« Back to myAirWatch

Generate the Remote Management Certificates

As part of deploying the Remote Management server, generate the root and intermediate certificates used during installation.



  1. Open the Remote Management Certificate Generator. Be certain to use the correct version of the tool according to the version of AirWatch you are using.

    AirWatch Version Certificate Generator Tool Version
    Pre 9.2 RemoteManagementCertificateGenerator_Before_9_2
    9.2 and above RemoteManagementCertificateGenerator_9_2
  2. Set the following values.

    Setting Value
    Certificate Type Remote Management.
    Deployment On-premises.
    Certificate Common Name Paste the Certificate Common Name.
  3. Select Generate Certificates.
  4. Navigate to the folder on your device holding the Remote Management Certificate Generator. Find the generated certificates in the Artifacts\public folder.
  5. In the Artifacts folder, find the "Certificate Seed Script.sql". Run this script against the AirWatch Database to seed the generated certificates into the AirWatch database.

    Note: While running this script, you may see an error that reads The conversion of a varchar data type to a datetime data type resulted in an out-of-range value. Such an error is likely the result of a location difference between the machine upon which the SQL script was generated and the database server on which it is being run. There are two possible solutions:

    Run the cert provisioning tool on a machine with the same locale settings as the database server to ensure the same date format is set in the SQL script.


    If the first solution is not possible, manually edit the date format in the SQL script to avoid errors while deploying the script during installation.

    For more information about date formats, see http://www.sql-server-helper.com/tips/date-formats.aspx

    References in this document to any specific service provider, manufacturer, company, product, service, setting, or software do not constitute an endorsement or recommendation by VMware. VMware cannot be held liable for any damages, including without limitation any direct, indirect, incidental, special, or consequential damages, expenses, costs, profits, lost savings or earnings, lost or corrupted data, or other liability arising out of or related in any way to information, guidance, or suggestions provided in this document.

  6. Install the certificates onto the Remote Management server into the appropriate certificate stores.

    1. Add the file named "root_cert.cer" to the Root cert store.
    2. Add the file named "intermediate_cert.cer" to the Intermediate cert store.
  7. The certificate generator tool creates the required certificate in P7B format and this P7B file is needed for when you Configure the Remote Management Installer.