to prevent the Mobile Device Management protection from being turned off?
How to find iTunes store id or App id?
How to ping a device using Codeproof?
How to optimize Battery usage and Data usage in Android?
How to remotely change or remove the password on Android phones and tablets?
How to hard factory reset an Android Device
How to Install an APK?
How to Enable pre-loaded system apps?
How to check if a Device has a Password?
How to generate QR code for Android Device Enrollment?
How to change Android device display language
How to Block Outgoing Calls and SMS?
How to Data Wipe a device?
Known Issues
Understanding APK Deployment Limitations on Android Enterprise Profile Owner Devices
Passcode Removal Fails on Android Versions 9 and 10
Issue with website whitelisting on managed iOS Devices
Error Message After Android MDM Enrollment: Financed Device Alert
MDM Fails to Clear Passcode on iPhone
Android Q Background Location Permission Error on Moto E5 and Moto G
License Management
Mobile Device Management
Android Enterprise
Disabling factory reset protection (FRP)
Google Workspace and Codeproof
Device Admin Deprecation - What you need to know?
Paid Apps and Managed Play Store
Managed Google Playstore
Restricting access to Account Management
Battery Level low notifications
Android Enterprise Custom Messages
Factory Reset Protection (FRP)
Android Enterprise Policies
Selectively deploying apps from the managed playstore
Android Enterprise (AE) Setup
Network Monitoring in Android
Enabling pre-loaded system apps in Android Enterprise
Apple Device Management
Web clips in Apple Devices
iOS App Bundle Id
Apple Watch MDM Policies
iOS 9 MDM Restriction Policies
Blocking AppStore in Apple Devices
iPhone and iPad Restriction Policies
iOS 8 Mobile Device Management (MDM) Policies
What's new in iOS 6 MDM?
iOS7 background apps from being killed by App Switcher
Configuring iOS 7 App Policies
Deploying iOS Configuration Profiles using Profile Manager
Application Blacklisting
Blocking the default applications in Apple Devices
Suspending and Hiding Apps in Android
How to block all the downloaded apps in iOS?
Application Deployment
How to Deploy the Amazon Flex App
Android App deployment
Deploying Web Apps in Android Enterprise
iOS Enterprise App Deployment
How to Deploy Mobile Apps through Codeproof Platform
Amazon Flex App Deployment
How to update Google Play Store app
iOS App Deployment
BYOD Management
Certificate Management
Command Center
Data Leakage Prevention(DLP)
Remotely locking Android devices
How to remotely wipe all the data from Android Phone
How to remotely lock the device with a recovery key?
Phone Remote Lock and Remote Data Wipe By SMS
Device Enrollment
Restoring Backups During MDM Enrollment
Bulk Device Enrollment
Profile based MDM enrollment for Apple Devices - BYOD Scenario
Android Zero-touch Enrollment
Android MDM Setup using ADB Script
Android Enterprise - Keep All System Apps
QR Code Enrollment
Android Enterprise QR Code Generation
Apple Devices Enrollment Techniques
Device Enrollment Wizard
Device Tracking
Tracking the location of iPhone and iPad devices using MDM
Enable Lost Mode in Android
How to enable location permissions?
How to prevent the location service from being turned off?
GPS location tracking using Codeproof
Prevent end users from disabling GPS Locations
How to prevent someone from disabling find my iphone?
How to improve mobile phone location accuracy
Hotspot Management
Kiosk
Advanced Mobile Kiosk Manager
How to Create Web Apps in Kiosk App Mode on iPad and iPhone
How to update an App in Single App Mode?
Enabling Single App mode in iPhone, iPad and iPod
Mobile Apps whitelisting
How to turn-off kiosk mode?
Kiosk screen lock with a pin
Android Kiosk with Multiple and Single App Mode
Mobile Kiosk Branding
MDM Lockdown
MDM Types
MSP
Managed Configuration
Managed App Configuration Using the Cyber Device Manager
iOS Managed App Configuration Using the Cyber Device Manager
Android Managed App Configuration Using the Cyber Device Manager
Managed Contacts
Managing Phone Contacts with MDM Solutions
Force Syncing contacts in the Contact Manager
Disable Contacts Sync in the Outlook Exchange Email
Permissions Management
Android Enterprise Permission Management
How to enable Android app permissions?
Block apps based on android permissions
Mobile apps access permissions monitoring using Codeproof
Policy Management
Proxy Management
Remove MDM
Bulk Device Deletion
How to remove MDM from iPhone, iPad and iPod?
Remove MDM from ABM-DEP Enrolled Devices
Disable MDM using a code
How to remove Codeproof ?
