Skip Navigation

About BlackBerry UEM for dark sites
Installing or upgrading BlackBerry UEM in a dark site environment
- Install or upgrade BlackBerry UEM
- Logging in to BlackBerry UEM
  - Log in to BlackBerry UEM for the first time
Configuring BlackBerry UEM for dark sites
- Adding licenses to BlackBerry UEM
- Obtaining an APNs certificate to manage iOS devices
Managing users and devices in a dark site environment
Product documentation

Architecture:
BlackBerry UEM
for dark sites

Architecture diagram showing BlackBerry UEM Dark Site components

Component name	Description
BlackBerry UEM Core	The BlackBerry UEM Core is the central component of the BlackBerry UEM architecture. It consists of several subcomponents that are responsible for: Logging, monitoring, reporting, and management functions Authentication and authorization services Scheduling and sending commands, IT policies, and profiles to devices
BlackBerry UEM database	The BlackBerry UEM database is a relational database that contains user account information and configuration information that BlackBerry UEM uses to manage devices.
BlackBerry Gatekeeping Service	The BlackBerry Gatekeeping Service sends commands to Exchange ActiveSync to add devices to an allowed list when devices are activated on BlackBerry UEM . Unmanaged devices that try to connect to an organization's mail server can be reviewed, verified, and blocked or allowed by an administrator using the BlackBerry UEM management console.
Management console and UEM Self-Service	The management console and UEM Self-Service provide a browser-based user interface for administrator and user access to BlackBerry UEM . You use the management console to manage system settings, users, devices, and apps. Users can use UEM Self-Service to set an activation password and send commands to devices, such as set password, lock device, and delete device data.
Mail, content, or application servers	Your internal network includes various services that devices and BlackBerry UEM can communicate with. If you are activating Samsung Knox devices using Android Enterprise activation types, you require a server that contains the BlackBerry UEM Client .apk file and a PAC file that prevents devices from attempting to connect to Google Play during activation.
Samsung KLM license server	If you are managing Samsung Knox devices, an on-premises Samsung Knox License Management server is installed with BlackBerry UEM for dark sites so that BlackBerry UEM doesn't have to connect to the web-based Samsung Knox License Management System to get license information. Samsung Knox devices communicate with the KLM server using your work Wi-Fi network.
APNs	To manage iOS devices, BlackBerry UEM must send notifications to devices through an APNs server. When devices receive a notification from APNs, they contact BlackBerry UEM for updates. For information about securing connections to APNs or possible alternatives to using the public APNs, contact your Apple support representative.

About BlackBerry UEM for dark sites