Device
CN={{DeviceId}}
or CN={{AAD_Device_ID}}
(URI)
Value:IntuneDeviceId://{{DeviceId}}
1 year
Enroll to Software KSP
Digital signature
and Key encipherment
2048
SHA-2
Profile from previous step (Root certificate Profile)
Client Authentication, 1.3.6.1.5.5.7.3.2
20
User
CN={{UserName}},E={{EmailAddress}}
(UPN)
Value: {{UserPrincipalName}}, (URI)
Value: IntuneDeviceId://{{DeviceID}}
Digital signature
Secure Email (1.3.6.1.5.5.7.3.4)
50