1 Static IP Address. 2 IP addresses may be needed for certain configurations.
Optional but recommended: DNS names matching the above IP addresses.
Network access to your Domain Controller if you plan on using Active Directory (LDAP).
Network access to an SMTP server for email notifications and invitation messages.
The address 127.0.0.1 is used internally by the mobile app and should not be routed through any kind of tunnel - VPN, MobileIron, BlackBerryDynamics and etc.
All machines running the Files Advanced Web Server or the Gateway Server need to be bound to the Windows Active Directory.
There are two components that handle HTTPS traffic, the Gateway Server and the Files Advanced Web Server. The Gateway Server is used by mobile clients to access both files and shares from the Data Sources. The Files Advanced Web Server provides the web user interface for Sync & Share clients, and is also the administration console for both Mobile Access and Sync & Share.
For most deployments it is recommended that one IP address is used for both servers, with different ports and separate DNS entries. This one IP address configuration is sufficient for most installations. The server can be configured to use separate IP addresses for each component if your specific deployment and/or setup requires it.
If you want to allow mobile devices access from outside your firewall, there are several options:
Port 443 access: Files Advanced uses HTTPS for encrypted transport, so it fits in naturally with common firewall rules allowing HTTPS traffic on port 443. If you allow port 443 access to your Files Advanced Web Server, authorized iPad clients can connect while inside or outside of your firewall. The app can also be configured to use any other port you prefer.
VPN: The Files Advanced mobile app supports access through a VPN connection. Both the built in iOS VPN client and third-party VPN clients are supported. iOS management profiles can optionally be applied to devices using Mobile Device Management (MDM) systems or the Apple iPhone Configuration Utility to configure the certificate-based iOS “VPN-on-demand” feature, giving seamless access to Files Advanced Web Servers and other corporate resources.
Reverse proxy server: If you have a reverse proxy server set up, iPad clients can connect without the need for an open firewall port or a VPN connection. The Files Advanced mobile app supports reverse proxy pass-through authentication, username / password authentication, Kerberos constrained authentication delegation and certificate authentication. For details on adding certificates to the Files Advanced mobile app, visit the Using client certificates article.
BlackBerry Dynamics enabled app: The Files Advanced mobile app includes the ability to be enrolled in and managed by the BlackBerry Dynamics platform. In this configuration, all network communication between Files Advanced mobile apps and Gateway Servers is routed through the BlackBerry Dynamics secure communication channel and BlackBerry Proxy Server. For more details, see the Files Advanced mobile app for BlackBerry Dynamics manual page.
MobileIron AppConnect enrolled app: If the Files Advanced mobile app is enrolled with MobileIron's AppConnect platform, then all network communication between Files Advanced mobile app clients and Gateway Servers can be routed through the MobileIron Sentry. For more information see the MobileIron AppConnect manual page.
Certificates: Files Advanced ships and installs with self-signed certificates for testing purposes. Production deployments should implement proper CA certificates.
Note: Certain web browsers will display warning messages when using self-signed certificates. Dismissing those messages allows the system to be used without problems. Using self-signed certificates for production conditions is not recommended.