Improve the process for using certificates within ConfigMgr
Setting up and managing the certificates for MPs, DPs and boot media is not straight forward. Could you improve the certificate management process to reduce the complexity and overhead in managing it. So automation with internal CAs for automatic certificate issuing would be good.
Anthony Ferino commented
This is still a problem today. About half of my workstations are workgroup out on the internet and I have to manually manage their computer auth certificates so they don't drop off. I know Azure AD and CMG are a thing but not every company has the money or desire to move to the cloud.
Cody Jordan commented
This is a nightmare for myself and my team to manage, as we have a rather large server count for SCCM - about 80 servers globally, and growing. Maybe integrate PKI into the CAS/Primary roles as an issuing CA, and then auto provision certs when new DPs, etc. are added? A major reason there is a lack of adoption re: HTTPS within enterprise firms is due to the complexity of cert management.