Control certificate to be non-exportable?

%3CLINGO-SUB%20id%3D%22lingo-sub-1532351%22%20slang%3D%22en-US%22%3EControl%20certificate%20to%20be%20non-exportable%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1532351%22%20slang%3D%22en-US%22%3E%3CP%3EFollow%20this%20article%3A%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmem%2Fintune%2Fprotect%2Fcertificates-imported-pfx-configure%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmem%2Fintune%2Fprotect%2Fcertificates-imported-pfx-configure%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20we%20upload%20the%20%3CSPAN%3EPFX%3C%2FSPAN%3E%20certificate%20to%20Intune%20via%20Graph%20API%2C%20and%20then%20create%20a%20%E2%80%9C%3CSPAN%3EPKCS%3C%2FSPAN%3E%20imported%20certificate%E2%80%9D%20profile%20to%20push%20the%20cert%20to%20user%20mobile%20device.%3CBR%20%2F%3E1.%20What%20is%20the%20default%20setting%20of%20the%20certificate%3F%20Is%20it%20%22Exportable%22%20or%20%22non-exportable%22%3F%3C%2FP%3E%3CP%3E%3CBR%20%2F%3E2.%20Can%20we%20set%20the%20certificate%20to%20be%20non-exportable%20when%20deploying%20it%20into%20the%20mobile%20device%20from%20Intune%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1532351%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Frequent Visitor

Follow this article:

https://docs.microsoft.com/en-us/mem/intune/protect/certificates-imported-pfx-configure

 

If we upload the PFX certificate to Intune via Graph API, and then create a “PKCS imported certificate” profile to push the cert to user mobile device.
1. What is the default setting of the certificate? Is it "Exportable" or "non-exportable"?


2. Can we set the certificate to be non-exportable when deploying it into the mobile device from Intune? 

0 Replies