Microsoft Intune Certificate Revocation

ENTERPRISE This is an EJBCA Enterprise feature.

The Microsoft Intune Certificate Revocation service worker makes it possible for EJBCA to revoke certificates via Intune. Given an Intune tenant, the service worker pulls revocation requests from Microsoft Intune and performs certificate revocation internally.

The following lists available worker settings.



Application ID from Azure

Azure Application ID obtained for this SCEP server.

Application API Secret from Azure

Azure Application API Key obtained for this SCEP server.

Intune Tenant

Intune Tenant Identifier obtained for this SCEP server.

Provider Name and Version

Free text field used to identify this EJBCA instance. For example ''EJBCA 7.6.0 Enterprise"

Maximum Number Of Revocation Requests to Process Per Period

Maximum number of revocation requests retrieved each time the service worker executes.

Peer that will connect to Intune

The Peer connector used if revocation requests should be dispatched through a Peer connected RA instance. If local is selected, the CA instance which the service worker runs on will connect to Intune directly.

Issuing CAs to check for revocations

The CAs to query revocations for. Multiple CAs can be selected.

The Microsoft Intune Certificate Revocation worker must be configured on a CA instance. However, revocation requests can be dispatched through an RA.