Sophos Mobile Control Architect (MOBA)

This course provides an in-depth study of Sophos Mobile Control, designed for experienced technical professionals who will be planning, installing, configuring and supporting deployments in production environments. The course is intended to be delivered in a classroom setting, and consists of presentations and practical lab exercises to reinforce the taught content. Printed copies of the supporting documents for the course will be provided to each trainee. Due to the nature of delivery, and the varying experiences of the trainees, open discussion is encouraged during the training.

Target audience:
This course is designed for experienced technical professionals who will be planning, installing, configuring and supporting deployments in production environments. And for indivudials wishing to obtain the Sophos Mobile Protection Certified Architect certification.


  • Be able to setup a Windows Active Directory environment with servers and workstations.
  • Have experience of Windows networking and the ability to troubleshoot issues.
  • Understand the principles of DMZs, proxies and reverse proxies.
  • Have experience using Microsoft SQL Server and Microsoft Exchange Server.
  • Have experience with webservers or other web facing infrastructure.
  • Be familiar with iOS, Android and Windows Phone 8 mobile devices. 
  • Understand the components of Sophos Mobile Control (SMC) and how to configure them.
  • Architect a solution for a customer?s environment and needs.
  • Implement proof of concept (PoC) deployments with SMC.
  • Configure the components of SMC according to best practice.
  • Perform basic troubleshooting.
Course content:

  • Module 1: Solution overview and architecture
    • Solution overview
    • Architecture
    • Ports and protocols
    • High availability
    • Sizing
    • On premise vs. SMCaaS
    • SaaS
    • Sophos SMCaaS architecture
  • Module 2: Installation
    • Supported devices
    • Server requirements
    • Installation
    • Troubleshooting
  • Module 3: Customer configuration
    • Customers overview
    • Global configuration
    • Creating a customer
    • Administrator roles
    • APNs certificates
    • Client configuration
    • User specific settings 
  • Module 4: Device configuration and management
    • Device configuration overview
    • Applications
    • Profiles
    • Command bundles
    • Task bundles
    • Provisioning methods
    • SMC clients
    • Device management
    • Compliance rules
    • Decommissioning and deleting devices
    • Troubleshooting
  • Module 5: Sophos Mobile Security
    • Sophos Mobile Security overview
    • Scanner
    • App reputation
    • App Protection
    • App Protection vs App Control
    • Sophos Mobile Security Guard
    • Management
    • Troubleshooting
  • Module 6: Sophos Mobile Encryption
    • Sophos Mobile Encryption overview
    • SafeGuard file-based encryption
    • SafeGuard Enterprise
    • SafeGuard Enterprise Client
    • Sophos Mobile Encryption client
    • Management
    • Compliance controlled access
  • Module 7: EAS-Proxy
    • EAS-Proxy overview
    • Lotus Notes Traveler
    • Architecture
    • High availability
    • Installation
    • Logs
  • Module 8: Network access control
    • Network access control overview
    • Sophos UITM
    • NAC API
    • Troubleshooting
  • Module 9: Server maintenance
    • Daily maintenance
    • Software upgrade
    • License upgrade
    • Renewing an APNs certificate
    • Server backup
    • Restoring a server
    • Further information

To achieve the Sophos Certified Architect certification in SafeGuard Encryption trainees must take and pass an online assessment. The assessment tests their knowledge of both the taught and practical content. The pass mark for the assessment is 80%, and it may be taken a maximum of three times.
: 2 days