This section describes the information required to configure Mobile Device Management (MDM) products to enroll for a certificate using Certificate Enrollment Gateway. For information about using your MDM product, see your MDM product documentation.
Enrollment URL for MDMWS clients
Mobile Device Management products must use the following URL to communicate with Certificate Enrollment Gateway:
https://<CEG-server>/mdm/services/<tenant-ID>Where:
<CEG-server>is the hostname or IP address of the Certificate Enrollment Gateway server.<tenant-ID>is the unique identifier of a tenant defined in Certificate Enrollment Gateway. The value is case-sensitive.
For example:
https://cegserver.example.com/mdm/services/tenant1Issuing a signing certificate to the MDM product
Some MDM products may require a signing certificate to sign data being delivered to MDM devices. For instructions about adding certificates to your MDM product, see your MDM product documentation.
Adding the CA certificate chain to the MDM product
MDM products must trust the CA certificate chain for the Certificate Enrollment Gateway TLS certificate. If the MDM product does not trust the CA certificate chain, the MDM clients will fail to establish a secure TLS connection to Certificate Enrollment Gateway. For instructions about adding certificates to your MDM product, see your MDM product documentation.