Installing and Connecting the Mobile App

This procedure covers how to set up a mobile app client to interoperate with a Desigo CC management platform.

Prerequisites

The a Desigo CC management platform is configured to support mobile app clients. See Setup Checklist for Mobile App.

1 – Download and Install the Mobile App

The mobile app is available free of charge for Android and iOS smartphones and tablets.

The mobile device complies with the security recommendations and meets the mobile app device requirements.

From the Google Play Store (for Android) or from the Apple App Store (for iOS), download Desigo CC.

2 – Install Certificate on the Mobile Device

The mobile device must recognize the certificate that Desigo CC uses to connect to the mobile app. To determine what certificate must be installed on the mobile device, see Check the Certificate Used by the Web Service Application.

If a public CA host certificate is used, you do not need to install a certificate file on the mobile device.
If a private CA host certificate is used, you must obtain the corresponding root certificate file (for example, WebservicesCA.cer) and install it on the mobile device. Without this certificate installed, the app cannot connect to the server.

Install the Certificate on an Android Device:

Go to Settings > ... > Lock screen and make sure the screen lock is secured with a PIN or password. Do not use lower-security options such as swipe or pattern.

Copy the .cer certificate file (for example, WebservicesCA.cer) from your computer to the device's internal storage.

Go to Settings > ... > Security > Credential storage > Install from device storage. The exact path and labels may differ depending on the Android version.

Navigate to where you copied the certificate file on your device, and tap on it to install it.

In the confirmation dialog box, set the Credential use field to VPN and apps, and tap OK.

The certificate is installed, and the app can now connect to the server.
You can access the certificate at any time in Settings > ... > Security > Credential storage > Trusted credentials > User and remove it if required.

Note: On Android versions 4.4 and later, installing a non-publicly-trusted certificate causes an alert (Network May Be Monitored by an Unknown Third Party) to display in the device notification area. This alert indicates that the device is using a trusted credential that was added by the user.

Install the Certificate on an iOS Device:

Email the certificate file (for example, WebservicesCA.cer) to the mobile device as an attachment.

In the email app on the device, tap the certificate file attachment and select Install to add it.

Only on iOS 10.3 and later, go to Settings > General > About > Certificate Trust Settings. Under Enable full trust for root certificates, turn on trust for the certificate.

The certificate is installed, and the app can now connect to the server.
You can access the certificate at any time in Settings > General > Profiles and remove it if required.

3 – Start the App and Log In

You installed the mobile app (and the certificate, if required) on the mobile device.

The mobile device network connection—to an intranet (Wi-Fi) or to the Internet (Wi-Fi or mobile data)—is correctly configured. See Check Mobile Device internet/Intranet Connection.

On the mobile device, tap the Desigo CC icon to start the app.

If the Terms of Use and Privacy page displays, tap Accept to agree to the terms.
NOTE: You can review these terms at any time from the Settings menu inside the app.

The app starts up with one of the following screens:
- If this is your first sign-in, or if you were logged out, a Sign In screen displays.
- If you are still signed in (connected to the management platform), a PIN entry screen displays.

For information about what to enter in these screens see Mobile App Credentials Reference.

If a Pin entry screen displays:

Enter your PIN code and tap Ok to resume working with the app.
NOTE: You have three attempts. After the third incorrect attempt, you are logged out. If this happens, you must sign into the app again with your full credentials.

If you do not remember your PIN code, you can tap Logout to return to the Sign-In screen. From there, you can sign in again with your full site credentials.

If a Sign In screen displays:

Complete the Server URL, User, and Password fields, then tap Sign In.

Enter the PIN you want to set into the New Pin and Confirm new Pin fields, then tap Apply.

Tap anywhere on the screen outside the PIN panel to close it and proceed to the app home page.

The mobile app resumes where you left off (in case of PIN), or displays the home page (in case of full sign in).

To troubleshoot problems during sign-in see Mobile App Login Errors.

For how to use the app see the operator step-by-step section.

Option 2 - Private (SMC-Created) Host Certificate

As an alternative to a purchased CA host certificate, you can used a host certificate created in SMC.

1 – On the IIS Web Server Computer, Create a Root Certificate, Import it into the TRCA Store, and Set it as Default

On the IIS web server computer, start SMC.

In the SMC tree, select the Certificate node.

The Certificates tab displays. This shows the currently configured default certificates for this Desigo CC installation.

In the Certificates toolbar, click Create Certificate and select Create Root Certificate (.pfx).

GMS Root Certificate automatically displays in the Subject Name field.

Change the subject name to a descriptive name, for example RootCertificate_MobileApp.

Enter the root certificate (.pfx) and (.cer) file names, password, and path on disk into the remaining fields.

Click Save .

The root certificate files are created and saved at the specified path.
NOTE: Keep a copy of these root certificate files and write down the password for use in the next steps.

In the Certificates toolbar, click Import , select the Root certificate certificate type.

Browse to the (.cer) root certificate file created above, and select Set as default.

Click Save .

The root certificate is imported into the TRCA store of the IIS web server computer, and set as the default. You will later need to import this same root certificate into the mobile device as well.

2 – On the IIS Web Server Computer, Create a Host Certificate for the IIS Web Server, Import it into the Personal Store, and Set it as Default

In the Certificates toolbar, click Create Certificate and select Create Host Certificate (.pfx).

In the Root certificate field, browse to the (.pfx) root certificate file created above and enter its password.

The full computer name of the IIS web server is automatically entered in the Subject Name field.

Enter the (.pfx) and (.cer) host certificate file names, password, and path on disk.

Click Save .

The server host certificate files are created and saved at the specified path.

In the Certificates toolbar, click Import select the Host certificate certificate type.

Browse for the (.pfx) host certificate file created above and enter its password.

Select Set as default and Key is exportable.

Click Save .

The host certificate is imported into the Personal store of the IIS web server computer.

Select this host certificate when you create the parent website for the mobile app web application.

3 – Install the Same Root Certificate on the Mobile Devices

The root certificate created in Step 1 must be installed on all the mobile devices where you plan to use the mobile app. For instructions see 2 – Install Certificate on the Mobile Device. If you do not do this now, you must do it when you install the app on the mobile device.