Intune requirements
You must meet the following requirements to automate MDM Intune enrollment with a PKIaaS gateway.
- PKIaaS account requirements
- Certificate authority requirements
- Microsoft Azure requirements
- Operating system requirements
- Encryption algorithm requirements
- TLS Cipher requirements
PKIaaS account requirements
You need an Entrust PKIaaS account with privileges to create an issuing certificate authority.
Certificate authority requirements
Make sure you have a subordinate CA with a profile of the intune group. You can either:
- Create a new CA with this group, as explained in Creating an issuing subordinate CA.
- Add this group to an existing CA, as explained in Selecting CA profiles.
Microsoft Azure requirements
You need a Microsoft Azure account with privileges to create and configure an Intune application.
Operating system requirements
This release of the Intune automated enrollment is tested with devices running the following operating systems.
| OS | Tested versions |
|---|---|
| macOS | Ventura 13.2.1 |
| iPhone/iPad | 16.3.1 |
| AndroidOS | 13 |
| Microsoft Windows | 10 and 11 |
| ChromeOS | – |
For more details on the supported operating systems, please check the Microsoft documentation:
https://learn.microsoft.com/en-us/mem/intune/fundamentals/supported-devices-browsers
Encryption algorithm requirements
The Intune automated enrollment with a PKIaaS gateway supports the following encryption algorithms.
aes128-CBC-PADaes128-GCMaes256-CBC-PADaes256-GCMdesCBCdes-ede3-cbcid-RSAES-OAEPrsaEncryption
TLS Cipher requirements
Enrollment URLs support the following TLS Ciphers.
ECDHE-RSA-AES128-GCM-SHA256ECDHE-RSA-AES256-GCM-SHA384