Remove Device Admin MDM
Removing Android Enterprise MDM
SIM
Screenlock and Passcode
Remotely locking iPhone, iPad or iPod Touch devices
iOS Passcode Management
How to turn off Passcode Lock on iPhone and iPad
How to unlock iPhone, iPad and iPod touch devices?
Device screenlock status and enabling passcode policy
How to enable passcode lock in iPhone and iPad
System Update
Android System Update Requirements
Android System Update in the Single App LockTask mode
Apple iOS Software Update
Android System Update
WiFi Management
Windows MDM
Firewall Configuration for Cyber Device Manager MDM
Managing Phone Notifications on Android
MDM System Auditing
Mobile Expense Control
Products and Services
Cyber Remote - Secured Remote Access
SiteSecure - Campus Camera Blocking
Distracted Driving
Codeproof® Call Blocker
Managed Mobile Hotspot
Samsung Knox
Codeproof Samsung KNOX
The new Samsung MDM Agent App
Call and SMS blocking
Access Point Name (APN) Policy Configuration
What Is
What is "Install From Unknown Sources" settings?
What are Web Apps?
What is Android Enterprise?
What is a supervised device?
Apple Configurator and MDM
Android LockTask Mode and MDM
ABM, Apple Configurator, and MDM
What is Android For Work?
mdm-errors
- All Categories
- Mobile Device Management
- Firewall Configuration for Cyber Device Manager MDM
Firewall Configuration for Cyber Device Manager MDM
To ensure seamless communication between the Codeproof Cyber Device Manager® MDM server and managed devices, it’s essential to configure your firewall to allow specific ports, domains, and IP addresses. This guide outlines all necessary requirements for various platforms and services.
Required Firewall Ports
General Ports
- Port 443 (HTTPS)
- Used for secure communication between MDM servers and devices.
- Port 80 (HTTP)
- Used for fallback or non-secure communication (rarely required).
Platform-Specific Ports
Apple (iOS/macOS) MDM
- Port 5223 (APNs - Apple Push Notification Service)
- Required for Apple device communication via APNs.
- Port 443 (HTTPS) and 2197
- Used for enrollment and fallback communication with Apple servers.
- Port 123 (NTP - Network Time Protocol)
- Synchronizes time on Apple devices for secure communication.
Android MDM
- Ports 5228–5230 (Google Play Services)
- Enables Firebase Cloud Messaging (FCM) for notifications. Refer to Google documentation is here.
- Port 443 (HTTPS)
- Ensures secure communication with Google servers and Codeproof MDM.
Windows MDM
- Port 443 (HTTPS)
- Facilitates secure communication with Windows devices.
- Port 80 (HTTP)
- Optional fallback for enrollment communication.
- Port 123 (NTP)
- Synchronizes device time for secure operations.
- Port 854 (WNS - Windows Notification Service)
- Pushes notifications to Windows devices.
Required Domains and IP Addresses
Apple (iOS/macOS) MDM
- APNs (Apple Push Notification Service):
*.push.apple.com
Refer to Apple’s documentation for dynamic IP ranges.
*.apple.com - Apple Device Enrollment Program (DEP):
deviceenrollment.apple.com
iprod.apple.com - Certificate Validation:
*.entrust.net
*.verisign.com
Android MDM
- Google Play Services & Firebase Cloud Messaging (FCM):
mtalk.google.com
mtalk4.google.com
mtalk-staging.google.com
mtalk-dev.google.com
alt1-mtalk.google.com
alt2-mtalk.google.com
alt3-mtalk.google.com
alt4-mtalk.google.com
alt5-mtalk.google.com
alt6-mtalk.google.com
alt7-mtalk.google.com
alt8-mtalk.google.com
android.apis.google.com
device-provisioning.googleapis.com
firebaseinstallations.googleapis.com
Refer to Google documentation is here.
Windows MDM
- Windows Notification Service (WNS):
*.notify.windows.com
*.wns.windows.com - Windows Updates (Optional):
*.update.microsoft.com
*.windowsupdate.com
Codeproof Specific Domains
- Codeproof Servers:
*.codeproof.com
Firewall Configuration Recommendations
- Open the required ports for both inbound and outbound traffic as applicable.
- Whitelist the specified domains to ensure uninterrupted device communication.
- Use DNS-based whitelisting for services with dynamic IP ranges (e.g., Google and Apple).
- Restrict access to trusted IP ranges or domains for enhanced security.
- Regularly audit firewall rules to maintain compliance and reduce exposure.
Troubleshooting Tips
- Device Enrollment Issues:
- Verify access to essential domains and open ports (e.g., 443, 5223).
- Notification Failures:
- Ensure APNs, FCM, or WNS ports and domains are accessible.
- Server Connectivity Problems:
- Check firewall logs for blocked traffic and update rules accordingly.
For additional assistance, contact Codeproof Support at support@codeproof.com
