Configure the following settings for each InTune-SCEP Enrollment Service Configuration.
Override Default InTune Endpoints
Select Yes to override some default setting values and work with the following non-default Intune endpoints.
| Setting | Value | 
|---|---|
| Override: Authentication Authority | The URL of the Microsoft authentication authority. | 
| Override: Graph API Version | The version of the Microsoft Graph API. | 
| Override: Graph Resource URL | This URL of the Microsoft Graph Resource. | 
| Override: InTune Application ID | The application ID of Microsoft Intune. | 
| Override: InTune Resource URL | The URL of the Microsoft Intune Resource. | 
Select No to support only default Intune endpoints.
Mandatory: No. This setting defaults to No.
Azure Authentication Method
If the registered Azure application authenticates with certificate-based (P12) credentials, select App P12 and configure the following settings.
| Setting | Value | 
|---|---|
| Registered Azure Application Credential Key Store File (P12) | The P12 file containing the Azure application credential. | 
| Registered Azure Application Key Store Password | The password of the P12 credential | 
If the application authenticates with application keys (client secrets), select App Secret and configure the following setting.
| Setting | Value | 
|---|---|
| Registered Azure Application Key (Client Secret) | The application key (client secret) for connecting to the Intune instance. | 
Mandatory: Yes.
Azure Tenant
The tenant for connecting to the Intune instance. For example:
test.example.comMandatory: Yes.
Azure Application ID
The Application ID of the Registered Azure Application, as viewed from Azure.
The selected Registered Azure Application must have the proper API permissions.
Mandatory: Yes.
CAGW CA ID
The CA identifier (CA ID) for certificate enrollments defined in Entrust PKI as a Service or an on-premises CA Gateway.
Mandatory: Yes.