Configuring certificates and account access¶

To ensure your Coro subscription is authorized to remotely manage mobile devices, you must first configure your Coro Workspace with the necessary connections. The operation differs depending on whether you intend to enroll iOS or Android devices.

Apple requires organizations to add a valid Apple Push Notification service (APNs) certificate in order to enroll and manage iOS devices, whereas Google requires you to connect a Customer Managed Google Enterprise account to your Coro Workspace in order to enroll and manage Android devices.

To configure your Coro Workspace to manage mobile devices, see the following procedures:

• iOS devices
• Android devices

Adding an APNs certificate for iOS device management¶

APNs certificates are used to validate your Coro service when enrolling and managing iOS devices and are generated with an authorized Apple ID. Each connected device uses the specific APNs certificate for authenticating push requests from the server, and is inherently connected to Coro through that certificate.

Hence, if you replace the certificate, the connection to all enrolled devices will be lost, and each must be reenrolled under a new certificate. If your certificate is due to expire, you must generate a new one through renewal of the existing certificate, using the same Apple ID, in order that your devices can continue to connect.

To learn more about renewing an existing certificate, see Options for a current certificate.

The following procedure describes how to obtain a new APNs certificate. First, download a Certificate Signing Request (CSR) from Coro. Then, use the CSR to request a APNs certificate from the Apple Push Certificates portal. Finally, you upload the generated certificate back to your Coro Workspace.

Perform the following steps:

1. On the MDM Management page, select the Control Panel icon in the nav bar:

   

   Coro displays the MDM Settings page:

   

2. Select Apple Push Notification Services (APNs).

   Note

   If you have previously connected a APNs certificate, this is now shown. For more details on how to renew a certificate, see Options for a current certificate.

   Where you have yet to configure any MDM services, Coro indicates this state and provides a link to begin the process:

   

3. Select CREATE AND CONNECT APNS CERTIFICATE.

   The Create and connect APNs certificate dialog appears:

   

4. In step 1, select DOWNLOAD CERTIFICATE SIGNING REQUEST.PLIST to obtain the CSR. Download this CSR to your local workstation. Select NEXT STEP to continue.

5. In step 2, use the link to access the Apple Push Certificates portal:

   

6. Follow the steps on the Apple portal to obtain your APNs certificate.

   Note

   Refer to Apple's documentation for full details.

7. Return to the Coro console and select NEXT STEP to continue.

8. In step 3, use the Upload a file box to upload the generated APNs certificate to Coro:

   

9. (Optional) Add a note to describe the certificate. As certificate renewal requires you to use the same Apple ID, Coro recommends including this information here.

10. Select UPLOAD CERTIFICATE to continue:

    

    Coro displays the uploaded certificate details:

    

Options for a current certificate¶

To view your current APNs certificate, select Apple Push Notifications Services (APNs) from the MDM Settings page.

On this page, you can:

• RENEW APNS CERTIFICATE: Upload a renewal for the current certificate.

  APNs certificates are valid for a period of 12 months. You can renew a certificate for a further 12 months, but you must use the same Apple ID used to generate the original certificate.

  IMPORTANT: When you need to renew a APNs certificate, you must first use the Apple Push Certificates Portal to obtain the updated certificate. Login to the portal, locate your current certificate, and use the renew option provided. DO NOT GENERATE A NEW CERTIFICATE as your enrolled devices will not recognize the new certificate and will need to be re-enrolled, even if you use the same original Coro CSR file and Apple ID. After you have obtained the renewed certificate, upload it to your Coro workspace through this option.

• REMOVE APNS CERTIFICATE: Deletes the current certificate and removes the connection to all enrolled iOS devices.

  Warning

  This process is irreversible. Only remove the certificate if you are sure of the outcome.

Connecting a Customer Managed Google Enterprise account for Android device management¶

To manage Android devices, connect Coro to your Customer Managed Google Enterprise account. This provides the necessary authorization for enrolled devices to authenticate requests from the server.

Perform the following steps:

1. On the MDM Management page, select the Control Panel icon in the nav bar:

   

   Coro displays the MDM Settings page:

   

2. Select Customer Managed Google Enterprise.

   Note

   If you have previously connected a Google Enterprise account, the connection is displayed. For more details on current connection options, see Options for a current connection.

   Where you have yet to configure any MDM services, Coro indicates this state and provides a link to begin the process:

   

3. Select CONNECT WITH GOOGLE ENTERPRISE.

   Coro requests confirmation that you want to launch the Google Enterprise configuration process:

   

4. To start the Google Enterprise configuration process, select LAUNCH GOOGLE ENTERPRISE.

5. Follow the steps in the Google Enterprise portal to register or select your account.

   Note

   Refer to Google's documentation for full details.

6. Return to the Coro console and observe that the Customer Managed Google Enterprise connection is shown:

   

Options for a current connection¶

On this page, you can:

• REMOVE CONNECTION: Deletes the current connection and removes all enrolled Android devices.

  Warning

  This process is irreversible. Only remove the connection if you are sure of the outcome.

• ADD NOTE: Add more information about the account you used to create the connection.