Forum Discussion
Using Intune when organisation has a Microsoft PKI and smartcards for WIndows domain logins
My organisation has had a Microsoft PKI integrated with our Active Directory, so all staff are provsioned with smartcards to for login to our Windows domain. When staff are given the smartcard they g...
I believe what you want to do is Certificate-based authentication (CBA):
https://docs.microsoft.com/en-us/azure/active-directory/active-directory-certificate-based-authentication-ios
As you can see, Microsoft Intune Company Portal is not listed. If it does work, it may not be supported by Microsoft.
I know Intune will deploy all the needed certs to the devices for this to work as stated in the UserVocie link. I would also create your own feedback in the UserVocie as this seems like a major requirement for your organization.
https://microsoftintune.uservoice.com/forums/291681-ideas/suggestions/9926163-a-document-on-how-to-use-certificate-based-authent