Airwatch browser offers end-users a more secure browsing experience than traditional browsers by securing the device at application, tunnel, and website levels. Airwatch browsers can be configured and managed by the admin as per company security policy.

Introduction

With Bring Your Device (BYOD) policy and developments in cloud technology, users remotely access company resources through local networks creating vulnerabilities and threats of security breaches in enterprise security. Although employees must connect to VPN to access the company databases and resources, it can be a tedious and time-consuming process for employees. Also, connecting to VPN does not guarantee the complete safety of the device as connecting to certain websites may download malicious scripts into the device. Admin has little to no control over browser and sites user can access. The compromise of any one device could lead to the collapse of the entire enterprise security framework.

Airwatch provides a single intuitive browsing platform to surf across applications, company intranet, and applications while maintaining compliance with enterprise security policy.

What is the Airwatch browser?

Airwatch browser offers a secure browsing environment browser across platforms like applications, company internal network, and external web while maintaining security compliance to enterprise security policy without connecting to VPN and Single Sign On(SSO) to a safer browsing experience than native browser for enrolled devices. The browsers can be configured and customised to maintain enterprise-grade security while providing a consumer-centric experience. Internet access can be limited to custom-defined websites restricting access to suspicious external links and secure internet transactions in the Browser’s Kiosk and Restricted modes. End-User devices can be remotely configured through a centrally managed Airwatch admin console accessed through a web portal to deploy Mobile Device Management (MDM) capabilities and security policies. To customise browser security:

• Login to Airwatch web console
• Navigate to Settings, select apps.
• Click on the AirWatch browser.
• The settings page is displayed where browser-specific policies can be created and managed.

The internet portal of point of sales devices can be customised under the Airwatch browser providing a secure internet “kiosk” for devices used as a mobile point of sale, blocking access to external websites and enhancing overall security. Airwatch browser supports Multi tabbed browsing and javascript dialog. Blocking restriction profile blocks local browsers of the device on android and iOS devices by deploying Airwatch browser to ensure maximum security. Complete encryption of data at rest and in transit secures browsing experience. Disk level encryption protects downloaded data and web settings. Cookies can be allowed or restricted, and copying or sharing of data to third-party servers is restricted.

Features of Airwatch Browser

• Manage web browsing with Kiosk and Restricted Modes
• Prevent copy/paste, printing, open into, history, and cookie restrictions with Data Loss Prevention settings.
• Passcode policies and device compliance checks are some benefits of enrollment in Mobile Device Management(MDM).
• Application-level security with authentication with Pincode, biometric, active directory credentials to access enterprise applications can be achieved.
• Tunnel-level security by allowing only enrolled and authorised users to access the company intranet while maintaining complete security compliance with certificates for complete traffic encryption can be used securely.
• Access external web with a single touch without the need for multiple authentications and connecting to VPN.

Which devices can the Airwatch Browser run on?

Airwatch browser is available for both apple and android platforms. For iOS-based platforms, an Operating System iOS 4 and above are required, and for android devices, version 2.2 or higher is required.

Does the Airwatch browser replace Safari or Chrome?

Airwatch browser provides a more secure alternative to native browsers like Safari and Chrome. By default, the use of Safari or Chrome is not prohibited by the Airwatch application. Deploying Airwatch in conjunction with a restrictions profile disables the use of Safari and Chrome on devices meant for corporate use.

Can the Airwatch browser capture browser history from the Airwatch browser?

The Airwatch browser reports on the browsing history of the devices enabled through the SDK, which is built into the AirWatch Browser App.

Does the Airwatch browser only work on external sites, or can it be used to allow or deny internal corporate websites?

Airwatch browser works for both external and internal websites. The ability for the browser to tunnel back to an internal network using the AirWatch Tunnel Proxy is offered in AirWatch 6.4 and higher versions.

How do I force links to open in the Airwatch browser?

Hyperlinks must use either the awb:// or awbs:// protocols to force open a link on a browser. The use of protocols can be automated using the SEG policy. All hyperlinks in emails are automatically changed from HTTP and HTTPS to the corresponding AWB protocol if the policy is enabled.

Advantages of Airwatch Browser

Airwatch secures end-user browsing experience with enterprise-grade security improving user experience with single touch sign-on to the enterprise network, applications, and external web, all on a single platform without connecting to VPN. Admin can secure and manage endpoint devices by deploying security configurations remotely and centrally to all devices. Suspicious or certain sites can be blocked. Data loss prevention and encryption secure data and communication on devices. The advantages of Airwatch Browser are:

• Increase employee productivity by bypassing the hassle of connecting to a VPN and block sites that might distract them.
• One platform with one touch sign in to access enterprise intranet, applications, and external web securely using App tunnel functionality.
• Allow/Block certain websites
• to encrypt traffic data by pushing certificates and allowing only authorised users access to enterprise network
• Kiosk controls to secure Point Of Sales(POS) devices
• Restricted mode to disable users from using native browsers like Safari or Chrome.
• Data Loss Prevention settings with copy/paste, printing, open into, history, and cookie restrictions.
• Create edit or delete bookmarks for your favourite enterprise applications and sites and easily locate pushed bookmarks for applications from the admin by selecting the action grid on the bottom of the screen
• QR codes can be scanned to open websites.
• Business links in emails and attachments can be securely accessed.