Intune Certificate and SAP Fiori (iOS)

%3CLINGO-SUB%20id%3D%22lingo-sub-1491499%22%20slang%3D%22en-US%22%3EIntune%20Certificate%20and%20SAP%20Fiori%20(iOS)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1491499%22%20slang%3D%22en-US%22%3E%3CP%3EHi.%26nbsp%3B%3CBR%20%2F%3E%3CBR%20%2F%3EMy%20team%20and%20I%20have%20a%20scenario%20where%20we%20need%20to%3A%26nbsp%3B%3C%2FP%3E%3CUL%3E%3CLI%3Einstall%20wrapped%20SAP%20Fiori%20on%20the%20iPhones%20(done%20and%20works)%3C%2FLI%3E%3CLI%3Euse%20PKI%20to%20send%20certificates%20to%20mobile%20devices%20(done%20and%20works)%3C%2FLI%3E%3CLI%3Eend-user%20need%20to%20run%20the%20SAP%20Fiori%20and%20log%20in%20using%20a%20certificate%2C%20not%20a%20login%20and%20password%20method%3C%2FLI%3E%3C%2FUL%3E%3CP%3ETo%20send%20the%20certificate%20to%20mobile%20phones%20we%20use%20NDES%20and%20SCEP.%20It%20works%20and%20the%20certificate%20appears%20on%20the%20mobile%20phone%20in%20the%20%3CSTRONG%3EDevice%20Management%5CManagement%20Profile%5CDevice%20Identity%20Certifiactes.%26nbsp%3B%3CBR%20%2F%3E%3CBR%20%2F%3E%3CBR%20%2F%3E%3C%2FSTRONG%3EThe%20problem%20which%20we%20met%2C%20is%20reading%20the%20certificate%20from%20this%20store%20directly%20to%20the%20application.%20Our%20goal%20is%20to%20open%20the%20application%20and%20then%20the%20app%20is%20getting%20the%20cert%20from%20the%20device%20store%20and%20authenticating%20user%20to%20SAP.%20We%20also%20configured%20the%20Single%20Sign-On%20account%20from%20Device%20Feature%20configuration%20profile%20for%20iOS%2C%20but%20without%20success.%20Developers%20are%20using%20Cordova%20to%20work%20on%20the%20app.%26nbsp%3B%3C%2FP%3E%3CP%3EMaybe%20someone%20of%20you%20had%20a%20similar%20problem%20and%20solve%20it%3F%20We%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1491499%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Application%20Management%20(MAM)%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESoftware%20Management%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Senior Member

Hi. 

My team and I have a scenario where we need to: 

  • install wrapped SAP Fiori on the iPhones (done and works)
  • use PKI to send certificates to mobile devices (done and works)
  • end-user need to run the SAP Fiori and log in using a certificate, not a login and password method

To send the certificate to mobile phones we use NDES and SCEP. It works and the certificate appears on the mobile phone in the Device Management\Management Profile\Device Identity Certifiactes. 


The problem which we met, is reading the certificate from this store directly to the application. Our goal is to open the application and then the app is getting the cert from the device store and authenticating user to SAP. We also configured the Single Sign-On account from Device Feature configuration profile for iOS, but without success. Developers are using Cordova to work on the app. 

Maybe someone of you had a similar problem and solve it? We

 

0 Replies