Key Manager Plus integrates with ManageEngine Mobile Device Manager Plus (MDM); this integration is achieved through the ManageEngine MDM APIs. Once the integration is done, you can discover and import SSL certificates from the devices managed through your MDM server and store the SSL certificates in the Key Manager Plus repository. You can also deploy SSL certificates from Key Manager Plus to the mobile devices listed in your MDM environment. All the imported SSL certificates are stored in the Key Manager Plus repository, from where you can filter the view based on the OS type such as iOS, Android, Windows, Chrome OS, Mac OS, and Apple tvOS. In addition to that, Key Manager Plus allows you to export instant and periodically scheduled reports of the MDM certificates that are managed in the certificate repository within a selected time period.
Note: The Key Manager Plus - ManageEngine MDM integration works with MDM release version 10.1.2011.02 and above only.
The Key Manager Plus - ManageEngine MDM integration requires a valid API key with the necessary permissions. To generate the API server key, follow the below steps in the ManageEngine MDM portal:
Once you have the API server key from the MDM portal, follow the below steps in the Key Manager Plus interface to discover SSL certificates from the devices managed in MDM:
Alternatively, you can also discover and import certificates through the Manage option under SSL >> MDM. This is explained in detail under the subsequent steps.
All the SSL certificates discovered from the MDM server are stored in the certificate repository and you can access them from the SSL >> ManageEngine MDM. The ManageEngine MDM tab displays certificate attributes such as the Common Name, Device Name, Issuer, Date of Expiry, Signature Algorithm, and Serial Number. Using the Show drop-down, you can filter the view of the SSL certificates based on the following OS types: iOS, Android, Windows, Chrome OS, Mac OS, and Apple tvOS.
From the ManageEngine MDM tab, you can import, deploy, and manage the SSL certificates discovered from the MDM portal.
Follow the below steps to import certificates from the MDM server:
However, if you have already discovered certificates via the Discovery tab, you can skip this step as your certificates will already be available in Key Manager Plus.
Key Manager Plus allows you to deploy SSL certificates to the various devices in your MDM server. Follow the below steps:
Note that the deployment status will not be updated instantly, as ManageEngine MDM puts deployment requests on a queue until the selected device is online. Click the Get Status option whenever you need to get the updated deployment status.
Key Manager Plus offers a provision to export reports of the MDM certificates managed in the Key Manager Plus repository within a selected period. This report provides detailed information on the MDM certificates managed via Key Manager Plus. Additionally, you can schedule periodic generation of MDM certificate reports.
Follow the below steps to create the MDM Certificates Report:
Click here to learn more about Reports in Key Manager Plus.
Follow the below steps to schedule periodic generation of the MDM certificates report:
Once the schedule is created, Key Manager Plus will periodically generate the MDM Certificates Report on the specified date and time.
Click here to learn more about Schedules in Key Manager Plus.