Skip Navigation

Data flow: Activating a
BlackBerry Dynamics
app for the first time on a device

This data flow describes how data travels when a
BlackBerry Dynamics
app is activated on a device and no other
BlackBerry Dynamics
app nor the
BlackBerry UEM Client
is already activated.
Diagram showing the steps and components mentioned in the following data flow.
  1. An administrator performs the following actions:
    1. Assigns one or more
      BlackBerry Dynamics
      apps to a user.
    2. Issues activation credentials (access key, activation password, or QR code) or using a third-party identity provider, and sends them to the user or instructs the user to generate credentials from
      BlackBerry UEM Self-Service
  2. The user performs the following actions:
    1. Installs the app on the device.
    2. Obtains and enters the provided activation credentials .
  3. The
    BlackBerry Dynamics
    app performs the following actions:
    1. Connects to the
      BlackBerry Dynamics NOC
      and completes activation.
    2. Obtains the
      BlackBerry UEM
      address using one of the following methods:
      • If the user manually entered the credentials, the app fetches the address from the
        BlackBerry Infrastructure
      • If the user scanned a QR Code, the app receives the address from the QR code.
    3. Connects to
      BlackBerry UEM
      through the
      BlackBerry Infrastructure
      and establishes an end-to-end encrypted session with
      BlackBerry UEM
      using the EC-SPEKE protocol.
      This session can only be decrypted by the
      BlackBerry UEM
      instance that issued the activation credentials.
    4. Sends the activation request over the secured session.
  4. BlackBerry UEM
    verifies the activation request and sends encrypted activation response to the app. The activation response includes data required by the app to communicate with
    BlackBerry UEM
    , including a client certificate, master session key, list of
    BlackBerry Proxy
    instances, and trusted certificate authorities.
  5. The app prompts the user to set a password for the app and register it as an easy activation delegate with the
    BlackBerry Dynamics NOC
    to allow subsequent
    BlackBerry Dynamics
    app to be activated on the device without the user manually obtaining new credentials.