MDM Managing User Specific Certificates

MDM-Managing User-Specific Certificates

Administrators can add digital certificates to the Certificate Repository. Certificates can be used specific to users, in order to authenticate all them to access one or more corporate resources like Email, VPN and WiFi. This document will explain you on the following:

Adding User-Specific Certificates to Certificate Repository

Administrators can add the Certificates to the Certificate Repository by following the steps mentioned below:

  1. Click MDM Tab
  2. Under Manage, choose Certificate Repository
  3. Choose User-Specific Certificates view
  4. Click Add Certificate and specify the following:
    1. Specify the name of the certificate
    2. Upload the User-Specific Certificate, received from the vendor
    3. Specify the certificate's password
    4. Specify the category of the certificate like, Default or choose the certificate category from the available list. You can also create a new category by clicking on Create New
    5. Specify the User to whom the certificate needs to be associated
  5. Click Add Certificate to add the certificate to the repository.

You can see that the certificate has been added to the Certificate Repository. It can now be used to authenticate users access the corporate resources. This ensures that unauthentic users will be restricted from accessing the corporate data.

Modifying User-Specific Certificates

Administrators can modify  the Certificates, that has been added to the Certificate Repository by following the steps mentioned below:

  1. Click MDM Tab
  2. Under Manage, choose Certificate Repository
  3. Choose User-Specific Certificates view
  4. Select the Certificate that needs to be modified and click edit button under Actions.  You can modify the following:
    1. Name of the certificate
    2. Latest version of the certificate
    3. Certificate's password
    4. Category of the certificate from the available list. You can also create a new category by clicking on Create New
    5. User to whom the certificate is associated
  5. Click Modify Certificate to save the changes.

You can see that the certificate has been modified in the Certificate Repository. When the certificate is modified, it will be automatically applied to all the profiles, which means it will impact the existing users.  

Various Examples:

  1. A Use-Specific certificate named Default_Corporate  has privilege to authenticate users, to access WiFi, VPN and Email. If this certificate is modified to restrict the privilege to VPN and WiFi, then users will not be allowed to access VPN and WiFi.
  2. A User-Specific certificate named Default_Corporate  has privilege to authenticate users, to access only  WiFi. If this is modified to add privileges to access VPN and Email, then it will not benefit the existing users. It will applied to the users to whom the profile is associated henceforth.
  3. A User-Specific certificate named Default_Corporate  has privilege to authenticate users, to access only  WiFi. If the users associated to the certificate is modified, then the previous user will be restricted from access the corporate resource and the new user will have privilege to access the corporate resource.

Removing User-Specific Certificates

Administrators can remove the Certificates, that has been added to the Certificate Repository by following the steps mentioned below:

  1. Click MDM Tab
  2. Under Manage, choose Certificate Repository
  3. Choose User-Specific Certificates view
  4. Select the Certificate that needs to be modified and click remove button under Actions.  
  5. Click the confirmation message to remove the Certificate from the certificate repository.

You can see that the certificate has been removed from the Certificate Repository. When the certificate is removed, it will be impact all the associated users, from accessing the corporate resources.

 

Copyright © 2005-2015, ZOHO Corp. All Rights Reserved.
ManageEngine