![]() ![]() Platform: Choose the platform of the devices that will receive this profile.Select and go to Devices > Configuration profiles > Create profile. Sign in to the Microsoft Intune admin center. Grant Issue and Manage Certificates and Request Certificates Allow permissions to the computer account.ĭownload, install, and configure the Certificate Connector for Microsoft Intuneįor guidance, see Install and configure the Certificate Connector for Microsoft Intune.On the security tab, add the Computer account of the server where you run the connector.Right-click the Certification Authority, choose Properties.Select OK.įor the server to manage certificates for enrolled devices and users, use the following steps: Choose the template that you created in the previous steps. In the Certification Authority console, right-click Certificate Templates > New > Certificate Template to Issue. Select Apply > OK to save the certificate template. Review the other entries in Groups or user names for permissions and applicability to your environment. (Optional but recommended): Remove the Domain Users group from the list of groups or user names allowed permissions on this template by selecting the Domain Users group and select Remove.Allow this account Read and Enroll permissions. (Required): Add the Computer Account for the server where you install the Certificate Connector for Microsoft Intune. ![]() Open the Certification Authority console, right-click Certificate Templates, and select Manage.įind the User certificate template, right-click it, and choose Duplicate Template to open Properties of New Template.įor iOS/iPadOS certificate templates, go to the Extensions tab, update Key Usage, and confirm that Signature is proof of origin isn't selected. Sign in to your Enterprise CA with an account that has administrative privileges. Specify certutil -ca.cert ca_name.cer to export the Root certificate as a file named ca_name.cer.Ĭonfigure certificate templates on the CA Go to Start > Run, and then enter Cmd to open command prompt. Log into the Root Certification Authority server with Administrator Account. The following steps explain how to get the required certificate from your Enterprise CA. To authenticate a device with VPN, WiFi, or other resources, a device needs a root or intermediate CA certificate. Overview of the Certificate Connector for Microsoft Intune.Įxport the root certificate from the Enterprise CA.Intune requires you to run AD CS with an Enterprise Certification Authority (CA), not a Standalone CA.Īn exported copy of your root certificate from your Enterprise CA.Ĭertificate Connector for Microsoft Intune:įor information about the certificate connector, see:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |