PUSHING CERTIFICATES THROUGH MDM AND ITS ACCESSIBILITY!

Harsh
Just browsing

PUSHING CERTIFICATES THROUGH MDM AND ITS ACCESSIBILITY!

Hello guys,

 

I was finding a way to access the certificates installed in ios device from an application published by the Meraki MDM.

I went through several apple online documents, blog posts, and StackOverflow Q/A. Where I got a  Q/A thread on Apple forum https://forums.developer.apple.com/thread/52345 which says that even if we push certificates through any MDM, there is no way to access it from the application.
https://developer.apple.com/library/content/qa/qa1745/_index.html says that there is no way to share or access keychain modified by Apple


But when I came on Meraki documentation https://documentation.meraki.com/SM/Profiles_and_Settings/Credentials_Payload_(Pushing_Certificates) Article ID
ID: 6614. It says that certificate will be installed on a shared keychain.

 

I just want to know what exactly mean by shared keychain. Is this anything like sharing keychain between apps or we are accessing certificates from apple keychain (if so it is contradicting to Apple document)


Please let me know...Thank you

2 REPLIES 2
jared_f
Kind of a big deal

I am a little confused by your question. I don't believe you can access certificates pushed via configuration profiles from an application.

 

This function is more used for Radius from my knowledge.

Find this helpful? Click the kudos button. Thanks!

@jared_f thank you for your response.

 

Actually, I'm confused too by reading Meraki document Article ID: 6614. As they are saying that certificate will go to the shared keychain, sent through MDM. But this contradicts to Apple documents. So I just want clarification on this from Meraki guys, and if it is possible then please share documents regarding with it. So it will be helpful.

 

Thank you

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels