We're excited to announce the general availability of the Sophos Mobile API. This API lets customers manage their devices enrolled with Sophos Mobile, and is particularly useful for customers who want to integrate with existing workflows or 3rd party tools.
Using the API
Sophos Central admins must set up API credentials to use the Sophos Mobile API. For details on setting up API credentials please see the Getting Started guide. Customers can then use tools such as Postman or curl to run API commands.
Once set up, admins can query for information about mobile devices and perform actions. This includes details such as listing device users, the last time a device synced, the OS version or compliance status. Admins can trigger a sync command to devices as well as sending a message to a user.
Examples
Device details
To get information about a tenant's mobile devices, use:
GET /mobile/v1/devices/{id}?view=full
This returns details like the below:
{ "id": "dd40830b-b103-4f9a-ae02-bbf0d792466d", //ID of the mobile device "tenant": { "id": "b8a75c7d-7492-4009-9f95-8c815551dc55" //Tenant of the mobile device }, "name": "Chromebook 2687", //Name of the mobile device "description": "", //A description for the mobile device "phoneNumber": "", //The device's phone number configured in Sophos Mobile, if available "email": "user@example.com", //Email of the user assigned to the device "assignedPerson": { "id": "9f059011-84c7-4849-ae2e-d0563743e485", //ID of the assigned user "name": "Simon Smith", //Name of the assigned user "email": "user@example.com" //Email of the assigned user }, "healthState": { "state": "amber", //Health statuts of the mobile device "mode": "automatic" //Health statuts mode of the mobile device }, "ownershipType": "corporate", //Ownership Type indicates it's a company issued device "createdAt": "2024-10-15T14:18:50.000Z", //Timestamp the mobile device was created in the system "updatedAt": "2024-10-15T14:57:15.000Z", //Timestamp the mobile device was updated "lastSeenAt": "2024-10-24T05:35:30.000Z", //Timestamp the device connected to the server "ixmAppLastSeenAt": "2024-10-24T05:35:30.000Z", //Timestamp the IXM app connected to the server "compliance": { "compliant": false, //Mobile device isn't compliant "severity": "high" //The severity of the compliance violation is high }, "modelName": "Google Chromebook", //The model name of the mobile device "managementType": "chromeSecurity", //The mobile device is only managed by the Chrome Security Extension "managedState": "managed", //The management state of the mobile device "os": { "id": "4e880043-3206-4166-ab0b-3d9bf2a60196", //The ID of this OS entry "name": "Chrome 129", //Name of the OS entry "platform": "chrome" //Platform of the OS entry }, "deviceGroup": { "id": "47641750-7f17-461a-84c2-8e94fd705b20", //The device group ID "name": "Default" //The device group name } }
Run a scan
Intercept X for Mobile scans Android devices for malware. To trigger a malware scan use:
POST /mobile/v1/actions/scan
In the request include the devices to be scanned:
{ "endpoints": [ //A list of endpoints which should execute a scan "dd40830b-b103-4f9a-ae02-bbf0d792466d", "e7e88612-d9b1-4e2f-b248-f2fad48579e4" ] }
More Information
The Mobile API Guide has additional examples, and the full details are available on the API reference page.