More

    Certificate Management for Android: A Step-by-Step Guide

    Share On

    Digital certificates serve as electronic credentials that authenticate Android devices and enable encrypted communication. They play a crucial role in ensuring data security and privacy, simplifying the tasks of IT teams by verifying device identities, and maintaining security across various networks.

    Android Certificate Management
    Certificate Management for Android

    Digital certificates are important in Android device management for secure authentication, encryption, and maintaining code integrity. They facilitate device enrollment, management, and secure communication protocols, increasing overall security and compliance within the Android ecosystem.

    This blog will provide a step-by-step guide on managing Android digital certificates via Scalefusion, focusing on the steps and best practices for effective certificate management.

    Types of Certificates Scalefusion Supports

    • Identity Certificates: These certificates, typically in formats like .p12 or .pfx, enable apps and browsers to authenticate users for Cert Based Authentication (CBA).
    • CA Certificates: Certificates in formats such as .cer, .pem, and .der that validate the trustworthiness of the presented certificate.
    • Chained Certificates: Certificates that include a chain leading to a Leaf Node. They can encompass both identity and CA certificates, forming a hierarchical chain of issuing certificates along with the leaf certificate in their payload/body.

    NOTE: Scalefusion supports the following certificate types: PKCS12 (.p12) and PKCS1 (.cer, .pem).

    Android Certificate Configuration from the Scalefusion Dashboard

    1. Upload Certificates 

    1. Go to Device Profiles and Policies
    • Access the Scalefusion dashboard.
    • Click the Device Profiles and Policies tab.
    Certificate Management for Android
    1. Navigate to Certificate Management
    • Within the Device Profiles and Policies section, find and select Certificate Management.
    Certificate Management for Android
    1. Click Upload Certificate
    • In the Certificate Management section, click Upload Certificate.
    Certificate Management for Android
    1. Enter Certificate Details
    • In the Upload a Certificate window that appears, enter a name for the certificate.
    • Upload the certificate file by selecting it from your device.
    Certificate Management for Android
    1. Save the Certificate
    • After entering all the necessary details, click Save to upload the certificate to the dashboard.

    The uploaded certificate and its details will be displayed on the Certificate Management screen.

    2. Apply Certificates 

    1. Navigate to the Certificate
    • Go to Certificate Management, where your certificates are listed.
    Certificate Management for Android
    1. Select Publish Option
    • Click Publish under the Actions column next to the certificate you want to publish.
    Certificate Management for Android
    1. Choose Device Profiles/Devices
    • A new window will open, displaying a list of device profiles and devices configured on the Dashboard.
    • Select the device profiles/devices where you want to apply the certificate.
    Certificate Management for Android
    1. Publish the Certificate:
    • Click PUBLISH to associate the certificate with the selected device profiles/devices.

    The certificate will now be applied to the chosen device profiles/devices.

    3. Installation of Certificates on Devices (OS9 and below)

    For EMM Managed BYOD or Corporate Owned Devices (below OS 9)

    1. Ensure PIN/Password Setup
    • If the device does not have a PIN or password set, certificates published from the dashboard will be visible in Certificate Manager but not installed.
    • Set up a PIN or password on the device first.

    For Devices with Legacy Management Mode

    1. Manual Installation
    • Navigate to Certificate Manager on the device.
    • Tap the Install button next to the desired certificate.
    • Tap OK (rename the certificate if necessary).
    • The certificate will be installed on the device.

    For AMAPI-based Android Devices

    • Install certificates through the Companion App associated with AMAPI-based Android devices.

    4. Unpublish Certificates

    1. Navigate to Certificate Management
    • Go to the Certificate Management section where your certificates are listed.
    Certificate Management for Android
    1. Select Unpublish Option
    • Click Unpublish under the Actions column next to the certificate you want to remove from device profiles/devices.
    Certificate Management for Android
    1. Choose Device Profiles/Devices to Unpublish From
    • A window will open, displaying a list of all device profiles and devices where the certificate is currently published.
    • Select the profiles and devices from which you want to remove the certificate.
    Certificate Management for Android
    1. Confirm Unpublish
    • Click UNPUBLISH to proceed. The certificate will be uninstalled from the selected device(s) or device profiles.

    This action effectively removes the certificate from the chosen device profiles/devices on the Scalefusion Dashboard.

    5. Delete Certificates

    Confirmation Dialog for Pushed Certificates

    1. Navigate to Certificate Management
    • Access the Certificate Management section on the Scalefusion Dashboard.
    Certificate Management for Android
    1. Initiate Deletion
    • Click Delete under the Actions column next to the certificate you wish to remove.
    Certificate Management for Android
    1. Confirmation Dialog (Pushed Certificates)
    • If the certificate is currently pushed to any device profiles or used in WiFi configurations, a confirmation dialog will appear:
      • “This Certificate is currently installed on the XX Device Profiles and used in XX Wifi Configurations. Are you sure you want to delete?”
    • Confirm your decision to delete the certificate.
    Certificate Management for Android

    Simple Confirmation Dialog (Non-Pushed Certificates)

    • A simpler confirmation dialog will appear if the certificate is not pushed to any device profiles or used in WiFi configurations.

    Mastering Android digital certificate management with Scalefusion UEM ensures secure authentication, encrypted communication, and compliance. By following these steps, IT teams can effectively manage and safeguard device identities, improving overall security and efficiency in the Android ecosystem.

    Contact our support team and schedule a demo. Try our 14-day free trial today!

    Suryanshi Pateriya
    Suryanshi Pateriya
    Suryanshi Pateriya is a content writer passionate about simplifying complex concepts into accessible insights. She enjoys writing on a variety of topics and can often be found reading short stories.

    Product Updates

    spot_img

    Latest Articles

    5 key strategies for compliance benchmarking: Stay ahead of regulations

    Did you know that the global average cost of a data breach reached $4.88 million in 2024? From data privacy laws like GDPR and...

    What is URL Phishing? All you need to know and how to stay protected

    Imagine an employee receiving an email from your server vendor with a link to a document. They click it, assuming it’s safe, only to...

    What are CIS controls and how can they protect your business from cybersecurity risks?

    Every day, organizations worldwide face an invisible war. Cyberattacks are skyrocketing, with cybercrime expected to cost the world $10.5 trillion annually by 2025. In...

    Latest From Author

    What is Apple’s Automated Device Enrollment?

    Unboxing a brand-new Apple device is exciting, but for IT teams, it’s just the start of a long setup process. Each device needs Wi-Fi...

    What is endpoint security and why is it important?

    Your devices are under siege. Every laptop, smartphone, and IoT gadget in your network is a potential doorway for hackers. It’s not a matter...

    Scalefusion macOS App Catalog: Simplify app management 

    Ask any IT admin about managing apps on macOS devices, and you’ll quickly hear the frustrations. You’re dealing with a mix of apps for...

    More from the blog

    Windows Update Delivery Optimization: Everything you need to know 

    Keeping Windows devices updated is necessary for security, performance, and feature enhancements. However, downloading updates separately on each device can strain network bandwidth and...

    Google Workspace Endpoint Management for Windows: Mitigating the challenges with Scalefusion UEM

    Managing Windows devices in a business environment requires a balance between security, compliance, and user productivity. Google Workspace Endpoint Management is often chosen by...

    What is Apple’s Automated Device Enrollment?

    Unboxing a brand-new Apple device is exciting, but for IT teams, it’s just the start of a long setup process. Each device needs Wi-Fi...

    Scalefusion macOS App Catalog: Simplify app management 

    Ask any IT admin about managing apps on macOS devices, and you’ll quickly hear the frustrations. You’re dealing with a mix of apps for...