The next step is to define which certificate will be deployed to devices by setting up a certificate template in AirWatch.

  1. Navigate to Devices > Certificates > Certificate Authorities.
  2. Select the Request Templates tab.
  3. Click Add.
  4. Enter the Name for the RSA Request Template.
  5. Enter a Description to help you identify the RSA certificate template.
  6. Select your RSA CA from the Certificate Authority drop-down menu.
  7. Enter the Jurisdiction, which you generated by following Obtaining Your Jurisdiction ID.
  8. Enter the External Profile, which you generated by following Obtaining Your Profile ID.
  9. Enter the Subject Name, which is the identity bound to the certificate.
  10. Enter the Private Key Length, which defaults to 2048.
  11. For Private Key Type, select if the certificate can be used for signing and encryption operations or both.
  12. Select the Automatic Certificate Renewal checkbox if AirWatch is going to automatically request the certificate to be renewed by RSA when it expires. If you select this option, enter the number of days prior to expiration before AirWatch automatically requests RSA to reissue the certificate in the Auto Renewal Period (days) field. This requires the certificate profile on RSA to have the Duplicated Certificates setting enabled.
  13. Select the Enable Certificate Revocation checkbox if you want AirWatch to be able to revoke certificates.
  14. Click Save.


    Note: The San Type and Publish Private Key options do not do anything at this time.