Configure the following settings for each InTune-SCEP Enrollment Service Configuration.
Override Default InTune Endpoints
Select Yes to override some default setting values and work with the following non-default Intune endpoints.
Setting | Value |
---|---|
Override: Authentication Authority | The URL of the Microsoft authentication authority. |
Override: Graph API Version | The version of the Microsoft Graph API. |
Override: Graph Resource URL | This URL of the Microsoft Graph Resource. |
Override: InTune Application ID | The application ID of Microsoft Intune. |
Override: InTune Resource URL | The URL of the Microsoft Intune Resource. |
Select No to support only default Intune endpoints.
Mandatory: No. This setting defaults to No.
Azure Authentication Method
If the registered Azure application authenticates with certificate-based (P12) credentials, select App P12 and configure the following settings.
Setting | Value |
---|---|
Registered Azure Application Credential Key Store File (P12) | The P12 file containing the Azure application credential. |
Registered Azure Application Key Store Password | The password of the P12 credential |
If the application authenticates with application keys (client secrets), select App Secret and configure the following setting.
Setting | Value |
---|---|
Registered Azure Application Key (Client Secret) | The application key (client secret) for connecting to the Intune instance. |
Mandatory: Yes.
Azure Tenant
The tenant for connecting to the Intune instance. For example:
test.example.com
Mandatory: Yes.
Azure Application ID
The Application ID of the Registered Azure Application, as viewed from Azure.
The selected Registered Azure Application must have the proper API permissions.
Mandatory: Yes.
CAGW CA ID
The CA identifier (CA ID) for certificate enrollments defined in Entrust PKI as a Service or an on-premises CA Gateway.
Mandatory: Yes.