Configure Content Gateway settings in the Workspace ONE UEM console to establish a node and pre-configure the settings that get bundled into the configuration file, eliminating the need to configure the settings manually post-installation on the server.

Configuration includes selecting the platform, configuration model, associated ports, and if necessary, uploading an SSL certificate.

From Workspace ONE UEM console version 9.6 onwards, Unified Access Gateway (UAG) is the recommended installation type when configuring a Content Gateway node. You can use this option to configure a new Content Gateway on Unified Access Gateway or to migrate your existing Content Gateway to Unified Access Gateway.

For more info about configuring Content Gateway on Unified Access Gateway, see Workspace ONE UEM Components on Unified Access Gateway in the UAG documentation. For information about migration, see Migrating Content Gateway to Unified Access Gateway documentation.

For information about the custom values for Content Gateway, see the Content Gateway documentation as part of Workspace ONE UEM Documentation at VMware Docs.

Procedure

  1. Navigate to Groups & Settings > All Settings > System > Enterprise Integration > Content Gateway in the Organization Group of your choice.
  2. Set Enable the Content Gateway to Enabled.
    You might need to select Override to unlock Content Gateway settings.
  3. Click Add.
  4. Complete the fields that appear to configure a Content Gateway instance.
    1. Configure the Installation Type.
      Setting Description
      Installation Type Select the Operating System for the Content Gateway server.
    2. Configure the Content Configuration settings.
      Setting Description
      Configuration Type
      • Basic – Endpoint configuration with no relay component.
      • Relay – Endpoint configuration with a relay component.
      Name Provide a unique name used to select this Content Gateway instance when attaching it to a Content Repository, Repository Template, or RFS Node.
      Content Gateway Relay Address If implementing a relay configuration, enter the URL used to access the Content Gateway Relay from the Internet.
      Content Gateway Relay Port If implementing a relay configuration, enter the relay server port.
      Content Gateway Endpoint Address Enter the host name of the Content Gateway endpoint. The Public SSL certificate bound on the configured port must be valid for this entry.
      Content Gateway Endpoint Port Enter the endpoint server port.
    3. Configure the Content SSL Certificate settings.
      Setting Description
      Public SSL Certificate (required for Linux requirements)

      If necessary, upload a PKCS12 (.pfx) certificate file with a full chain for the Content Gateway Installer to bind to the port. The full chain includes a password, server certificate, intermediates, root certificate, and a private key.

      Note: To ensure that your PFX file contains the entire certificate chain, you can run commands such as certutil -dump myCertificate.pfx or openssl pkcs12 -in myCertificate.pfx -nokeys using command line tools such as Certutil or OpenSSL. These commands display the complete certificate information.

      Requirements vary by platform and SSL configuration.
      Ignore SSL Errors (not recommended) If using a self-signed certificate, consider enabling this feature. If enabled, Content Gateway ignores certificate trust errors and certificate name mismatches.
      ICAP Proxy configurations are not supported from Workspace ONE UEM console version 9.7. However, existing configurations can be edited. For information about configuring ICAP Proxy, see https://support.workspaceone.com/articles/115001675368.
  5. Select Add.
  6. Select Save.

What to do next

During configuration, you specify the platform and configuration model for Content Gateway. After configuring settings in the UEM Console, download the installer, configure additional nodes, or manage configured nodes.