Home > Enterprise Mobility Management > Profiles and Settings > Credentials Payload (Pushing Certificates)

Credentials Payload (Pushing Certificates)

The Systems Manager credential payload can be used to push X.509 (.cer, .p12) certificates to devices. As more and more sensitive corporate data exists in our devices, the need for digital certificates becomes more apparent. Certificates provide an extra layer of protection that passwords cannot contend with; including such benefits as user identification, authentication and integrity checks of the device. These certificates can either be generated by a 3rd party certificate authority or by a locally hosted certificate authority. 
 
An example use case for this feature is to push a verified certificate to an iOS device to wirelessly authenticate via 802.1X. These will automatically populate under the "Trust" feature in a WPA2-Enterprise WiFi profile under the 'WiFi' tab.

Note: Credential certificates are not the same as owner identity certificates.

Credential Payload Configuration

  1. Navigate to Systems manager > MDM > Settings.
  2. Use an existing profile, or create a new Meraki managed profile.
  3. Select + Add Settings > Credential.
  4. Specify the name of the certificate.
  5. Input associated password to the certificate.
  6. Upload the certificate through Choose File 
  7. Once the certificate has been uploaded, save the payload.

 

The Credential payload is currently supported on iOS, OSX and Android.

1. Credential.png

As shown below, you can name your credential, input a password, and upload the certificate. Note that for iOS and macOS the certificate will be installed on a shared keychain. Android will install the certificate on the Android Keystore system.

Note: For Android, there is no way to uninstall the private key certification unless the work profile is removed from the device.

2. Credential Setting.png

 

Once the certificate has been uploaded, information related to the certification will be displayed.

3. Cert w: Sample.png

Viewing the Certificates on Devices

iOS

Once the credentials payload has been pushed down onto your devices you can view the certificate in iOS by navigating to Settings > General > Profiles & Device Management > Meraki Management > More Details. 

  4. iPad Settings.jpeg

OSX

To view existing certificates on OSX, navigate to Keychain Access by search or Applications > Utilities > Keychain Access. After opening Keychain Access select Category > Certificates to view all existing certificates.


5. macOS Certs.png

Android

Finding certifications under Android will be slightly different for each device and version. Navigate to Settings > Security > View security certificates.

6. Android Certs.png

You must to post a comment.
Last modified

Tags

Classifications

This page has no classifications.

Explore the Product

Click to Learn More

Article ID

ID: 6614

Explore Meraki

You can find out more about Cisco Meraki on our main site, including information on products, contacting sales and finding a vendor.

Explore Meraki

Contact Support

Most questions can be answered by reviewing our documentation, but if you need more help, Cisco Meraki Support is ready to work with you.

Open a Case

Ask the Community

In the Meraki Community, you can keep track of the latest announcements, find answers provided by fellow Meraki users and ask questions of your own.

Visit the Community