SCEP is a protocol for certificate management that supports the secure issuance of certificates to network devices.

Requirements

Applying Microsoft patch KB5014754 to your NDES server may break requests for certificates from clients using SCEP clients for authentication. This includes IGEL OS devices.

Currently, there is no official workaround or patch from Microsoft.

  • SCEP server
    The following SCEP server implementations can be used with IGEL OS:
    • Windows 2008 Server with the Network Device Enrollment Service (NDES) role
    • Windows 2012 Server
    • Windows 2016 Server

    For information on how to deploy the NDES, see http://aka.ms/ndes.

  • Connection between the SCEP server and the certification authority (CA).


This document explains the enrollment of certificates with SCEP.