Click + InTune-SCEP Enrollment Service Configuration and set the following parameters for each service configuration.
CAGW CA ID
The CA identifier for certificate enrollments defined in Entrust PKI as a Service or an on-premises CA Gateway.
See Choose a key name for details on this CA identifier in the CA Gateway configuration.
Mandatory: Yes.
Azure Application ID
The Application ID of the Registered Azure Application, as viewed from Azure.
The selected Registered Azure Application must have the proper API permissions.
Mandatory: Yes.
Azure Tenant
The tenant for connecting to the Intune instance. For example:
test.example.comMandatory: Yes.
Azure Authentication Method
If the registered Azure application authenticates with certificate-based (P12) credentials, select App P12 and configure the following settings.
Setting | Value |
|---|---|
Registered Azure Application Credential Key Store File (P12) | The P12 file containing the Azure application credential. |
Registered Azure Application Key Store Password | The password of the P12 credential |
If the application authenticates with application keys (client secrets), select App Secret and configure the following setting.
Setting | Value |
|---|---|
Registered Azure Application Key (Client Secret) | The application key (client secret) for connecting to the Intune instance. |
Mandatory: Yes.
Override Default InTune Endpoints
Select Yes to override some default setting values and work with the following non-default Intune endpoints.
Setting | Value |
|---|---|
Override: Authentication Authority | The URL of the Microsoft authentication authority. |
Override: Graph API Version | The version of the Microsoft Graph API. |
Override: Graph Resource URL | This URL of the Microsoft Graph Resource. |
Override: InTune Application ID | The application ID of Microsoft Intune. |
Override: InTune Resource URL | The URL of the Microsoft Intune Resource. |
Select No to support only default Intune endpoints.
Mandatory: No. This setting defaults to No.
Registered Azure Application Key
This application key (client secret) for connecting to the Intune instance.
Mandatory: No. This setting defaults to No.