Intel vPro® Platform
Intel Manageability Forum for Intel® EMA, AMT, SCS & Manageability Commander
2834 Discussions

Can i achieve In-Band-Managing without Root Certificate in the Mebx?

idata
Employee
‎03-27-2012 06:59 AM
1,085 Views
Solved Jump to solution

After reading some very interesting pages on this forum we build a testcenter with a 2008 Rs server and SCCM 2007 R3.

 

AMT Provisioning Certificate and AMT Webserver Certificate are managed via an internal PKI.

 

When i enter the Root Certificate Hash in the MebX everything works fine and the clients could be provisioned.

 

Without the hash it got errors in the OOBmgmt.log that the hash was not found.

Someone told us that the SCCM-Client could register the Certificates when we use in-band-provisioning and the Root hash would not be necessary.

 

Until now i havn't found any helpful documents in this case.

 

Could perhaps someone share some light if there is a chance to get this working?

Thank's a lot and best regards.

 

Thomas
0 Kudos
1 Solution
idata
Employee
‎03-28-2012 10:00 AM
274 Views
Solved Jump to solution

Hi Thomas,

Even though you are using the SCCM agent to kick off your provisioning process, you will still need to either a) purchase a 3rd party provisioning certificate or b) hand enter the hash of your internally generated provisioning certificate.

thanks!

Josh

View solution in original post

0 Kudos
Copy link

Link Copied

1 Reply
idata
Employee
‎03-28-2012 10:00 AM
275 Views
Solved Jump to solution

Hi Thomas,

Even though you are using the SCCM agent to kick off your provisioning process, you will still need to either a) purchase a 3rd party provisioning certificate or b) hand enter the hash of your internally generated provisioning certificate.

thanks!

Josh

0 Kudos
Copy link
Reply

Community support is provided during standard business hours (Monday to Friday 7AM - 5PM PST). Other contact methods are available here.

Intel does not verify all solutions, including but not limited to any file transfers that may appear in this community. Accordingly, Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade.

For more complete information about compiler optimizations, see our Optimization Notice.