Create new system

Device provisioning overview

After selecting your use case and configuring your system details, you'll choose the Guardian library that best fits your needs. Guardian Library runs on your devices to parse configuration profiles, request certificates from Guardian Cloud, and enable cryptographic functions like signing and encryption. It is available for several platforms, architectures and languages.

1. System setup: Create and configure your system with components in Guardian

2. Library setup: Download Guardian Library for your platform

3. Bootstrap preparation: Medcrypt creates your system's provisioning package, which includes your certificate trust chain (Root of Trust)

4. Package download: Download the provisioning package for your system

5. Identity generation: Device uses Guardian Library + provisioning package to generate a provisioning request (PR). The device keeps the private key (.mcpi file), which never leaves the device.

The system creation wizard covers steps 1-4 of this process. After completing the wizard, you'll move on to step 5 where your device generates its provisioning request.

Create and configure new system

There are two ways to create and start configuring your new system:

• Select a use case from the Get started page. This displays when you first sign in, but if you've closed it, click the Get started item in the Help section of the sidebar.

• Click the Systems item in the sidebar, then click Add new system.

Either of these methods will launch the system creation wizard:

1. In the first step of the system creation wizard, select a use case. You will be automatically moved to the next step where you can configure your system. Guardian currently provides the following out-of-the-box use cases.

   • Client-cloud: Our client-cloud configuration enables secure communication between medical devices and cloud services with automated certificate provisioning and end-to-end encryption.

   • Client-server: Our client-server configuration provides robust encryption for traditional client-server architectures with mutual certificate-based authentication and lifecycle management.

   • DDS configuration: Our Secure Data Distribution Service (DDS) configuration provides certificate-based authentication for real-time data communication.

   • If you need a custom integration not covered by these use cases, contact support.

2. Provide the system details in the next step, then click Continue. These details will vary depending on the use case selected.

3. If you're not ready yet, you can always click Save & continue later. You can then access your system at any time from the Systems item in the sidebar.

4. In the next step, select the Guardian library file that meets your needs. You can filter by language, platform, or architecture. Download your file, then click Continue.

5. You'll see a message that we're generating your provisioning package for your system, including the certificate trust chain. We'll send you an email when your provisioning package is ready for download.

6. Click Close to close the wizard. This will display the Systems page. You'll see that there is a Generating... indicator on your new system's card.

7. After you receive your email that your provisioning package is ready, you'll see a Download package badge on the system card, and the Provisioning package link on the system card will be enabled.