Adding security certificates to iOS MDM devices

These settings apply to supervised devices and devices operating in basic control mode.

You can add certificates to iOS MDM devices to simplify user authentication and ensure data security. The data signed with a certificate is protected against modification while it is transferred over the network. Data encryption using a certificate provides an added level of security for the data. The certificate can also be used to verify user identity.

Kaspersky Mobile Devices Protection and Management supports the following certificate standards:

• PKCS#1. Encryption with a public key based on RSA algorithms.
• PKCS#12. Storage and transmission of a certificate and a private key.

To add a security certificate to iOS MDM devices:

1. In the main window of Kaspersky Security Center Web Console, select Assets (Devices) → Policies & profiles. In the list of group policies that opens, click the name of the policy that you want to configure.
2. In the policy properties window, select Application settings.
3. Select iOS and go to the Device configuration section.
4. On the Certificate management card, click Settings.

   The Certificate management window opens.

5. Enable the settings using the Certificate management toggle switch.
6. Click Upload and specify the path to the certificate.

   Files of PKCS#1 certificates have the CER, DER, or PEM extension. Files of PKCS#12 certificates have the P12 or PFX extension. The password for a PKCS#12 certificate must not me empty.

7. Click Open.

   If the certificate is password-protected, enter the password. The new certificate appears in the list.

8. Click OK.
9. Click Save to save the changes you have made.

Mobile device settings are changed after the next device synchronization with the iOS MDM Server.

As a result, once the policy is applied, certificates are automatically installed on devices.

Page top