[ZT] Add cert to MDMs

src/content/docs/cloudflare-one/connections/connect-devices/warp/user-side-certificates/manual-deployment.mdx

@@ -73,6 +73,32 @@ openssl x509 -noout -fingerprint -sha256 -inform pem -in <Cloudflare_CA.pem>
 sha256 Fingerprint=F5:E1:56:C4:89:78:77:AD:79:3A:1E:83:FA:77:83:F1:9C:B0:C6:1B:58:2C:2F:50:11:B3:37:72:7C:62:3D:EF
 ```
 
+### Convert the certificate
+
+Some applications require a certificate formatted in the `.cer` file type. You can convert your downloaded certificate using [OpenSSL](https://www.openssl.org/):
+
+<Details header="macOS and Linux">
+
+1. [Install OpenSSL](https://wiki.openssl.org/index.php/Compilation_and_Installation).
+2. [Download a Cloudflare certificate](#download-the-cloudflare-root-certificate) in `.pem` format.
+3. In a terminal, convert the certificate to DER format with the `.cer` file type:
+   ```sh
+   openssl x509 -inform PEM -in ~/Downloads/certificate.pem -outform DER -out ~/Downloads/certificate.cer
+   ```
+
+</Details>
+
+<Details header="Windows">
+
+1. [Install OpenSSL for Windows](https://slproweb.com/products/Win32OpenSSL.html).
+2. [Download a Cloudflare certificate](#download-the-cloudflare-root-certificate) in `.pem` format.
+3. In a PowerShell terminal, convert the certificate to DER format with the `.cer` file type:
+   ```powershell
+   openssl x509 -inform PEM -in "$HOME\Downloads\certificate.pem" -outform DER -out "$HOME\Downloads\certificate.cer"
+   ```
+
+</Details>
+
 ## Add the certificate to operating systems
 
 ### macOS
@@ -303,6 +329,56 @@ To install a Cloudflare certificate to Firefox manually:
 
 For information on installing a Cloudflare certificate for organizations, refer to this [Mozilla support article](https://support.mozilla.org/en-US/kb/setting-certificate-authorities-firefox).
 
+### Mobile device management (MDM) software
+
+Zero Trust integrates with several [mobile device management (MDM) software partners](/cloudflare-one/connections/connect-devices/warp/deployment/mdm-deployment/partners/) to deploy WARP across devices.
+
+#### Microsoft Intune
+
+To upload and deploy a Cloudflare certificate in Microsoft Intune:
+
+1. [Download and convert a Cloudflare certificate](#convert-the-certificate) to DER format with the `.cer` file type.
+2. In Microsoft Intune, [create a trusted certificate profile](https://learn.microsoft.com/mem/intune/protect/certificates-trusted-root#to-create-a-trusted-certificate-profile) with your converted certificate.
+
+For more information, refer to the [Microsoft documentation](https://learn.microsoft.com/mem/intune/protect/certificates-trusted-root).
+
+#### Jamf Pro
+
+To upload and deploy a Cloudflare certificate in Jamf Pro:
+
+1. [Download and convert a Cloudflare certificate](#convert-the-certificate) to DER format with the `.cer` file type.
+2. In Jamf Pro, go to **Computers** > **Configuration Profiles** to create a computer configuration profile, or go to **Devices** > **Configuration Profiles** to create a mobile device configuration profile. Select **New**.
+3. Add a name and description for the profile.
+4. Choose whether you would like Jamf to install the certificate automatically or with self-service, and whether you would like to install the certificate for a single user or all users on the device.
+5. Select **Add** > **Certificate**. Choose the certificate file.
+6. Uncheck **Allow export from keychain**.
+7. Select **Scope**, then choose which devices or groups to deploy the certificate to.
+8. Select **Save**.
+
+For more information, refer to the [Jamf Pro documentation](https://learn.jamf.com/bundle/jamf-pro-documentation-current/page/PKI_Certificates.html).
+
+#### Kandji
+
+To upload and deploy a Cloudflare certificate in Kandji:
+
+1. [Download a Cloudflare certificate](#download-the-cloudflare-root-certificate) in `.crt` format.
+2. In Kandji, [upload the certificate](https://support.kandji.io/support/solutions/articles/72000558739-certificate-profile) as a PKCS #1-formatted certificate.
+
+#### Hexnode
+
+To upload and deploy a Cloudflare certificate in Hexnode:
+
+1. [Download a Cloudflare certificate](#download-the-cloudflare-root-certificate) in `.pem` format.
+2. In Hexnode, follow the directions for adding the certificate to [macOS](https://www.hexnode.com/mobile-device-management/help/how-to-add-certificates-for-mac-devices-with-hexnode-mdm/), [iOS](https://www.hexnode.com/mobile-device-management/help/add-certificates-for-ios-devices-with-hexnode-mdm/), and/or [Android](https://www.hexnode.com/mobile-device-management/help/how-to-add-certificates-for-android-devices-using-hexnode-mdm/) devices.
+
+#### JumpCloud
+
+To upload and deploy a Cloudflare certificate in JumpCloud:
+
+1. [Download a Cloudflare certificate](#download-the-cloudflare-root-certificate) in `.pem` format.
+2. In JumpCloud, [upload the certificate](https://jumpcloud.com/support/manage-device-trust-certificates#distributing-global-device-certificates-).
+3. [Configure a conditional access policy](https://jumpcloud.com/support/configure-a-conditional-access-policy) to deploy the certificate across devices.
+
 ### Python
 
 #### Python on Windows