Welcome to Headwind MDM Q&A, where you can ask questions and receive answers from other members of the community.

Please do not post bug reports, missing feature requests, or demo inquiries. If you have such an inquiry, submit a contact form.

Add custom certificates to Headwind MDM

0 votes
I am currently facing the following challenge: in order to establish the connection to a certain page of the company, SSL certificates are required and has to be deployed to the mobile devices. After a long search in your forum as well as in the www, I have not yet found a solution to the problem.

The manual installation of the certificates runs smoothly. However, due to the number of devices, this is almost impossible.

Is it possible to automate the certificate installation to devices?
by (37.6k points)

2 Answers

0 votes

Custom certificates could be embedded in the source code of Headwind MDM in PEM format. Note that it's unsafe to transfer certificates through the network due to a possible interception attack.

To embed certificates in the source code, please do the following:

1. Prepare the certificates in PEM (BASE64-encoded) format, and put them to assets subdirectory (one file per certificate).

2. Add the file names (without path, just file names, e.g. mycert.pem, myrootcert.pem) to res/values/strings.xml in the "certificates" string array.

The certificates will be installed at first app start (including the initial enrollment).

by (37.6k points)
0 votes

Headwind MDM launcher version 5.28 and above allows to install certificates from files uploaded to the device storage.

1. Add certificate files in PEM format in the configuration details, Files tab.

2. Switch to the Application settings tab, and add the following setting:

Package ID: com.hmdm.launcher

Attribute: certificates

Value: comma-separated paths to certificates (relative to /storage/emulated/0). For example, if you stored file my_root_ca.pem, my_intermediate_ca.pem to the root of the device storage, the value should be: /my_root_ca.pem,/my_intermediate_ca.pem

Click Save to apply settings.

by (37.6k points)
edited by
I have tried this method, and I can see the certificate in 'User certificates.' How can I install it into 'System certificates' on Android 14?

Thanks.
by (100 points)
You cannot. System certificates are the certificates preinstalled in the Android ROM, and it is not possible to manage them by the app (at least if your device is not rooted).
by (37.6k points)
 | Snow Theme by Q2A Market
Powered by Question2Answer
...