Jump to content


glen8

SCCM Third party certificates for IBCM?

Recommended Posts

Hi Everyone,

We have an SCCM CB IBCM server within our DMZ serving up updates for our internet based laptop users.  Today we ran an external vulnerability scan to health check the security of our network.  The report flagged up a red mark against our IBCM server due to not using third party certificates.  "Due to using an internally generated certificate the server is unable to verify it"  or words to that effect.

I'm sure I'm correct in saying that each an every client much have a unique certificate for SCCM to work, and using a third party cert would be incredibly expensive if we had to purchase 100s of them for each client.

Can someone please confirm the correct usage of certificates in an IBCM scenario please.  Should we be using third party certs, or carry on using the current internal ones.  Thanks!

Share this post


Link to post
Share on other sites

On 11/6/2018 at 2:36 PM, Judical said:

The access point should be using a third party cert, not your client machines.
 

-Judical

Thanks very much,

In nearly every guide I've read on IBCM, there is only ever the mention of creating the certs yourself.  I did wonder if you could mix a 3rd party certificates on the server, with internal ones for clients.

Now I know you can, we'll get one ordered and installed.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...


×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.