No Matches Found!
Try with a different search term
No Matches Found!
Try with a different search term
There's a new home for Articles. Find Articles on Our Product Support Page.
Hi Everyone, I sucessfully did the implementation of my CA into MobiControl. (AD CS DCOM)I created the needed templates for my devices. My devices are not logging in to my 802.1x EAP-TLS SSID it is only "saved" under wifi configuration.I am testing with Samsung and Zebra devices on Android 11/13. As I checked the certificates on the devices on the Zebra device the CA root certificate is not selectable as CA certificate. On the Samsung device it is selectable.Both devices are not logging in. Can someone tell me what it "Identity" does? The Android devices wants to have an identity or I am not able to connect to the WIFI. Maybe I have a misconfiguration on my Windows NPS server? I can't see any logs there.
Hi guys, I need to understand how to keep already installed certificates visible (after migrating from A11 to A13) on the device in the setting UI: Settings/Security/More security settings/Encryptions & credentials/Trusted credentiakls/Tab User My customer uses cert provisioning via SOTI profiles "Certificates". Now, the issue is it is a Zebra SD660 (e.g. TC57x) device that has been migrated from A11 to A13 latest patch levels each. It is known that regarding the encryption method change from Full Disk Encryption (FDE) to File Base Encryption (FBE) there will be an enterprise reset performed prior to reboot into A13. Luckily SOTI agent and wifi profile keeps fully installed and survive the migration. Using the Zebra provided ZCP (Zebra Conversion Package) shows the same result. Anyway, ZCP is not an option. In essence all certificates previously installed also keep valid and working. But: The user certs do not show up in the settings UI of the device anymore. This is seen as crucial problem because in any case of an issue the support person will check certificate in this UI via a remote control session. The alternative to (re-)install certs via StageNow CertMgr is no option - certs are only allowed to be installed via SOTI profiles / SCEP. Hope somebody out there have solved similar issue. All best from Germany Jörg
Hi all. Just wondering how to effectively to carry out the above? I can't remember what was done to grant TLS connectivity via mobicontrol admin or the server and the majority if not all devices that used TLS 1.0 have been deprecated so we no longer want enrolment/deployment to be able to carry out on TLS 1.0 going forward and certainly want to block TLS 1.0 Is it as simple as just removing / disabling the correct SHA1 certificate from admin? Will that throw up any warnings on the dashboard or is there some functionality required from TLS 1.0 we aren't aware of? Is there any specific ports we may have opened that use TLS 1.0 that can be safely removed? Mobicontrol server 15.5.1.1010 Thanks
Hey there, we must change the wlan certificate on the devices. At the moment the RADIUS ISE use his old certificate, but next week we will switch to the new certificate. I have created a new Profile with the certificate und the wlan settings and deployed this on the devices (Adnroid ET51 and MC33). The devices get the new certificate but on the wlansettings he says "ignored". The wlansettings use the same SSID and informations, only the certificate is new. Get MobiCOntrol a Problem with this or when we switch the certificate on the ISE, mobicontrol switch the wlansettings automatic on the device? Hase someone experience with this case?
I am currently working to rename our internal MobiControl server from a named host to an IP-only host, however I am unable to re-bind the MobiControl Search certificate to one that does not use the common name. After regenerating the certificate, it continues to create one using the original FQDN, and as a result it throws an SSL/TLS error and is unable to start the service. What am I missing that I am unable to move the Search service over to being IP-based while all other services and certificates seem happy to? I am currently running MobiControl 15.0.2.1049
Hello, One of my projects uses Samsung tablets. I need to configure certificates with a SOTI profile. A configuration with a SOTI certificates imposes an password for screen lock. Is it possible to bypass this requirement ? For example ZEBRA bypasses this obligation. For information I use a Samsung Active PRO tablet Android version : 11Agent Version : AE 15.1.2.1075Console Version : 15.4
Hi, We would like to change our MC server (v14.4.9.1034) and plan to backup / restore the MobiControl database on a new machine (same MC version). Could you please tell me where are the certificates stored on the server or how to export them from the Administration Utility? Do we have to open each certificate and export it? Thank you in advance
Has anyone else had problems with MobiControl not getting rid of expired certificates? I have a subset of devices that are using a device level cert assigned through a template to the CA (that my Admin setup) where the expired certificate does not get removed from the device. This then cause problems on several levels: 1. VPN does not use the correct cert 2. Unable to remove the Cert through the Console. 3. If I revoke the NetMotion configuration profile, the configuration gets uninstalled, but the cert does not uninstall, now this profile is stuck in a Removing Status. The only way that I have been able to clean up the device is delete it and re-enroll it which is not an acceptable solution as most of my devices are remote around the world. MobiControl Console: 14.1.2.1937 Agent: 14.4.4.1051 Device: Zebra TC75x / TC77 OS: Android 8.1 Management Mode: Android Enterprise Anybody have any thought? This has been happening on about 4% of my devices. I have opened a ticket with support, but they have not responded yet. Thanks, Jim
Good morning, I have a question about the certificates alias. The question is about how to set the certificate alias with SOTI, if possible: As you can see in the screeshot, the certificate alias received by the device has this structure: [devicemodel][devicesn][certificatesn]. Where does it take those information and how I can change it with SOTI? Honestly I can’t find where I can set that name inside SOTI CA template configuration. Can you help me?
