Skip to main content

Device administrator guide

To perform this action, you must have a user role that contains the Device administrator/Device creator permission.

Device administrators are assigned to users who need control over device lifecycle management, including enabling, disabling, deleting, and restoring devices. This role is often designated to users involved in ongoing device operations and support.

Tip

To learn more about certificates, certificate issuance and renewals, see Certificates.

Request a single device certificate

Before you begin:

Ensure that your Solution Administrator has already completed the following:

  1. In the Device Trust Manager menu, go to Certificate management > Certificates.

  2. From the Device Group dropdown menu, select an appropriate device group.

  3. From the Certificate management policy dropdown menu, select the certificate management policy associated with the device group.

  4. On the Key generation type step:

    Note

    The Key generation type option is displayed based on your selection of the Device group and the Certificate management policy.

    1. I have the keypairs and will provide the CSRs or public keys in the request:

      • Upload a CSV file or a zipped CSV containing the device data. You can download the provided template for formatting guidance.

    2. Key pairs will be generated server side by this application, and the private key and certificate will be included in response:

      • Select the Key generation type dropdown menu.

  5. Provide a Common name for the certificate.

  6. Optionally, provide an Organization name.

  7. Click Add Value to provide an organization unit value (optional).

  8. Provide a Description (optional).

  9. Click Submit certificate request.

  10. Download the certificate after successful submission of the certificate request.

Request a single certificate

Before you begin:

  1. In the Device Trust Manager menu, go to Certificate management > Certificates.

  2. From the Certificate management policy dropdown menu, select an appropriate policy.

  3. On the Key generation type step:

    Note

    The Key generation type option is displayed based on your selection of the Certificate management policy.

    1. I have the keypairs and will provide the CSRs or public keys in the request:

      • Upload a CSV file or a zipped CSV containing the device data. You can download the provided template for formatting guidance.

    2. Key pairs will be generated server side by this application, and the private key and certificate will be included in response:

      • Select the Key generation type dropdown menu.

  4. Provide a Common name for the certificate.

  5. Optionally, provide an Organization name.

  6. Click Add Value to provide an organization unit value (optional).

  7. Provide a Description (optional).

  8. Click Submit certificate request.

  9. Download the certificate after successful submission of the certificate request.

Revoke a certificate

Operational certificates are short-lived x.509 certificates for device-service communication. These certificates have a short lifespan, can be revoked.

  1. In the Device Trust Manager menu, select Certificate management > Certificates.

    Tip

    The Certificates table displays details of all the certificates issued on your account.

  2. Select a required certificate from the list.

  3. Click More actions > Revoke.

  4. Select an appropriate Reason from the dropdown menu.

  5. Optionally, provide a Description.

  6. (Optional) Select the set revocation date in the past and select an appropriate date.

  7. Click Revoke.

Edit a device name

Perform the following steps to edit or modify a device name:

  1. In the Device Trust Manager menu, go to Device management > Devices.

    Tip

    The Devices table displays details of all the devices issued to your account.

  2. Select a required device from the list.

  3. Click More actions > Edit.

  4. Provide a new name for the device.

  5. Click Update.

Disable a device

Perform the following steps to disable a device:

  1. In the Device Trust Manager menu, go to Device management > Devices.

    Note

    The Devices table displays details of all the devices issued on your account.

  2. Select the required device from the list.

  3. Click More actions > Disable.

  4. Optionally, add a comment as a valid reason to disable the device.

  5. Click Disable device.

In this section: