Skip Navigation

Configuring BlackBerry UEM
Changing the certificates that BlackBerry UEM uses for authentication
- Considerations for changing BlackBerry Dynamics certificates
- Change a BlackBerry UEM certificate
Installing the BlackBerry Connectivity Node to connect to resources behind your organization's firewall
Configuring BlackBerry UEM to send data through a proxy server
- Sending data through a TCP proxy server to the BlackBerry Infrastructure
  - Configure BlackBerry UEM to use a transparent TCP proxy server
  - Enable SOCKS v5 on a TCP proxy server
- Install a standalone BlackBerry Router in a UEM Cloud environment
Configure connections through internal proxy servers
Connect to an SMTP server to send email notifications
Connecting to your company directories
Connecting BlackBerry UEM to Microsoft Entra ID
Obtaining an APNs certificate to manage iOS and macOS devices
- Request and register an APNs certificate
- Troubleshooting: APNs
Configure BlackBerry UEM for DEP
Configuring BlackBerry UEM to support Android Enterprise devices
- Configure BlackBerry UEM to support Android Enterprise devices
Configuring BlackBerry UEM to support Android Management devices
- Configure Android Management in the Google Cloud console
- Configure Android Management in BlackBerry UEM
Extending the management of Chrome OS devices to BlackBerry UEM
Simplifying Windows 10 activations
- Integrate UEM with Entra ID join
  - Configure Windows Autopilot for device activation
- Deploy a discovery service to simplify Windows 10 activations
Migrating users, devices, groups, and other data from a source server
Configuring network communication and properties for BlackBerry Dynamics apps
Integrating BlackBerry UEM with Cisco ISE
Set up VPN using Knox StrongSwan for UEM dark site environments

Create an app registration in
Entra

You must create an app registration in

Entra

that

UEM

can use to authenticate with

Entra

.

Review the Prerequisites to support Intune app protection.

In the

UEM

management console, on the menu bar, click

Settings > External integration > Microsoft Intune

. Record the value of the

Reply URL

. You will use this URL in step 3.

Log in to the Entra portal.

In the section for app registrations, add a new registration.

Specify the following and complete the registration:

Type a name for the registration.

Select which account types can use the application or access the API.

For the redirect URI, click

Mobile Client/Desktop

and enter the Reply URL from the management console.

Copy the application ID.

This is the Client ID that you will register with

UEM

.

In the section for managing API permissions, add a permission and select the following:

Microsoft Graph

Delegated permissions

Set the following delegated permissions:

Read and write Microsoft Intune apps (DeviceManagementApps > DeviceManagementApps.ReadWrite.All)

Read all groups (Group > Group.Read.All)

Read all users' basic profile (User > User.ReadBasic.All)

Grant administrator consent for all accounts in the current directory.

In the section for managing certificates and secrets, add a new client secret and specify a description and duration.

Copy the Value field of the new client secret (not the Secret ID).

This is the Client key that you will register with

UEM

.

Configure BlackBerry UEM to synchronize with Microsoft Intune.

Configuring BlackBerry UEM to manage Microsoft Intune app protection profiles