Forum Discussion
Intune Certificate Connector and OID 1.3.6.1.4.1.311.25.2
Hi, Way back in May when update KB5014754 broke cert auth for so many orgs it was identified that whilst RPC auto-enrolled certificates will get the new required OID the Intune certificate connector...
For DEVICE/Machine based RADIUS, I believe that FQDN is what is required in the SAN and I also use FQDN for the CN. I have never gotten AD based auth to work with the device certificate, so I rely on CRL for authorization.
You believe wrong. Nothing special is needed for machine auth in CN OR SAN
what matters is group membership for Radius policy AND SPN AD attribute
No idea what you mean: “…have never gotten AD based auth to work with the device certificate”
That just works, there is nothing to it if you have correct policy in place for WiFi
Seb