Native Certificate TPM Attestation during deployment
at the moment we need to use scripts with passwords in it against a CES/CEP because SMS Agent is in provisioning mode. It would be great to do certificate enrollments during deployment with the certificate enrollment point as the proxy. we use tpm attested certificates to check if the machine is known to increase security
Kris Van Aken commented
Good idea, would definitely improve a secure deployment flow.
Victor Rodriguez commented
Long time need. Finally proposed officially.
totally agree with the proposal
Great idea, Iris!