Forum Discussion
Solved
Deploy Windows 11 device certificate with password through Intune
I am using configuration profile to push device cert through Intune and get the cert installed. I am not sure how would I do it for a CERT that has a password.
I was trying using OMA-URI custom profile, but then again I do not know the "scope" if this cert needs to be installed under Personal folder. Any ideas or suggestions or any other easy method to push it?
- Nice, if it works.. Share 😊
19 Replies
- I don't think that there's a Configuration Profile for it. You could create a Win32 package containing a file and a script based on https://stackoverflow.com/questions/5171117/import-pfx-file-into-particular-certificate-store-from-command-line to import it
- Thanks Harm. How about installing Certificates through Configuration Profiles and choosing Trusted Certificate. Now, does this install the Certificate? Also, what if the Certificate is already installed, will this method check to see that the Certificate is present and will not install or how does this work.
In general all the different types of Certificates that can be installed like SCEP, Trusted Certificate, PKCS will that get installed on the device if we import the CERT other than the one that needs a password?- A trusted certificate configuration profile only puts a Root or Intermediate in your certificate store... SCEP enrollment is better, but if you have a specific one that a few clients need... Then you could create a package for it, but then you would have the password of it in a script... Is it a sensitive (like banking) certificate?
