SDOP

Self-Service Device Onboarding Portal for Bell Retail — Zero Trust device registration with PKI-based authentication

Interactive Demo Applications

Complete end-to-end demonstration of Bell's Self-Service Device Onboarding Portal (SDOP). These HTML/CSS/JS prototypes showcase the full user experience for both Store Managers and IT Administrators managing device enrollment, lifecycle, and governance.

Built with: Pure HTML, CSS, and JavaScript — zero frameworks, zero dependencies, instant deployment.

📱
End User Application

SDOP Device Registration

Store Manager interface for self-service device enrollment. Complete 6-step wizard from Okta login to certificate installation.

  • Okta OIDC authentication + MFA
  • Device eligibility checks
  • Certificate generation & download
  • OS-specific installers (Win/Mac/iOS/Android)
  • Device inventory management
  • Suspend/Revoke lifecycle controls
Launch Demo →
🛡️
IT Admin Console

SDOP Admin Dashboard

Bell IT Security governance interface for approval workflows, threat detection, and compliance reporting.

  • Real-time enrollment metrics
  • Device registry with full audit trail
  • Pending approvals workflow
  • Lifecycle event tracking
  • Threat detection & anomaly alerts
  • Compliance report generation
Launch Admin Console →
📐
Technical Documentation

SDOP Architecture Reference

Interactive RFC v3.1 technical documentation with 9 tabs covering architecture diagrams, enrollment flows, PKI configuration, threat model, and glossary.

✓ Architecture Diagrams
✓ Enrollment Flows
✓ Lifecycle Management
✓ PKI & Crypto
✓ Threat Model
✓ OS Payloads
View Architecture Docs →

Key Features

🔐

Zero Trust Architecture

Explicit separation of authentication (Okta), device trust (SDOP+UDS), and authorization (InfoNet/SiteMinder).

📱

Multi-OS Support

Windows, macOS, iOS, and Android with platform-specific certificate delivery (PowerShell, .mobileconfig, PKCS#12).

🔄

Lifecycle Management

7-state lifecycle (UNENROLLED → ENROLLING → ACTIVE → SUSPENDED → REVOKED → EXPIRED) with governance controls.

Enrollment Velocity

Real-time velocity detection with automatic high-risk classification at 7+ devices in 5 minutes or 10+ total.

Approval Workflows

Bell IT approval required for high-risk enrollments and all reinstatement requests with SLA tracking.

🛡️

Threat Detection

Anomaly detection for credential stuffing, certificate duplication, rapid enrollment, and abnormal dealer activity.

📊

Compliance Reports

Automated report generation for lifecycle summaries, expiry forecasts, governance audits, and security incidents.

📜

Audit Logging

Immutable audit trail for all operations with SIEM integration and regulatory compliance support.

Technical Stack

These demos are built with pure web technologies. Production implementation would use:

Frontend: React + TypeScript
Backend: Node.js + Express
Database: PostgreSQL
Auth: Okta OIDC + MFA
PKI: Bell Retail CA (HSM-backed)
Hosting: Azure App Service
CI/CD: GitHub Actions
Monitoring: Azure App Insights