You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: memdocs/intune/protect/certificates-profile-scep.md
+20-24Lines changed: 20 additions & 24 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -57,30 +57,26 @@ Devices that run Android Enterprise might require a PIN before SCEP can provisio
57
57
58
58
SCEP certificate profiles for the *Fully Managed, Dedicated, and Corporate-Owned Work Profile* profile have the following limitations:
59
59
60
-
a. Under Monitoring, certificate reporting isn't available for **Device Owner** SCEP certificate profiles.
61
-
62
-
b. You can't use Intune to revoke certificates that were provisioned by SCEP certificate profiles for **Device Owner**. You can manage revocation through an external process or directly with the certification authority.
63
-
64
-
c. For Android Enterprise dedicated devices, SCEP certificate profiles are supported for Wi-Fi network configuration, VPN, and authentication. SCEP certificate profiles on Android Enterprise dedicated devices aren't supported for app authentication.
65
-
66
-
For **Android (AOSP)**, the following limitations apply:
67
-
a. Under Monitoring, certificate reporting isn't available for **Device Owner** SCEP certificate profiles.
68
-
b. You can't use Intune to revoke certificates that were provisioned by SCEP certificate profiles for **Device Owners**. You can manage revocation through an
69
-
external process or directly with the certification authority.
70
-
c. SCEP certificate profiles are supported for Wi-Fi network configuration. VPN configuration profile support is not available. A future update may include
71
-
support for VPN configuration profiles.
72
-
d. The following 3 variables are not available for use on Android (AOSP) SCEP certificate profiles. Support for these variables will come in a future update.
73
-
· onPremisesSamAccountName
74
-
· OnPrem_Distinguished_Name
75
-
· Department
76
-
77
-
NOTE: **Device Owner** is equivalent to Corporate Owned devices. The following are considered as Device Owner:
78
-
• Android Enterprise - Fully Managed, Dedicated, and Corporate-Owned Work Profile
1. Under Monitoring, certificate reporting isn't available for **Device Owner** SCEP certificate profiles.
61
+
1. You can't use Intune to revoke certificates that were provisioned by SCEP certificate profiles for **Device Owner**. You can manage revocation through an external process or directly with the certification authority.
62
+
1. For Android Enterprise dedicated devices, SCEP certificate profiles are supported for Wi-Fi network configuration, VPN, and authentication. SCEP certificate profiles on Android Enterprise dedicated devices aren't supported for app authentication.
63
+
64
+
For **Android (AOSP)**, the following limitations apply:
65
+
66
+
1. Under Monitoring, certificate reporting isn't available for **Device Owner** SCEP certificate profiles.
67
+
1. You can't use Intune to revoke certificates that were provisioned by SCEP certificate profiles for **Device Owners**. You can manage revocation through an external process or directly with the certification authority.
68
+
1. SCEP certificate profiles are supported for Wi-Fi network configuration. VPN configuration profile support is not available. A future update may include support for VPN configuration profiles.
69
+
1. The following 3 variables are not available for use on Android (AOSP) SCEP certificate profiles. Support for these variables will come in a future update.
70
+
- onPremisesSamAccountName
71
+
- OnPrem_Distinguished_Name
72
+
- Department
73
+
74
+
> [!NOTE]
75
+
> **Device Owner** is equivalent to Corporate Owned devices. The following are considered as Device Owner:
76
+
> - Android Enterprise - Fully Managed, Dedicated, and Corporate-Owned Work Profile
0 commit comments