is there anyway to detect ongoing caldav/carddav (ie native IOS apps) access?

[Jason Haar]

Hi there

We have tonnes of Iphone users, but not all of them have the Google Device Policy manager installed and have instead opted to use the "native" mail/calendar/contacts support - which is via webdav/caldav/carddav

Those who use Google Device Policy Manager have their phones show up like Android phones: as "mobile devices" in Google's language, but those who use carddav/etc show up as Applications. 

The problem I'm trying to solve is an asset management problem. When they are "mobile devices", GAM will give you a 'firstSeen/lastSeen' value, but when they are just an OAUTH token, all you get is 'firstSeen' - no evidence of ongoing usage. I need to have a 'lastSeen' value so that I can differentiate between old devices (that aren't used anymore) and current devices.

Forcing the users to change their behaviour is out of my hands - so I'm hoping there's some logging somewhere showing successful calls to the likes of "Client ID: 450232826690-0rm6bs9d2fps9tifvk2oodh3tasd7vl7.apps.googleusercontent.com" (the carddav app) so that we can state that app is still in-use by that user

Thanks for any hints

Jason

[Jason Haar]

I can answer my own question. If they're using native IOS apps, then that means they're using caldav for Calendar, carddav for Contacts - and IMAPS for email. And "gam report users" returns "gmail:last_imap_time" - so that can be used to roughly state when a device has been "seen"

Jason

 

[Will Andrews]

Yes Jason, they are using a native IOS app and that means they are using WebDAV signed into a browser on an android.