After the admin API key is created, you add an admin account and set up certificate authentication in the AirWatch admin console.

For REST API certificate-based authentication, a user level certificate is generated from the AirWatch admin console. The certificate used is a self-signed AirWatch certificate generated from the AirWatch admin root cert.

The AirWatch REST admin API key is created.


In the AirWatch admin console, select the Global > Customer-level organization group and navigate to Accounts > Administrators > List View.


Click Add > Admin.


In the Basic tab, enter the certificate admin user name and password in the required fields.


Make sure the Organization Group shown in the form is the same organization group that the Rest API key was created in.


Select the API tab and in the Authentication field, select Certificates.


Enter the certificate password. The password is the same password entered for the admin on the Basic tab.


Click Generate Client Certificate.


Click Save.

The new admin account and the client certificate are created.


Select the API tab again and in the Authentication drop-down menu, select Certificates.

The certificates page displays information about the certificate.


Click Export Client Certificate and save the file.

The client certificate is saved as a .p12 file type.

Configure your AirWatch URL settings in the VMware Identity Manager admin console.