The recommended approach for Mobile devices is near real-time inspection using CASBA (https://agatsoftware.atlassian.net/wiki/spaces/SFTKB/pages/239075365/What+are+the+CASB+Adapter+Host+System+Requirements)
However, if required - mobile devices can utilize the proxy.
This approach is very complex in terms of deployment and require consulting with AGAT support before going to this direction
For that the mobile devices must be able to install the following:
Androids:
SphereShield Agent application – a mobile app that will configure the proxy settings on the device and will assist the user in trusting the root certificate (in case certificates are not distributed by MDM).
SphereShield Teams app – MS teams app, wrapped by AGAT, this app will trust the Root CA certificate.
Root CA certificate - a trusted Root CA certificate that will sign the Forward Proxy certificate.
iPhones:
SphereShield Agent application – a mobile app that will configure the proxy settings on the device and will assist the user in trusting the root certificate (in case certificates are not distributed by MDM).
Root CA certificate - a trusted Root CA certificate that will sign the Forward Proxy certificate.
We recommend that the apps and certificates would be distributed by an MDM/EMM system.