After devices are enrolled with an organization’s mobile device management (MDM) setup, they are permitted to access the organization’s network resources such as mail, Exchange, Wi-Fi, and so on. In order to validate their access, client certificates are issued for the devices. SCEP is the protocol that helps deploy these certificates from a trusted certificate authority (CA) to the MDM-enrolled devices.
Earlier, certificate deployment was done for each device individually, as the CA couldn’t identify the devices that weren’t preauthorized by the IT administrator, making the IT administrator issue every single certificate! But now, SCEP facilitates simple and secure access to your organization’s network resources in a scalable way by handling certificate generation for multiple devices and dispatching them without the need to manually approve each certificate. Here are three reasons you should use SCEP.
SCEP eases the IT administrative workload by no longer requiring admins to specify input for each device that needs a certificate for resource access.
SCEP lets your end users access network resources automatically, without having to authenticate themselves with their AD username or passcode every time they seek access. SCEP facilitates certificates–based authentication, so communication between devices and their access points is ensured — even when users change their passwords.
SCEP contributes to mobile security by preventing untrusted devices from accessing the network and by encrypting the communication between the device access points such as the Exchange server and the routers.
See these benefits in action by signing up for or downloading our easy to use mobile device management software, Mobile Device Manager Plus.