Enabling IT to remotely configure Genius Scan to help employees work from anywhere while keeping your company’s data safe.
Genius Scan for Enterprise is fully compatible with Enterprise Mobility Management (EMM) solutions (these solutions are also called Mobile Device Management (MDM) or Mobile Application Management (MAM) solutions as well, but for the sake of simplicity we will use the term EMM in this documentation). This lets you rely on Volume Purchase Programs to purchase Genius Scan in bulk for your users, and then pre-configure Genius Scan for Enterprise to simplify the setup or impose limitations to your managed users.
This document lists the configuration keys that can be used to customize the behavior of Genius Scan, and gives some insights on what is possible when using Genius Scan for Enterprise with an EMM.
Your EMM has the capability to deploy applications that live on the public app stores to mobile devices. Operating systems such as iOS and Android provide vendors of EMM solutions with native built-in APIs to make this possible. Using this capability, Genius Scan Enterprise (available in the public app stores) can be installed automatically or via a self-service catalog maintained by the EMM platforms participating in the AppConfig Community. For Android, if your country is not supported by Google for Business, you can choose to get a custom version of Genius Scan to be deployed privately as an internal or in-house app. EMMs participating in AppConfig Community have the capability to deploy these types of apps as well.
Additionally, you can rely on your EMM to add system-wide limitations to your managed users. This is just indicative of what you can do. Please refer to Apple’s guide and Google’s guide for an exhaustive list of options.
This managed configuration reference is only available in Genius Scan for Enterprise. In your EMM, locate Genius Scan for Enterprise and edit its app-specific remote configuration. Depending on your EMM, the manner in which you input the configuration might be slightly different, but it will always rely on setting up a configuration dictionary.
On Android, the Genius Scan application must be initialized with a valid license key in order to activate the Enterprise features and to enable all configuration options. To order and renew your license, contact our sales team at sdk@geniusscan.com.
On iOS, you can purchase volume licenses directly with the Apple Volume Purchase Program. No configuration key is required.
ENTERPRISE_KEY
{ "ENTERPRISE_KEY": "0303005107563495254170914364rb05030a0c5" }
Genius Scan supports a large number of export plugins such as Box, Dropbox, Email, FTP … You may want to restrict which export plugins can be used in your managed environment.
whiteListedExportPlugins
PREF_EXPORT_PLUGINS_ALLOWED
{ "whiteListedExportPlugins": [ "Email", "FTP" ] }
{ "whiteListedExportPlugins": "Email,FTP" }
{ "PREF_EXPORT_PLUGINS_ALLOWED": "com.google.android.gm,com.thegrizzlylabs.geniusscan.plugin.ftp"}
Remove the ability to turn on Wifi Sharing to access documents on other devices
wifiSharingEnabled
{ "wifiSharingEnabled": false }
{ "wifiSharingEnabled": "false" }
Prevent users from connecting to our synchronization and backup service Genius Cloud. ⚠ Note the difference between the boolean values on iOS and Android.
GeniusCloudDisabled
PREF_GENIUS_CLOUD_ALLOWED
{ "GeniusCloudDisabled": true }
{ "GeniusCloudDisabled": "true" }
{ "PREF_GENIUS_CLOUD_ALLOWED": false }
The FTP hostname
FTPEngineHost
PREF_FTP_HOST
The FTP username
FTPEngineUser
PREF_FTP_USERNAME
The root path configured on the FTP. The user will only be able to upload documents to subfolders located at this path.
FTPEngineRootPath
PREF_FTP_ROOT
The FTP password
keychain_FTPEngine
PREF_FTP_PASSWORD
{
"FTPEngineHost" : "ftp.mycompany.com",
"FTPEngineUser" : "johndoe",
"keychain_FTPEngine" : [ "johndoe", "myp4ssw0rd" ]
"FTPEngineRootPath": "johndoe/scans",
}
{
"PREF_FTP_HOST" : "ftp.mycompany.com",
"PREF_FTP_PORT" : "21",
"PREF_FTP_USERNAME" : "johndoe",
"PREF_FTP_PASSWORD" : "myp4ssw0rd",
"PREF_FTP_ROOT": "johndoe/scans",
}
WebDavEngineHost
The WebDAV username
WebDavEngineUser
The root path of the WebDAV mount. The user will only be able to upload document to subfolders located at this path.
WebDavEngineRootPath
The WebDAV password
keychain_WebDavEngine
If you use HTTPS with a self-signed certificate, you will need to turn this on. However, we strongly recommend that you don’t use a self-signed certificate.
WebDAVSelfSignedCertificate
{
"WebDavEngineHost" : "https://webdav.mycompany.com",
"WebDavEngineUser" : "johndoe",
"WebDavEngineRootPath": "/johndoe/scans",
"keychain_WebDavEngine" : "[ "johndoe", "johndoes' password" ]"
}
{
"WebDavEngineHost" : "https://webdav.mycompany.com",
"WebDavEngineUser" : "johndoe",
"WebDavEngineRootPath": "/johndoe/scans",
"keychain_WebDavEngine" : "johndoe,johndoes' password"
}
{
"PREF_FTP_HOST" : "ftp.mycompany.com",
"PREF_FTP_PORT" : "21",
"PREF_FTP_USERNAME" : "johndoe",
"PREF_FTP_PASSWORD" : "myp4ssw0rd",
"PREF_FTP_ROOT": "johndoe/scans",
}
DefaultEmailTo
PREF_DEFAULT_RECIPIENT
DefaultEmailCc
DefaultEmailBcc
{
"whiteListedExportPlugins": [ "Email" ],
"wifiSharingEnabled": false,
"GeniusCloudDisabled": true
}
{
"PREF_EXPORT_PLUGINS_ALLOWED": "com.google.android.gm",
"PREF_GENIUS_CLOUD_ALLOWED": false
}
com.google.android.gm is the bundle identifier of Gmail.
First, you need to whitelist or blacklist the desired apps system-wide: you can use the iOS Configuration Profile keys whitelistedAppBundleIDs or blacklistedAppBundleIDs. Once this is done, you can use the following configuration for Genius Scan:
{
"whiteListedExportPlugins": [ "OtherApps" ],
"wifiSharingEnabled": false,
"GeniusCloudDisabled": true
}
Genius Scan will only let users export to other applications, and other applications will only show authorized applications.
© 2024 The Grizzly Labs. All rights reserved.