Adding a PKI profile for MDM automation in VMware Workspace ONE

See below for creating an MDM automation profile to issue certificates with the PKI protocol.

To add a PKI profile in Workspace One

  1. In Workspace One, navigate to Resources > Profiles & Baselines > Profiles.

    images/download/attachments/209514808/image-2023-7-27_14-36-50-version-1-modificationdate-1692163904603-api-v2.png
  2. In the content pane, click Add > Add Profile.

  3. Follow the wizard pages described below.

Add Profile

Click on the name of the platform running the enrollment device.

images/download/attachments/209514808/image-2023-7-27_14-39-17-version-1-modificationdate-1692163904836-api-v2.png

Select Device Type

Click on the type of enrolled device.

images/download/attachments/209514808/image-2023-7-27_14-41-27-version-1-modificationdate-1692163904868-api-v2.png

Select Context

Click on User Profile to enroll users or Device Profile to enroll devices.

images/download/attachments/209514808/image-2023-7-27_14-43-43-version-1-modificationdate-1692163904908-api-v2.png

General

Click General in the sidebar menu to configure the following settings in the content pane.

Field

Value

​Name

Enter a name for the profile.

Smart Group

Select the smart group containing the managed users or devices.

images/download/attachments/209514925/image-2023-7-26_10-41-57-version-1-modificationdate-1692247624686-api-v2.png

Credentials

Click Credentials in the sidebar menu to configure the user credentials.

Field

Value

Credential Source

Select Defined Certificate Authority.

Certificate

Upload separately the certificates of the root and issuing CAs.

Certificate Store

Select Personal or Intermediate for profiles with the User Profile context.

Select Trusted Root for profiles with the User Device context.

Click the images/s/by4ula/8804/47zayh/_/images/icons/emoticons/add.svg symbol to create a new credential with the following settings.

Field

Value

Credential Source

Select Defined Certificate Authority.

Certificate Authority

Select the CA configured in Adding a Certificate Authority and a Request Template for MDM automation in VMware Workspace ONE.

Certificate Template

Select the request template configured in Adding a Certificate Authority and a Request Template for MDM automation in VMware Workspace ONE.

Key Location

Specify the location for the issued certificate: Software or Hardware.

Certificate Store

Enter the name of the certificate store.