In FileWave 14.1+ you are able to make policies for FileWave endpoint devices to specify when then are in or out of a particular geographical area.
Remember: A FileWave policy is a fileset for specifying things in/for a filewave endpoint.
This is not the same as a configuration profile, or an Android Policy
In 14.1.* this feature is supported on Android EMM devices only, but other platforms are under development and we hope to support them soon.
Using a geo-fence can be useful if you want to make the devices unusable by a individual that removes a device from a specific location, or just notify them they have gone too far away from "home". An example would be a tablet used in a store for customers to browse an online library...if the device leaves the store location, you might like to disable functionality and tell the person to return the device.
The reason that this is a FileWave client policy and not something run on the FileWave server is that the client will know soonest that it is has left the location, and might not have connectivity to send info to the server.
Also think about the type of devices typically managed - these are usually WiFi only devices. If a user was to take a device, and leave an area (and also WiFi range), how would your FileWave server be able to reach that device, tell it it is out-of-bounds, and make action on it? It can't, there is no channel for communication at this point.
So, a client policy is much more effective because the client can take action without needing communication to the FileWave services, or the internet at all.
Before we can setup a geofencing policy, we need to be actively receiving location data from end points. We can verify this by looking at a device in the native admin or web admin ( Device Detail View -- Location ).
If you need help getting location tracking to work, check out this KB: Location Tracking for more details.
Here is a tl;dr summary:
- iOS needs the Enterprise IPA App
- Android EMM might need Force Location for EMM Android Devices
- Windows, iOS*, MacOS all need Location services to be on
*iOS Lost Mode, triggered by setting the device to "Missing" in FileWave will force location services on, but it also disables the device, where tracking from the IPA does not impact device behavior but does have a pre-requisite of location services enabled and the app approved by the customer.
Creating the Geofencing Policy
In case you were wondering, the standard for GPS is in meters, so please keep that in mind when specifying this policy.
To set a geo-fence, I first need to know the longitude and latitude of my location, then how far out from that center point I want my boundary.
An easy way to do this is to:
- Go to a maps site like http://maps.google.com/ and enter the address of the location I want.
- Right-click in the center and copy the Latitude and Longitude.
- Then right-click and select "measure distance"
- Move the first dot to the middle of your location (if needed)
- Then place a second dot with a standard click at the farthest location of your geofence
- Take note of the distance in meters
Now, we need to specify that data into the FileWave Policy
- Filesets > New Desktop Fileset > Policy
- Under General: give it a name (like: "Site A Geofence")
- Under the Geofencing payload, enter the latitude, longitude, and radius you obtained from the map
- For Description, enter a location. Ideally the location you would want a device returned to, as this description will be used in the message on the device. A bad example would be something too generic like in Figure 1.3
- Event Action: you can select one of two things
- Send Location Notification: This is the more subtle approach, a user actively on the device might see this, but continue on their way. If they are unlocking the device they would also see this message, but it could be dismissed
- Disable All Applications: This is the more stern approach, a user actively on the device would not be able to use it anymore, tapping the notification would tell them why that is happening (Figure 1.3)
|Figure 1.2 - Geofencing Policy||Figure 1.3 - Full screen message after user tapped notification|
Finally, we need to assign policy out
To do that, you simply associate the fileset as you would any other fileset (aka payload), to:
- a smartgroup
- a group
- a specific device
Then update the model and you are done.
At present there is no inventory data sent back to the FileWave server to indicate there was a geo-fence breach or that the device was returned to the location, but this is under development and we hope to add this in a future release.