You are here:
Certificate-Based Authentication
Using certificates to authenticate simplifies provisioning your mobile users, and your day-to-day mobile administration tasks by eliminating usernames and passwords.
Salesforce uses X.509 certificates to authenticate users more efficiently, or as a second factor in the login process.
MDM Settings for Certificate-Based Authentication
To enable certificate-based authentication for your mobile users, you configure key-value pair assignments through your MDM suite.
Here are the supported keys:
| Key | Data Type | Platform | Description |
|---|---|---|---|
RequireCertAuth
|
Boolean | Android, iOS | If true, the certificate-based authentication flow initiates. Android: Uses the user certificate on the device for authentication inside a webview. iOS: Redirects the user to Safari for all authentication requests. |
ManagedAppCertAlias
|
String | Android | Alias of the certificate deployed on the device picked by the app for user authentication. Required for Android only. |
After you save your key-value pair assignments, you can push the mobile app with the updated certificate-based authentication flow to your users via your MDM suite.
