After the file installation is completed, the MDM Install Wizard will start up and guide you through the necessary stages needed to configure your newly installed MDM On Premise edition service. There are a total of 9 settings to be configured.
In this part of the installation and configuration wizard fill in the following fields:
- Server Address: Enter your MDM server FQDN here (Example - mdm.company.com).
If you already have a PFX certificate available, proceed to configure the below:
- Certificate (PFX Format): Define the path where the PFX file is stored.
- Certificate password: Enter the certificate password.
If you require to generate a PFX certificate from scratch, enable the âI do not have a PFX Certificateâ checkbox and further configure:
- Certificate: Select your SSL certificate obtained by a Certificate Authority (CA) company. The file should end with a .pem extension*.
- Root Certificate: Select the Root Certificate file obtained by a Certificate Authority (CA) company. The file should end with a .cer extension.
- Private Key:Select the Private Key you were provided with by your Certificate Authority (CA) company. The file should end with a .pem extension.
- Private Key Password: Insert the password used during the generation of your Private Key.
- Export Password: The password to be used for the new PFX file
Note: Signed digital certificate must support wildcards.
In the Database Settings dialog window, fill in the following:
- Location: Specify the IP address of the machine hosting your SQL database. If the database is located on the same machine you are installing Mobile Device Management, you can also use localhost.
- Password: Fill in the password of your SA database account.
Note: Click âTest Connectionâ to confirm the MDM server is able to connect to the configured database.
During this process the installer will start performing the following operations:
- Generate the PFX certificate.
- Create the database users.
Next, you shall be requested to fill in the Email Settings to be used by MDM.
- SMTP Server: Fill in the SMTP server to be used.
- Port: Fill in the port number to be used for sending out emails.
- Email: Fill in the email address that you want to be shown when emails are sent out.
- Username: Fill in the username to be used if the mail server requires authentication.
- Password: Password for the username provided if the mail server requires authentication.
- Use Secure Connection: Tick this box if your SMTP server requires an SSL connection.
SMS Settings Configuration
In the next page you are requested to fill in the SMS Settings provided to you by CardBoard Fish. CardBoardFish is an online service that provides, high quality, reliable, and low cost SMS delivery services. This step is necessary in order to be able to send out SMSâs for features such as the Lock & Wipe function:
- SMS Username: Fill in the username obtained from CardBoard Fish.
- SMS Password: Fill in the password for your CardBoard Fish account.
iOS Settings Configuration
Next, you will be asked to fill in the iOS settings obtained from your SCEP server in order for iOS devices to be able to connect and communicate with your MDM server:
- SCEP Server URL: The URL pointing to your certificate SCEP server.
- Challenge Password: Input the challenge password generated by your certificate SCEP server.
- MDM Vendor Certificate Path: Select the path to the certificate provided to you by Apple.
- MDM Vendor Private Key Path: Select the path to the private key previously generated to obtain the certificate by Apple.
- MDM Vendor Private Key Password: Insert the password of your Private Key.
- MDM Vendor Export Password: Define the password for the Apple certificate which will be generated.
Note: Signed digital certificate must support wildcards
Google Messaging Settings
In the next dialog window you are asked to fill in the GCM settings obtained from your Google Cloud Messaging project. This is used to send PUSH notifications to Android devices.
- Project Number/ GCM API Key: Insert the Project Number obtained by the Google Cloud Messaging project.
- API Key/ GCM Project Id: Insert the API Key obtained by the Google Cloud Messaging project.
Note: The GCM Project Id is also known as the Project Number. Extract this number from the Google Developers Console > API Project > Overview > Project Number (Top Left Corner) as shown below.
BackOffice Account Configuration
After that, you will be asked to fill out the details for the admin account to access the Mobile Device Management BackOffice.
- Name, Surname: Insert the administratorâs name and surname.
- Email: Insert the administratorâs email address.
- Username: The username that will be used by the admin to log into BackOffice.
- Password: The password that will be used by the administrator to log into BackOffice.
- Confirm Password: Re-insert the password to be used by the admin to log into Back Office.
SQL Server Reporting Service Configuration
Next, you will be asked to enter SSRS settings required by setup to deploy SSRS configuration for MDM and also generate reports. Upon completion click âNextâ to initialise final setup.
- Web Service URL: The URL pointing toward your Reporting Services end-point.
Portal User credentials are required to authenticate connections from the MDM portal when generating reports. If the SQL Server Reporting Services (SSRS) is not installed on the same server that MDM setup is running on, enable the âPortal User Credentialsâ checkbox and configure the below:
- User Login and Password: Enter Windows credentials that are configured in SSRS with browser permissions.
Note: If Setup is running on the same machine SSRS will automatically be configured to authenticate credentials from the MDM portal.
Administrator credentials are required to deploy MDM report configuration to SSRS. If the administrator you are currently logged in with does not have administrator privileges and content management rights in SSRS, enable âUse the credentials belowâ:
- Administrator Login Name and Password: Enter Windows account credentials configured with administrator privileges and content management rights in SSRS.
Note: If setup is running on the same machine as SSRS, administrator rights are automatically authenticated.
- Finalise the installation by clicking finish and optionally select to launch Mobile Device Management upon completion.