See below for creating an MDM automation profile to issue certificates with the PKI protocol.

To add a PKI profile in Workspace One

Add Profile

Click on the name of the platform running the enrollment device.

images/download/attachments/209514808/image-2023-7-27_14-39-17-version-1-modificationdate-1692163904836-api-v2.png

Select Device Type

Click on the type of enrolled device.

images/download/attachments/209514808/image-2023-7-27_14-41-27-version-1-modificationdate-1692163904868-api-v2.png

Click on User Profile to enroll users or Device Profile to enroll devices.

images/download/attachments/209514808/image-2023-7-27_14-43-43-version-1-modificationdate-1692163904908-api-v2.png

Click General in the sidebar menu to configure the following settings in the content pane.

Field	Value
Name	Enter a name for the profile.
Smart Group	Select the smart group containing the managed users or devices.

images/download/attachments/209514925/image-2023-7-26_10-41-57-version-1-modificationdate-1692247624686-api-v2.png

Click Credentials in the sidebar menu to configure the user credentials.

Field	Value
Credential Source	Select Defined Certificate Authority.
Certificate	Upload separately the certificates of the root and issuing CAs.
Certificate Store	Select Personal or Intermediate for profiles with the User Profile context. Select Trusted Root for profiles with the User Device context.

Click the symbol to create a new credential with the following settings.

Field	Value
Credential Source	Select Defined Certificate Authority.
Certificate Authority	Select the CA configured in Adding a Certificate Authority and a Request Template for MDM automation in VMware Workspace ONE.
Certificate Template	Select the request template configured in Adding a Certificate Authority and a Request Template for MDM automation in VMware Workspace ONE.
Key Location	Specify the location for the issued certificate: Software or Hardware.
Certificate Store	Enter the name of the certificate store.