loopkin Posted June 14 Share Posted June 14 Hello, We are a PKI vendor company, and are seeking to integrate our solution with Workspace ONE UEM, so that certificates issued by our PKI can be delivered on devices managed by Workspace ONE UEM. We currently have a working integration based on SCEP, that works well and is actually deployed and used by some of our customers. But we have new requests from these customers that would require us to issue certificates in PKCS#12 format, so that we have the ability to escrow the private key: more precisely the use case is the issuance of encryption certificates. How should we proceed to get that integration done? Are there APIs that we could either use or implement to achieve that goal? Quote Link to comment Share on other sites More sharing options...
Employee Sascha Warno Posted June 14 Employee Share Posted June 14 What should be encrypted? Do they want to use it for SMIME? For that we got the Escrow gateway. https://docs.omnissa.com/bundle/CredentialEscrowGatewayV2310/page/OverviewofCredentialEscrowGateway.html You can use it together with the credentials payload. Quote Link to comment Share on other sites More sharing options...
loopkin Posted June 17 Author Share Posted June 17 (edited) Hi Sasha, Thanks very much for your reply! The Escrow Gateway seems interesting for some of our customers: where can we grab more information, like the calls for the Credential Provider? The documentation gives some good insights already, but not the details of the calls. Also i'm not sure this architecture would fit in some use cases, where we need to be able to recover the certificate/key onto another device, such as a smart card. Edited June 17 by loopkin Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.