Installing BigFix MDM Server for Windows endpoints

Learn how to install BigFix MDM server for Windows endpoints.

For instructions on how to install BigFix MDM Server for Windows endpoints through WebUI, see Install BigFix MDM server for Windows endpoints.

In this section, you can find instructions on how to install BigFix MDM Server for Windows endpoints using the BESUEM task Install BigFix Windows MDM Server.

Before you begin: These prerequisites must be met to install the BigFix MDM Server for Windows endpoints:
  • You must have the required certificates and keys. See, MDM SSL Certificates.
  • You must have a BigFix Agent running on the MDM Server target.

In the Install BigFix Windows MDM Server task, provide this information:
  1. Enter the organization name. While enrolling a device, the organization name is displayed to the users along with the rest of the profile information.
  2. Enter user facing hostname. For example, enter mdmserver.deploy.bigfix.com.
  3. Enter LDAP parameters. This is used for authorization to enroll users for MDM over the air. This limits enrollment to your MDM server to authorized users only. Omitting all LDAP parameters disables the need for LDAP authentication to enroll for MDM.
    Note: LDAP Authentication is turned on by default.
  4. Enter the details of the MDM Server TLS certificate and key contents.
    1. Enter a string to set TLS key password.
    2. In the MDM Server TLS Certificate content section, enter the entire text contents of the generated TLS .crt file.
    3. In the MDM Server TLS Key content section, enter the entire text contents of the generated TLS .key file.
      Tip: If you want to use self-signed certificates, to know how to generate .crt and .key files, see MDM SSL Certificates.
  5. Enter the details of the MDM Server authentication certificate and key contents.
    1. In the MDM Server Certificate Authority content section, enter the entire text contents of the generated ca.cert.pem file.
    2. In the MDM Server Certificate content section, enter the entire text contents of the generated server.cert.pem file.
    3. In the MDM Server Key content section, enter the contents of server.key file.
      Tip: For more information on how to generate .pem and .key files, see MDM SSL Certificates.
  6. Deploy the task to targeted systems.