Connect
Ask Community
Ask the community
Ask Community
  • Home
  • General
  • Web apps: Authenticating hexnode devices for web apps

Web apps: Authenticating hexnode devices for web appsSolved

Profile photo of jim-johnston
jim-johnston
Participant
Discussion
Hexnode UEM
1 year ago
Save Saved
Copy link
Report

To detect whether a hexnode device is viewing a web app we can use URL parameter wildcards which inject device variables like so:
https://www.hexnode.com/mobile-device-management/help/pass-device-information-from-hexnode-to-the-web-apps-added-in-the-device-through-wildcards-faqs/

For example, we could use the wildcard to check against the UDID of a device to determine if a client is a hexnode device and its location. But what if the UDID was to be leaked, anyone could just enter the UDID string and access the web app as that device.

My question is what ways can we authenticate hexnode devices on web apps securely? (preferably without user intervention)

Thanks!

0 Upvotes
660 Views

Tags

API (26)
Reply

Replies (3)

Oldest First
Oldest First
Newest First
Most Upvoted First
Marked SolutionPending Review
Profile photo of chloe_edison Hexnode Expert image
chloe_edison
Hexnode Expert
1 year ago
Marked SolutionPending Review
Copy link
Report

Hello @jim-johnston, welcome to Hexnode Community!

Yes, you’re right. UDID or any such device information does stand the chance of getting leaked. Maybe you could try a combination of device information, like, say, Device ID, Serial Number and IMEI number? (http://example.com/%deviceid%/%serialnumber%/%devicename%/%imei%)

I know it isn’t ideal and doesn’t guarantee secure authentication, but we do not have a feasible solution for it as yet. You could create a combination known only to Hexnode admins and keep changing it regularly to reduce the chances of unsolicited access to the web app. For instance, http://example.com/%deviceid%/%serialnumber%/%devicename%/%imei%/%assettag% is one of the many possible combinations.

Please get back to us in case of further queries.

Regards,
Chloe Edison
Hexnode UEM

2 Upvotes
Reply
Marked SolutionPending Review
Profile photo of jim-johnston Novice image
jim-johnston
Participant
1 year ago
Marked SolutionPending Review
Copy link
Report

Thanks Chloe, that clears up a lot for me!

I think I could generate a secret key that changes at some interval and use the API to set this key as a device attribute under the asset tag (like you have in your example).

https://www.hexnode.com/mobile-device-management/developers/actions/edit-device-attribute/

Cool stuff!

Thanks for your help

1 Upvotes
Reply
Marked SolutionPending Review
Profile photo of audrey-black Hexnode Expert image
audrey-black
Hexnode Expert
1 year ago
Marked SolutionPending Review
Copy link
Report

Hey @jim-johnston,

Although I am not the intended recipient of your gratitude, I must say, it still made my day.

Chloe is on vacation right now, and unable to receive your gratitude directly. But I promise to promptly relay the message to her.

In the meantime, if you have any more questions or need further assistance, you can always reach out to us.

Best Regards,
Audrey Black
Hexnode UEM

0 Upvotes
Reply
Load more
Related Topics

Leaderboard

Profile photo of boris Veteran image
boris
420 pts
Profile photo of yuudai Veteran image
yuudai
365 pts
Profile photo of pauel Veteran image
pauel
345 pts
Profile photo of bram Veteran image
bram
345 pts
Profile photo of aakash-shah Veteran image
aakash-shah
344 pts
View all

Popular Tags

ABM (26)
Android (287)
iOS (232)
macOS (289)
Windows (160)
Apple TV (16)
App Management (253)
Enrollment (54)
Location (20)
Kiosk (147)
Scripts (65)
DEP (30)
OS Updates (55)
Android Enterprise (67)
View all