Hi All im hoping someone may be able to help with the below We Had an issue recently whereby the CA Enrollment certificate had expired without anyone noticing. the certificate was replaced successfully but I would like to be made aware when this cert is due to expire again.the certificate does not seem to exist within the certificate store on the Soti Deployment or management server and is also not mentioned within the administration Utility under certificates (the others are) Can anyone enlighten me as to where I might be able to see this certificate or at least some of its properties?, I also reviewed the logs for an indicator that this problem was apparent but there was nothing seemingly pertinent to an expired certificate Any Help would be much appreciated Kind Regards Richard
Hello All, im newbie with mobicontrol and i looking for the best way to provide an SSL certificate to our devices. We use TC51/56/MC33 with Android 8.1 with Enterprise Browser 3.0.0.1 Agent for non-gms 14.3.3.1038 for GMS 14.3.0.1000 Our mobicontrol version is 15.0.1.1181 The idea whas to use an script created with MCStudio and a profile. The script look like it: certimport -cert "filepath (path where the file comes from ;Server or Soti?)" -ctype CERT What is your proposal for import the certificate? Thank you Guenniko
We have Zebra TC-57 devices in my company. We plan on installing certificates on all of our devices. Certificates on android require device to have Device Authentication setup. SOTI allows via profile Enable Password Enforcement. But I really don't want to allow our users to setup their own PIN, since devices are shared with multiple users. Since PIN is easiest to setup how to enforce that only specific one is used on all devices or is there some other way to allow certificates to work without Authentication that require user input?
Hi,has anyone encountered an issue where when other app is trying to access SOTi issued user certificate and android is asking to set pin or password to access credential storage? Android 7 enrolled as Android + worked, but after upgrading device to android 8 and enrolling as Android Enterprise this issue appeared. Is it fault in new security settings in android 8 or soti app permissions? Would it be possible for SOTI to allow access to credential storage without PIN for some apps? Device TC51 running 02-32-04.00-OG-U01-STD OS 8.1.0Agent 14.3.0.1000A+ Service for Zebra - 1.6.0.102 SOTI Version: 14.3.4.1087
Hello, as it says in the description I have issues connecting iOS devices and WindowsMobile devices at the same time to the deployment server. Specifications: MobiControl Version: 14.4.4.1045 (on-premise) iOS Version: 13.4.1 Devices: iPhone Xr WindowsMobile Version: 5.0 / 6.5 Devices: MC9090 / MC9190 Root Certificate: SHA256 (MobiControl Root CA) I already figured out that the devices running WindowsMobile were only able to connect to the deployment server, when generating a SHA-1 MobiControl Root CA and binding it on "Deployment Server" and "MobiControl Client Certificate Root CA". Unfortunately the devices running iOS cannot connect to the deployment server on this conditions. Does someone have any suggestions connecting both iOS and WindowsMobile devices. I can provide more Information if needed.
Hey Guy's, we're actually working with Zebra Devices on Android Nougat (7.1.2) very successfull. All new Devices and also the old one's had to be upgraded to Oreo in the future in Case of security Updates etc. Unfortunately we're not using a PIN or Pattern so far and on Android Nougat it works great. But when I join an Oreo Device, it has to be set up with a Device PIN or Pattern to work correctly. In our specific Case no Certificate for Wifi e.g. can be pushed to device. Also other stuff like mxconfig Things wont work until we set up a PIN on the Device. Is there any Chance to get Oreo running without the need of a PIN on the Device? many thanks PS: Were using MobiControl 13.4.0.5074, Agent Version 14.0.0.1579 in DoA Mode, Zebra TC20 & TC51 / TC52 Devices
Top-tier experts who are delivering outstanding content. Should have more than 7000 points.
Experts who are consistent with great content. Should have more than 1000 points
Highly experienced members with valuable inputs. Should have more than 700 points
Beginners taking the initiative. Should have more than 500 points
