As part of deploying the Remote Management server, generate the root and intermediate certificates used during installation.
- Download the Remote Management Certificate Generator.
Gather the Common Name for the certificates.
- Run a SQL script against the AirWatch Database to get the CN. For more information, see Create the Common Name from the AirWatch Database.
Open the Remote Management Certificate Generator. Be certain to use the correct version of the tool according to the version of AirWatch you are using.
AirWatch Version Certificate Generator Tool Version Pre 9.2 RemoteManagementCertificateGenerator_Before_9_2 9.2 and above RemoteManagementCertificateGenerator_9_2
Set the following values.
Setting Value Certificate Type Remote Management. Deployment On-premises. Certificate Common Name Paste the Certificate Common Name.
- Select Generate Certificates.
- Navigate to the folder on your device holding the Remote Management Certificate Generator. Find the generated certificates in the Artifacts\public folder.
In the Artifacts folder, find the "Certificate Seed Script.sql". Run this script against the AirWatch Database to seed the generated certificates into the AirWatch database.
Note: While running this script, you may see an error that reads The conversion of a varchar data type to a datetime data type resulted in an out-of-range value. Such an error is likely the result of a location difference between the machine upon which the SQL script was generated and the database server on which it is being run. There are two possible solutions:
Run the cert provisioning tool on a machine with the same locale settings as the database server to ensure the same date format is set in the SQL script.
If the first solution is not possible, manually edit the date format in the SQL script to avoid errors while deploying the script during installation.
For more information about date formats, see http://www.sql-server-helper.com/tips/date-formats.aspx
References in this document to any specific service provider, manufacturer, company, product, service, setting, or software do not constitute an endorsement or recommendation by VMware. VMware cannot be held liable for any damages, including without limitation any direct, indirect, incidental, special, or consequential damages, expenses, costs, profits, lost savings or earnings, lost or corrupted data, or other liability arising out of or related in any way to information, guidance, or suggestions provided in this document.
Install the certificates onto the Remote Management server into the appropriate certificate stores.
- Add the file named "root_cert.cer" to the Root cert store.
- Add the file named "intermediate_cert.cer" to the Intermediate cert store.
- The certificate generator tool creates the required certificate in P7B format and this P7B file is needed for when you Configure the Remote Management Installer.