Forum Discussion

Mark Palmer's avatar
Mark Palmer
Copper Contributor
Feb 20, 2018

SCEP policy deployment failing for IOS only

We have configured an internal NDES (intune connector installed) server connected to the client's internal PKI. Intune has been configured with Trusted Root/Intermediate policies to deploy to users/devices as well as an SCEP policy to issue the device a client certificate.


Android devices are working fine, they receive the Trusted Root and Intermediate certs as well as their client authentication certificate.

 

IOS devices don't work, they receive the Trusted certificates correctly, are compliant against Intune and all other features work fine, only the SCEP policy fails. Under the IOS SCEP policy properties | Device status, the 'deployment status' shows "Pending".  When on the IOS SCEP policy Overview page, clicking on the pie graph of 'status for checked in devices (or users)' the device 'Deployment Status' shows "Error" but I cannot see any error detail. I've tried IOS device with 11.x.x as well as an older IOS device.

 

This isn't the first Intune/NDES deployment we've done, but it's the first time we've struck this error. Is there any assistance please?

 

Thanks,
Mark

Resources