SCEP Server Architecture & System Requirements
SCEP Server Architecture & System Requirements
The components that make up a Keyfactor SCEP implementation include:
-
Keyfactor SCEP Server
This server runs under IIS and requires ASP.NET (4.5 or higher).
-
Certificate authority
For issuing certificates.
-
Keyfactor Command
For managing, monitoring, and reporting on certificates.
-
Microsoft Intune
Optionally, for managing delivery of certificates to devices.
-
Web Reverse Proxy
-
Optionally, if devices will be contacting the SCEP server from outside the enterprise firewall.
Figure 1: Certificate Request Flow with Intune
The system requirements for the Keyfactor SCEP server are:
- Window Server 2016, or Windows Server 2019
-
Internet Information Services (IIS) with Windows Authentication (assuming you plan to use Windows authentication to authenticate for challenge passwords)
-
ASP.NET 4.5 or greater
- Microsoft Windows Update KB 3118401 if applicable
- .NET Framework 4.6.2 or greater
- Minimum of 2 GB RAM
- Minimum of one 2 GHz CPU
- Minimum of 20 GB disk space
