I have a rather unique issue where we don't have full control over our AD environment and can't implement SCEP and NDES within our domain. I have noticed that when devices get enrolled in Intune they receive a SCEP certificate.
Is there any way to leverage that certificate for the wifi authentication? it doesn't seem possible but would be an easier way to handle things compared to setting up a separate domain and certificate authority and installing and setting up the connector on that domain.
Before anyone suggests using a 3rd party SCEP service, this is on the cards but would come with a considerable price tag which I am trying to avoid if possible.