About Show #943
Ready to move your device certificate authority to the cloud? Richard chats with Richard Hicks about Microsoft Cloud PKI - certificate management for devices and people as part of the Intune Suite. Richard talks about it being early days for Cloud PKI, so not everything you want is there yet. The only way to get a certificate onto a device is through Intune, so some devices, like servers, don't have a way to play yet. However, there is a bridge between Active Directory certificates and Cloud PKI, so you can bring your new devices in through Intune and ultimately unload a lot of your on-premises certificate infrastructure. And that will make everyone's lives easier and more secure!
Links
- Conditional Access
- Active Directory Certificate Services
- Microsoft Cloud PKI
- Microsoft Intune
- Intune and SCEP
- Certificate Connector for Microsoft Intune
- Bring Your Own CA in Cloud PKI
- SCEPman
- Keytos
- Microsoft Entra Certificate-Based Authentication
- PKINIT in Kerberos
- minikatz
- Network Policy Server
Recorded June 3, 2024