Settings in UDM Pro include Bridge Management Settings, implementing the option to enable Zero Touch Registration (ZTR). Zero Touch Registration gives you the option to either enable or disable UDM Pro to allow a bridge to register with no manual intervention. But, before a bridge can provision devices, you must approve the bridge for provisioning.
See the Bridges section in this guide for how you approve a bridge.
Additionally, there is a Device Management Settings feature Zero Touch Approval (ZTA) allowing the option to enable or disable the ability to for automatic approval and provisioning of devices. If this setting is enabled, the administrator does not need to approve each device that registers with UDM Pro before it can request registration and provisioning.
To enable or disable Zero Touch Registration (ZTR), do the following.
Note! By default, this period is five (5) days. If the Last Seen Time of the bridge exceed five days, the bridge is unregistered. If the bridge communicates with UDM Pro after the threshold has been exceeded, it will need to re-register and be approved.
To enable or disable Zero Touch Approval (ZTA), do the following.
Caution! Logs, while not huge for a single device, can become very large with hundreds to thousands of devices. Typically, there are two logs per device – a boot log and application (app) log. These logs, based on the activity of the device, can be as small as 1k and up. Given that these are a per-device log, if you have thousands of devices the storage requirements could get out of control quickly if not controlled by an automatic pruning setting such as Log Retention Period
These settings are applicable if you have subscribed to the optional Monitoring Module.
You can select the Use Internal Email Server option this uses the Enoten email servers and use a default Enoten email account for sending Monitoring alerts. To use your own email server and accounts enter your email server and user account details.
These settings enable Single Sign On using ADFS.
These settings are used for Ranger to obtain details of Active Directory users phone numbers. Details of these settings are in Bridge Installation Guide for Ranger
These settings enable SIngle Sign on using ADFS.