If you’re looking to set up and deploy PKI certificates for SCCM, this guide is for you. All the public key infrastructure (PKI) certificates that you might require for Configuration Manager are listed in the article.

You can use any PKI to create, deploy, and manage most certificates in Configuration Manager. When you use PKI certificates for client communications, you don’t have to plan for signing and encryption to secure client data communication. Managing certificates is made easier with the Microsoft PKI solution when you use certificate templates and Active Directory Certificate Services.

Configuration Manager uses a combination of self-signed and public key infrastructure (PKI) digital certificates. Microsoft recommends using the PKI certificates whenever possible. Some scenarios require PKI certificates. When PKI certificates aren’t available, the site automatically generates self-signed certificates.

Install and Update Third Party Applications with Patch My PC
Install and Update Third Party Applications with Patch My PC

Note: Starting in Configuration Manager version 2103, sites that allow HTTP client communication are deprecated. Configure the site for HTTPS or enhanced HTTP.

The PKI certificate implementation guides for SCCM that we have published use an enterprise certification authority (CA) and certificate templates. The steps are appropriate for a test network only, as a proof of concept. We recommend contacting a Microsoft consultant before you implement PKI certificates for SCCM in your organization.

Guides to Implementing PKI Certificates for SCCM

Listed below are the step-by-step guides that cover information about PKI certificates in Configuration Manager and also demonstrate the steps to implement them in your setup. Click on each guide below to learn about setting up the PKI certificates. All the PKI setup guides are available for download via the OneDrive link.

Still Need Help?

If you need further assistance on the above article or want to discuss other technical issues, check out some of these options.

Prajwal Desai

Prajwal Desai is a technology expert and 10 time Dual Microsoft MVP (Most Valuable Professional) with a focus on Microsoft Intune, SCCM, Windows 365, Enterprise Mobility, and Windows. He is a renowned author, speaker, & community leader, known for sharing his expertise & knowledge through his blog, YouTube, conferences, webinars etc.