Deploy wired 802.1x profile from Intune

Forum|Forum|19 days ago
May 29, 2026
2 replies
66 views

I try to push 802.1x profile for wired connection from intune with below configuration but the profile not yet pushed even after more than 3 days.

Anyonw know why?

and for the client authentication should i choose PKCS or SCEP?

Jean-Philippe_P

Staff & Editor

Hello HS08,

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.

Regards,

Jean-Philippe - Fortinet Community Team

HS08Author

Visitor III

Thanks

ebilcari

Staff

We have seen multiple setups where customers deployed certificates on end hosts via Intune/Entra. For more details, refer to the Azure documentation. You can also check the FNAC integration guide: https://docs.fortinet.com/document/fortinac-f/7.6.5/microsoft-entra-id-authentication-cookbook/548590/1-generate-tls-certificate-for-microsoft-entra-id-to-do-authentication

Emirjon

HS08Author

Visitor III

ok, so we use PKCS and not SCEP, am i right?

ebilcari

Staff

As far as I know, these are just the protocols used for certificate enrollment on end hosts, and the difference is related to how the private key is handled. After the certificates are enrolled, there are no differences from FNAC or host authentication perspective. You can proceed with PKCS, as it has been validated by the QA team to work as expected.

Emirjon

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded