Intune Certificate Enrollment via SCEP

We have conceded that Microsoft is unable to resolve this issue in a timely enough manner for our customers. In response, we have identified a solution that will restore this functionality to customers in an equally secure manner that utilizes two separate Azure Apps with differing permissions.

In the upcoming 2023.3 release, the Intune integration will now have two steps (screenshot linked below). Each step is responsible for the creation of an App with least privilege access.

https://www.screencast.com/t/D5854reukC

Any customer having issues with SCEP distribution through Intune prior to the 2023.3 March 20th release, please contact support. They will walk you through the App creation process and collect the necessary information required to restore this integration through our backend manually.

We have received several reports of customers experiencing issues distributing certificates via SCEP through Microsoft Intune. Though this issue does not affect all Microsoft Azure AD customers with Intune, the Portnox engineering team has been working closely with Microsoft on this issue. As of 1 am this morning, Microsoft has acknowledged that the problem is on their end and is affecting more than just Portnox customers. Unfortunately, Microsoft has so far been unable to provide an estimate for when the issue will be resolved.

In the interim, until Microsoft is able to resolve the issue properly for all customers, the Portnox engineering team has developed a temporary workaround to the issue affecting Mictosoft’s Intune service. This workaround can be enabled upon request to those specific customers affected by this service disruption.

Customers utilizing SCEP to distribute certificates via Intune who are experiencing this problem can request to have this temporary workaround enabled for their Portnox tenant by opening a support case @ https://support.portnox.com/support/tickets/new