Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Deploying the SCEP Server for Mobile Security (TMMS) for iOS on a Windows Server 2008

    • Updated:
    • 15 Oct 2015
    • Product/Version:
    • Mobile Security for Enterprise 8.0
    • Mobile Security for Enterprise 9.0
    • Mobile Security for Enterprise 9.1
    • Mobile Security for Enterprise 9.2
    • OfficeScan 10.6
    • Platform:
    • Windows 2008 Datacenter
    • Windows 2008 Enterprise
    • Windows 2008 Server R2 Datacenter
    • Windows 2008 Server R2 Enterprise
Summary

Deploy the Simple Certificate Enrollment Protocol (SCEP) Server to use TMMS versions that support iOS.

Details
Public

Before deployment, you must have the following:

  • Windows Server 2008 or Windows Server 2008 R2 (not Windows Server 2003) to deploy the SCEP server for iOS use
  • Server with a Certificate Authority (CA) available

To deploy a SCEP server in a Windows Server 2008:

  1. Go to Start > Administrative Tools > Server Manager.
  2. Select Roles > Add Roles.Add roles in server manager
  3. Click Nextadd roles wizard
  4. Tick the Active Directory Certificate Services role checkbox. select server roles
  5. Click Next twice.
  6. Select Network Device Enrollment Service and click Nextselect role services

    If you installed the CA in the same machine, select Active Directory Certificate Services to Add Role Sevices.

  7. Accept the default settings for installing IIS to the server.
     
    Network Device Enrollment Service (NDES) requires IIS.
  8. Specify the user account NDES that you will use (required: add it to the local IIS_IUSRS group first), and click Nextspecify user account
  9. Fill out the contact information (if desired), and click Nextspecify registration authority information
  10. On the Cryptography section, change the Key character length (if needed), click Nextconfigure cryptography for registration authority
  11. Review the information and click Install.  confirm installation selections
    Take note of the installation results. 
  12. Restart the server and then log back in using the NDES user account.
  13. Open the Registry Editor using the "regedit" command.
  14. Go to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\MSCEP\UseSinglePassword and set the UseSinglePassword value to "1".
  15. Restart IIS.
  16. Access the SCEP Server admin via http://<scep_server>/certsrv/mscep_admin/ to view the password. SCEP Server admin page
Premium
Internal
Rating:
Category:
Configure; Install
Solution Id:
1060187
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.