Skip to main content

Prerequisites

Before setting up the Microsoft Intune SCEP integration, make sure the following prerequisites are in place.

Microsoft Intune prerequisites

Intune tenant must have Azure Active Directory services enabled.
Intune account must be configured for Intune MDM Authority.
To issue certificates to Apple iOS/iPadOS and macOS devices, the Intune account must be configured with an Apple MDM Push Certificate.
To include user security identifier (SID) values in client authentication certificates issued from Trust Lifecycle Manager, the On-premises sync enabled flag must be set to Yes for the users in Intune.

DigiCert® Trust Lifecycle Manager prerequisites

Your Trust Lifecycle Manager account must include one or more of the following certificate templates and you must have at least one seat of the appropriate seat type available for the type of certificates you want to issue.

DigiCert base template name	Seat type
`Device Authentication for Microsoft Intune (SCEP)`	Device
`Generic Private Server Certificate`	Server
`Public S/MIME (Digital Signature only) for Intune (via CertCentral)` ¹	User
`User Client Authentication for Microsoft Intune (SCEP)`	User
_{1. This template is limited. If not already present, contact your platform representative to assign the template to your account.}

What's next

To start configuring the integration, you first need to Set up the Intune connector.

이 섹션의 내용:

Was this helpful?